last executing test programs: 5.169616348s ago: executing program 1 (id=2618): ioctl$auto(0x3, 0x8912, 0x46) 4.523841609s ago: executing program 1 (id=2620): socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) statmount$auto(0x0, 0x0, 0x800, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x800) sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)={0x24, 0x0, 0x300, 0x70bd26, 0x25dfdbfe, {}, [@BATADV_ATTR_MCAST_FLAGS_PRIV={0x8, 0x27, 0x8}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x9}]}, 0x24}, 0x1, 0x0, 0x0, 0x4c894}, 0x24008000) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0d566b3dd008e4edd9650200000000000008"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0x200000c4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="18"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) mmap$auto(0x0, 0xf4, 0xdf, 0xeb1, 0x69a5, 0xa800000000000000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/mm/ksm/run\x00', 0x20400, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/kernel/threads-max\x00', 0x101201, 0x0) openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/per_cpu/cpu1/trace\x00', 0x80800, 0x0) mmap$auto(0x0, 0x9, 0x3, 0x8012, 0x3, 0x8000) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) r0 = openat$auto_bm_entry_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/fs/binfmt_misc/syz1\x00', 0x18401, 0x0) read$auto(r0, 0x0, 0x7) r1 = openat$auto_fops_init_pkru_pkeys(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) write$auto_fops_init_pkru_pkeys(r1, 0x0, 0x2b) 3.949245485s ago: executing program 1 (id=2623): recvmmsg$auto(0xffffffffffffffff, 0x0, 0x4, 0x6586, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'veth1_vlan\x00'}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/loginuid\x00', 0x109000, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/irq/11/smp_affinity_list\x00', 0x129542, 0x0) read$auto(0x3, 0x0, 0x7) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) 3.338887304s ago: executing program 2 (id=2628): openat$auto_tracing_fops_trace(0xffffffffffffff9c, 0x0, 0x80800, 0x0) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x9, 0x3, 0x8012, 0x3, 0x8000) sendfile$auto(0x6, 0x3, 0x0, 0x8000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) writev$auto(0x1, 0x0, 0x1) madvise$auto(0x0, 0xffdfffffffff0005, 0x19) munmap$auto(0x20001000, 0x7) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x21, 0x2, 0x2) poll$auto(&(0x7f0000000040)={0x3, 0x1, 0xa}, 0x5, 0x108) setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) mmap$auto(0xfffffffffffffffe, 0x8, 0x8003, 0xeb3, 0xfffffffffffffff9, 0x8000) r1 = socket(0x1d, 0x3, 0x1) syz_genetlink_get_family_id$auto_macsec(0x0, r1) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) sendmsg$auto_MACSEC_CMD_ADD_RXSA(r1, 0x0, 0x881) sendmsg$auto_MACSEC_CMD_DEL_TXSA(r0, 0x0, 0x40000) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_VPORT_CMD_DEL(r2, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x78, 0x0, 0x10, 0x70bd25, 0x25dfdbfb, {}, [@OVS_VPORT_ATTR_TYPE={0x8, 0x2, 0x5}, @OVS_VPORT_ATTR_IFINDEX={0x8}, @OVS_VPORT_ATTR_NETNSID={0x8, 0x9, 0xfffffffb}, @OVS_VPORT_ATTR_STATS={0x44, 0x6, {0x1, 0x1bb5aa0f, 0x1, 0x2, 0x3, 0x401, 0xac59, 0x6ed}}, @OVS_VPORT_ATTR_IFINDEX={0x8}]}, 0x78}, 0x1, 0x0, 0x0, 0x810}, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, r1, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="6656f434d1fe3e0c88b138f9ac6d5719fb0f3607d7a6cbf67665bdc65a6c5502b04eac35ab07e115f060785360c6dd0efdd7995900db19ffaeabe2c6d237732c7ea0528170423c25a8de83104254e3c764da0dc9fcbc553701cba482ed798982764e4839c300f6d06fe3cecd2c6b87", @ANYRES16=r4, @ANYBLOB="01002dbd7000f9dbdf250100000008000a00080000000500070000000000080009009c781e01060002000100000008001700", @ANYRES32, @ANYBLOB], 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x48080) madvise$auto(0x8c3a, 0x2, 0xf) socket(0x2, 0x3, 0xa) lsm_list_modules$auto(0x0, 0x0, 0x0) read$auto(0x3, 0x0, 0x400000) 2.967299382s ago: executing program 1 (id=2630): renameat2$auto(0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0, 0x1) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'vlan0\x00', 0x0}) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x58, 0x0, 0x200, 0x70bd26, 0x25dfdbfe, {}, [@HSR_A_IF1_AGE={0x8, 0x3, 0x200}, @HSR_A_IF2_SEQ={0x6, 0x7, 0x8000}, @HSR_A_IFINDEX={0x8}, @HSR_A_NODE_ADDR_B={0xa}, @HSR_A_NODE_ADDR={0xa}, @HSR_A_NODE_ADDR_B={0xa}, @HSR_A_IFINDEX={0x8, 0x2, r1}]}, 0x58}, 0x1, 0x0, 0x0, 0x40080}, 0x40090) mmap$auto(0x0, 0x2020006, 0x1000000000000007, 0xeb1, 0x0, 0x1008000) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000280)={'veth0_vlan\x00', 0x0}) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000826bd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYRES32=r3, @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a000100000000000000000008000200", @ANYRES32=r3, @ANYBLOB="060006ff05000000080003009b"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r4 = socket(0x29, 0x2, 0x0) r5 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) recvmmsg$auto(r5, &(0x7f0000000140)={{0x0, 0x1, &(0x7f0000000080)={0x0, 0x400}, 0x5, 0x0, 0x200002, 0x8}, 0x803}, 0xfffffff9, 0x10, 0x0) ioctl$auto(r4, 0x8922, 0x24) openat$auto_output_bpc_fops_(0xffffffffffffff9c, &(0x7f0000000540)='/sys/kernel/debug/dri/vkms/Virtual-1/output_bpc\x00', 0x2, 0x0) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11"], 0x3c}, 0x1, 0x0, 0x0, 0x40090}, 0x8000) r6 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x40000}, 0x40000) 2.255648667s ago: executing program 2 (id=2635): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x2, 0x1) connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x0, @local}, 0x55) futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x40000b, 0xde, 0x9b72, 0x2, 0x8000) socket(0xa, 0x801, 0x4) futex_wait$auto(0x0, 0x3, 0x0, 0x0, 0xfffffffffffffffc, 0x4) rseq$auto(&(0x7f0000000000)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x7ffe, 0x0, 0x6) madvise$auto(0x2, 0xffffffffffff0001, 0xd) madvise$auto(0x0, 0xffffff7fffff0005, 0x8) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, &(0x7f00000001c0)=@in={0x2, 0x4e24, @multicast1}, 0x55) write$auto(0x3, 0x0, 0xfdef) 1.987130141s ago: executing program 1 (id=2637): setitimer$auto(0x2, &(0x7f0000000000)={{0x100000000000002, 0x7f}, {0x800000004, 0x2}}, 0x0) socket(0xa, 0x3, 0xff) connect$auto(0x3, &(0x7f0000000140), 0x55) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x5, 0x3, 0x19, 0x940, 0x1, 0x3, 0x6, 0x4, 0x80, 0x5, 0x2, 0x9, 0xb0, 0x9, 0x2, 0x3, 0x5, 0x7}, 0x4, 0x81) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) rseq$auto(0xfffffffffffffffd, 0xffff, 0x0, 0x804) socketpair$auto(0x3, 0x1, 0x8000000000000000, 0x0) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, 0x0, 0x8000) sendmmsg$auto(0x3, 0x0, 0xb, 0x0) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x401bf, 0x7352, 0x40, 0x65f, 0x1ffde, 0x7, 0x3, 0x2, 0x9, 0x3, 0x5, 0x4, 0x3000, 0x9, 0x6, 0x10003, 0x80, 0x4, 0x0, 0x7, 0x1ffc, 0x203, 0x400, 0x84, [0x0, 0x0, 0x0, 0x100, 0x0, 0x2000, 0xfffffffffffffffd, 0xa, 0x70624ce7, 0x0, 0xfffffffffffffffd, 0x0, 0x3, 0x1, 0x4, 0x7, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x200000000000, 0x0, 0xffffffffefffffff, 0x3, 0x0, 0x0, 0x2, 0xfffffffffffffffd, 0x400000000005b8, 0x4000000000000c, 0x4000000000, 0x8, 0x4, 0x6, 0xffffffffffffffff, 0x890, 0x800000000000a, 0xfffffffffffffffc, 0x1000, 0xa38, 0x0, 0x0, 0xfffffffffffffffc, 0x2, 0x4000000000, 0x6, 0x0, 0x100000]}, 0x1fe, 0xd) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) r1 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) r2 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_FLOW_CMD_GET(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)={0x128, r2, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_KEY={0x10c, 0x1, 0x0, 0x1, [@nested={0x108, 0x10, 0x0, 0x1, [@nested={0x104, 0x8, 0x0, 0x1, [@generic="99cb9d0ac5e7ca3db865f48743213f4895a92d889bcc52161a9db0c71042415f87e61e3975a378b736c3306b1a3ee4ce8b655fea2d69b00098f23b1cb37bf85739d04fb10a01766880ff82bbcaf8ffcc48221b11ee52385f95f3ca6366d40c8f351f1acb026136efeac333f139dc70761cb1b8ab2088cd036ec759ace6a86b542d5d8052a4be21311d98044cbdc3a15d34c29150d2cf295ab86ea42b51a5745e2911d0571fa6c66dad9cb30216732f9ba61fcdae60832bfa6da7e5c55339f2d80fbc2405cdbdf77856206c82c836024e4169fc9784aeafa9debd822a1bcf47979c0c1de2e67b3f8f747ebdf057a5be35", @generic="1a327b07757bb36f5c3608656cec1929"]}]}]}, @OVS_FLOW_ATTR_PROBE={0x4}]}, 0x128}, 0x1, 0x0, 0x0, 0x24040071}, 0x800) 1.824049961s ago: executing program 0 (id=2639): mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) (async) close_range$auto(0x2, 0x8, 0x0) (async) socket(0xa, 0x5, 0x0) r0 = socket(0xa, 0x801, 0x84) getsockopt$auto(r0, 0x84, 0x71, 0x0, &(0x7f0000000280)=0x22a) setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/netfilter/nf_log/4\x00', 0x40802, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) write$auto(0x3, 0x0, 0xfdef) (async) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x54) (async) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0xffb8, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (async) shutdown$auto(0x200000003, 0x2) 1.630156902s ago: executing program 0 (id=2640): r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/card1/pcm0p/sub5/status\x00', 0x100, 0x0) mmap$auto(0x0, 0xd, 0x3, 0xeb1, 0xfffffffffffffffe, 0x8000) r1 = open(&(0x7f0000000100)='.\x00', 0x40000, 0x0) getdents64$auto(r1, 0x0, 0x400) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r2 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r3 = syz_genetlink_get_family_id$auto_nlbl_unlbl(&(0x7f00000000c0), r2) mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030000020000060006000000000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a000500aaaaaaaaaaaa00000a000500bbbbbbbbbbbb0000080003003800000008000200", @ANYRES32=0x0, @ANYBLOB='\b\x007'], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40090) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) sendmsg$auto_NLBL_UNLABEL_C_LIST(r0, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000280)={&(0x7f0000000140)={0x118, r3, 0x400, 0x70bd27, 0x25dfdbfe, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @rand_addr=' \x01\x00'}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'dvmrp0\x00'}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @mcast2}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @empty}, @NLBL_UNLABEL_A_SECCTX={0xb4, 0x7, "d283a0a04b5e006174a3e85d5087259b080ab7e6ff0252b0051481fc26f5e734b904cb1c3f8a89d4f3faf605b3b6a7d282e58ed233b3292cd77c5d2c9ee6e9ab6fba980c2d4e87f338f6743b79946aa5f06ed350b04cddb9e5eb8d1a30db4f889e533bddd2090685c38c6b69f89bfe0979995fcc51df576241f756fc76ed23a8585283e07a86309ff40e543eb2fdb0ce3060660bb8b1bb97df05c7d8a849fce98b45ed4f037f9c679cc5cc60092a7dfe"}]}, 0x118}, 0x1, 0x0, 0x0, 0x14}, 0x20000801) landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400, 0x7}, 0x9, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/uevent\x00', 0x0, 0x0) landlock_add_rule$auto(r2, 0x1, 0x0, 0x0) 1.629510807s ago: executing program 3 (id=2642): r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) mmap$auto(0xfffffffffffffffe, 0x2020009, 0x3, 0x11, 0xfffffffffffffffa, 0x8000) ioctl$auto_COMEDI_SETRSUBD(0xffffffffffffffff, 0x6410, 0x0) read$auto(r0, 0x0, 0xb4d3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0) socket(0x10, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) write$auto_proc_clear_refs_operations_internal(r1, 0x0, 0xffffff4b) write$auto(0x3, 0x0, 0xfdef) pread64$auto(r0, &(0x7f0000000100)='/proc/comedi\x00', 0xffff, 0xa) 1.48420046s ago: executing program 0 (id=2643): r0 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000080), 0x8000, 0x0) read$auto(r0, 0x0, 0x0) mmap$auto(0x0, 0x80, 0xdf, 0x9b73, 0x2, 0x8000) r1 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8000, 0x0) r2 = socket(0xa, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000280)={'wg0\x00', 0x0}) r5 = bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r4, r3, 0x4, 0x1ff, r2, @relative_id=0x13, 0xe600}, 0xf) bpf$auto(0x4, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffffffffffffffff, 0x0, 0x8000000000003}, 0x8) socket(0x11, 0x2, 0x4) bpf$auto(0x0, &(0x7f0000000000)=@query={@target_ifindex=r4, 0x2d3bc095, 0x8, 0xc5e6, 0x8, @count=0x9, 0x0, 0x800004, 0x6, 0x5, 0x2}, 0x7) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) close_range$auto(0xffffffffffffffff, r6, 0x1c04) ioctl$auto(r6, 0x5606, 0x1) close_range$auto(0x2, r1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x0, 0x6, 0xfffffffb) r7 = socket(0x1e, 0x4, 0x0) r8 = syz_genetlink_get_family_id$auto_vdpa(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$auto_VDPA_CMD_DEV_VSTATS_GET(r5, &(0x7f0000000340)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000300)={&(0x7f00000005c0)=ANY=[@ANYBLOB="08110000", @ANYRES16=r8, @ANYBLOB="000825bd7000fedbdf25070000001400020070696d3672656731000000000000000004100a003e35cac2ed544494e3a382cb39d0aa02334f86b586fbed8c268f959a5399e8c60a81b22bc0b93dd92a0e45352c5bdc2ae8251b26afc99fec0a49e7d41cd3d2abc3b63eb023c087b3497a7e05609a630f8ccc2b8d54dd514067144a01e0b82a673b23698f9ad21a43b9dd28ecdc4d56c8395b51247d9ac7bce968f03f4c9d1f36faa6b083683c087e7aa377f84656cd346a1d2c23e621f485e87de947f707fabd71857c4ce2990d840434ede9403a7a161e0b2def8f44eaa9c77f7d4d87e941cd6bf61bcef68d0382125200e27d43351eefe3fa0ede8c950876ba6fad5a72d26d5b30a7bc7ef95086f3b31219b438b924cb824c5cbccc17031c1b7f997d6ea23db87a42d2e30b55a30ab6a32f61d95193622ff7e9f9caf8f3003a6bab1d3133479b77abea4f6d19ff59e1a5bb066b3ec6336655c27276f3b6102f50dfed8b62ad76b401ea671cc4b1ed09a509fb9977c6b46132822b99d5c85424813091e16fbd6eb17ffcd57598c35e1a9ffc165d88de7cb551ab49e44c00fcfdda5a881eaa14f19db676c0c251858feb689990fc7c54265352a4f29b119525175fbc2a1b17b31c448228119718df54e35e2b223e385d115a775ed4dcdf14577102af35a0e86f7ce42c23061d0af0c9b4aa7444d5ea679288de43c1779e7f35151cb0e5182d373cc0691a382d37aa50763baf3d26a69d7414a2b3d0a7018f3f59d9c82cee81995d139d4edc95197aad884d4cb34c8b38798531dd3f8cbca921beb8b71fc8e2fc591cd9e3f7b2d379f0f4bb9d35974f3fa482d0d6533aa7d12bece26c3717671bb98e5b085eaf4e484c59c282193235f62e21d80a5e81fbad5d10516ff4fdbab6fc7e2320d7702eb96bd6efba013ce4a20df56605f8c301be52f3b4f396ff2493602fe0126587be770f413206b5654993390dc4664060af5cce76bf856c62a8400a650475647a4e5b0fa31cbf578e2ba38048d1d70562d77ff39fe43ee34ca673807aea1230ef1f98f1805edefd8b6921cbcd08aabecedaf359baf4f611640be40e430b477fcaf61922ad0d6307b34c975469e4503b2cb220273abe33b738e41723f161854cde2c05c32d421903a705a0a48b022c92c73fe0fa2bd6d435f519f72e9553276a430ecefb22a035fa54e6d1df532ab8708dba4a345fa2150f0805aa704b3e4fcfa3c09a853d0697a5f13c339e05eb18d575b26a64cbf340f0bb6fee7070f3bc15b3240563013fb34846901de6f3681dead0642ef3d7810ceb35837f1ab8e0b67312c25b9ff8afbb5fd5c558fab5f15289583dcfa7602120911812bf483af72b8204129c66737fba1ee4295ca13ce72f0f3a43a27f90d4aea1c64b9a55ff45a74c9d263699939bfa9c6c2b2229d22633f77df01c96ccdae6fda89f5abe8144c96c105369dec15385f38eb8323860e7fde2915f1b30826a387e1f6769dcd792f6e8540c07038565e072f095f5729b4f36612bf28376c6dd77baeb178284d0af094a9cb70895a4a01aa91f5cac7f0dd9159f09c244e417d3864e288c2392496e63e5a8370bc1700fe03cb5a67abf12ff0ff6d13300f35e063386268a99473b54c7adeef060f3b117a68c7cf4e973a14d3349d15d46c31cb85f7c2b42e939bfd75fd0be495423ae74b7a43a742802eb8f33f11ae4ee488265e7d3c6f07ee756bd5002d7a18a2869e23b52c70f40e0214455ac7db26fadb8e374b8d89b25dbc55dbfa03df3ae796f4ad6ea85695990bc053d6a4e5c782a4e8732fac0008b5209e48bbab5f4ff5ec9d2904b463bd96882e7852a1b6d21e09e46c0e79bcec2973cd54c7831ed6ebe4d42c1c6aac3e8b2aeae9859bfd300a6e7c3492d186416705cae7f2581c4e403d4a4da03230ce2508d7a6dd7248f11c38a9ab27eb4046aef8a5459df9523e5f2f17ada3a9bc0e08c7799aa9098c85e4580a3c71820cdc96b20984bed23d6f62d367709db8bc62f254968e68fedcfea8cc9864d9ba673237fc7c9b87658a058696452b3b463fc223d647848ed8a087db3c5c484bfaae5e474413a5fd6b1b5692c4f190ad80ffa8e84d26e93c6b44206551ba9d3f6c2b580b0d4dd5a09d1831671ec6c2cbb49f5811944e3478f046be786fb7c350b6e058312707378502daafb71da0ae607bf19fb40435c6de4f8849b5f7fe964a95d0683135fad69893cb7d395605965a411f86fff7f6ce587bbd46dfe92fce388114518e7f755fb367ff66d9342e25fb5583b8de8968fa5fc159d5bb0debba282a37ecb639457e77e2a8e6ed2160f8d4037e63dcad68837ea3eb054685d29f9faa1059cb71e6d81fe9c9fcbe3ab6116b8ad163f65ba56f977e0a64dbc0aae32f5f20d4bffd453b28246f5648e2ce42f6df852f23058dc69c2399d84703ceaa0db40868f6bacc75df02496caedc3a501396524a4f77350313009b1a9c732839f3163a941cad89a1c81b61536b76dc1364febab2822fe07272c66184732294ce857fd332e41f0a4b306d9588f96fab220707f96076fa1a36493341bf37ed7c1ddacf83e0051fe945e458682ad0442bb3b2bb99ee6a458b55ae73cac648b78d5113d3f36d3345c3e0c227b6a4ddc4968e669f26bd5d5ed35bf4a92f820bb1a74dc20b6e38d97cd224a5bf115fc24836f06e9be7ce64d4b198102eb4c6f0c19d6f6290ef97e79a0230068d7ad6fa2aa1eefa4bd89b74b66b7c741d19c46b3a7f48e2f1cc3869b133a7c7b3cc5aa2261e5b15501d55dd87a422ad71257b8ee29de63e47162417d84b1bbffe51f8f76eb17243b9b201206055658f6b982db4b918abe21072f90c58fbe3e540600dfdf3f3c5e2bf892ce8b32bf290950a1a1003dbb5ddcc30e2bf0ecb67d7fcdbf81ab84dc004b541f7193b938913e0f570c545b7e71cb56640a48a9007a16489e484297e19aeda786c3d2bf915a13888cd7c8ae15b2fde0394eba82b3bf2c6b521d51f7a5905b33c1501817a4ce108d62f048587f73546e767d45496685ecf48e6afbc6017b9b3ab124d1f33b0642df8c747c0de71864ef419046fbb4a3bdbabee2cf657f7b07227ef9fee585aabb3c44ac019e8da701e9d671afa062ed46373e30899505aae76aaaac1c2bb8379219977688dd046755d3cc39f22f61c05565812acffdb71f9acbae2d1806bc9cfaaf3a87eca0e511c64038d831748754f495846687aca7426c3846944b1b89361efb54bde98d723251384392a2dee54270ffb52fcee46d28552eb63e83cc5679b61c512fbe9625b840d1e38b1d5b1729b5d4d944d0fa5cb8d7effa5c7e99da3184c8f1657bc53713fd96e8519c6cdc131028bf44458ae5649da9095c4cc2a9df2544b284479de0fc8e8f620240bccbaaa7691cf9eafb79eff3eb75e51ee9adf9ba08e70c41bda4ae73da3a03236552818cc48d91b6374912d202d5e6e9fc559cdf6a1f4a5ba577bdbb3ef6b2563df2a725258a21f56a84f79a6dbeac5fe45fac7f3f58fa4bfd722760cbf841793f751329a715bbf9f8e4ed25d1ba1a840cb164aca2d58d44a6f4e12d944a28ce3b072474a71edc310b8f89cf4ff8833fe83bc92591dc380d7b3bd65f30bee2a786970572e4a5761fcf3fc73326961c0de509bc55c8b8a359ad485199b86f33c33588555fd5acc81bd6ba615460e4ea9173b30de238b024d65ab87ebf0680c0ec3cd72f3885a7d0a5b824620b8f6574845b96e563b1cabf8200e8c127abd5f949033f29ace4c65e09239e2b50ae00f5bc794d09b9fe767154696c454658f5be8f1f63c34158502aa423579155fa9d0dc3b4c06509199c5540cce947f30c5090689cbb8107318870410035d3f07c8e0ecafb0b03358816d27a74ded96510ea04f5c56a4ca00ea95483a1a655dca89ff506f9c04c790e6212efca35b545b7f3b51c91c8e11148dc6773001539af6e1e6a85a4f3c321fc03ab8d480e53e5c261b953207abfb39173a6c1a824a1d5820164c265cd142622410adcdb0d5fbe291e0a5a2e542337949b005f884c6ea65f22d6f287a110cce21d48e5873980d28305995d996800e881a28c39155f18c7a7a3679e37d17e9d25b6019acbdb7573f62a8c43915e17ea759b4f220852699d06e418e199a4ef293defddea58c69f7df645fe1485f42edbdefd34391d51d4a302dd9343466cb122433441b573576a51e88b32bdcbf0db3654283e4c397a9fc8d18ec85de2e0253086f0fd689d52127be0c6bab6cf0e22fcc462537fcfca95a5b36d528100cdf464d2c4daf509eda2be2454881aea1165faede89d1612308736d27b8047d3c911f4e34ab24d4bfc6bd58fd93db5e0496a80dc3bf95ee48501fb0be8ebda498affb64dfe3252208d834d55c1595e0d633f3c87ed3a4b561a8273e7d134c5532638115c66551be395fdd25201f763372d96f1fa766771b3c340a4462a23758ea4f78ab7d09a1078fe9ae2ed39809fabb20c55fd5575e84151737be6dacf0362609edf1d9c326c2fed5c26f2ce9dbc3a46ec4155a65f11ae8e4ff4dcccf2c62f5bae90303fe11eca9104e1853b8db81aa1252fe24ab501a1b02e99896e33036383143e42e48db2d09410852b835988dfe3c8e65832c6f7b1a1923b28c58d18bff2ad4d4d7262483c49189f5fb2e3c4d66a3a39aa2aba9885285166007ca4b3be0d68f750e785aad9c7f0ec3feb18d6879fb258e7ef9b42b6e7b7edddc161aef7e17f3d7158c90729df91043193ffbd55bd68d91c5ee93647e6f7d0ed646aae1f5adc4d9e99dc04800b603a669cedc68e353780edc4c856301d446cf1bd869c56fb4f93f4a604af7f07a80305ff7e44f04e5889fd5d92423419d41de351fbe56dbfd82e97073150f6a10f9d9af034fe578697327a1efcbbb89e93bb49c8c1245e4b12cf5f0bdbe74b2e60d2f975298b2e30432f32bd78f77de359ac84ecd9c489983f4ae6e8e480dc172424c316b1c4617b6d8ada920795053a32176a4464f22dcf0c06d6361d1fbe501e898126d9120ceece8b4b81ab809a10ec1b7cf2f62930878c7e6eebdf2eefef7a3af2333a70a39a44bd1f8e33bf257990c17b0849fab7add03949e5573995c86398b4987730bd19dd439fc4d899d2be8544718315008b49223a9df654f224e9a51c24767e55bf8555ca363bafef34074232b6e7e4c18fa0291acb9f1214529bf2d4452e7267e6c17b2bceee04e9358002b4ecf0dac7cfef05a6882fafb3d0b8662ade3db00949adfc5f1bd153886b7814f66eceb588248f97f499d039e050b671e6bd412cf852f53c0d46c67d8faa8bd3a7fd1debb83026bafa00cdcdf1f618c546e5058c847795ee3d9f5bd125d250920afe93191425005a8b260cfe3683616025e507019f381911cffd3647cbad0d45fb5573ec096dbb7ffeca2ca076119ef172560aab10cb56b76ec823ec80df1e8803a825379ef3b8d986a2ad40045435febb44d49128dd7f94286c0fdc09db27048c5d41b037236a662bb5020d14e2ea5ee5f75548ec6ac683cc65588fd91b7550a599c9293d62287ca5b1bce689b724f4821ecebe6c6042f9110966e2c8fc0a89d095a7dd694866feed8498f52dc8c6853348ebae2f8537c821047166f799c789548e49ebcf6426fa9af9f8d5d394cbb37b935c9543bd5b1085b862266afd952262a344de83f4a28831b34b76fc96538fd9a67c61dc0789afb8589310020aca35a997e0ebf94450c38544d1acc7c7e1ed2cfa3391719bbc32d5aa23c8b7d4171daaeea72c60ea4be970dbd91d92fa0edf3e717fff1b3ab1ebb1bb43241e5a6a4a765f2fcf34a90aa09d57aca4c99803434c1959ea991a6143b318a943453e7c000a001d24e4e776db25cb767906ef6a689116abc4446fcd561fb834ab7d99077cc9814430cb0c2f38e70846e0bb71f414e647ea34a641b0df5697591740e303186d46fddaeb1aa07e5527592f365868c71ecdb5dd5b5d373041f4abec7e89341a371fb12f7bebb446c9984740f92806000d000030000005000100000000001400020076657468315f746f5f626174616476000500010000000000140002006e6574706369300000000000000000000c0014000c0000000000000014000200626f6e645f736c6176655f3100000000e583fe4acf2b650d15a4c6669d5098586710732d"], 0x1108}, 0x1, 0x0, 0x0, 0x40480c5}, 0x4) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(r7, 0x10f, 0x87, 0x0, 0x14) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) recvfrom$auto(0xffffffffffffffff, 0x0, 0xd, 0x2, 0x0, 0x0) clock_nanosleep$auto(0x3, 0x8, 0x0, 0x0) write$auto(0x3, 0x0, 0xfdef) openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, &(0x7f0000000580)='/sys/kernel/tracing/tracing_cpumask\x00', 0xdcc02, 0x0) 1.478405148s ago: executing program 2 (id=2644): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/module/vmw_vmci/version\x00', 0x103000, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x2b, 0x80000, 0x3) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000003000)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x20008810) open(&(0x7f0000000000)='./file0\x00', 0xa61c2, 0x84) bind$auto(0x3, 0x0, 0x6b) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) write$auto(0x3, 0x0, 0xfffffdef) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) set_mempolicy$auto(0x2, &(0x7f0000000080)=0x7e, 0x4) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x8, 0x3, 0x101) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mmap$auto(0xf000, 0x8, 0x1000000003, 0x9b72, 0x2, 0x8000) mkdir$auto(0x0, 0x8001) move_pages$auto(0x0, 0xd0, 0x0, &(0x7f0000001140), 0x0, 0x2) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x6, 0x0) read$auto_qrtr_tun_ops_tun(0xffffffffffffffff, 0x0, 0x34) close_range$auto(0x2, 0xffffffffffffffff, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) mount$auto(0x0, 0x0, 0x0, 0x7fffffff, 0x0) connect$auto(0x3, 0x0, 0x55) r0 = socket(0x2, 0x1, 0x106) shutdown$auto(r0, 0x8) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000140), 0x382, 0x0) 1.23603356s ago: executing program 3 (id=2645): r0 = openat$auto_ima_measurements_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000001480), 0x400, 0x0) openat$auto_proc_pid_attr_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/attr/exec\x00', 0xa000, 0x0) pread64$auto(r0, 0x0, 0x7, 0x800005c2b) 1.127927268s ago: executing program 0 (id=2646): r0 = socket(0x10, 0x3, 0xa) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_macsec(&(0x7f0000004d40), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'macsec0\x00'}) sendmsg$auto_MACSEC_CMD_DEL_RXSC(r1, &(0x7f0000007500)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x80) 1.037075235s ago: executing program 3 (id=2647): mmap$auto(0x0, 0x9, 0xdf, 0xeb1, 0x401, 0x8000) (async) close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async) pipe2$auto(0x0, 0x80) (async) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r0, 0x5428, 0x7) (async) ioctl$auto(0x1, 0x5760, 0x100000101) (async) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) 736.927689ms ago: executing program 2 (id=2648): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x6, 0x0) socket(0x1d, 0x2, 0x6) sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x20048890}, 0x24004840) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/kvm/guest_mode\x00', 0x100, 0x0) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x10) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_proc_uid_map_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/uid_map\x00', 0x0, 0x0) pread64$auto(r1, &(0x7f0000001c00)='\'-+..\x00', 0x1, 0x7) bind$auto(0x3, &(0x7f00000000c0), 0xf) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/veth0/disable_ipv6\x00', 0x40802, 0x0) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x20000, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/fs/cifs/LookupCacheEnabled\x00', 0x400, 0x0) pwrite64$auto(r2, 0x0, 0x0, 0xe950eaf) close_range$auto(0x2, 0x8, 0x0) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x500) 736.772549ms ago: executing program 3 (id=2649): r0 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) write$auto(0x3, 0x0, 0xfffffdef) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'ip6gretap0\x00', 0x0}) r4 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000003e00), 0xffffffffffffffff) sendmsg$auto_NETDEV_CMD_NAPI_GET2(r1, &(0x7f0000003f40)={0x0, 0x0, &(0x7f0000003f00)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="09032bbd7000fedbdf250b00000008000100", @ANYRES32=r3, @ANYBLOB="f6bbb233cc8f6bdbd07246e7335a75d1895a93ddef4280f4511659193e15c48f00de4ac95f4e635ac312cb974416f1807f2bfbe469c21d863d8e87bb9935af468e5bbde770ef8f810193fe4ea618428232c6b2c40dac2bbc727e6ad97217e67c5809f3a306c3fe23aea874666b2c3056813c7828bbaeeb1c1732fb29179d87295bd37c83a4401f871991936319bd67b590ac3cac81a6727191e6a289bb322c9ae758a18c45146dc53cd25656f31b4c51039f58209dadcdcc32191df7076d714267809b78ea8deb1a73fbdb2a"], 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'geneve1\x00'}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'macvtap0\x00'}) setregid$auto(0x2, 0xffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_TUNNEL_INFO_GET(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x2c, r6, 0x1, 0x70bd28, 0x25dfdbfe, {}, [@ETHTOOL_A_TUNNEL_INFO_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24000000}, 0x4000000) 735.814024ms ago: executing program 0 (id=2656): r0 = socket(0x10, 0x3, 0xa) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_macsec(&(0x7f0000004d40), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'macsec0\x00'}) sendmsg$auto_MACSEC_CMD_DEL_RXSC(r1, &(0x7f0000007500)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x80) 582.227406ms ago: executing program 3 (id=2650): r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/kernel/tainted\x00', 0x28002, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, r0, 0x8000) capset$auto(&(0x7f0000000100)={0x20080522}, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/vkms/graphics/fb0/mode\x00', 0x80002, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) write$auto(0x3, 0x0, 0xfdef) sendmsg$auto_NL80211_CMD_GET_COALESCE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="01002cbd4d00fbdbdf2564ee4900"], 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x801) r1 = socket(0x18, 0x80000, 0x0) connect$auto(r1, &(0x7f0000000180), 0x1e) socket(0xa, 0x801, 0x84) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto(0x3, 0x80000541b, 0x38) write$auto(0x3, 0x0, 0xfdef) 544.632064ms ago: executing program 1 (id=2651): recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000100)={{0x0, 0xbb, 0x0, 0x8, 0x0, 0x81, 0x9}, 0xfffffffb}, 0x4, 0x6586, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'veth1_vlan\x00'}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/loginuid\x00', 0x109000, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/irq/11/smp_affinity_list\x00', 0x129542, 0x0) read$auto(0x3, 0x0, 0x7) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) 435.32397ms ago: executing program 3 (id=2652): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x22, 0x1, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x4000008000) r0 = socket(0x2, 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) r1 = socket(0x2, 0x1, 0x106) connect$auto(0x3, &(0x7f00000000c0), 0x55) setsockopt$auto(r1, 0x1, 0x21, 0x0, 0x9) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x66) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) mmap$auto(0x0, 0x20009, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) uname$auto(0x0) r2 = open(0x0, 0x64842, 0x0) fcntl$auto(r2, 0x5, 0x2) mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x40008000) r3 = open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0) bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x1, 0x538, 0x80, 0x10000, 0x0, r3, 0x1000, "72fea04183dce563f03f2a25077b3383", 0x0, r3, 0x4, 0x6, 0x101, 0x1, r3}, 0x6f3) write$auto(0x3, 0x0, 0xfdef) write$auto(0x3, 0x0, 0xfdf3) shutdown$auto(0x200000003, 0x2) io_uring_setup$auto(0x6, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x17) mmap$auto(0x3, 0x4, 0x4000000000dc, 0x40eb2, 0xa1c, 0x8) madvise$auto(0xffffffffffffffff, 0xffffffff7fffffff, 0x40000019) madvise$auto(0xf, 0x4, 0x9) syz_genetlink_get_family_id$auto_ovs_meter(0x0, 0xffffffffffffffff) socket(0x8, 0x5, 0x6) socket(0x8, 0x0, 0x4) read$auto(0x3, 0x0, 0xfdef) 416.411028ms ago: executing program 0 (id=2653): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x2, 0x1) connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x0, @local}, 0x55) futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x40000b, 0xde, 0x9b72, 0x2, 0x8000) socket(0xa, 0x801, 0x4) futex_wait$auto(0x0, 0x3, 0x0, 0x0, 0xfffffffffffffffc, 0x4) rseq$auto(&(0x7f0000000000)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x7ffe, 0x0, 0x6) madvise$auto(0x2, 0xffffffffffff0001, 0xd) madvise$auto(0x0, 0xffffff7fffff0005, 0x8) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, &(0x7f00000001c0)=@in={0x2, 0x4e24, @multicast1}, 0x55) write$auto(0x3, 0x0, 0xfdef) 368.396976ms ago: executing program 2 (id=2654): r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) mmap$auto(0xfffffffffffffffe, 0x2020009, 0x3, 0x11, 0xfffffffffffffffa, 0x8000) ioctl$auto_COMEDI_SETRSUBD(0xffffffffffffffff, 0x6410, 0x0) read$auto(r0, 0x0, 0xb4d3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0) socket(0x10, 0x2, 0x0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) write$auto_proc_clear_refs_operations_internal(r1, 0x0, 0xffffff4b) write$auto(0x3, 0x0, 0xfdef) pread64$auto(r0, &(0x7f0000000100)='/proc/comedi\x00', 0xffff, 0xa) 0s ago: executing program 2 (id=2655): mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008810}, 0x2000c041) bind$auto(0x3, &(0x7f0000000080), 0x6b) ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000140)) connect$auto(0xffffffffffffffff, &(0x7f0000000040)=@can, 0x8) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) fcntl$auto(0xffffffffffffffff, 0x401, 0x5) write$auto(0x3, 0x0, 0xfffffdef) unshare$auto(0x40000080) socket(0xa, 0x3, 0x3a) epoll_wait$auto(0xffffffffffffffff, &(0x7f0000000000)={0x7, 0x800000000000009}, 0x7ff, 0x6) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x7f, 0x1, 0xeb1, 0x401, 0x8000) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}}, 0x40000) io_uring_setup$auto(0x4bf15e08, &(0x7f0000000000)={0x405, 0x8, 0x20000006, 0x9, 0x8a, 0xfffffff7, 0xffffffffffffffff, [0x104, 0x9, 0x7f], {0x2, 0xb, 0x3034, 0xe, 0x4, 0x5, 0x2, 0xfffffff9, 0xf08a2b5}, {0x4000, 0x8, 0x9, 0x0, 0x0, 0xeca8, 0xd5, 0x836, 0x8}}) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYBLOB='_\x00'], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x9}, 0x3, 0x0) setsockopt$auto(0x400000000000003, 0x29, 0xca, 0x0, 0x567) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sysfs$auto(0x2, 0x10000000000002d, 0x0) syz_genetlink_get_family_id$auto_ovs_datapath(0x0, 0xffffffffffffffff) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) gettid() connect$auto(0xffffffffffffffff, 0x0, 0x55) mmap$auto(0x0, 0x5, 0x3, 0x16, 0x3, 0x8000) sendfile$auto(0x6, 0xffffffffffffffff, 0x0, 0x8000) unshare$auto(0x40000080) writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1) kernel console output (not intermixed with test programs): syz.2.971) [ 207.307796][ T9090] kernel write not supported for file /300/timerslack_ns (pid: 9090 comm: syz.2.1024) [ 207.627578][ T9125] kernel write not supported for file /300/timerslack_ns (pid: 9125 comm: syz.2.1032) [ 207.705324][ T9120] kernel write not supported for file /300/timerslack_ns (pid: 9120 comm: syz.2.1032) [ 207.728960][ T9127] ptrace attach of "./syz-executor exec"[5828] was attempted by "./syz-executor exec"[9127] [ 207.791835][ T9122] kernel write not supported for file /300/timerslack_ns (pid: 9122 comm: syz.2.1032) [ 207.945945][ T9131] kernel write not supported for file /300/timerslack_ns (pid: 9131 comm: syz.2.1035) [ 209.817579][ T9189] warn_unsupported: 2 callbacks suppressed [ 209.817608][ T9189] kernel write not supported for file /300/timerslack_ns (pid: 9189 comm: syz.2.1054) [ 209.972316][ T9199] kernel write not supported for file /300/timerslack_ns (pid: 9199 comm: syz.2.1060) [ 210.246410][ T9202] kernel write not supported for file /300/timerslack_ns (pid: 9202 comm: syz.2.1062) [ 210.337726][ T9211] kernel write not supported for file /300/timerslack_ns (pid: 9211 comm: syz.2.1064) [ 210.939916][ T9231] ecryptfs_parse_packet_length: Error parsing packet length [ 210.949863][ T9231] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22] [ 211.303018][ T9210] kernel write not supported for file /300/timerslack_ns (pid: 9210 comm: syz.2.1064) [ 211.509138][ T9242] kernel write not supported for file /300/timerslack_ns (pid: 9242 comm: syz.2.1077) [ 211.635856][ T9251] kernel write not supported for file /300/timerslack_ns (pid: 9251 comm: syz.2.1080) [ 211.792915][ T9254] kernel write not supported for file /300/timerslack_ns (pid: 9254 comm: syz.2.1081) [ 211.981054][ T9258] kernel write not supported for file /300/timerslack_ns (pid: 9258 comm: syz.2.1083) [ 212.248023][ T9263] kernel write not supported for file /300/timerslack_ns (pid: 9263 comm: syz.2.1085) [ 212.967592][ T9297] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1096'. [ 213.001786][ T9297] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1096'. [ 213.032031][ T9297] netlink: 134 bytes leftover after parsing attributes in process `syz.0.1096'. [ 215.419494][ T9359] syz.0.1118 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 215.471304][ T9359] kAFS: bad VL server IP address [ 215.511439][ T9348] warn_unsupported: 2 callbacks suppressed [ 215.511461][ T9348] kernel write not supported for file /300/timerslack_ns (pid: 9348 comm: syz.2.1113) [ 215.773335][ T9364] kernel write not supported for file /300/timerslack_ns (pid: 9364 comm: syz.2.1121) [ 216.173077][ T9387] random: crng reseeded on system resumption [ 216.458296][ T9394] kAFS: bad VL server IP address [ 216.877563][ T9379] kernel write not supported for file /300/timerslack_ns (pid: 9379 comm: syz.2.1124) [ 217.117628][ T9403] kernel write not supported for file /300/timerslack_ns (pid: 9403 comm: syz.2.1133) [ 217.437709][ T9409] kernel write not supported for file /300/timerslack_ns (pid: 9409 comm: syz.2.1135) [ 217.510135][ T9420] kAFS: bad VL server IP address [ 217.635864][ T9419] kernel write not supported for file /300/timerslack_ns (pid: 9419 comm: syz.2.1140) [ 217.803877][ T9431] netlink: 'syz.2.1142': attribute type 10 has an invalid length. [ 217.818693][ T9431] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1142'. [ 218.124179][ T9429] kernel write not supported for file /300/timerslack_ns (pid: 9429 comm: syz.2.1142) [ 218.523485][ T9446] kernel write not supported for file /300/timerslack_ns (pid: 9446 comm: syz.2.1150) [ 218.714250][ T9460] kernel write not supported for file /300/timerslack_ns (pid: 9460 comm: syz.2.1153) [ 218.912047][ T9468] kernel write not supported for file /300/timerslack_ns (pid: 9468 comm: syz.2.1156) [ 219.439535][ T9457] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 219.458537][ T9457] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 219.569554][ T9481] netlink: 'syz.3.1159': attribute type 10 has an invalid length. [ 219.599495][ T9481] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1159'. [ 219.638057][ T9457] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 219.708212][ T9457] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 219.850970][ T9457] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 219.912301][ T9488] netlink: ct family unspecified [ 219.917549][ T9457] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 220.000040][ T9457] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 220.027879][ T9457] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 220.359558][ T9501] mmap: syz.3.1165 (9501) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 220.729767][ T9508] .': entered promiscuous mode [ 220.798054][ T5830] Bluetooth: hci3: command 0x0406 tx timeout [ 221.111926][ T9495] warn_unsupported: 6 callbacks suppressed [ 221.111948][ T9495] kernel write not supported for file /300/timerslack_ns (pid: 9495 comm: syz.2.1166) [ 221.187678][ T9515] random: crng reseeded on system resumption [ 221.679261][ T5830] Bluetooth: hci1: command 0x0406 tx timeout [ 221.749676][ T9523] kernel write not supported for file /300/timerslack_ns (pid: 9523 comm: syz.2.1173) [ 221.833167][ T9526] netlink: 'syz.0.1172': attribute type 10 has an invalid length. [ 221.858949][ T9526] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1172'. [ 221.919303][ T5830] Bluetooth: hci2: command 0x0406 tx timeout [ 221.937688][ T9527] kernel write not supported for file /300/timerslack_ns (pid: 9527 comm: syz.2.1176) [ 222.017730][ T9534] kAFS: bad VL server IP address [ 222.078121][ T5830] Bluetooth: hci0: command 0x0406 tx timeout [ 222.100218][ T9534] kernel write not supported for file /300/timerslack_ns (pid: 9534 comm: syz.2.1177) [ 222.339824][ T9536] kernel write not supported for file /300/timerslack_ns (pid: 9536 comm: syz.2.1179) [ 222.794996][ T9544] kernel write not supported for file /300/timerslack_ns (pid: 9544 comm: syz.2.1181) [ 222.878152][ T5830] Bluetooth: hci3: command 0x0406 tx timeout [ 223.037568][ T9550] kernel write not supported for file /300/timerslack_ns (pid: 9550 comm: syz.2.1185) [ 223.240929][ T9558] kernel write not supported for file /300/timerslack_ns (pid: 9558 comm: syz.2.1187) [ 223.378209][ T9563] kAFS: bad VL server IP address [ 223.646531][ T9566] kernel write not supported for file /300/timerslack_ns (pid: 9566 comm: syz.2.1198) [ 223.768440][ T5830] Bluetooth: hci1: command 0x0406 tx timeout [ 223.771623][ T9568] kernel write not supported for file /300/timerslack_ns (pid: 9568 comm: syz.2.1198) [ 223.923256][ T9573] netlink: ct family unspecified [ 223.998116][ T5830] Bluetooth: hci2: command 0x0406 tx timeout [ 224.127736][ T29] audit: type=1326 audit(4294967445.610:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9580 comm="syz.2.1195" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb08e185d29 code=0x0 [ 224.163160][ T5830] Bluetooth: hci0: command 0x0406 tx timeout [ 224.356276][ T9586] netlink: 'syz.1.1191': attribute type 10 has an invalid length. [ 224.367201][ T9586] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1191'. [ 224.508169][ T9595] kAFS: bad VL server IP address [ 225.040558][ T9610] futex_wake_op: syz.3.1204 tries to shift op by 64; fix this program [ 225.987146][ T9624] FAULT_INJECTION: forcing a failure. [ 225.987146][ T9624] name failslab, interval 1, probability 0, space 0, times 0 [ 226.038153][ T9624] CPU: 1 UID: 0 PID: 9624 Comm: syz.2.1210 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0 [ 226.051034][ T9624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 226.063140][ T9624] Call Trace: [ 226.067093][ T9624] [ 226.070739][ T9624] dump_stack_lvl+0x16c/0x1f0 [ 226.076388][ T9624] should_fail_ex+0x497/0x5b0 [ 226.082050][ T9624] ? fs_reclaim_acquire+0xae/0x150 [ 226.088222][ T9624] should_failslab+0xc2/0x120 [ 226.093887][ T9624] __kmalloc_noprof+0xce/0x4f0 [ 226.099724][ T9624] ? do_sys_poll+0x24b/0xde0 [ 226.105278][ T9624] do_sys_poll+0x24b/0xde0 [ 226.110606][ T9624] ? __pfx_mark_lock+0x10/0x10 [ 226.116502][ T9624] ? __pfx_do_sys_poll+0x10/0x10 [ 226.122501][ T9624] ? __pfx___lock_acquire+0x10/0x10 [ 226.128885][ T9624] ? __mutex_unlock_slowpath+0x164/0x690 [ 226.135711][ T9624] ? set_user_sigmask+0x217/0x2a0 [ 226.141768][ T9624] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 226.149086][ T9624] ? __pfx_set_user_sigmask+0x10/0x10 [ 226.155565][ T9624] ? __fget_files+0x206/0x3a0 [ 226.161215][ T9624] __x64_sys_ppoll+0x25a/0x2d0 [ 226.166970][ T9624] ? __pfx___x64_sys_ppoll+0x10/0x10 [ 226.173347][ T9624] ? ksys_write+0x1ba/0x250 [ 226.178892][ T9624] ? __pfx_ksys_write+0x10/0x10 [ 226.184758][ T9624] do_syscall_64+0xcd/0x250 [ 226.190199][ T9624] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 226.197304][ T9624] RIP: 0033:0x7fb08e185d29 [ 226.202619][ T9624] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 226.226279][ T9624] RSP: 002b:00007fb08ef20038 EFLAGS: 00000246 ORIG_RAX: 000000000000010f [ 226.236404][ T9624] RAX: ffffffffffffffda RBX: 00007fb08e375fa0 RCX: 00007fb08e185d29 [ 226.245997][ T9624] RDX: 0000000000000000 RSI: 0000000000000081 RDI: 0000000020000000 [ 226.255585][ T9624] RBP: 00007fb08ef20090 R08: 0000000000000008 R09: 0000000000000000 [ 226.265174][ T9624] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 226.274764][ T9624] R13: 0000000000000000 R14: 00007fb08e375fa0 R15: 00007ffebdf57f18 [ 226.284377][ T9624] [ 226.288029][ C1] vkms_vblank_simulate: vblank timer overrun [ 227.661845][ T9665] sctp: [Deprecated]: syz.1.1222 (pid 9665) Use of struct sctp_assoc_value in delayed_ack socket option. [ 227.661845][ T9665] Use struct sctp_sack_info instead [ 228.944518][ T9692] kAFS: bad VL server IP address [ 229.207646][ T9696] bridge0: port 3(hsr0) entered blocking state [ 229.287568][ T9696] bridge0: port 3(hsr0) entered disabled state [ 229.338347][ T9696] hsr0: entered allmulticast mode [ 229.344560][ T9696] hsr_slave_1: entered allmulticast mode [ 229.352740][ T9696] hsr0: entered promiscuous mode [ 229.361951][ T9696] bridge0: port 3(hsr0) entered blocking state [ 229.369530][ T9696] bridge0: port 3(hsr0) entered forwarding state [ 229.900295][ T9723] Process accounting resumed [ 231.041973][ T9746] netlink: 178 bytes leftover after parsing attributes in process `syz.2.1250'. [ 231.630687][ T9758] kAFS: bad VL server IP address [ 231.673669][ T9761] kAFS: bad VL server IP address [ 232.359426][ T9782] FAULT_INJECTION: forcing a failure. [ 232.359426][ T9782] name failslab, interval 1, probability 0, space 0, times 0 [ 232.396713][ T9782] CPU: 0 UID: 0 PID: 9782 Comm: syz.1.1263 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0 [ 232.409578][ T9782] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 232.421770][ T9782] Call Trace: [ 232.425734][ T9782] [ 232.429275][ T9782] dump_stack_lvl+0x16c/0x1f0 [ 232.434924][ T9782] should_fail_ex+0x497/0x5b0 [ 232.440566][ T9782] ? fs_reclaim_acquire+0xae/0x150 [ 232.445657][ T9769] sctp: [Deprecated]: syz.3.1258 (pid 9769) Use of struct sctp_assoc_value in delayed_ack socket option. [ 232.445657][ T9769] Use struct sctp_sack_info instead [ 232.446704][ T9782] should_failslab+0xc2/0x120 [ 232.471825][ T9782] __kmalloc_noprof+0xce/0x4f0 [ 232.477575][ T9782] ? d_absolute_path+0x137/0x1b0 [ 232.483541][ T9782] ? tomoyo_encode2+0x100/0x3e0 [ 232.489410][ T9782] tomoyo_encode2+0x100/0x3e0 [ 232.495057][ T9782] tomoyo_realpath_from_path+0x1a7/0x710 [ 232.501959][ T9782] tomoyo_path_number_perm+0x248/0x5b0 [ 232.508542][ T9782] ? tomoyo_path_number_perm+0x235/0x5b0 [ 232.515547][ T9782] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 232.523052][ T9782] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 232.529852][ T9782] security_file_ioctl+0x9b/0x240 [ 232.535879][ T9782] __x64_sys_ioctl+0xb7/0x200 [ 232.541496][ T9782] do_syscall_64+0xcd/0x250 [ 232.546909][ T9782] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 232.554016][ T9782] RIP: 0033:0x7fb893f85d29 [ 232.559311][ T9782] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 232.582874][ T9782] RSP: 002b:00007fb894d9a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 232.592985][ T9782] RAX: ffffffffffffffda RBX: 00007fb894175fa0 RCX: 00007fb893f85d29 [ 232.602655][ T9782] RDX: 0000000000000001 RSI: 000000000000540a RDI: 0000000000000004 [ 232.612218][ T9782] RBP: 00007fb894d9a090 R08: 0000000000000000 R09: 0000000000000000 [ 232.621881][ T9782] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 232.631437][ T9782] R13: 0000000000000000 R14: 00007fb894175fa0 R15: 00007fff9cc91098 [ 232.641017][ T9782] [ 232.646685][ T9782] ERROR: Out of memory at tomoyo_realpath_from_path. [ 232.824460][ T9793] Process accounting resumed [ 232.840852][ T9795] kAFS: bad VL server IP address [ 233.023229][ T9800] FAULT_INJECTION: forcing a failure. [ 233.023229][ T9800] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 233.039112][ T9800] CPU: 1 UID: 0 PID: 9800 Comm: syz.2.1269 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0 [ 233.052006][ T9800] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 233.064097][ T9800] Call Trace: [ 233.068067][ T9800] [ 233.071607][ T9800] dump_stack_lvl+0x16c/0x1f0 [ 233.077258][ T9800] should_fail_ex+0x497/0x5b0 [ 233.082910][ T9800] _copy_to_user+0x32/0xd0 [ 233.088248][ T9800] simple_read_from_buffer+0xd0/0x160 [ 233.094741][ T9800] proc_fail_nth_read+0x198/0x270 [ 233.100815][ T9800] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 233.107522][ T9800] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 233.114217][ T9800] vfs_read+0x1df/0xbe0 [ 233.119241][ T9800] ? __fget_files+0x1fc/0x3a0 [ 233.124888][ T9800] ? __pfx___mutex_lock+0x10/0x10 [ 233.130948][ T9800] ? __pfx_vfs_read+0x10/0x10 [ 233.136590][ T9800] ? __fget_files+0x206/0x3a0 [ 233.142237][ T9800] ksys_read+0x12b/0x250 [ 233.147349][ T9800] ? __pfx_ksys_read+0x10/0x10 [ 233.153098][ T9800] do_syscall_64+0xcd/0x250 [ 233.158531][ T9800] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 233.165636][ T9800] RIP: 0033:0x7fb08e18473c [ 233.170953][ T9800] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 233.194606][ T9800] RSP: 002b:00007fb08ef20030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 233.204728][ T9800] RAX: ffffffffffffffda RBX: 00007fb08e375fa0 RCX: 00007fb08e18473c [ 233.214316][ T9800] RDX: 000000000000000f RSI: 00007fb08ef200a0 RDI: 0000000000000004 [ 233.223914][ T9800] RBP: 00007fb08ef20090 R08: 0000000000000000 R09: 0000000000000000 [ 233.233502][ T9800] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 233.243096][ T9800] R13: 0000000000000000 R14: 00007fb08e375fa0 R15: 00007ffebdf57f18 [ 233.252714][ T9800] [ 233.561655][ T9811] kAFS: bad VL server IP address [ 233.570496][ T9812] kAFS: bad VL server IP address [ 233.802800][ T9823] kAFS: bad VL server IP address [ 234.141017][ T9820] sctp: [Deprecated]: syz.0.1277 (pid 9820) Use of struct sctp_assoc_value in delayed_ack socket option. [ 234.141017][ T9820] Use struct sctp_sack_info instead [ 234.992558][ T9842] svc: failed to register nfsdv3 RPC service (errno 111). [ 235.005455][ T9842] svc: failed to register nfsaclv3 RPC service (errno 111). [ 235.390746][ T9850] kAFS: bad VL server IP address [ 235.522507][ T9852] kAFS: bad VL server IP address [ 235.627407][ T9855] HfR: entered promiscuous mode [ 235.647140][ T9855] openvswitch: HfR: Dropping previously announced user features [ 235.668981][ T9855] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1290'. [ 236.090816][ T9874] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 236.091659][ T9875] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 236.512042][ T9889] kAFS: bad VL server IP address [ 236.746145][ T9892] kAFS: bad VL server IP address [ 236.943701][ T9894] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1302'. [ 237.130335][ T9902] sock: sock_set_timeout: `syz.2.1304' (pid 9902) tries to set negative timeout [ 237.709151][ T9918] kAFS: bad VL server IP address [ 237.974526][ T9925] kAFS: bad VL server IP address [ 238.069377][ T9927] svc: failed to register nfsdv3 RPC service (errno 111). [ 238.109970][ T9927] svc: failed to register nfsaclv3 RPC service (errno 111). [ 239.386826][ T9954] kAFS: bad VL server IP address [ 239.412999][ T9956] openvswitch: netlink: VXLAN extension 0 has unexpected len 1 expected 0 [ 240.347645][ T9985] kAFS: bad VL server IP address [ 242.728981][T10040] kAFS: bad VL server IP address [ 244.123933][T10061] kAFS: bad VL server IP address [ 244.341638][T10065] openvswitch: netlink: VXLAN extension 0 has unexpected len 1 expected 0 [ 244.572493][T10070] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1356'. [ 244.611754][T10070] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 244.884729][T10070] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 245.872922][T10090] kAFS: bad VL server IP address [ 246.367761][T10101] vhci_hcd: not connected 4 [ 247.713827][T10136] kAFS: bad VL server IP address [ 248.788096][T10154] vhci_hcd: not connected 4 [ 249.346820][T10167] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1391'.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    [ 361.281175][T12561] nvme_fcloop: unknown parameter or missing value '/' syzkaller syzkaller login: [ 361.710191][T12577] netlink: 'syz.1.2074': attribute type 1 has an invalid length. [ 363.189866][T12616] netlink: 'syz.2.2088': attribute type 10 has an invalid length. [ 363.224609][T12616] netlink: 230 bytes leftover after parsing attributes in process `syz.2.2088'. [ 363.311274][T12616] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check. [ 363.498822][T12625] Process accounting resumed [ 363.807977][T12635] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2095'. [ 363.872089][T12635] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 363.879068][T12635] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 363.887069][T12635] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 363.901156][T12635] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 365.352732][T12668] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2107'. [ 365.575706][T12668] team0: Port device team_slave_0 removed [ 365.931202][ T53] Bluetooth: hci0: command 0x0406 tx timeout [ 365.937978][ T53] Bluetooth: hci2: command 0x0406 tx timeout [ 365.946876][ T5840] Bluetooth: hci1: command 0x0406 tx timeout [ 365.947479][ T5839] Bluetooth: hci3: command 0x0406 tx timeout [ 366.762948][T12710] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2116'. [ 366.797798][T12710] vcan0: entered promiscuous mode [ 366.828008][T12721] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2120'. [ 366.847505][T12719] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2118'. [ 366.864671][T12721] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2120'. [ 366.945753][T12719] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 366.975008][T12719] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 366.984804][T12719] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 367.001779][T12719] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 367.248580][T12725] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2121'. [ 367.771063][T12725] team0: Port device team_slave_0 removed [ 368.945194][ T5832] Bluetooth: hci3: command 0x0406 tx timeout [ 368.951910][ T5839] Bluetooth: hci1: command 0x0406 tx timeout [ 369.011228][T12758] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2132'. [ 369.024280][ T5839] Bluetooth: hci0: command 0x0406 tx timeout [ 369.031516][ T5839] Bluetooth: hci2: command 0x0406 tx timeout [ 370.425966][T12773] type: 256 invalid [ 372.909015][T12824] size and base must be multiples of 4 kiB [ 372.944798][T12824] CPU: 0 UID: 0 PID: 12824 Comm: syz.3.2149 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0 [ 372.956806][T12824] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 372.967905][T12824] Call Trace: [ 372.971537][T12824] [ 372.974791][T12824] dump_stack_lvl+0x16c/0x1f0 [ 372.979987][T12824] mtrr_add+0xdf/0x110 [ 372.984515][T12824] mtrr_ioctl+0x7cd/0xcd0 [ 372.989339][T12824] ? __pfx_mtrr_ioctl+0x10/0x10 [ 372.994728][T12824] ? __pfx_lock_release+0x10/0x10 [ 373.000306][T12824] ? __fget_files+0x206/0x3a0 [ 373.005498][T12824] ? __pfx_mtrr_ioctl+0x10/0x10 [ 373.010894][T12824] proc_reg_unlocked_ioctl+0x226/0x320 [ 373.016944][T12824] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 373.023585][T12824] __x64_sys_ioctl+0x190/0x200 [ 373.028867][T12824] do_syscall_64+0xcd/0x250 [ 373.033870][T12824] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 373.040398][T12824] RIP: 0033:0x7f4339385d29 [ 373.045305][T12824] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 373.066922][T12824] RSP: 002b:00007f433a120038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 373.076225][T12824] RAX: ffffffffffffffda RBX: 00007f4339575fa0 RCX: 00007f4339385d29 [ 373.085039][T12824] RDX: 0000000000000002 RSI: 00000000400c4d01 RDI: 0000000000000003 [ 373.093848][T12824] RBP: 00007f4339401aa8 R08: 0000000000000000 R09: 0000000000000000 [ 373.102652][T12824] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 373.111459][T12824] R13: 0000000000000000 R14: 00007f4339575fa0 R15: 00007ffef453afe8 [ 373.120291][T12824] [ 373.544536][T12838] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2152'. [ 373.759959][T12838] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 373.769731][T12838] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 373.809518][T12838] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 373.839693][T12838] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 375.443013][T12888] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2167'. [ 375.732088][T12897] FAULT_INJECTION: forcing a failure. [ 375.732088][T12897] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 375.768627][T12897] CPU: 0 UID: 0 PID: 12897 Comm: syz.3.2170 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0 [ 375.780534][T12897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 375.791626][T12897] Call Trace: [ 375.795257][T12897] [ 375.798506][T12897] dump_stack_lvl+0x16c/0x1f0 [ 375.803690][T12897] should_fail_ex+0x497/0x5b0 [ 375.808875][T12897] _copy_from_iter+0x29b/0x1400 [ 375.814256][T12897] ? __pfx_lock_release+0x10/0x10 [ 375.819813][T12897] ? trace_lock_acquire+0x14e/0x1f0 [ 375.825558][T12897] ? __pfx__copy_from_iter+0x10/0x10 [ 375.831418][T12897] ? aa_file_perm+0x4d5/0xfe0 [ 375.836603][T12897] tap_get_user+0xe38/0x1bc0 [ 375.841696][T12897] ? __lock_acquire+0xcc5/0x3c40 [ 375.847177][T12897] ? __pfx_tap_get_user+0x10/0x10 [ 375.852760][T12897] ? apparmor_file_permission+0x251/0x400 [ 375.859097][T12897] ? bpf_lsm_file_permission+0x9/0x10 [ 375.865044][T12897] ? security_file_permission+0x71/0x210 [ 375.871279][T12897] vfs_write+0x5ae/0x1150 [ 375.876082][T12897] ? __pfx_tap_write_iter+0x10/0x10 [ 375.881845][T12897] ? __pfx_vfs_write+0x10/0x10 [ 375.887124][T12897] ? __fget_files+0x40/0x3a0 [ 375.892219][T12897] ksys_write+0x12b/0x250 [ 375.897016][T12897] ? __pfx_ksys_write+0x10/0x10 [ 375.902394][T12897] do_syscall_64+0xcd/0x250 [ 375.907382][T12897] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 375.908558][ T5839] Bluetooth: hci0: command 0x0406 tx timeout [ 375.913887][T12897] RIP: 0033:0x7f4339385d29 [ 375.913911][T12897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 375.913934][T12897] RSP: 002b:00007f433a120038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 375.913958][T12897] RAX: ffffffffffffffda RBX: 00007f4339575fa0 RCX: 00007f4339385d29 [ 375.913973][T12897] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003 [ 375.913988][T12897] RBP: 00007f433a120090 R08: 0000000000000000 R09: 0000000000000000 [ 375.914003][T12897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 375.914018][T12897] R13: 0000000000000000 R14: 00007f4339575fa0 R15: 00007ffef453afe8 [ 375.914048][T12897] [ 375.932561][ T5832] Bluetooth: hci2: command 0x0406 tx timeout [ 375.951075][ T5840] Bluetooth: hci1: command 0x0406 tx timeout [ 375.957977][ T5832] Bluetooth: hci3: command 0x0406 tx timeout [ 376.638368][T12916] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2177'. [ 377.348362][T12880] syz.2.2164 (12880) used greatest stack depth: 20800 bytes left [ 377.401293][T12931] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2182'. [ 377.483039][T12931] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 377.489984][T12931] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 377.503494][T12931] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 377.528217][T12931] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 377.590556][T12933] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2184'. [ 377.894703][T12943] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2187'. [ 377.978409][T12943] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 377.985844][T12943] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 378.007760][T12943] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 378.040020][T12943] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 378.066314][T12943] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 378.329316][T12921] syz.0.2179 (12921) used greatest stack depth: 20416 bytes left [ 378.341902][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.352027][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 378.905623][T12950] netlink: 'syz.1.2189': attribute type 1 has an invalid length. [ 380.007874][ T5832] Bluetooth: hci2: command 0x0406 tx timeout [ 380.010432][ T5839] Bluetooth: hci1: command 0x0406 tx timeout [ 380.015680][ T5832] Bluetooth: hci3: command 0x0406 tx timeout [ 380.085873][T12989] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2199'. [ 380.086786][ T5832] Bluetooth: hci0: command 0x0406 tx timeout [ 380.296252][T12993] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 380.305252][T12993] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 380.320360][T12993] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 380.333303][T12993] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 380.346370][T12993] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 382.299221][T13040] usb usb15: usbfs: interface 0 claimed by hub while 'syz.0.2216' sets config #268435456 [ 382.316338][ T5832] Bluetooth: hci2: command 0x0406 tx timeout [ 382.316361][ T5839] Bluetooth: hci1: command 0x0406 tx timeout [ 382.322966][ T5832] Bluetooth: hci3: command 0x0406 tx timeout [ 382.356035][T13041] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2215'. [ 382.394817][ T5832] Bluetooth: hci0: command 0x0406 tx timeout [ 382.426616][T13041] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2215'. [ 382.738790][T13052] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2221'. [ 382.842930][T13052] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 382.850919][T13052] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 382.888836][T13052] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 382.917544][T13052] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 382.934115][T13052] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 384.187921][T13092] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 384.194818][T13092] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 384.202541][T13092] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 384.210782][T13092] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 384.218118][T13092] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 385.885746][T13129] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2250'. [ 386.231042][ T5832] Bluetooth: hci0: command 0x0406 tx timeout [ 386.237993][ T5832] Bluetooth: hci2: command 0x0406 tx timeout [ 386.244658][ T53] Bluetooth: hci1: command 0x0406 tx timeout [ 386.244709][ T53] Bluetooth: hci3: command 0x0406 tx timeout [ 387.558559][T13175] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 387.568079][T13175] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 387.597865][T13175] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 387.617941][T13175] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 387.633439][T13175] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 388.308183][T13205] delete_channel: no stack [ 388.333490][T13209] openvswitch: HfR: Dropping previously announced user features [ 388.356504][T13209] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2278'. [ 388.369986][T13209] HfR: left promiscuous mode [ 389.236376][ T5832] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 389.251809][ T5832] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 389.262259][ T5832] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 389.272846][ T5832] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 389.283127][ T5832] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 389.291287][ T5832] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 389.558896][ T53] Bluetooth: hci3: command 0x0406 tx timeout [ 389.596948][T13236] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2287'. [ 389.650344][ T53] Bluetooth: hci0: command 0x0406 tx timeout [ 389.650370][ T5832] Bluetooth: hci2: command 0x0406 tx timeout [ 389.657048][ T5840] Bluetooth: hci1: command 0x0406 tx timeout [ 389.823524][T13227] chnl_net:caif_netlink_parms(): no params data found [ 390.045198][T13246] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2288'. [ 390.533081][T13244] netlink: 122 bytes leftover after parsing attributes in process `syz.0.2288'. [ 390.545458][T13227] bridge0: port 1(bridge_slave_0) entered blocking state [ 390.565975][T13227] bridge0: port 1(bridge_slave_0) entered disabled state [ 390.583961][T13227] bridge_slave_0: entered allmulticast mode [ 390.601258][T13261] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2291'. [ 390.601323][T13227] bridge_slave_0: entered promiscuous mode [ 390.635482][T13227] bridge0: port 2(bridge_slave_1) entered blocking state [ 390.642248][T13262] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2291'. [ 390.651360][T13227] bridge0: port 2(bridge_slave_1) entered disabled state [ 390.671925][T13227] bridge_slave_1: entered allmulticast mode [ 390.700078][T13227] bridge_slave_1: entered promiscuous mode [ 390.808741][T13227] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 390.833080][T13227] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 390.888104][T13227] team0: Port device team_slave_0 added [ 390.906515][T13227] team0: Port device team_slave_1 added [ 390.993173][T13227] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 391.003011][T13227] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 391.031541][ C1] vkms_vblank_simulate: vblank timer overrun [ 391.049798][T13227] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 391.068017][T13227] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 391.082540][T13227] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 391.111104][ C1] vkms_vblank_simulate: vblank timer overrun [ 391.147589][T13227] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 391.261572][T13271] lo: entered allmulticast mode [ 391.294797][T13227] hsr_slave_0: entered promiscuous mode [ 391.312645][T13227] hsr_slave_1: entered promiscuous mode [ 391.330328][T13227] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 391.343915][T13227] Cannot create hsr debugfs directory [ 391.389158][ T53] Bluetooth: hci4: command tx timeout [ 391.593197][T13277] can: request_module (can-proto-0) failed. [ 391.716951][ T53] Bluetooth: hci0: command 0x0406 tx timeout [ 392.061409][T13227] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 392.242154][T12702] syz.2.2112 (12702) used greatest stack depth: 19072 bytes left [ 392.289431][T13267] lo: left allmulticast mode [ 392.359955][T13227] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 392.475291][T12683] syz.2.2110 (12683) used greatest stack depth: 18576 bytes left [ 392.538705][T13227] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 392.674699][T13227] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 392.706903][T13299] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2303'. [ 392.718557][T13289] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 392.728862][T13289] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 392.761614][T13289] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 392.777363][T13289] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 392.803718][T13289] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 392.823006][T13289] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 392.905560][T13289] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 392.918366][T13227] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 392.952977][T13299] netlink: 122 bytes leftover after parsing attributes in process `syz.2.2303'. [ 392.954577][T13227] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 392.996450][T13227] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 393.040934][T13227] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 393.211923][T13227] 8021q: adding VLAN 0 to HW filter on device bond0 [ 393.263490][T13227] 8021q: adding VLAN 0 to HW filter on device team0 [ 393.307534][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 393.315420][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 393.369797][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 393.377711][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 393.919797][T13227] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 394.047304][T13227] veth0_vlan: entered promiscuous mode [ 394.097720][T13227] veth1_vlan: entered promiscuous mode [ 394.173186][T13227] veth0_macvtap: entered promiscuous mode [ 394.238095][T13227] veth1_macvtap: entered promiscuous mode [ 394.321059][T13227] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 394.342666][ T53] Bluetooth: hci1: command 0x0406 tx timeout [ 394.394828][T13227] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 394.442099][T13227] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 394.492957][T13227] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 394.503813][T13227] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 394.513520][T13227] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 394.523184][T13227] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 394.532824][T13227] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 394.705866][ T1092] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 394.734357][ T53] Bluetooth: hci2: command 0x0406 tx timeout [ 394.741605][ T1092] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 394.810395][ T53] Bluetooth: hci4: command 0x040f tx timeout [ 394.818534][ T5840] Bluetooth: hci0: command 0x0406 tx timeout [ 394.883224][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 394.944751][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 396.405188][ T5840] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 396.418860][ T5840] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 396.428057][ T5840] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 396.437396][ T5840] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 396.446831][ T5840] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 396.455081][ T5840] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 396.907065][ T5840] Bluetooth: hci4: command 0x040f tx timeout [ 396.907424][ T53] Bluetooth: hci0: command 0x0406 tx timeout [ 397.053903][T13344] chnl_net:caif_netlink_parms(): no params data found [ 397.432703][T13344] bridge0: port 1(bridge_slave_0) entered blocking state [ 397.456627][T13344] bridge0: port 1(bridge_slave_0) entered disabled state [ 397.465200][T13344] bridge_slave_0: entered allmulticast mode [ 397.473431][T13344] bridge_slave_0: entered promiscuous mode [ 397.483463][T13344] bridge0: port 2(bridge_slave_1) entered blocking state [ 397.491915][T13344] bridge0: port 2(bridge_slave_1) entered disabled state [ 397.501356][T13344] bridge_slave_1: entered allmulticast mode [ 397.514348][T13344] bridge_slave_1: entered promiscuous mode [ 397.582695][T13344] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 397.609765][T13344] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 397.698176][T13344] team0: Port device team_slave_0 added [ 397.727760][T13344] team0: Port device team_slave_1 added [ 398.001559][T13344] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 398.033386][T13344] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 398.061465][T13364] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2319'. [ 398.127783][T13344] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 398.195004][T13344] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 398.222468][T13344] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 398.312007][T13344] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 398.460166][T13344] hsr_slave_0: entered promiscuous mode [ 398.495178][T13344] hsr_slave_1: entered promiscuous mode [ 398.561309][ T53] Bluetooth: hci3: command tx timeout [ 398.577867][T13344] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 398.586876][T13344] Cannot create hsr debugfs directory [ 398.943929][T13344] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 398.955780][ T53] Bluetooth: hci4: command 0x040f tx timeout [ 399.030704][T13371] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 399.037444][T13371] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 399.048685][T13371] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 399.070941][T13371] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 399.077651][T13371] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 399.091490][T13344] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 399.138438][T13371] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 399.178427][T13371] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 399.212946][T13344] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 399.352794][T13344] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 399.366772][T13380] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2325'. [ 399.479817][T13380] netlink: 122 bytes leftover after parsing attributes in process `syz.1.2325'. [ 399.613279][T13388] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2327'. [ 399.727921][T13344] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 399.761210][T13344] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 399.787862][T13344] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 399.819115][T13344] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 399.851040][T13386] netlink: 122 bytes leftover after parsing attributes in process `syz.3.2327'. [ 399.995794][T13344] 8021q: adding VLAN 0 to HW filter on device bond0 [ 400.035905][T13344] 8021q: adding VLAN 0 to HW filter on device team0 [ 400.064921][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 400.072816][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 400.115507][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 400.123472][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 400.464601][ T53] Bluetooth: hci2: command 0x0406 tx timeout [ 400.502299][T13344] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 400.667462][T13344] veth0_vlan: entered promiscuous mode [ 400.708028][T13344] veth1_vlan: entered promiscuous mode [ 400.760026][T13344] veth0_macvtap: entered promiscuous mode [ 400.796661][T13344] veth1_macvtap: entered promiscuous mode [ 400.854043][T13344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 400.886479][T13344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 400.929455][T13344] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 400.964028][T13344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 400.987261][T13344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 401.018445][T13344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 401.047659][T13344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 401.078746][T13344] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 401.089683][T13344] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 401.099830][T13344] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 401.107519][ T53] Bluetooth: hci3: command 0x040f tx timeout [ 401.109821][T13344] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 401.116025][ T53] Bluetooth: hci4: command 0x040f tx timeout [ 401.133911][ T53] Bluetooth: hci0: command 0x0406 tx timeout [ 401.137210][T13344] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 401.686248][T13415] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2335'. [ 401.833592][T13412] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 401.859101][T13412] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 401.873609][T13412] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 401.898418][T13412] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 401.927959][T13412] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 402.362314][T13423] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2337'. [ 402.520607][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 402.529263][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 402.557519][T13423] netlink: 122 bytes leftover after parsing attributes in process `syz.1.2337'. [ 402.590543][ T1010] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 402.599268][ T1010] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 403.485456][ T5840] Bluetooth: hci2: command 0x0406 tx timeout [ 403.892939][ T5840] Bluetooth: hci0: command 0x0406 tx timeout [ 403.962723][ T5840] Bluetooth: hci3: command 0x040f tx timeout [ 403.962732][ T53] Bluetooth: hci4: command 0x040f tx timeout [ 404.564776][T13460] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 404.578484][T13460] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 404.589792][T13460] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 404.597249][T13460] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 404.606313][T13460] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 405.245457][T13473] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2347'. [ 405.406055][T13470] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2350'. [ 405.753677][T13471] netlink: 122 bytes leftover after parsing attributes in process `syz.1.2347'. [ 406.588983][ T5840] Bluetooth: hci4: command 0x040f tx timeout [ 406.589943][ T53] Bluetooth: hci0: command 0x0406 tx timeout [ 406.597283][ T5832] Bluetooth: hci2: command 0x0406 tx timeout [ 406.668779][ T5840] Bluetooth: hci3: command 0x040f tx timeout [ 407.131627][T13497] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 407.169550][T13497] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 407.191185][T13497] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 407.213859][T13497] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 407.235072][T13497] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 408.095297][T13509] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2360'. [ 408.878187][T13530] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 408.899298][T13530] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 408.917061][T13530] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 408.938361][T13530] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 408.969133][T13530] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 409.347936][T13545] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2374'. [ 409.466444][T13545] netlink: 122 bytes leftover after parsing attributes in process `syz.3.2374'. [ 409.498973][T13549] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2375'. [ 409.757838][T13549] netlink: 122 bytes leftover after parsing attributes in process `syz.2.2375'. [ 410.886765][ T5840] Bluetooth: hci2: command 0x0406 tx timeout [ 410.966467][ T5840] Bluetooth: hci3: command 0x040f tx timeout [ 410.975555][ T5832] Bluetooth: hci4: command 0x040f tx timeout [ 410.975570][ T53] Bluetooth: hci0: command 0x0406 tx timeout [ 411.016692][T13574] openvswitch: netlink: VXLAN extension 13870 out of range max 1 [ 412.438798][T13585] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2387'. [ 412.580038][T13586] netlink: 122 bytes leftover after parsing attributes in process `syz.2.2387'. [ 413.045853][ T5840] Bluetooth: hci3: command 0x040f tx timeout [ 413.045864][ T5832] Bluetooth: hci0: command 0x0406 tx timeout [ 415.104605][ T5840] Bluetooth: hci0: command 0x0406 tx timeout [ 415.144069][T13622] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2397'. [ 415.439035][T13620] netlink: 122 bytes leftover after parsing attributes in process `syz.3.2397'. [ 415.642300][T13629] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 415.663096][T13629] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 415.691609][T13629] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 415.701731][T13629] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 415.711788][T13629] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 415.952536][T13635] netlink: 334 bytes leftover after parsing attributes in process `syz.0.2402'. [ 416.966239][T13647] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2401'. [ 417.156279][T13665] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 417.183972][T13665] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 417.227890][T13665] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 417.250577][T13665] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 417.260715][T13665] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 418.925030][T13701] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 418.931970][T13701] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 418.964757][T13701] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 418.971483][T13701] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 419.014618][T13701] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 420.501637][T13734] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2430'. [ 420.806770][T13739] netlink: 122 bytes leftover after parsing attributes in process `syz.2.2430'. [ 420.994744][ T5840] Bluetooth: hci4: command 0x040f tx timeout [ 420.994770][ T5832] Bluetooth: hci0: command 0x0406 tx timeout [ 421.001679][ T5840] Bluetooth: hci2: command 0x0406 tx timeout [ 421.073771][ T5840] Bluetooth: hci3: command 0x040f tx timeout [ 422.386952][T13771] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2440'. [ 423.053343][T13783] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 423.060047][T13783] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 423.090693][T13783] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 423.160793][T13783] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 423.222847][T13783] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 423.794789][T13797] misc userio: The device must be registered before sending interrupts [ 424.851409][T13821] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 424.928337][T13821] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 425.023085][T13821] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 425.029860][T13821] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 425.092864][T13821] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 425.779914][T13835] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 425.786982][T13835] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 425.862359][T13835] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 425.923901][T13835] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 425.981818][T13835] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 426.286932][ T53] Bluetooth: hci4: Malformed Event: 0x02 [ 426.723495][T13850] ptrace attach of "./syz-executor exec"[13344] was attempted by "./syz-executor exec"[13850] [ 427.321161][T13857] netlink: 'syz.3.2469': attribute type 1 has an invalid length. [ 427.664854][T13862] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 427.838419][ T53] Bluetooth: hci0: command 0x0406 tx timeout [ 427.845094][ T53] Bluetooth: hci2: command 0x0406 tx timeout [ 427.918111][ T53] Bluetooth: hci4: command 0x040f tx timeout [ 427.998205][ T5840] Bluetooth: hci3: command 0x040f tx timeout [ 429.467991][T13895] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2480'. [ 429.663460][T13897] netlink: 122 bytes leftover after parsing attributes in process `syz.1.2480'. [ 429.909762][ T53] Bluetooth: hci0: command 0x0406 tx timeout [ 430.012193][ T5840] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 430.032690][ T5840] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 430.044155][ T5840] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 430.056916][ T5840] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 430.067298][ T5840] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 430.075486][ T5840] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 430.995614][T13901] chnl_net:caif_netlink_parms(): no params data found [ 431.101903][T13911] syz.1.2484 (13911): drop_caches: 0 [ 431.589215][T13901] bridge0: port 1(bridge_slave_0) entered blocking state [ 431.597303][T13901] bridge0: port 1(bridge_slave_0) entered disabled state [ 431.630508][T13918] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 431.637515][T13901] bridge_slave_0: entered allmulticast mode [ 431.649810][T13901] bridge_slave_0: entered promiscuous mode [ 431.680430][T13901] bridge0: port 2(bridge_slave_1) entered blocking state [ 431.703708][T13918] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 431.710821][T13901] bridge0: port 2(bridge_slave_1) entered disabled state [ 431.750019][T13901] bridge_slave_1: entered allmulticast mode [ 431.758405][T13918] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 431.770379][T13901] bridge_slave_1: entered promiscuous mode [ 431.798358][T13918] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 431.827684][T13918] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 431.834395][T13918] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 431.841086][T13918] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 432.236373][T13918] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 432.263273][T13901] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 432.306312][T13901] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 432.846644][T13901] team0: Port device team_slave_0 added [ 432.891758][T13901] team0: Port device team_slave_1 added [ 433.312865][T13901] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 433.355067][T13901] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 433.499398][ T5840] Bluetooth: hci2: command 0x0406 tx timeout [ 433.507054][T13901] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 433.807379][ T5840] Bluetooth: hci4: command 0x040f tx timeout [ 433.816069][T13927] kexec: Could not allocate control_code_buffer [ 433.873959][T13901] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 433.881927][T13901] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 433.926706][ T5840] Bluetooth: hci1: command 0x041b tx timeout [ 433.934721][ T5840] Bluetooth: hci3: command 0x040f tx timeout [ 433.967023][T13901] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 434.111856][T13938] can: request_module (can-proto-0) failed. [ 434.308077][T13901] hsr_slave_0: entered promiscuous mode [ 434.376237][T13901] hsr_slave_1: entered promiscuous mode [ 434.444423][T13901] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 434.454286][T13901] Cannot create hsr debugfs directory [ 434.492976][T13947] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2492'. [ 434.709219][T13946] netlink: 122 bytes leftover after parsing attributes in process `syz.1.2492'. [ 435.084178][ T5840] Bluetooth: hci2: ISO packet for unknown connection handle 0 [ 435.211702][T13901] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 435.451137][T13901] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 435.689429][T13901] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 435.858615][T13901] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 435.956201][ T5840] Bluetooth: hci1: command 0x041b tx timeout [ 436.096190][T13956] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 436.135704][T13956] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 436.183116][T13956] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 436.234884][T13956] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 436.451564][T13901] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 436.464876][T13963] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 436.511134][T13901] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 436.590217][T13901] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 436.605355][T13901] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 436.669425][T13967] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2498'. [ 437.469673][ T5840] Bluetooth: hci2: command 0x0406 tx timeout [ 438.195566][ T5840] Bluetooth: hci3: command 0x040f tx timeout [ 438.195576][ T53] Bluetooth: hci4: command 0x040f tx timeout [ 438.274678][ T5840] Bluetooth: hci1: command 0x041b tx timeout [ 438.413879][T13976] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 438.421247][T13976] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 438.437997][T13976] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 438.460384][T13976] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 438.567642][T13901] 8021q: adding VLAN 0 to HW filter on device bond0 [ 438.587578][T13901] 8021q: adding VLAN 0 to HW filter on device team0 [ 438.620418][T13901] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 438.632187][T13901] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 438.675039][T13979] bridge0: port 1(bridge_slave_0) entered blocking state [ 438.682939][T13979] bridge0: port 1(bridge_slave_0) entered forwarding state [ 438.823238][T13979] bridge0: port 2(bridge_slave_1) entered blocking state [ 438.831201][T13979] bridge0: port 2(bridge_slave_1) entered forwarding state [ 439.131140][T14003] netlink: 319 bytes leftover after parsing attributes in process `syz.0.2508'. [ 439.463125][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 439.473576][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 439.510934][T13901] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 439.544128][T13901] veth0_vlan: entered promiscuous mode [ 439.566060][T13901] veth1_vlan: entered promiscuous mode [ 439.597617][T13901] veth0_macvtap: entered promiscuous mode [ 439.607936][T13901] veth1_macvtap: entered promiscuous mode [ 439.624547][T13901] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 439.636230][T13901] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 439.647290][T13901] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 439.658978][T13901] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 439.671029][T13901] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 439.683369][T13901] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 439.694986][T13901] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 439.706138][T13901] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 439.718005][T13901] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 439.728999][T13901] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 439.740676][T13901] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 439.752813][T13901] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 439.807166][T13901] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 439.816863][T13901] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 439.826519][T13901] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 439.836203][T13901] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 440.100580][T13996] kexec: Could not allocate control_code_buffer [ 440.287779][T13979] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 440.315444][T13979] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 440.413042][ T53] Bluetooth: hci2: command 0x0406 tx timeout [ 440.420420][ T5840] Bluetooth: hci4: command 0x040f tx timeout [ 440.421374][ T1010] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 440.479533][ T1010] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 440.493564][ T5840] Bluetooth: hci3: command 0x040f tx timeout [ 440.500219][ T5840] Bluetooth: hci1: command 0x041b tx timeout [ 441.492205][T14035] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2518'. [ 441.521049][T14022] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 441.537352][T14022] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 441.544234][T14022] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 441.563324][T14022] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 442.317297][ T53] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 442.346538][ T53] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 442.356958][ T53] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 442.365942][ T53] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 442.375167][ T53] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 442.383902][ T53] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 442.880173][ T5840] Bluetooth: hci2: command 0x0406 tx timeout [ 443.021442][T14046] chnl_net:caif_netlink_parms(): no params data found [ 443.262562][T14063] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2525'. [ 443.611111][ T5840] Bluetooth: hci1: command 0x041b tx timeout [ 443.611141][ T53] Bluetooth: hci3: command 0x040f tx timeout [ 443.624556][ T53] Bluetooth: hci4: command 0x040f tx timeout [ 443.923859][T14046] bridge0: port 1(bridge_slave_0) entered blocking state [ 443.932266][T14046] bridge0: port 1(bridge_slave_0) entered disabled state [ 443.958295][T14046] bridge_slave_0: entered allmulticast mode [ 443.975838][T14046] bridge_slave_0: entered promiscuous mode [ 443.999375][T14046] bridge0: port 2(bridge_slave_1) entered blocking state [ 444.014383][T14046] bridge0: port 2(bridge_slave_1) entered disabled state [ 444.042915][T14046] bridge_slave_1: entered allmulticast mode [ 444.050945][T14046] bridge_slave_1: entered promiscuous mode [ 444.177135][T14046] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 444.209585][T14046] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 444.390172][T14046] team0: Port device team_slave_0 added [ 444.404644][T14046] team0: Port device team_slave_1 added [ 444.472813][ T53] Bluetooth: hci0: command tx timeout [ 444.527958][T14075] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 444.535027][T14075] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 444.541845][T14075] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 444.548615][T14075] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 444.556143][T14075] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 444.560218][T14046] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 444.609977][T14046] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 444.662256][T14075] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 444.696949][T14046] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 444.800914][T14046] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 444.808619][T14046] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 444.859441][T14046] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 444.926848][T14090] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2532'. [ 444.961958][T14091] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2531'. [ 445.050586][T14046] hsr_slave_0: entered promiscuous mode [ 445.066775][T14046] hsr_slave_1: entered promiscuous mode [ 445.090626][T14046] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 445.120017][T14046] Cannot create hsr debugfs directory [ 446.071841][ T53] Bluetooth: hci4: command 0x040f tx timeout [ 446.541293][ T53] Bluetooth: hci0: command 0x040f tx timeout [ 446.547989][ T5840] Bluetooth: hci1: command 0x041b tx timeout [ 446.554824][ T5832] Bluetooth: hci3: command 0x040f tx timeout [ 447.572567][T14095] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 447.666001][T14095] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 447.672714][T14095] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 447.806021][T14095] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 448.549736][T14046] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 449.143667][T14046] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 449.408214][T14046] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 449.584691][T14046] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 449.647621][ T53] Bluetooth: hci4: command 0x040f tx timeout [ 449.724621][ T5840] Bluetooth: hci1: command 0x041b tx timeout [ 449.731408][ T5840] Bluetooth: hci3: command 0x040f tx timeout [ 449.804322][ T5840] Bluetooth: hci0: command 0x040f tx timeout [ 449.985107][T14046] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 450.459084][T14046] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 450.476868][T14046] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 450.538915][T14046] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 450.555535][T14106] block mtdblock0: the capability attribute has been deprecated. [ 450.745314][T14046] 8021q: adding VLAN 0 to HW filter on device bond0 [ 450.793461][T14046] 8021q: adding VLAN 0 to HW filter on device team0 [ 450.833597][ T1010] bridge0: port 1(bridge_slave_0) entered blocking state [ 450.841513][ T1010] bridge0: port 1(bridge_slave_0) entered forwarding state [ 450.861057][ T1010] bridge0: port 2(bridge_slave_1) entered blocking state [ 450.868927][ T1010] bridge0: port 2(bridge_slave_1) entered forwarding state [ 451.216136][T14046] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 451.358748][T14046] veth0_vlan: entered promiscuous mode [ 451.376799][T14046] veth1_vlan: entered promiscuous mode [ 451.399049][T14046] veth0_macvtap: entered promiscuous mode [ 451.420747][T14046] veth1_macvtap: entered promiscuous mode [ 451.439847][T14046] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 451.451702][T14046] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 451.462954][T14046] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 451.474760][T14046] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 451.485958][T14046] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 451.497726][T14046] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 451.509892][T14046] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 451.552281][T14046] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 451.572916][T14046] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 451.592306][T14046] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 451.631419][T14046] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 451.660854][T14046] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 451.690557][T14046] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 451.724972][T14046] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 451.754278][T14046] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 451.783598][T14046] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 451.819344][T14046] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 451.843708][T14046] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 451.873533][T14046] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 451.873770][ T5840] Bluetooth: hci0: command 0x040f tx timeout [ 451.883131][T14046] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 452.070173][ T5840] Bluetooth: hci1: ISO packet for unknown connection handle 0 [ 452.103238][ T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 452.113027][ T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 452.214022][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 452.223814][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 452.800204][T14151] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 452.808576][T14151] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 452.839880][T14151] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 452.848749][T14151] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 452.950510][T14154] Process accounting resumed [ 454.016477][T14182] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 454.056069][T14182] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 454.087495][T14182] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 454.119298][T14182] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 454.336702][T14190] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2556'. [ 455.605840][ T5840] Bluetooth: hci4: ISO packet for unknown connection handle 0 [ 455.684527][T14231] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2567'. [ 455.697062][T14231] ›: renamed from veth0_vlan (while UP) [ 455.814707][T14227] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 455.863987][T14227] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 455.909542][T14227] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 455.943450][T14232] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2567'. [ 455.966715][T14227] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 456.462232][T14243] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2569'. [ 457.869065][ T5840] Bluetooth: hci4: command 0x040f tx timeout [ 457.923151][ T5840] Bluetooth: hci1: command 0x041b tx timeout [ 457.929829][ T5840] Bluetooth: hci3: command 0x040f tx timeout [ 458.001765][ T5840] Bluetooth: hci0: command 0x040f tx timeout [ 458.187306][ T5840] Bluetooth: hci3: ISO packet for unknown connection handle 0 [ 459.939951][T14297] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2586'. [ 459.996752][T14299] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2586'. [ 460.070933][ T5840] Bluetooth: hci0: command 0x040f tx timeout [ 460.220417][T14299] macsec0: entered allmulticast mode [ 460.241534][T14299] veth1_macvtap: entered allmulticast mode [ 460.825604][ T5840] Bluetooth: hci4: ISO packet for unknown connection handle 0 [ 461.365707][T14335] ICMPv6: process `syz.3.2595' is using deprecated sysctl (syscall) net.ipv6.neigh.virt_wifi0.retrans_time - use net.ipv6.neigh.virt_wifi0.retrans_time_ms instead [ 463.884683][T14385] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2610'. [ 464.347064][T14394] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2611'. [ 464.364004][T14396] netlink: 338 bytes leftover after parsing attributes in process `syz.3.2612'. [ 464.389284][T14396] netlink: 338 bytes leftover after parsing attributes in process `syz.3.2612'. [ 465.043999][T14405] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2615'. [ 465.114693][T14405] ›: renamed from veth0_vlan (while UP) [ 465.344885][T14410] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2615'. [ 466.606488][T14425] netlink: 334 bytes leftover after parsing attributes in process `syz.1.2620'. [ 466.704560][T14416] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 466.714891][T14416] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 466.766086][T14416] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 466.772799][T14416] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 466.844710][T14428] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2621'. [ 466.900647][ T29] audit: type=1804 audit(4294967516.420:10): pid=14425 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.2620" name="/newroot/sys/kernel/tracing/per_cpu/cpu1/trace" dev="tracefs" ino=250 res=1 errno=0 [ 466.936026][T14432] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2621'. [ 467.140547][T14432] macsec0: entered allmulticast mode [ 467.157644][T14432] veth1_macvtap: entered allmulticast mode [ 467.725854][T14450] ima: Unable to open file: / (-2) [ 467.792307][T14450] ima: policy update failed [ 467.833953][ T29] audit: type=1802 audit(4294967517.355:11): pid=14450 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.2627" res=0 errno=0 [ 468.448297][T14471] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2630'. [ 468.671849][T14464] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2630'. [ 468.746433][ T5840] Bluetooth: hci3: command 0x040f tx timeout [ 468.759231][ T53] Bluetooth: hci4: command 0x040f tx timeout [ 468.778100][T14477] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 468.784871][T14477] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 468.825296][ T53] Bluetooth: hci1: command 0x041b tx timeout [ 468.834480][ T5840] Bluetooth: hci0: command 0x040f tx timeout [ 468.834603][T14477] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 468.901125][T14477] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 469.373248][T14490] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2637'. [ 469.497672][T14506] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2637'. [ 469.830673][T14506] macsec0: entered allmulticast mode [ 469.909589][T14506] veth1_macvtap: entered allmulticast mode [ 470.467516][T14530] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 470.484985][T14530] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 470.505620][T14530] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 470.525442][T14530] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 471.160458][T14540] ------------[ cut here ]------------ [ 471.166970][T14540] WARNING: CPU: 0 PID: 14540 at mm/page_alloc.c:4727 __alloc_pages_noprof+0xeff/0x25b0 [ 471.177967][T14540] Modules linked in: [ 471.183137][T14540] CPU: 0 UID: 0 PID: 14540 Comm: syz.1.2651 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0 [ 471.195491][T14540] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 471.206755][T14540] RIP: 0010:__alloc_pages_noprof+0xeff/0x25b0 [ 471.213534][T14540] Code: 24 2c 00 00 00 00 89 cd 0f 84 8b f9 ff ff 8b 34 24 48 89 da 8b 7c 24 08 e8 0e b3 fe ff e9 69 f9 ff ff c6 05 e3 70 16 0e 01 90 <0f> 0b 90 31 db e9 9f f3 ff ff 89 14 24 e8 9f a3 0c 00 8b 14 24 e9 [ 471.235815][T14540] RSP: 0018:ffffc9001831f868 EFLAGS: 00010246 [ 471.242537][T14540] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 471.251896][T14540] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000040cc0 [ 471.260831][T14540] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 471.269760][T14540] R10: 0000000000000000 R11: 0000000000000002 R12: 0000000000000013 [ 471.278649][T14540] R13: 0000000000040cc0 R14: 1ffff92003063f21 R15: 00000000ffffffff [ 471.287884][T14540] FS: 00007f0cc01406c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000 [ 471.298668][T14540] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 471.306036][T14540] CR2: 0000001b2e216ff8 CR3: 0000000068e2c000 CR4: 00000000003526f0 [ 471.314912][T14540] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 471.324234][T14540] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 471.333573][T14540] Call Trace: [ 471.337224][T14540] [ 471.340484][T14540] ? __warn+0xea/0x3c0 [ 471.345110][T14540] ? __alloc_pages_noprof+0xeff/0x25b0 [ 471.351176][T14540] ? report_bug+0x3c0/0x580 [ 471.356401][T14540] ? handle_bug+0x54/0xa0 [ 471.361219][T14540] ? exc_invalid_op+0x17/0x50 [ 471.366798][T14540] ? asm_exc_invalid_op+0x1a/0x20 [ 471.372445][T14540] ? __alloc_pages_noprof+0xeff/0x25b0 [ 471.378517][T14540] ? __pfx___lock_acquire+0x10/0x10 [ 471.384696][T14540] ? __kasan_slab_free+0x51/0x70 [ 471.390186][T14540] ? kfree+0x14f/0x4b0 [ 471.395043][T14540] ? bitmap_parselist_user+0x5c/0x90 [ 471.401022][T14540] ? proc_reg_write+0x23d/0x330 [ 471.406496][T14540] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 471.412896][T14540] ? find_held_lock+0x2d/0x110 [ 471.418189][T14540] ? mtree_load+0x30a/0xa40 [ 471.423718][T14540] ? __pfx_lock_release+0x10/0x10 [ 471.429300][T14540] ? trace_lock_acquire+0x14e/0x1f0 [ 471.435584][T14540] ? __pfx___lock_acquire+0x10/0x10 [ 471.441382][T14540] ___kmalloc_large_node+0x84/0x1b0 [ 471.447248][T14540] __kmalloc_large_node_noprof+0x1c/0x70 [ 471.453605][T14540] __kmalloc_node_track_caller_noprof.cold+0x5/0x5f [ 471.460926][T14540] ? bitmap_parselist_user+0x24/0x90 [ 471.466994][T14540] memdup_user_nul+0x2b/0x110 [ 471.472246][T14540] bitmap_parselist_user+0x24/0x90 [ 471.477936][T14540] irq_affinity_list_proc_write+0x148/0x260 [ 471.484861][T14540] ? __pfx_irq_affinity_list_proc_write+0x10/0x10 [ 471.492407][T14540] ? rcu_is_watching+0x12/0xc0 [ 471.497706][T14540] ? trace_lock_acquire+0x14e/0x1f0 [ 471.503535][T14540] ? __pfx_irq_affinity_list_proc_write+0x10/0x10 [ 471.510647][T14540] proc_reg_write+0x23d/0x330 [ 471.515912][T14540] ? __pfx_proc_reg_write+0x10/0x10 [ 471.521770][T14540] vfs_writev+0x6da/0xdd0 [ 471.527058][T14540] ? fdget_pos+0x267/0x390 [ 471.532782][T14540] ? __pfx_vfs_writev+0x10/0x10 [ 471.538173][T14540] ? __mutex_lock+0x1cc/0xa60 [ 471.543401][T14540] ? find_held_lock+0x2d/0x110 [ 471.548697][T14540] ? __pfx___mutex_lock+0x10/0x10 [ 471.554331][T14540] ? trace_lock_acquire+0x14e/0x1f0 [ 471.560095][T14540] ? lock_acquire+0x2f/0xb0 [ 471.565143][T14540] ? __fget_files+0x206/0x3a0 [ 471.570336][T14540] ? do_writev+0x133/0x340 [ 471.575313][T14540] do_writev+0x133/0x340 [ 471.580018][T14540] ? __pfx_do_writev+0x10/0x10 [ 471.585343][T14540] ? xfd_validate_state+0x5d/0x180 [ 471.591566][T14540] do_syscall_64+0xcd/0x250 [ 471.596585][T14540] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 471.603391][T14540] RIP: 0033:0x7f0cbf385d29 [ 471.608289][T14540] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 471.630704][T14540] RSP: 002b:00007f0cc0140038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 471.640003][T14540] RAX: ffffffffffffffda RBX: 00007f0cbf575fa0 RCX: 00007f0cbf385d29 [ 471.649323][T14540] RDX: 0000000000000008 RSI: 0000000020000100 RDI: 0000000000000003 [ 471.658188][T14540] RBP: 00007f0cbf401aa8 R08: 0000000000000000 R09: 0000000000000000 [ 471.667095][T14540] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 471.675963][T14540] R13: 0000000000000000 R14: 00007f0cbf575fa0 R15: 00007ffd4fe4fa88 [ 471.684879][T14540] [ 471.688709][T14540] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 471.696742][T14540] CPU: 0 UID: 0 PID: 14540 Comm: syz.1.2651 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0 [ 471.708610][T14540] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024 [ 471.719796][T14540] Call Trace: [ 471.723419][T14540] [ 471.726668][T14540] dump_stack_lvl+0x3d/0x1f0 [ 471.731756][T14540] panic+0x71d/0x800 [ 471.736081][T14540] ? __pfx_panic+0x10/0x10 [ 471.741092][T14540] ? show_trace_log_lvl+0x29d/0x3d0 [ 471.746861][T14540] ? __alloc_pages_noprof+0xeff/0x25b0 [ 471.752909][T14540] check_panic_on_warn+0xab/0xb0 [ 471.758434][T14540] __warn+0xf6/0x3c0 [ 471.762759][T14540] ? __alloc_pages_noprof+0xeff/0x25b0 [ 471.768801][T14540] report_bug+0x3c0/0x580 [ 471.773605][T14540] handle_bug+0x54/0xa0 [ 471.778209][T14540] exc_invalid_op+0x17/0x50 [ 471.783199][T14540] asm_exc_invalid_op+0x1a/0x20 [ 471.788566][T14540] RIP: 0010:__alloc_pages_noprof+0xeff/0x25b0 [ 471.795273][T14540] Code: 24 2c 00 00 00 00 89 cd 0f 84 8b f9 ff ff 8b 34 24 48 89 da 8b 7c 24 08 e8 0e b3 fe ff e9 69 f9 ff ff c6 05 e3 70 16 0e 01 90 <0f> 0b 90 31 db e9 9f f3 ff ff 89 14 24 e8 9f a3 0c 00 8b 14 24 e9 [ 471.816885][T14540] RSP: 0018:ffffc9001831f868 EFLAGS: 00010246 [ 471.823604][T14540] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 471.832499][T14540] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000040cc0 [ 471.841302][T14540] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 471.850106][T14540] R10: 0000000000000000 R11: 0000000000000002 R12: 0000000000000013 [ 471.858917][T14540] R13: 0000000000040cc0 R14: 1ffff92003063f21 R15: 00000000ffffffff [ 471.867752][T14540] ? __pfx___lock_acquire+0x10/0x10 [ 471.873618][T14540] ? __kasan_slab_free+0x51/0x70 [ 471.879095][T14540] ? kfree+0x14f/0x4b0 [ 471.883646][T14540] ? bitmap_parselist_user+0x5c/0x90 [ 471.889517][T14540] ? proc_reg_write+0x23d/0x330 [ 471.894899][T14540] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 471.901241][T14540] ? find_held_lock+0x2d/0x110 [ 471.906526][T14540] ? mtree_load+0x30a/0xa40 [ 471.911517][T14540] ? __pfx_lock_release+0x10/0x10 [ 471.917075][T14540] ? trace_lock_acquire+0x14e/0x1f0 [ 471.922836][T14540] ? __pfx___lock_acquire+0x10/0x10 [ 471.928627][T14540] ___kmalloc_large_node+0x84/0x1b0 [ 471.934395][T14540] __kmalloc_large_node_noprof+0x1c/0x70 [ 471.940632][T14540] __kmalloc_node_track_caller_noprof.cold+0x5/0x5f [ 471.947933][T14540] ? bitmap_parselist_user+0x24/0x90 [ 471.953805][T14540] memdup_user_nul+0x2b/0x110 [ 471.959004][T14540] bitmap_parselist_user+0x24/0x90 [ 471.964676][T14540] irq_affinity_list_proc_write+0x148/0x260 [ 471.971203][T14540] ? __pfx_irq_affinity_list_proc_write+0x10/0x10 [ 471.978302][T14540] ? rcu_is_watching+0x12/0xc0 [ 471.983587][T14540] ? trace_lock_acquire+0x14e/0x1f0 [ 471.989353][T14540] ? __pfx_irq_affinity_list_proc_write+0x10/0x10 [ 471.996449][T14540] proc_reg_write+0x23d/0x330 [ 472.001636][T14540] ? __pfx_proc_reg_write+0x10/0x10 [ 472.007385][T14540] vfs_writev+0x6da/0xdd0 [ 472.012185][T14540] ? fdget_pos+0x267/0x390 [ 472.017092][T14540] ? __pfx_vfs_writev+0x10/0x10 [ 472.022459][T14540] ? __mutex_lock+0x1cc/0xa60 [ 472.027641][T14540] ? find_held_lock+0x2d/0x110 [ 472.032951][T14540] ? __pfx___mutex_lock+0x10/0x10 [ 472.038527][T14540] ? trace_lock_acquire+0x14e/0x1f0 [ 472.044287][T14540] ? lock_acquire+0x2f/0xb0 [ 472.049313][T14540] ? __fget_files+0x206/0x3a0 [ 472.054504][T14540] ? do_writev+0x133/0x340 [ 472.059396][T14540] do_writev+0x133/0x340 [ 472.064104][T14540] ? __pfx_do_writev+0x10/0x10 [ 472.069385][T14540] ? xfd_validate_state+0x5d/0x180 [ 472.075054][T14540] do_syscall_64+0xcd/0x250 [ 472.080060][T14540] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 472.086596][T14540] RIP: 0033:0x7f0cbf385d29 [ 472.091481][T14540] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 472.113084][T14540] RSP: 002b:00007f0cc0140038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 472.122386][T14540] RAX: ffffffffffffffda RBX: 00007f0cbf575fa0 RCX: 00007f0cbf385d29 [ 472.131191][T14540] RDX: 0000000000000008 RSI: 0000000020000100 RDI: 0000000000000003 [ 472.140005][T14540] RBP: 00007f0cbf401aa8 R08: 0000000000000000 R09: 0000000000000000 [ 472.148807][T14540] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 472.157617][T14540] R13: 0000000000000000 R14: 00007f0cbf575fa0 R15: 00007ffd4fe4fa88 [ 472.166441][T14540] [ 472.170103][T14540] Kernel Offset: disabled [ 472.174915][T14540] Rebooting in 86400 seconds..