Warning: Permanently added '10.128.1.77' (ED25519) to the list of known hosts. 2024/03/28 05:30:29 fuzzer started 2024/03/28 05:30:30 dialing manager at 10.128.0.169:30004 [ 54.953681][ T5055] cgroup: Unknown subsys name 'net' [ 55.063664][ T5055] cgroup: Unknown subsys name 'rlimit' 2024/03/28 05:30:31 syscalls: 3899 2024/03/28 05:30:31 code coverage: enabled 2024/03/28 05:30:31 comparison tracing: enabled 2024/03/28 05:30:31 extra coverage: enabled 2024/03/28 05:30:31 delay kcov mmap: enabled 2024/03/28 05:30:31 setuid sandbox: enabled 2024/03/28 05:30:31 namespace sandbox: enabled 2024/03/28 05:30:31 Android sandbox: /sys/fs/selinux/policy does not exist 2024/03/28 05:30:31 fault injection: enabled 2024/03/28 05:30:31 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2024/03/28 05:30:31 net packet injection: enabled 2024/03/28 05:30:31 net device setup: enabled 2024/03/28 05:30:31 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2024/03/28 05:30:31 devlink PCI setup: PCI device 0000:00:10.0 is not available 2024/03/28 05:30:31 NIC VF setup: PCI device 0000:00:11.0 is not available 2024/03/28 05:30:31 USB emulation: enabled 2024/03/28 05:30:31 hci packet injection: enabled 2024/03/28 05:30:31 wifi device emulation: enabled 2024/03/28 05:30:31 802.15.4 emulation: enabled 2024/03/28 05:30:31 swap file: enabled [ 56.450990][ T5055] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k 2024/03/28 05:30:32 starting 5 executor processes [ 57.443527][ T5072] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 57.466198][ T5077] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 57.474522][ T5077] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 57.484539][ T5077] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 57.493831][ T5079] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 57.502572][ T5083] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 57.511156][ T5083] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 57.513553][ T5079] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 57.518726][ T5083] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 57.526127][ T5079] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 57.534135][ T5083] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 57.547296][ T5083] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 57.554512][ T5086] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 57.555193][ T5079] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 57.563811][ T5086] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 57.570282][ T5079] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 57.576857][ T5086] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 57.585960][ T5079] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 57.591056][ T5083] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 57.597138][ T5079] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 57.604005][ T5086] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 57.620949][ T5079] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 57.625087][ T5083] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 57.628378][ T5079] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 57.635815][ T5083] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 57.649819][ T5086] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 57.657323][ T5086] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 57.657528][ T5079] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 57.697321][ T5083] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 57.706216][ T5083] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 58.184172][ T5069] chnl_net:caif_netlink_parms(): no params data found [ 58.222318][ T5081] chnl_net:caif_netlink_parms(): no params data found [ 58.249401][ T5067] chnl_net:caif_netlink_parms(): no params data found [ 58.320503][ T5075] chnl_net:caif_netlink_parms(): no params data found [ 58.486899][ T5081] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.494565][ T5081] bridge0: port 1(bridge_slave_0) entered disabled state [ 58.504432][ T5081] bridge_slave_0: entered allmulticast mode [ 58.511721][ T5081] bridge_slave_0: entered promiscuous mode [ 58.521916][ T5081] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.529108][ T5081] bridge0: port 2(bridge_slave_1) entered disabled state [ 58.536423][ T5081] bridge_slave_1: entered allmulticast mode [ 58.543114][ T5081] bridge_slave_1: entered promiscuous mode [ 58.582351][ T5067] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.589490][ T5067] bridge0: port 1(bridge_slave_0) entered disabled state [ 58.596880][ T5067] bridge_slave_0: entered allmulticast mode [ 58.603499][ T5067] bridge_slave_0: entered promiscuous mode [ 58.610990][ T5068] chnl_net:caif_netlink_parms(): no params data found [ 58.654342][ T5069] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.661543][ T5069] bridge0: port 1(bridge_slave_0) entered disabled state [ 58.669035][ T5069] bridge_slave_0: entered allmulticast mode [ 58.676016][ T5069] bridge_slave_0: entered promiscuous mode [ 58.683703][ T5069] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.691301][ T5069] bridge0: port 2(bridge_slave_1) entered disabled state [ 58.698822][ T5069] bridge_slave_1: entered allmulticast mode [ 58.705491][ T5069] bridge_slave_1: entered promiscuous mode [ 58.721429][ T5075] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.728743][ T5075] bridge0: port 1(bridge_slave_0) entered disabled state [ 58.736493][ T5075] bridge_slave_0: entered allmulticast mode [ 58.743247][ T5075] bridge_slave_0: entered promiscuous mode [ 58.752634][ T5067] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.759826][ T5067] bridge0: port 2(bridge_slave_1) entered disabled state [ 58.767372][ T5067] bridge_slave_1: entered allmulticast mode [ 58.774104][ T5067] bridge_slave_1: entered promiscuous mode [ 58.807853][ T5081] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 58.836511][ T5075] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.843624][ T5075] bridge0: port 2(bridge_slave_1) entered disabled state [ 58.851880][ T5075] bridge_slave_1: entered allmulticast mode [ 58.859525][ T5075] bridge_slave_1: entered promiscuous mode [ 58.892193][ T5081] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 58.911095][ T5069] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 58.931940][ T5075] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 58.943707][ T5067] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 58.976732][ T5081] team0: Port device team_slave_0 added [ 58.984904][ T5069] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 58.997783][ T5075] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 59.018962][ T5067] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 59.046232][ T5081] team0: Port device team_slave_1 added [ 59.088132][ T5067] team0: Port device team_slave_0 added [ 59.094258][ T5068] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.101493][ T5068] bridge0: port 1(bridge_slave_0) entered disabled state [ 59.108891][ T5068] bridge_slave_0: entered allmulticast mode [ 59.115645][ T5068] bridge_slave_0: entered promiscuous mode [ 59.123306][ T5068] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.130586][ T5068] bridge0: port 2(bridge_slave_1) entered disabled state [ 59.137834][ T5068] bridge_slave_1: entered allmulticast mode [ 59.144491][ T5068] bridge_slave_1: entered promiscuous mode [ 59.183780][ T5069] team0: Port device team_slave_0 added [ 59.193821][ T5075] team0: Port device team_slave_0 added [ 59.202323][ T5067] team0: Port device team_slave_1 added [ 59.229960][ T5081] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 59.237075][ T5081] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 59.263860][ T5081] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 59.277393][ T5081] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 59.284365][ T5081] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 59.310340][ T5081] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 59.323491][ T5069] team0: Port device team_slave_1 added [ 59.345605][ T5075] team0: Port device team_slave_1 added [ 59.363340][ T5067] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 59.370430][ T5067] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 59.396434][ T5067] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 59.423163][ T5068] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 59.443555][ T5069] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 59.450650][ T5069] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 59.476591][ T5069] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 59.498190][ T5067] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 59.505179][ T5067] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 59.531383][ T5067] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 59.546036][ T5068] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 59.566805][ T5069] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 59.573757][ T5069] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 59.599954][ T5069] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 59.623015][ T5075] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 59.630067][ T5075] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 59.657233][ T5075] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 59.657336][ T5077] Bluetooth: hci3: command tx timeout [ 59.700602][ T5068] team0: Port device team_slave_0 added [ 59.712902][ T5068] team0: Port device team_slave_1 added [ 59.719493][ T5075] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 59.726651][ T5075] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 59.729676][ T5077] Bluetooth: hci0: command tx timeout [ 59.752620][ T5075] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 59.765711][ T5083] Bluetooth: hci1: command tx timeout [ 59.769161][ T5077] Bluetooth: hci2: command tx timeout [ 59.801077][ T5075] hsr_slave_0: entered promiscuous mode [ 59.805856][ T5077] Bluetooth: hci4: command tx timeout [ 59.813078][ T5075] hsr_slave_1: entered promiscuous mode [ 59.830033][ T5081] hsr_slave_0: entered promiscuous mode [ 59.836825][ T5081] hsr_slave_1: entered promiscuous mode [ 59.842862][ T5081] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 59.850637][ T5081] Cannot create hsr debugfs directory [ 59.919010][ T5068] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 59.926050][ T5068] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 59.952160][ T5068] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 59.964403][ T5068] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 59.971570][ T5068] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 59.997512][ T5068] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 60.021385][ T5067] hsr_slave_0: entered promiscuous mode [ 60.027723][ T5067] hsr_slave_1: entered promiscuous mode [ 60.033874][ T5067] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 60.041590][ T5067] Cannot create hsr debugfs directory [ 60.061418][ T5069] hsr_slave_0: entered promiscuous mode [ 60.067850][ T5069] hsr_slave_1: entered promiscuous mode [ 60.073864][ T5069] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 60.081503][ T5069] Cannot create hsr debugfs directory [ 60.247266][ T5068] hsr_slave_0: entered promiscuous mode [ 60.253570][ T5068] hsr_slave_1: entered promiscuous mode [ 60.260043][ T5068] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 60.267953][ T5068] Cannot create hsr debugfs directory [ 60.575404][ T5081] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 60.588984][ T5081] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 60.599567][ T5081] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 60.613957][ T5081] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 60.655416][ T5075] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 60.673871][ T5075] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 60.689604][ T5075] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 60.716908][ T5075] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 60.776306][ T5069] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 60.789679][ T5069] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 60.800853][ T5069] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 60.818934][ T5069] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 60.895091][ T5067] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 60.931208][ T5067] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 60.966682][ T5067] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 60.976718][ T5067] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 61.021464][ T5068] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 61.032879][ T5068] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 61.044269][ T5068] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 61.054573][ T5068] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 61.092034][ T5081] 8021q: adding VLAN 0 to HW filter on device bond0 [ 61.154286][ T5081] 8021q: adding VLAN 0 to HW filter on device team0 [ 61.201442][ T5121] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.208768][ T5121] bridge0: port 1(bridge_slave_0) entered forwarding state [ 61.271273][ T5121] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.278434][ T5121] bridge0: port 2(bridge_slave_1) entered forwarding state [ 61.295908][ T5075] 8021q: adding VLAN 0 to HW filter on device bond0 [ 61.331245][ T5075] 8021q: adding VLAN 0 to HW filter on device team0 [ 61.352281][ T5069] 8021q: adding VLAN 0 to HW filter on device bond0 [ 61.374056][ T5067] 8021q: adding VLAN 0 to HW filter on device bond0 [ 61.399473][ T5121] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.406627][ T5121] bridge0: port 1(bridge_slave_0) entered forwarding state [ 61.442240][ T5067] 8021q: adding VLAN 0 to HW filter on device team0 [ 61.466237][ T5121] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.473340][ T5121] bridge0: port 2(bridge_slave_1) entered forwarding state [ 61.502464][ T5121] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.509619][ T5121] bridge0: port 1(bridge_slave_0) entered forwarding state [ 61.543170][ T5069] 8021q: adding VLAN 0 to HW filter on device team0 [ 61.593411][ T5120] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.600629][ T5120] bridge0: port 2(bridge_slave_1) entered forwarding state [ 61.637313][ T5120] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.644481][ T5120] bridge0: port 1(bridge_slave_0) entered forwarding state [ 61.700913][ T5068] 8021q: adding VLAN 0 to HW filter on device bond0 [ 61.731059][ T5120] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.738245][ T5120] bridge0: port 2(bridge_slave_1) entered forwarding state [ 61.746206][ T5077] Bluetooth: hci3: command tx timeout [ 61.807011][ T4457] Bluetooth: hci1: command tx timeout [ 61.812511][ T4457] Bluetooth: hci0: command tx timeout [ 61.818376][ T5077] Bluetooth: hci2: command tx timeout [ 61.870553][ T5068] 8021q: adding VLAN 0 to HW filter on device team0 [ 61.888294][ T5077] Bluetooth: hci4: command tx timeout [ 61.926007][ T5123] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.933576][ T5123] bridge0: port 1(bridge_slave_0) entered forwarding state [ 61.993993][ T5081] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 62.018487][ T5073] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.025716][ T5073] bridge0: port 2(bridge_slave_1) entered forwarding state [ 62.122011][ T5075] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 62.190442][ T5081] veth0_vlan: entered promiscuous mode [ 62.243961][ T5081] veth1_vlan: entered promiscuous mode [ 62.330325][ T5069] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 62.365197][ T5075] veth0_vlan: entered promiscuous mode [ 62.411011][ T5067] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 62.433008][ T5081] veth0_macvtap: entered promiscuous mode [ 62.459750][ T5075] veth1_vlan: entered promiscuous mode [ 62.489436][ T5081] veth1_macvtap: entered promiscuous mode [ 62.604932][ T5068] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 62.622093][ T5081] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 62.632339][ T5067] veth0_vlan: entered promiscuous mode [ 62.669861][ T5081] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 62.683313][ T5075] veth0_macvtap: entered promiscuous mode [ 62.714756][ T5067] veth1_vlan: entered promiscuous mode [ 62.747246][ T5081] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 62.756359][ T5081] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 62.765057][ T5081] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 62.775997][ T5081] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 62.788276][ T5075] veth1_macvtap: entered promiscuous mode [ 62.843088][ T5068] veth0_vlan: entered promiscuous mode [ 62.863907][ T5075] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 62.877518][ T5075] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 62.889151][ T5075] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 62.902989][ T5075] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 62.914022][ T5075] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 62.927732][ T5075] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 62.937965][ T5067] veth0_macvtap: entered promiscuous mode [ 62.964114][ T5069] veth0_vlan: entered promiscuous mode [ 62.977517][ T5067] veth1_macvtap: entered promiscuous mode [ 62.985345][ T5075] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 62.994644][ T5075] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.004059][ T5075] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.013495][ T5075] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.029181][ T5068] veth1_vlan: entered promiscuous mode [ 63.063910][ T5069] veth1_vlan: entered promiscuous mode [ 63.125489][ T5067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 63.138387][ T5067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 63.148835][ T5067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 63.159557][ T5067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 63.171274][ T5067] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 63.182976][ T5067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 63.194057][ T5067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 63.207939][ T5067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 63.218424][ T5067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 63.229632][ T5067] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 63.256426][ T5067] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.265160][ T5067] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.274242][ T5067] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.283540][ T5067] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.357922][ T5068] veth0_macvtap: entered promiscuous mode [ 63.379979][ T5122] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 63.384752][ T5069] veth0_macvtap: entered promiscuous mode [ 63.389079][ T5122] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 63.419366][ T5068] veth1_macvtap: entered promiscuous mode [ 63.474504][ T5122] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 63.481257][ T5068] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 63.483864][ T5122] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 63.497730][ T5068] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 63.519884][ T5068] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 63.530392][ T5068] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 63.540773][ T5068] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 63.551480][ T5068] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 63.563567][ T5068] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 63.583185][ T1087] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 63.596135][ T1087] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 63.612332][ T5069] veth1_macvtap: entered promiscuous mode [ 63.626590][ T5068] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 63.638363][ T5068] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 63.648995][ T5068] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 63.661041][ T5068] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 63.671331][ T5068] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 63.682096][ T5068] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 63.694643][ T5068] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 63.737395][ T5068] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.749075][ T5068] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.759181][ T5068] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.768606][ T5068] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 05:30:39 executing program 3: r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000200)={0x20, 0x0, 0x0, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x8, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x4}]}, @TIPC_NLA_SOCK={0x4}]}, 0x20}}, 0x0) sendmsg$netlink(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000200)=ANY=[@ANYBLOB="140125002b000100000000000000001807"], 0x114}], 0x1}, 0x0) [ 63.803973][ T5121] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 63.815037][ T5077] Bluetooth: hci3: command tx timeout [ 63.822406][ T5121] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 63.860689][ T5069] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 63.886446][ T4457] Bluetooth: hci0: command tx timeout [ 63.891946][ T4457] Bluetooth: hci1: command tx timeout [ 63.897562][ T5077] Bluetooth: hci2: command tx timeout 05:30:39 executing program 3: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x8031, 0xffffffffffffffff, 0x0) r0 = open(&(0x7f0000000000)='./bus\x00', 0x14d35e, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x6001fe, 0x0, 0x4012011, r0, 0x0) [ 63.904908][ T5069] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 63.925570][ T5069] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 63.938023][ T5069] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 63.956364][ T5069] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 63.965977][ T4457] Bluetooth: hci4: command tx timeout [ 63.992502][ T5069] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 64.016685][ T5069] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 64.028216][ T5069] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 64.042017][ T5069] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 64.057863][ T5069] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 64.073258][ T5069] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 64.085877][ T5069] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 64.097355][ T5069] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 64.108050][ T5069] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 64.119831][ T5069] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 64.130619][ T5069] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 64.142531][ T5069] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 64.159883][ T5069] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 64.210108][ T5069] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.246914][ T5069] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 05:30:39 executing program 2: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000100001000000ebff000000000000000a34000000000a4f5c00400000000000000200000009000100859584b15cc0b28108000240000000020900010073797ab44e00000014000000110001"], 0x5c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)={{0x14}, [@NFT_MSG_DELOBJ={0x34, 0x14, 0xa, 0x201, 0x0, 0x0, {}, [@NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x2}, @NFTA_OBJ_TYPE={0x8}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz1\x00'}]}], {0x14}}, 0x5c}}, 0x0) [ 64.256349][ T5069] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.265642][ T5069] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.333835][ T10] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 64.367742][ T10] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 05:30:39 executing program 2: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000180)={0x1, [0x0]}, &(0x7f00000001c0)=0x8) (async) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000000)='GPL\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10) (async) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000006c0)={r0, 0xe0, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, &(0x7f00000003c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x5, 0x2, &(0x7f0000000400)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000440)=[0x0, 0x0], 0x0, 0x5f, &(0x7f0000000480)=[{}, {}, {}], 0x18, 0x10, &(0x7f0000000500), &(0x7f0000000540), 0x8, 0x2f, 0x8, 0x8, &(0x7f0000000580)}}, 0x10) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000300), 0x101080, 0x0) getsockopt$IP6T_SO_GET_REVISION_TARGET(r1, 0x29, 0x45, &(0x7f0000000340)={'TPROXY\x00'}, &(0x7f0000000380)=0x1e) (async) syslog(0x9, 0x0, 0x0) (async) syslog(0x9, &(0x7f0000000080)=""/232, 0xe8) [ 64.381545][ T5123] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 64.390820][ T5123] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 05:30:39 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) ioctl$KVM_CAP_EXCEPTION_PAYLOAD(r1, 0x80086301, &(0x7f0000000000)={0x8f}) [ 64.587899][ T5122] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 64.605920][ T5122] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 64.667076][ T5165] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 64.754178][ T28] audit: type=1800 audit(1711603840.009:2): pid=5166 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1949 res=0 errno=0 [ 64.779502][ T1087] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 64.791202][ T1087] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 05:30:40 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="0401020028000b05d25a806f8c6394f90424fc600d00030009000200ff3582c137153e370248018010000000d1bd", 0x33fe0}], 0x1}, 0x0) [ 64.806728][ T5122] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 64.820425][ T5122] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 05:30:40 executing program 2: bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000500)='jbd2_handle_stats\x00'}, 0x10) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.throttle.io_serviced_recursive\x00', 0x26e1, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='softirq_noise\x00', r0}, 0x10) [ 64.925087][ T5170] netlink: 'syz-executor.1': attribute type 1 has an invalid length. [ 64.942278][ T5120] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 64.961955][ T5170] netlink: 112860 bytes leftover after parsing attributes in process `syz-executor.1'. [ 64.969883][ T5120] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 05:30:40 executing program 0: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x11, 0x4, &(0x7f0000000340)=@framed={{}, [@generic={0x61, 0x0, 0xa}]}, &(0x7f0000000400)='syzkaller\x00', 0x6, 0x25, &(0x7f0000000440)=""/37}, 0x90) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r0, &(0x7f0000000200), 0x46000) sendmsg$nl_xfrm(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000040)=@getsa={0x164, 0x12, 0x20, 0x70bd2b, 0x25dfdbff, {@in=@dev={0xac, 0x14, 0x14, 0x27}, 0x4d6, 0xa, 0x32}, [@tfcpad={0x8, 0x16, 0x26}, @algo_crypt={0x11e, 0x2, {{'xts(serpent)\x00'}, 0x6b0, "ec3a84c26e3bcc1fb960dccb89b2c2821a3a5c99296040ec402224a72643ff2d88401dbe09b8dc75f17d63448a92bfe7be92ee396a6f273cf8a0ab55beedfe5b1a77f9636aa4a581a8335bd1fac0d5f184c59e0d7530a49eb51344d51ed06287d08c68cf57ed3d14578a420bafc4e7dc2d7a61b06a242516a5317a64d9e2736abcf8a384e1035664a715c774caf43bf46c664fca8717f3f5fcaf6af2d8cb4ed1673647a222eddc22d674bba552a14bbf8bfba049759dde71a5d1b3dee167cf5b295af37e857526c8d88a2ceccb4284bdc8b736786628"}}, @lastused={0xc, 0xf, 0xffffffffffffffff}, @XFRMA_SET_MARK={0x8, 0x1d, 0x2}]}, 0x164}}, 0x488c0) [ 64.998199][ T5170] netlink: 'syz-executor.1': attribute type 2 has an invalid length. 05:30:40 executing program 1: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000180), r1) sendmsg$NLBL_CALIPSO_C_ADD(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100000000000040030001400000080002be98000000080001"], 0x24}}, 0x0) 05:30:40 executing program 2: bpf$ENABLE_STATS(0x20, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$ENABLE_STATS(0x20, &(0x7f0000000340), 0x4) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='mm_lru_insertion\x00', r1}, 0x10) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000000), &(0x7f0000000200)=r3}, 0x20) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x100002, 0x0) splice(r3, &(0x7f00000002c0)=0x2e, r2, &(0x7f0000000300)=0x8d65, 0x7, 0x4) close(r0) write$cgroup_type(r4, &(0x7f0000000180), 0x1a51a) 05:30:40 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000740)) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000040)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_IBSS(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000140)={0x34, r1, 0x101, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_SSID={0x5, 0x34, @random='E'}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x16}]]}, 0x34}}, 0x0) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_TESTMODE(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000200)={0x498, r1, 0x200, 0x70bd28, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_TESTDATA={0xe1, 0x45, "4ba994f7e23e9fd1b5425d5faa1dbf68a6063ec6e4d66a8208eff84a133e972b050c13e5fcd30fdc889859b61a6517643a14de65023c0de8d9beba26a1058fcfb62950dcd624546023deb163a3cdec53214bab1dfde3fff475e9f35794a9b3662b707158bb01c68d9694fe1b814f9e3f643aaf23c89c255d31563fdc56dbbae9d630dbfdc0de4eded70c73ea3b35d7f968778f9bf946044963b32d7e62599f12e4734f54b415760e3736911741973c6568d67a45f8ce77ccceaed9a1a107c5d0a1ada32be2354d62f77595f95cdedcad9c9ac73bc6a8f28603964a2d52"}, @NL80211_ATTR_TESTDATA={0x6d, 0x45, "22fae96dbe905dd063b06067d2d31e03a0fead067e330dd55fa729e7238f69a7573f945a45b9c327edfb3137da59400b01b8de232fbcb073d0e10e224932b11d800ae04655acf2b70d363165d3ce76cb55fa418e71df60eb67ace4fc53438d410076faad5b0300caf9"}, @NL80211_ATTR_TESTDATA={0x8a, 0x45, "45f86ca1cc8bcfcd8e360de05613f46c8ed696425acf408c756fe0ca57a9b7b26c26e56d123a503162d2de3f3d4eae71c76990e6006506674dd7721ea764a87181724d86391d04ecc5f6e6973736920a1f61ef97b8b5d550dcf4579d0790857b13dd8f890b241936224017af72892763ac4101daacc2009e0e4c749b5493b9cb24d3b7723565"}, @NL80211_ATTR_TESTDATA={0x37, 0x45, "4b097e15ddc69a0cc2ca05f6289e6853e9988a9b81cfa062cff4d9a671a98c1b7c0526f3fdf5e94a29a7afb57a07b4ffa24833"}, @NL80211_ATTR_TESTDATA={0xf4, 0x45, "cf2eacd52b891e6b083a9d3b3b50eec8133932774788b2f788eb81b2a961c4ea58b5174e20e7a47bb7197f2ecfc17ed28252c16c736564ff2d08e642c623636e71a2f558652dd1eb9170f67d27370b7282ce2c2d3854cd49fc19323272ad00c562bf39d688ae78f55cb6cb9768faf5499bd3a9e87c37f6a378638cd7c9a69dceda23c08eefdc01ed5e8ef84e5797a2e75cfbb65068c3d2eb58823e281d45ee8b2d9ec9a7719e0b043201f6d4cedf5516a1b91852a490b5eed7c4d68674de2638dd18407b65282f852bc395c9e4b106510c72389c9bd6d72cb3800eb0d60d9f55257d32758bf70865ce0cd9ef35e41771"}, @NL80211_ATTR_TESTDATA={0x45, 0x45, "c981e4dca139f5c46117f75688571b0f7acf44f5d76179910fd5e745c4a6310a66cc07a301d802e44275cbaa845fca563f6fa7b555a3ac92ce837bb6857bfe814f"}, @NL80211_ATTR_TESTDATA={0x30, 0x45, "7cc7fd068f2821139c4d878e97af3d815b7da92734c9e3539765ac44d17cf835065a3b2f3342fc0e4776177b"}, @NL80211_ATTR_TESTDATA={0xf8, 0x45, "56725476460dba144bc4d3812192aa886629fcbe1195603449e706a58d4dc454f9d2daeebacefc22c84fe4d3f1baf9642eb62a8aec5e481ae5dfc41014bf609fbdccba1438883bf5b5bce56d1db93bf29067d31bea30e4ce049c498b40175bdf8c3e456617ed84cf932d9d4507176aeb2356f9372e82330d0ebfbea0709f6ec5542b765a27cd29ff98eb4a1fb77fbef03b8b3e4dabd662b353a84788e23ad07123179665d5ccb7640d890f19aa18ecc6749a99a565a565556f4a1c81c7730ea60c7ac2d322c81d3fd7f9433624440e62c25d21272f071afe549d42d3120a77a56fadbc0a2fd6123e95bbc42d0bfff54b4dd8d409"}]}, 0x498}, 0x1, 0x0, 0x0, 0x4}, 0x8000) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$gtp(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$GTP_CMD_GETPDP(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYBLOB="01000004030000000800000000000000"], 0x1c}}, 0x0) 05:30:40 executing program 0: r0 = socket(0x11, 0x800000003, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000600)={'team0\x00', 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x9, &(0x7f0000000780)={&(0x7f0000000000)=ANY=[@ANYBLOB="b800000024000bedff0100000002000000001200", @ANYRES32=r1, @ANYBLOB="00000000ffffffff000000000b00010074617072696f000088000200560001000200000000000000000000000000000000000800040000000000000000000000000000000000000000000000000000000000000008000000000000000000000002000000000000000000000000000000000000000800050000000000100002800c0001800800040000000004"], 0xb8}}, 0x0) 05:30:40 executing program 3: r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) ioctl$vim2m_VIDIOC_G_FMT(r0, 0xc0d05604, &(0x7f0000000080)={0x2, @pix_mp={0x0, 0x0, 0x0, 0x0, 0x300}}) 05:30:40 executing program 1: r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100)) r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="04630440"], 0x0, 0x0, 0x0}) r2 = dup3(r1, r0, 0x0) r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0) mmap$binder(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000380)={0x4c, 0x0, &(0x7f0000000280)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x18, &(0x7f0000000440)={@flat=@handle={0x73622a85}, @fd={0x77622a85}, @flat=@weak_handle={0x66646185}}, &(0x7f0000000240)={0x0, 0x18, 0x30}}}], 0x0, 0x0, 0x0}) r4 = accept4$netrom(r2, &(0x7f00000004c0)={{}, [@rose, @rose, @netrom, @remote, @rose, @null, @netrom]}, &(0x7f00000001c0)=0x48, 0x0) getsockopt$netrom_NETROM_T2(r4, 0x103, 0x2, &(0x7f0000000140)=0xf21, &(0x7f0000000300)=0x4) [ 65.340110][ T5182] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.0'. 05:30:40 executing program 0: prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc1fff}]}) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000400)={0x3, &(0x7f00000003c0)=[{0x5, 0x80, 0x8}, {0x7, 0x1, 0x0, 0x800}, {0x2, 0x0, 0x1f, 0x817a}]}) clock_settime(0x0, &(0x7f0000000100)={0x77359400}) nanosleep(&(0x7f0000000080), &(0x7f00000000c0)) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000002700)={0xffffffffffffffff, 0xe0, &(0x7f0000002600)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, &(0x7f0000002440)=[0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, &(0x7f0000002480)=[0x0, 0x0, 0x0], &(0x7f00000024c0)=[0x0], 0x0, 0x27, &(0x7f0000002500)=[{}], 0x8, 0x10, &(0x7f0000002540), &(0x7f0000002580), 0x8, 0xac, 0x8, 0x8, &(0x7f00000025c0)}}, 0x10) r0 = socket(0x1e, 0x4, 0x0) r1 = socket(0x1e, 0x3, 0x0) setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10) clock_gettime(0x5, &(0x7f0000000140)) sendmmsg(r1, &(0x7f0000000180)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x1}], 0x1}}], 0x1, 0x9200000000000000) r2 = dup3(r1, r0, 0x0) recvmmsg$unix(r2, &(0x7f0000002ec0)=[{{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000480)=""/4087, 0x1000}], 0x1, 0x0, 0x3c}}], 0x1, 0x0, 0x0) getresuid(&(0x7f0000002080), &(0x7f0000002300), &(0x7f0000002340)) 05:30:40 executing program 3: r0 = socket$packet(0x11, 0x2, 0x300) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000000)=0x995b) r1 = openat$damon_kdamond_pid(0xffffffffffffff9c, &(0x7f0000000040), 0xc40, 0x20) ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f0000000080)={0x2, 0x0, [{0x8001, 0x1, 0x0, 0x0, @msi={0x9, 0x61d, 0x6, 0x695}}, {0xcaf, 0x3, 0x0, 0x0, @msi={0xe27, 0x3021, 0x8, 0x3ff}}]}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) ioctl$DRM_IOCTL_GET_CLIENT(r1, 0xc0286405, &(0x7f0000000100)={0x4e3, 0x7, {0xffffffffffffffff}, {0xee01}, 0x0, 0x6}) r4 = getpid() kcmp$KCMP_EPOLL_TFD(r3, r4, 0x7, r1, &(0x7f0000000140)={r1, r1, 0xe9d}) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x12, 0x110, r0, 0xec6ee000) fstatfs(r1, &(0x7f0000000180)=""/66) ioctl$SW_SYNC_IOC_INC(r1, 0x40045701, &(0x7f0000000200)=0xf2b3) mmap$usbmon(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x600000c, 0x810, r1, 0x3) close_range(r2, r0, 0x0) ioctl$MON_IOCQ_URB_LEN(r1, 0x9201) mmap$usbmon(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x3000000, 0x50, r1, 0x9b80) fcntl$getflags(r0, 0x40a) ioctl$KVM_GET_NESTED_STATE(r1, 0xc080aebe, &(0x7f0000000240)={{0x0, 0x0, 0x80}}) r5 = bpf$ITER_CREATE(0x21, &(0x7f00000022c0)={r1}, 0x8) ioctl$KVM_CHECK_EXTENSION_VM(r2, 0xae03, 0x2) fallocate(r5, 0x48, 0x8, 0x1) r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000002300)='./binderfs2/custom1\x00', 0x800, 0x0) ioctl$BTRFS_IOC_QUOTA_RESCAN_STATUS(r6, 0x8040942d, &(0x7f0000002340)) ioctl$BTRFS_IOC_QGROUP_CREATE(r2, 0x4010942a, &(0x7f0000002380)={0x0, 0x3}) mount$9p_fd(0x0, &(0x7f00000023c0)='./file0\x00', &(0x7f0000002400), 0x81810, &(0x7f0000002440)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[], [{@pcr={'pcr', 0x3d, 0x1e}}, {@fsname={'fsname', 0x3d, '/sys/kernel/debug/damon/kdamond_pid\x00'}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}}) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, &(0x7f0000002500)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x80000000}}, './file0\x00'}) ioctl$EVIOCRMFF(r7, 0x40044581, &(0x7f0000002540)=0x7) setsockopt$inet6_IPV6_ADDRFORM(0xffffffffffffffff, 0x29, 0x1, &(0x7f0000002580), 0x4) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000002600)={'batadv0\x00', 0x0}) sendmsg$nl_route(r1, &(0x7f0000002700)={&(0x7f00000025c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000026c0)={&(0x7f0000002640)=@bridge_newvlan={0x5c, 0x70, 0x1, 0x70bd27, 0x25dfdbff, {0x7, 0x0, 0x0, r8}, [@BRIDGE_VLANDB_ENTRY={0xc, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_STATE={0x5, 0x3, 0x3}}, @BRIDGE_VLANDB_ENTRY={0x10, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_TUNNEL_INFO={0xc, 0x4, 0x0, 0x1, @BRIDGE_VLANDB_TINFO_ID={0x8, 0x1, 0x9}}}, @BRIDGE_VLANDB_ENTRY={0x10, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_TUNNEL_INFO={0xc, 0x4, 0x0, 0x1, @BRIDGE_VLANDB_TINFO_CMD={0x8, 0x2, 0x13}}}, @BRIDGE_VLANDB_ENTRY={0xc, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_STATE={0x5, 0x3, 0x4}}, @BRIDGE_VLANDB_ENTRY={0xc, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_STATE={0x5, 0x3, 0x4}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x80}, 0x4040000) [ 65.435021][ T5181] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. 05:30:40 executing program 4: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="0401020028000b05d25a806f8c6394f90424fc600d00030009000400ff3582c137153e370248018010000000d1bd", 0x33fe0}], 0x1}, 0x0) 05:30:40 executing program 1: r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x0, 0x0, 0x0}, 0x90) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x530, 0x0, 0x18c, 0x203, 0x4d000000, 0x19030000, 0x460, 0x2e0, 0x2e0, 0x460, 0x2e0, 0x3, 0x0, {[{{@uncond, 0x300, 0x300, 0x348, 0x0, {}, [@common=@unspec=@bpf0={{0x230}, {0x13, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x16}]}}, @common=@hl={{0x28}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@private, 'veth1_macvtap\x00'}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x590) ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f00000005c0)={'vcan0\x00', 0x0}) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000000000009500000020000000"], &(0x7f00000001c0)='GPL\x00'}, 0x80) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={r3, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0)={r4}, 0x4) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000700)={@map, 0xf, 0x0, 0x4, &(0x7f0000000600)=[0x0], 0x1, 0x0, &(0x7f0000000640)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000680)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000006c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0}, 0x40) bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000740)={@ifindex=r2, r0, 0x18, 0x4, r0, @prog_id=r4, r5}, 0x20) 05:30:40 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0xb875119de079d45, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) ioctl$KVM_CAP_EXCEPTION_PAYLOAD(r1, 0x4068aea3, &(0x7f0000000080)={0x8f}) r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x802, 0x0) ioctl$UI_SET_RELBIT(r2, 0x40045566, 0x4) (async) r3 = socket$alg(0x26, 0x5, 0x0) bind$alg(r3, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'poly1305-generic\x00'}, 0x58) (async, rerun: 32) r4 = accept4(r3, 0x0, 0x0, 0x0) (rerun: 32) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/partitions\x00', 0x0, 0x0) (async) r6 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv4/tcp_window_scaling\x00', 0x1, 0x0) sendfile(r6, r5, &(0x7f00000000c0)=0x3f, 0x7) (async) setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, &(0x7f0000000100)="4ca4307a9e9ef4af0d72810c053e1e6ee72e5a4f393710a5eff69ad4633e74f1af26c58c00f6d38322e0092baa43e92461750e87f8df90", 0x37) (async) sendmmsg$unix(r4, &(0x7f0000003540)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002cc0)=[{&(0x7f0000001b40)='3', 0x1}, {&(0x7f0000001b80)='f', 0x1}], 0x2}}], 0x2, 0x0) (async, rerun: 64) bind$bt_hci(r4, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x1}, 0x6) (rerun: 64) [ 65.550720][ T28] audit: type=1326 audit(1711603840.809:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5188 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f641d27dda9 code=0x7ffc0000 [ 170.585486][ C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 170.592606][ C1] rcu: 0-...!: (0 ticks this GP) idle=1e4c/1/0x4000000000000000 softirq=6110/6110 fqs=1 [ 170.603037][ C1] rcu: Tasks blocked on level-0 rcu_node (CPUs 0-1): P5075/1:b..l [ 170.610964][ C1] rcu: (detected by 1, t=10502 jiffies, g=6525, q=775 ncpus=2) [ 170.618606][ C1] Sending NMI from CPU 1 to CPUs 0: [ 170.623818][ C0] NMI backtrace for cpu 0 [ 170.623829][ C0] CPU: 0 PID: 5189 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-08951-gfe46a7dd189e #0 [ 170.623845][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 170.623854][ C0] RIP: 0010:check_preemption_disabled+0x0/0x120 [ 170.623898][ C0] Code: c7 a0 fe fd 8b 48 c7 c6 e0 fe fd 8b eb 1c 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <41> 57 41 56 41 54 53 48 83 ec 10 65 48 8b 04 25 28 00 00 00 48 89 [ 170.623909][ C0] RSP: 0018:ffffc90000007b18 EFLAGS: 00000046 [ 170.623922][ C0] RAX: 0000000000000000 RBX: ffffc90000007b80 RCX: ffffffff81719934 [ 170.623933][ C0] RDX: 0000000000000000 RSI: ffffffff8baacec0 RDI: ffffffff8bfdff00 [ 170.623944][ C0] RBP: ffffc90000007c68 R08: ffffffff8f860def R09: 1ffffffff1f0c1bd [ 170.623955][ C0] R10: dffffc0000000000 R11: fffffbfff1f0c1be R12: 1ffff92000000f6c [ 170.623967][ C0] R13: dffffc0000000000 R14: 0000000000000000 R15: 0000000000000046 [ 170.623977][ C0] FS: 00007f641dfa76c0(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000 [ 170.623990][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 170.624001][ C0] CR2: 0000001b2ff21000 CR3: 00000000110b2000 CR4: 00000000003506f0 [ 170.624014][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 170.624023][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 170.624033][ C0] Call Trace: [ 170.624041][ C0] [ 170.624049][ C0] ? nmi_cpu_backtrace+0x3c2/0x4d0 [ 170.624066][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 170.624089][ C0] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 170.624105][ C0] ? nmi_handle+0x2a/0x580 [ 170.624127][ C0] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 170.624145][ C0] ? nmi_handle+0x14f/0x580 [ 170.624159][ C0] ? nmi_handle+0x2a/0x580 [ 170.624174][ C0] ? __pfx_check_preemption_disabled+0x10/0x10 [ 170.624190][ C0] ? default_do_nmi+0x63/0x160 [ 170.624207][ C0] ? exc_nmi+0x123/0x1f0 [ 170.624223][ C0] ? end_repeat_nmi+0xf/0x53 [ 170.624244][ C0] ? lock_acquire+0xd4/0x530 [ 170.624259][ C0] ? __pfx_check_preemption_disabled+0x10/0x10 [ 170.624274][ C0] ? __pfx_check_preemption_disabled+0x10/0x10 [ 170.624291][ C0] ? __pfx_check_preemption_disabled+0x10/0x10 [ 170.624306][ C0] [ 170.624311][ C0] [ 170.624316][ C0] lock_acquire+0x1a7/0x530 [ 170.624333][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 170.624349][ C0] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 170.624370][ C0] ? __hrtimer_run_queues+0x481/0xd00 [ 170.624388][ C0] ? __pfx_lock_release+0x10/0x10 [ 170.624406][ C0] ? __pfx_advance_sched+0x10/0x10 [ 170.624426][ C0] _raw_spin_lock+0x2e/0x40 [ 170.624444][ C0] ? advance_sched+0xab/0xca0 [ 170.624458][ C0] advance_sched+0xab/0xca0 [ 170.624474][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 170.624494][ C0] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 170.624517][ C0] ? __pfx_advance_sched+0x10/0x10 [ 170.624533][ C0] __hrtimer_run_queues+0x595/0xd00 [ 170.624559][ C0] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 170.624577][ C0] ? ktime_get_update_offsets_now+0x411/0x430 [ 170.624596][ C0] hrtimer_interrupt+0x396/0x990 [ 170.624625][ C0] __sysvec_apic_timer_interrupt+0x107/0x3a0 [ 170.624649][ C0] sysvec_apic_timer_interrupt+0xa1/0xc0 [ 170.624669][ C0] [ 170.624674][ C0] [ 170.624680][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 170.624697][ C0] RIP: 0010:memset_orig+0x25/0xb0 [ 170.624712][ C0] Code: 90 90 90 90 90 66 0f 1f 00 49 89 fa 40 0f b6 ce 48 b8 01 01 01 01 01 01 01 01 48 0f af c1 41 89 f9 41 83 e1 07 75 70 48 89 d1 <48> c1 e9 06 74 35 0f 1f 44 00 00 48 ff c9 48 89 07 48 89 47 08 48 [ 170.624723][ C0] RSP: 0018:ffffc900047c7798 EFLAGS: 00000246 [ 170.624736][ C0] RAX: 0000000000000000 RBX: ffffc900047c7820 RCX: 0000000000000018 [ 170.624746][ C0] RDX: 0000000000000018 RSI: 0000000000000000 RDI: ffffc900047c7820 [ 170.624755][ C0] RBP: ffffc900047c78b0 R08: ffffc900047c7837 R09: 0000000000000000 [ 170.624765][ C0] R10: ffffc900047c7820 R11: fffff520008f8f07 R12: ffffffff8baeaa06 [ 170.624777][ C0] R13: dffffc0000000000 R14: ffff0a01ffffff10 R15: ffff88805b8b90bc [ 170.624796][ C0] number+0xa2/0xf90 [ 170.624813][ C0] ? format_decode+0xf7a/0x1bb0 [ 170.624831][ C0] ? __pfx_number+0x10/0x10 [ 170.624847][ C0] ? __pfx_format_decode+0x10/0x10 [ 170.624862][ C0] ? kasan_save_track+0x51/0x80 [ 170.624875][ C0] ? kasan_save_track+0x3f/0x80 [ 170.624888][ C0] ? kasan_save_free_info+0x40/0x50 [ 170.624905][ C0] ? vsnprintf+0x948/0x1da0 [ 170.624923][ C0] vsnprintf+0x1542/0x1da0 [ 170.624943][ C0] ? __pfx_vsnprintf+0x10/0x10 [ 170.624964][ C0] audit_log_vformat+0x35c/0x9e0 [ 170.624987][ C0] ? __pfx_audit_log_vformat+0x10/0x10 [ 170.625005][ C0] ? kasan_quarantine_put+0xdc/0x230 [ 170.625024][ C0] ? lockdep_hardirqs_on+0x99/0x150 [ 170.625047][ C0] audit_log_format+0xdb/0x130 [ 170.625067][ C0] ? __pfx_audit_log_format+0x10/0x10 [ 170.625087][ C0] ? audit_log_task+0x219/0x2f0 [ 170.625105][ C0] ? __pfx_audit_log_task+0x10/0x10 [ 170.625121][ C0] ? __pfx___cant_migrate+0x10/0x10 [ 170.625140][ C0] audit_seccomp+0x19d/0x1f0 [ 170.625159][ C0] __seccomp_filter+0xb1b/0x1fc0 [ 170.625175][ C0] ? __pfx_futex_wake+0x10/0x10 [ 170.625191][ C0] ? __pfx_add_device_randomness+0x10/0x10 [ 170.625209][ C0] ? timekeeping_update+0x3e5/0x450 [ 170.625230][ C0] ? __pfx___seccomp_filter+0x10/0x10 [ 170.625245][ C0] ? do_futex+0x392/0x560 [ 170.625262][ C0] ? cap_capable+0x1b4/0x250 [ 170.625281][ C0] ? __pfx_do_futex+0x10/0x10 [ 170.625299][ C0] ? __pfx_do_settimeofday64+0x10/0x10 [ 170.625332][ C0] syscall_trace_enter+0xaa/0x150 [ 170.625350][ C0] do_syscall_64+0xcc/0x240 [ 170.625367][ C0] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 170.625383][ C0] RIP: 0033:0x7f641d27dda9 [ 170.625402][ C0] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 170.625412][ C0] RSP: 002b:00007f641dfa7178 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 170.625426][ C0] RAX: ffffffffffffffda RBX: 00007f641d3abf88 RCX: 00007f641d27dda9 [ 170.625437][ C0] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f641d3abf88 [ 170.625447][ C0] RBP: 00007f641d3abf80 R08: 00007f641dfa76c0 R09: 00007f641dfa76c0 [ 170.625458][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f641d3abf8c [ 170.625467][ C0] R13: 000000000000000b R14: 00007ffd7350e5a0 R15: 00007ffd7350e688 [ 170.625485][ C0] [ 170.625813][ C1] task:syz-executor.3 state:R running task stack:19312 pid:5075 tgid:5075 ppid:5064 flags:0x00004002 [ 171.273013][ C1] Call Trace: [ 171.276303][ C1] [ 171.279249][ C1] __schedule+0x1781/0x49d0 [ 171.283797][ C1] ? mark_lock+0x9a/0x350 [ 171.288135][ C1] ? __pfx___schedule+0x10/0x10 [ 171.292996][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 171.298987][ C1] ? do_raw_spin_unlock+0x13c/0x8b0 [ 171.304197][ C1] ? copy_page_range+0x371b/0x4240 [ 171.309322][ C1] ? preempt_schedule+0xe1/0xf0 [ 171.314187][ C1] preempt_schedule_common+0x84/0xd0 [ 171.319487][ C1] preempt_schedule+0xe1/0xf0 [ 171.324177][ C1] ? __pfx_preempt_schedule+0x10/0x10 [ 171.329568][ C1] ? __page_table_check_ptes_set+0x220/0x280 [ 171.335561][ C1] ? copy_page_range+0x371b/0x4240 [ 171.340689][ C1] preempt_schedule_thunk+0x1a/0x30 [ 171.345899][ C1] _raw_spin_unlock+0x3e/0x50 [ 171.350586][ C1] copy_page_range+0x3763/0x4240 [ 171.355531][ C1] ? mark_lock+0x9a/0x350 [ 171.359913][ C1] ? __pfx_copy_page_range+0x10/0x10 [ 171.365210][ C1] ? mark_lock+0x9a/0x350 [ 171.369559][ C1] ? mas_wr_walk+0x58a/0x5d0 [ 171.374158][ C1] ? mas_wr_end_piv+0x271/0x8e0 [ 171.379036][ C1] ? mas_store+0x577/0x670 [ 171.383467][ C1] ? __pfx_mas_store+0x10/0x10 [ 171.388248][ C1] ? up_write+0x1a9/0x590 [ 171.392596][ C1] ? __pfx_up_write+0x10/0x10 [ 171.397282][ C1] ? __asan_memset+0x23/0x50 [ 171.401881][ C1] ? __pfx_vma_interval_tree_augment_rotate+0x10/0x10 [ 171.408656][ C1] ? vma_interval_tree_insert_after+0x262/0x2c0 [ 171.414911][ C1] copy_mm+0x12f5/0x21b0 [ 171.419183][ C1] ? __pfx_copy_mm+0x10/0x10 [ 171.423794][ C1] ? __init_rwsem+0x122/0x160 [ 171.428481][ C1] ? copy_signal+0x549/0x670 [ 171.433093][ C1] copy_process+0x187a/0x3df0 [ 171.437807][ C1] ? copy_process+0xa03/0x3df0 [ 171.442587][ C1] ? __pfx_copy_process+0x10/0x10 [ 171.447645][ C1] kernel_clone+0x223/0x840 [ 171.452161][ C1] ? __pfx_kernel_clone+0x10/0x10 [ 171.457213][ C1] __x64_sys_clone+0x258/0x2a0 [ 171.461987][ C1] ? __pfx___x64_sys_clone+0x10/0x10 [ 171.467279][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 171.473279][ C1] ? exc_page_fault+0x585/0x890 [ 171.478147][ C1] ? do_syscall_64+0xb6/0x240 [ 171.482850][ C1] do_syscall_64+0xfb/0x240 [ 171.487367][ C1] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 171.493267][ C1] RIP: 0033:0x7fddf7a7add3 [ 171.497686][ C1] RSP: 002b:00007ffe4592c318 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 171.506111][ C1] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fddf7a7add3 [ 171.514090][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011 [ 171.522069][ C1] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 171.530045][ C1] R10: 0000555561c46750 R11: 0000000000000246 R12: 0000000000000000 [ 171.538023][ C1] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001 [ 171.546016][ C1] [ 171.549039][ C1] rcu: rcu_preempt kthread starved for 10500 jiffies! g6525 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1 [ 171.560156][ C1] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 171.570125][ C1] rcu: RCU grace-period kthread stack dump: [ 171.576020][ C1] task:rcu_preempt state:R running task stack:26256 pid:16 tgid:16 ppid:2 flags:0x00004000 [ 171.587773][ C1] Call Trace: [ 171.591058][ C1] [ 171.593996][ C1] __schedule+0x1781/0x49d0 [ 171.598539][ C1] ? __pfx___schedule+0x10/0x10 [ 171.603404][ C1] ? __pfx_lock_release+0x10/0x10 [ 171.608431][ C1] ? __asan_memset+0x23/0x50 [ 171.613037][ C1] ? __pfx_lockdep_init_map_type+0x10/0x10 [ 171.618850][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 171.625185][ C1] ? schedule+0x90/0x320 [ 171.629440][ C1] schedule+0x14b/0x320 [ 171.633616][ C1] schedule_timeout+0x1be/0x310 [ 171.638481][ C1] ? __pfx_schedule_timeout+0x10/0x10 [ 171.643861][ C1] ? __pfx_process_timeout+0x10/0x10 [ 171.649156][ C1] ? prepare_to_swait_event+0x32e/0x350 [ 171.654723][ C1] rcu_gp_fqs_loop+0x2df/0x1370 [ 171.659576][ C1] ? lockdep_hardirqs_on+0x99/0x150 [ 171.664802][ C1] ? __pfx_dyntick_save_progress_counter+0x10/0x10 [ 171.671307][ C1] ? lockdep_hardirqs_on+0x99/0x150 [ 171.676516][ C1] ? __pfx_rcu_gp_fqs_loop+0x10/0x10 [ 171.681812][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 171.687720][ C1] ? finish_swait+0xd4/0x1e0 [ 171.692324][ C1] rcu_gp_kthread+0xa7/0x3b0 [ 171.696954][ C1] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 171.702162][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 171.708069][ C1] ? __kthread_parkme+0x169/0x1d0 [ 171.713108][ C1] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 171.718319][ C1] kthread+0x2f0/0x390 [ 171.722400][ C1] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 171.727626][ C1] ? __pfx_kthread+0x10/0x10 [ 171.732228][ C1] ret_from_fork+0x4b/0x80 [ 171.736656][ C1] ? __pfx_kthread+0x10/0x10 [ 171.741256][ C1] ret_from_fork_asm+0x1a/0x30 [ 171.746044][ C1] [ 171.749096][ C1] rcu: Stack dump where RCU GP kthread last ran: [ 171.755427][ C1] CPU: 1 PID: 10 Comm: kworker/u8:0 Not tainted 6.8.0-syzkaller-08951-gfe46a7dd189e #0 [ 171.765058][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 171.775116][ C1] Workqueue: events_unbound toggle_allocation_gate [ 171.781633][ C1] RIP: 0010:smp_call_function_many_cond+0x1859/0x2960 [ 171.788405][ C1] Code: 01 31 ff e8 d9 d5 0b 00 41 83 e4 01 49 bc 00 00 00 00 00 fc ff df 75 07 e8 84 d1 0b 00 eb 38 f3 90 42 0f b6 04 23 84 c0 75 11 <41> f7 45 00 01 00 00 00 74 1e e8 68 d1 0b 00 eb e4 44 89 e9 80 e1 [ 171.808016][ C1] RSP: 0018:ffffc900000f76e0 EFLAGS: 00000246 [ 171.814093][ C1] RAX: 0000000000000000 RBX: 1ffff11017288be5 RCX: ffff888017299e00 [ 171.822075][ C1] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000 [ 171.830050][ C1] RBP: ffffc900000f78e0 R08: ffffffff818922b7 R09: 1ffffffff2595ca0 [ 171.838024][ C1] R10: dffffc0000000000 R11: fffffbfff2595ca1 R12: dffffc0000000000 [ 171.846001][ C1] R13: ffff8880b9445f28 R14: ffff8880b953f440 R15: 0000000000000000 [ 171.853978][ C1] FS: 0000000000000000(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000 [ 171.862921][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 171.869510][ C1] CR2: 00007f7c6517e1f8 CR3: 000000000df32000 CR4: 00000000003506f0 [ 171.877501][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 171.885475][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 171.893469][ C1] Call Trace: [ 171.896755][ C1] [ 171.899629][ C1] ? rcu_check_gp_kthread_starvation+0x278/0x310 [ 171.905989][ C1] ? print_other_cpu_stall+0x14a4/0x15e0 [ 171.911631][ C1] ? get_jiffies_update+0x44/0x150 [ 171.916771][ C1] ? __pfx_print_other_cpu_stall+0x10/0x10 [ 171.922604][ C1] ? seqcount_lockdep_reader_access+0x1c6/0x220 [ 171.928883][ C1] ? kvm_check_and_clear_guest_paused+0x6a/0xd0 [ 171.935137][ C1] ? rcu_sched_clock_irq+0x9f4/0x10a0 [ 171.940525][ C1] ? __pfx_rcu_sched_clock_irq+0x10/0x10 [ 171.946175][ C1] ? hrtimer_run_queues+0x16c/0x460 [ 171.951390][ C1] ? acct_account_cputime+0x207/0x210 [ 171.956789][ C1] ? update_process_times+0x1ce/0x230 [ 171.962167][ C1] ? tick_nohz_handler+0x39e/0x540 [ 171.967292][ C1] ? __pfx_tick_nohz_handler+0x10/0x10 [ 171.972763][ C1] ? __hrtimer_run_queues+0x54b/0xd00 [ 171.978160][ C1] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 171.983889][ C1] ? ktime_get_update_offsets_now+0x411/0x430 [ 171.989970][ C1] ? hrtimer_interrupt+0x396/0x990 [ 171.995123][ C1] ? __sysvec_apic_timer_interrupt+0x107/0x3a0 [ 172.001292][ C1] ? sysvec_apic_timer_interrupt+0xa1/0xc0 [ 172.007119][ C1] [ 172.010054][ C1] [ 172.012993][ C1] ? asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 172.019160][ C1] ? smp_call_function_many_cond+0x1837/0x2960 [ 172.025331][ C1] ? smp_call_function_many_cond+0x1859/0x2960 [ 172.031514][ C1] ? __pfx_do_sync_core+0x10/0x10 [ 172.036564][ C1] ? __pfx_text_poke_memcpy+0x10/0x10 [ 172.041951][ C1] ? __pfx___text_poke+0x10/0x10 [ 172.046897][ C1] ? process_scheduled_works+0x91b/0x1770 [ 172.052631][ C1] ? __pfx_smp_call_function_many_cond+0x10/0x10 [ 172.058971][ C1] ? __pfx___might_resched+0x10/0x10 [ 172.064261][ C1] ? __mutex_trylock_common+0x183/0x2e0 [ 172.069817][ C1] ? __pfx___might_resched+0x10/0x10 [ 172.075115][ C1] ? __pfx_do_sync_core+0x10/0x10 [ 172.080169][ C1] on_each_cpu_cond_mask+0x3f/0x80 [ 172.085296][ C1] text_poke_bp_batch+0x352/0xb30 [ 172.090360][ C1] ? __pfx_text_poke_bp_batch+0x10/0x10 [ 172.095928][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 172.100975][ C1] ? arch_jump_label_transform_queue+0x9b/0x100 [ 172.107253][ C1] ? process_scheduled_works+0x91b/0x1770 [ 172.112996][ C1] text_poke_finish+0x30/0x50 [ 172.117705][ C1] arch_jump_label_transform_apply+0x1c/0x30 [ 172.123714][ C1] static_key_enable_cpuslocked+0x136/0x260 [ 172.129622][ C1] static_key_enable+0x1a/0x20 [ 172.134395][ C1] toggle_allocation_gate+0xb5/0x250 [ 172.139722][ C1] ? __pfx_toggle_allocation_gate+0x10/0x10 [ 172.145639][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 172.152012][ C1] process_scheduled_works+0xa00/0x1770 [ 172.157613][ C1] ? __pfx_process_scheduled_works+0x10/0x10 [ 172.163619][ C1] ? assign_work+0x364/0x3d0 [ 172.168225][ C1] worker_thread+0x86d/0xd70 [ 172.172835][ C1] ? __kthread_parkme+0x169/0x1d0 [ 172.177870][ C1] ? __pfx_worker_thread+0x10/0x10 [ 172.182989][ C1] kthread+0x2f0/0x390 [ 172.187069][ C1] ? __pfx_worker_thread+0x10/0x10 [ 172.192186][ C1] ? __pfx_kthread+0x10/0x10 [ 172.196787][ C1] ret_from_fork+0x4b/0x80 [ 172.201222][ C1] ? __pfx_kthread+0x10/0x10 [ 172.205837][ C1] ret_from_fork_asm+0x1a/0x30 [ 172.210635][ C1]