last executing test programs: 4.200685284s ago: executing program 3 (id=1717): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7b, 0x4) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x13}}, 0x10) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600), 0x4) sendto$inet(r0, &(0x7f0000000700)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff959bcecc7a95425a3a07e758044ab4ea6f7c555d88fecf90b037511bf746bec66ba", 0x994b6e03113064ae, 0x0, 0x0, 0x0) recvmsg(r0, &(0x7f0000001500)={0x0, 0xa, &(0x7f0000002200)=[{&(0x7f00000035c0)=""/4106, 0x437aba2}], 0x1, 0x0, 0x46, 0x407006}, 0x104) 3.290056294s ago: executing program 3 (id=1723): r0 = socket$packet(0x11, 0x3, 0x300) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$nl_route(r2, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r2, 0x89f1, &(0x7f0000000100)={'syztnl1\x00', &(0x7f0000000280)={'syztnl0\x00', 0x0, 0x4, 0x1, 0x2, 0x1, 0x8, @private0={0xfc, 0x0, '\x00', 0x1}, @private0, 0x40, 0x20, 0x8, 0xf7c4}}) getsockname$packet(r2, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x401) r4 = syz_open_dev$dri(&(0x7f0000000080), 0x2, 0x0) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r4, 0x4010640d, &(0x7f0000000000)={0x3, 0x2}) ioctl$DRM_IOCTL_MODE_ATOMIC(r4, 0xc03864bc, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}) sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=@newlink={0x40, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, r3, 0x9801}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @gre={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_GRE_REMOTE={0x8, 0x7, @dev}, @IFLA_GRE_ENCAP_TYPE={0x6, 0xe, 0x1}]}}}]}, 0x40}, 0x1, 0x0, 0x0, 0x80}, 0x8000) sendto$packet(r0, &(0x7f0000000000)='1', 0x26, 0x0, &(0x7f0000000200)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @local}, 0x14) r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r6 = userfaultfd(0x801) ioctl$UFFDIO_API(r6, 0xc018aa3f, &(0x7f0000000040)) r7 = fcntl$dupfd(r6, 0x0, r6) read$usbmon(r7, 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)) ioctl$int_in(r5, 0x5421, &(0x7f0000001100)=0x2000000009) connect$bt_sco(r5, &(0x7f0000000040)={0x1f, @fixed}, 0x8) 3.229934324s ago: executing program 3 (id=1724): r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000003c0)={'wlan0\x00', 0x0}) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000000)={0x4c, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @action={{{}, {0x3}, @broadcast, @device_a, @initial, {0x0, 0xff}}, @ext_ch_sw={0x4, 0x4, {{0x1, 0x0, 0x2}, @void}}}}, @NL80211_ATTR_CSA_C_OFFSETS_TX={0xa, 0xcd, [0x101, 0x9, 0xd]}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20000040}, 0x0) 3.22969291s ago: executing program 3 (id=1725): syz_open_dev$vim2m(&(0x7f0000000140), 0x10001, 0x2) socket$netlink(0x10, 0x3, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, &(0x7f0000000340)=[{0x0, 0x1, 0xa, 0xb}, {0x4, 0x2, 0x13, 0x7}, {0x5, 0x5, 0x1005, 0x9}], 0x10, 0x37, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) semget$private(0x0, 0x207, 0x480) keyctl$dh_compute(0x17, &(0x7f0000000200), &(0x7f0000000040)=""/217, 0xd9, &(0x7f00000001c0)={&(0x7f0000000140)={'sha384-avx\x00'}}) r3 = socket$kcm(0x10, 0x2, 0x0) openat$vmci(0xffffff9c, &(0x7f0000000480), 0x2, 0x0) socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000980)="2e00000004000000000000003772cc9714060200125c000e000a0010000000028000001294c929c48b54a3a5e6e5816c8799e29e079e08ed9029bfb90e4c47149854f4243eeb18318b03db36e821b8d42da5c25fb0a379d43bb6eab9354e99", 0x5f}, {0x0}, {&(0x7f0000000680)="26fc4bcf8b00c19cd0eed8a91f7c36de44eed2752c4d27ee2e10986d2bd694e164fc474722a7c91068d2fff42d18651c7466c32df96c18b43e5095a55c8f442684a47a2b1230367b1863af16e7ec594dae1a21c0b8add1cc423c85bc93cab7e00ddbffb7eed22f57d9e6f3ee48e8eb6331fd2537a9e505dc2f3a5d2d033eaab4616b717c8c8014cdaa4c3005f766012a465faff47ffee447dc158503dd14756f48425e5065be60702f532d69a95b4784fe99995a968e15dca71d2ef063cfc156bbe16f7b8c61069d28a624da753204e887623a260f28e7e045b399ee522b80c79c0511e06d7357836d28370b90e0c240e70cbb35fb1b7035f8afe58dda91", 0xfe}, {&(0x7f0000000780)="507a820941f6d234a757b2de2fe516eb6857f51051e27bb99b33442507ee3dd395c93381abb5e6b9ff76eea128b6f395f74b64bc081efc463b192c1838538c8719738008a47502b4207297de026ed4ea30bef60af76f2b26e1a2768a7226725d1bdaaf35826dc04373837263fdf17c4f2639c8819e16e17d00fc21f8d7b44977ad781e5d30a73cde14ab215cea85a319e517ffb5f56fa62f8c8d87c91b590c92394f825d1acfb0d6cef6c31388f7e02ff3ef683300187fb8aa78472e41a28bbc8f3d2fd5e10956af04037ecbd9f94f631bc1bd877ab008073a4279d6f2b800"/246, 0xf6}, {&(0x7f0000000200)="57247d533633c256b37c6a4aedc53a12d585f860d01b94c14c8d", 0x1a}, {&(0x7f0000000240)="be1ac182feb197b37fadc7e8ad4b3a9a9b791e900ba3d654bb44d4402987f407bdbcefe93f535279d99bb839a1", 0x2d}, {&(0x7f0000000880)="91f0807b6afddf80750c5a560c2081f08de8a721aa5e3cfd20ea3bb4bda994bf8693656d03e1ecd9d468f2d4bb42292991d19fba6097597c9e6f16fdcb2b551f2bfeaaf98a60bc01df68984cf336e2d257b29840e3adfa847b5f420ea7b5e4d1545ae88f63dfbb3ecdfa6633997cbaaa79e2ada80941ed932cbd7a0b11325041f526151f6be00828495864ad9f61c009821728b246b5957891caf322b4a8c97874073ecf48e0cde8e05ba00619d7d90907550d123307265ef06a5ba4a640b82641a834e2684781e4b3e0a93e8d25795a7949e0864c40b8396a01a59b509e34ef484c938c3a677a072a4fba", 0xeb}, {0x0}], 0x8}, 0x0) r4 = getpid() r5 = syz_pidfd_open(r4, 0x0) setns(r5, 0x24020000) umount2(&(0x7f0000000040)='.\x00', 0x2) 2.710154151s ago: executing program 0 (id=1730): syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$TIPC_CMD_RESET_LINK_STATS(r0, 0x0, 0x0) syz_emit_ethernet(0x6a, 0x0, 0x0) dup(0xffffffffffffffff) ioctl$sock_inet_SIOCGIFNETMASK(0xffffffffffffffff, 0x891b, 0x0) r1 = userfaultfd(0x1) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000080)) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f00000000c0)={{&(0x7f0000ffa000/0x4000)=nil, 0x4000}, 0x1}) syz_io_uring_setup(0x4aa, 0x0, &(0x7f0000000000), &(0x7f00000001c0)) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0) syz_emit_vhci(&(0x7f0000000180)=@HCI_EVENT_PKT={0x4, @hci_ev_le_meta={{0x3e, 0xa}, @hci_ev_le_conn_update_complete={{}, {0x0, 0xc8, 0x3ff, 0xb9a}}}}, 0xd) syz_emit_vhci(&(0x7f0000002d00)=@HCI_EVENT_PKT={0x4, @hci_ev_mode_change={{0x14, 0x6}, {0x5, 0xc9, 0x3, 0x401}}}, 0x9) 2.640108313s ago: executing program 0 (id=1731): socket(0xa, 0x3, 0x3a) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0xd, &(0x7f0000000400)=ANY=[@ANYBLOB="1802000000000000000000000000000085000000bc00000018110000", @ANYRES32=r0], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x6) r1 = getpid() sched_setscheduler(r1, 0x2, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000740)=0x2) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) r4 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet(r4, &(0x7f0000000380)={0x2, 0x0, @remote}, 0x10) sendmmsg(r4, &(0x7f0000007fc0), 0x800001d, 0xa1a) 2.358364109s ago: executing program 3 (id=1735): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7b, 0x4) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x13}}, 0x10) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600), 0x4) sendto$inet(r0, &(0x7f0000000700)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff959bcecc7a95425a3a07e758044ab4ea6f7c555d88fecf90b037511bf746bec66ba", 0x994b6e03113064ae, 0x0, 0x0, 0x0) recvmsg(r0, &(0x7f0000001500)={0x0, 0xa, &(0x7f0000002200)=[{&(0x7f00000035c0)=""/4106, 0x437aba2}], 0x1, 0x0, 0x46, 0x407006}, 0x104) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='bic\x00', 0x4) getrandom(&(0x7f0000000240)=""/286, 0xffffff9a, 0x0) r1 = socket$igmp(0x2, 0x3, 0x2) getsockopt$MRT(r1, 0x0, 0xcf, 0x0, &(0x7f00000003c0)=0xfffffffffffffdf8) r2 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000440)='wlan0\x00', 0x10) sendto$inet(r2, 0x0, 0x0, 0xc806, &(0x7f0000000180)={0x2, 0x4e21, @multicast2}, 0x10) r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) ioctl$VHOST_SET_OWNER(r3, 0xaf01, 0x0) ioctl$VHOST_VSOCK_SET_GUEST_CID(r3, 0x4008af60, &(0x7f0000000040)={@my=0x1}) r4 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r4, 0x0, 0x0) sendto$inet(r2, 0x0, 0x0, 0x0, 0x0, 0x0) r5 = socket$packet(0x11, 0x3, 0x300) r6 = openat$dlm_plock(0xffffff9c, &(0x7f0000000080), 0x6200, 0x0) ioctl$DRM_IOCTL_FREE_BUFS(r6, 0x4008641a, &(0x7f0000000380)={0x3, &(0x7f00000001c0)=[0x1ff, 0x6, 0x8]}) r7 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r7, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000000c0)={'ip6gretap0\x00', 0x0}) sendto$packet(r7, &(0x7f0000000180)="0b036800e0ff64000200475400f6a13bb10000000800894f4803", 0x100a6, 0x0, &(0x7f0000000140)={0x11, 0x0, r8}, 0x14) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) syz_open_procfs(0x0, 0x0) 1.780195849s ago: executing program 0 (id=1736): r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000140)=0x2, 0x4) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) r2 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) pipe2(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r4 = openat$fuse(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0) sendfile(r3, r4, 0x0, 0x0) write$tun(r1, &(0x7f0000000340)={@void, @void, @eth={@broadcast, @multicast, @val={@void}, {@ipv4={0x800, @udp={{0x1b, 0x4, 0x0, 0x0, 0x98, 0x0, 0x6000, 0x0, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local, {[@rr={0x7, 0x17, 0x86, [@rand_addr=0x64010102, @empty, @empty, @private=0xa010102, @multicast1]}, @end, @ssrr={0x89, 0xb, 0x48, [@multicast1, @remote]}, @rr={0x7, 0x23, 0xae, [@dev={0xac, 0x14, 0x14, 0x3b}, @broadcast, @broadcast, @remote, @multicast1, @private=0xa010102, @dev={0xac, 0x14, 0x14, 0xd}, @multicast1]}, @ssrr={0x89, 0xf, 0x6c, [@loopback, @loopback, @loopback]}]}}, {0x0, 0x86dd, 0x2c, 0x0, @opaque="a4af2c0044abf1794166a3488ccd6c991f57f48ee8ba5e8a7524d1c669fdf79531149db0"}}}}}}, 0xaa) setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x9, 0x0, 0xffffffff}, 0x1c) syz_emit_ethernet(0x82, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], 0x0) 1.71021566s ago: executing program 0 (id=1738): getcwd(0x0, 0x0) (async) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r0) (async) socket$inet6_mptcp(0xa, 0x1, 0x106) (async) bind$inet6(r0, 0x0, 0x0) (async) syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x24, 0x24, 0x0, 0x0, 0x0, {0x0, 0x0, 0x12, 0x0, {}, {}, {0x0, 0xf}}}, 0x24}}, 0x0) write(0xffffffffffffffff, &(0x7f0000000000)="240000001a005f0214f9f407000904001f000000fe0000000008000008000f", 0x1f) (async) r1 = socket$kcm(0x10, 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="563f00001a00599c6d0e000091d028ef80"], 0xfe33) (async) syz_emit_ethernet(0x17, &(0x7f0000001340)=ANY=[@ANYBLOB="bbbbbbbbbbbbaaaaaaaabe"], 0x0) (async) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000001afc180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b703000000000000850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10) (async) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x7, 0x8031, 0xffffffffffffffff, 0x0) (async) getrandom(&(0x7f0000000340)=""/4096, 0x412269194f7c77a1, 0x0) (async) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) (async) r3 = syz_open_dev$video(&(0x7f0000000000), 0x7, 0x0) ioctl$VIDIOC_G_FMT(r3, 0xc0d05604, &(0x7f0000000300)={0x9}) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x9) 1.709717773s ago: executing program 0 (id=1740): r0 = syz_init_net_socket$ax25(0x3, 0x3, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000040)={'wlan0\x00', &(0x7f0000000200)=@ethtool_regs={0x1d}}) r1 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2) r2 = syz_open_dev$hidraw(&(0x7f0000000940), 0x0, 0x4a141) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000) write$hidraw(r2, &(0x7f0000000240)="21dd96a8", 0x4000) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000f00)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b708000000bc7a007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r4}, 0xc) prlimit64(0x0, 0xe, 0x0, 0x0) getsockopt$rose(0xffffffffffffffff, 0x104, 0x1, 0x0, 0x0) read$msr(0xffffffffffffffff, 0x0, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0xcc52, 0x0, &(0x7f0000006680)=0xfe) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00304, 0x15) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_TRAP_POLICER_GET(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x3c, r6, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}]}, 0x3c}}, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8) ppoll(&(0x7f00000000c0)=[{r1, 0xb}], 0x1, 0x0, 0x0, 0x0) ioctl$vim2m_VIDIOC_S_CTRL(r1, 0xc008561c, &(0x7f0000000040)={0xf0f046}) 1.589979991s ago: executing program 2 (id=1743): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x8001, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000140)=ANY=[@ANYBLOB="02000000000000001000000000000000f0ffffffffffffff1000000000000000ff0300001b"]) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a310000000040000000030a01020000000000000000010000000900030073797a320000000014000480080002400000000008000140000000050900010073797a31000000004c000000050a01020000100000000000010020000c00024000000000000000010900010073797a310000000020000480140003"], 0xd4}}, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x8001, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000140)=ANY=[@ANYBLOB="02000000000000001000000000000000f0ffffffffffffff1000000000000000ff0300001b"]) (async) socket$nl_netfilter(0x10, 0x3, 0xc) (async) sendmsg$NFT_BATCH(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a310000000040000000030a01020000000000000000010000000900030073797a320000000014000480080002400000000008000140000000050900010073797a31000000004c000000050a01020000100000000000010020000c00024000000000000000010900010073797a310000000020000480140003"], 0xd4}}, 0x0) (async) 1.589744796s ago: executing program 2 (id=1744): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7b, 0x4) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x13}}, 0x10) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600), 0x4) sendto$inet(r0, &(0x7f0000000700)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff959bcecc7a95425a3a07e758044ab4ea6f7c555d88fecf90b037511bf746bec66ba", 0x994b6e03113064ae, 0x0, 0x0, 0x0) recvmsg(r0, &(0x7f0000001500)={0x0, 0xa, &(0x7f0000002200)=[{&(0x7f00000035c0)=""/4106, 0x437aba2}], 0x1, 0x0, 0x46, 0x407006}, 0x104) 1.490039553s ago: executing program 2 (id=1745): socket(0xa, 0x3, 0x3a) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0xd, &(0x7f0000000400)=ANY=[@ANYBLOB="1802000000000000000000000000000085000000bc00000018110000", @ANYRES32=r0], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x6) r1 = getpid() sched_setscheduler(r1, 0x2, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000740)=0x2) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) r4 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet(r4, &(0x7f0000000380)={0x2, 0x0, @remote}, 0x10) sendmmsg(r4, &(0x7f0000007fc0), 0x800001d, 0xa1a) 1.279645434s ago: executing program 1 (id=1748): socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000000)={0x4c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @action={{{}, {0x3}, @broadcast, @device_a, @initial, {0x0, 0xff}}, @ext_ch_sw={0x4, 0x4, {{0x1, 0x0, 0x2}, @void}}}}, @NL80211_ATTR_CSA_C_OFFSETS_TX={0xa, 0xcd, [0x101, 0x9, 0xd]}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20000040}, 0x0) 1.2793235s ago: executing program 1 (id=1749): connect$inet(0xffffffffffffffff, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) socket$netlink(0x10, 0x3, 0x15) mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff) sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) r3 = add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f00000000c0)={'fscrypt:', @desc4}, &(0x7f00000001c0)={0x0, "28d7b07d54891881fe02c1203fe49696b9f26f2da4149683f065714f8a61d1f32c9d064bbd27b2aa57459cff33a3a9831ac46b8829b48fff3d63520d260804d0"}, 0x48, 0xfffffffffffffffd) keyctl$setperm(0x5, r3, 0x0) keyctl$revoke(0x6, 0x0) lsetxattr$system_posix_acl(0x0, 0x0, 0x0, 0x5c, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) r4 = socket$pptp(0x18, 0x1, 0x2) r5 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="2e00000010008188040f80ec59acbc0413a1f848100000005e0c00f0ffffff180e000a001400000002801687121f", 0x2e}], 0x1}, 0x0) sendmsg$kcm(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001340)=[{&(0x7f0000000040)="2e00000010008188040f46ecdb4cb9cca7480ef410000000e3bd6efb010511000b000a000d000000ba8000001201", 0x2e}], 0x1, 0x0, 0x0, 0xc9e}, 0x0) bind$pptp(r4, &(0x7f0000000080)={0x18, 0x2, {0x0, @dev}}, 0x1e) syz_clone(0xa0320080, 0x0, 0x0, 0x0, 0x0, 0x0) r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCFLSH(r6, 0x541b, 0x69de07874f7f0000) 1.16024104s ago: executing program 1 (id=1750): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$nl_route(r2, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={0x0, 0x18}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="5000000010008105e9c5", @ANYRES32=r3, @ANYBLOB="01000000000000002800128009000100766c616e000000001800028006000100000000000c0002000c0000000d00000008000500", @ANYRES64=r1], 0x50}}, 0x0) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="2c0000001000030400"/20, @ANYRES32=r3, @ANYBLOB="a5fdad88000000000a0001"], 0x2c}}, 0x0) 1.158665061s ago: executing program 1 (id=1751): bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b40)={0x18, 0x10, &(0x7f0000000400)=ANY=[@ANYBLOB], &(0x7f0000000080)='syzkaller\x00', 0x8, 0xac, &(0x7f0000000140)=""/172, 0x41000, 0x48, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x6) r0 = getpid() sched_setscheduler(r0, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000740)=0x2) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) r3 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet(r3, &(0x7f0000000380)={0x2, 0x0, @remote}, 0x10) sendmmsg(r3, &(0x7f0000007fc0), 0x800001d, 0xa1a) sendmsg$TIPC_CMD_RESET_LINK_STATS(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x90004800}, 0xc, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x44880}, 0x8000) 809.921976ms ago: executing program 0 (id=1752): bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b40)={0x18, 0x10, &(0x7f0000000400)=ANY=[@ANYBLOB], &(0x7f0000000080)='syzkaller\x00', 0x8, 0xac, &(0x7f0000000140)=""/172, 0x41000, 0x48, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x6) r0 = getpid() sched_setscheduler(r0, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000740)=0x2) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) r3 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet(r3, &(0x7f0000000380)={0x2, 0x0, @remote}, 0x10) sendmmsg(r3, &(0x7f0000007fc0), 0x800001d, 0xa1a) sendmsg$TIPC_CMD_RESET_LINK_STATS(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x90004800}, 0xc, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x44880}, 0x8000) 629.845098ms ago: executing program 2 (id=1753): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x4d, &(0x7f00000009c0)={&(0x7f0000000040)={0x14, 0x25, 0x1, 0x70bd2b, 0x25dfdbfc, {0x7}}, 0x14}, 0x1, 0x0, 0x0, 0x4814}, 0x14) r1 = mq_open(0x0, 0x6e93ebbbcc0884f2, 0x1c4, &(0x7f0000000040)={0x0, 0x1, 0x4, 0x3}) mq_timedreceive(r1, &(0x7f0000000180)=""/196, 0xc4, 0x800000000000, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000002c2cb63c56c8217af4bf4eee0000850000002a00000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000d40)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000020000000000000000000005000000000000c72fe93d"], 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28) syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r2}, 0x10) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) write$6lowpan_enable(0xffffffffffffffff, &(0x7f0000000000)='0', 0xfffffd2c) bpf$MAP_CREATE_RINGBUF(0x1800, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x8000, '\x00', 0x0, 0x0, 0x0, 0x201, 0x0, 0x0, @void, @value, @void, @value}, 0x50) 629.518899ms ago: executing program 2 (id=1754): openat$vnet(0xffffff9c, &(0x7f0000000100), 0x2, 0x0) r0 = openat$dsp1(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$SOUND_MIXER_READ_CAPS(r0, 0x80044dfc, 0x0) r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x20002) r2 = getpid() timer_create(0x0, &(0x7f0000000000)={0x0, 0x21}, &(0x7f0000000040)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r3 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000680), 0x0, 0x0) mmap$dsp(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x9, 0x11, r3, 0x0) ioctl$SNDCTL_DSP_GETIPTR(r3, 0x800c5011, &(0x7f0000000040)) mlockall(0x7) sched_setscheduler(r2, 0x2, &(0x7f0000001700)=0x4) r4 = dup(r1) r5 = syz_open_procfs(0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r4, 0xc0189375, 0x0) ioctl$FICLONERANGE(0xffffffffffffffff, 0x4020940d, &(0x7f0000000200)={{r4}, 0x5, 0x78, 0x9b6c}) r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) r7 = openat$sr(0xffffff9c, &(0x7f0000000500), 0x80, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x0, 0x1c, &(0x7f00000006c0)=ANY=[@ANYBLOB="1800000001000000000000000600000008ecff0101800000d454fcfff7ffffffd7271800ffffffff180000000800000000000000080000008520000001000000184300000800000000000000000000000870010140000000186200000e0000000000000001000000b7080000000000007b8af8ff00000000b7080000810000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000000000000b70500000800000085000000a5000000852000000100000095000000000000000bfc3d79db06935236f09380e4dd57ac14e083d82cc315d0f9fd5221ae845f4dcca00c9a1608a5c77fb93a7b05c0528d2442bebeb9772aef512bff821803fb"], &(0x7f0000000240)='GPL\x00', 0x8, 0xe6, &(0x7f00000003c0)=""/230, 0x41100, 0x23, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000004c0)={0x5, 0x5, 0xffffffff, 0x81}, 0x10, 0x0, 0x0, 0x1, &(0x7f0000000540)=[r6, r7, r5], &(0x7f0000000580)=[{0x2, 0x4, 0xb, 0xc}], 0x10, 0x1, @void, @value}, 0x94) select(0x20000000, 0x0, 0x0, 0x0, 0x0) 529.771102ms ago: executing program 3 (id=1755): r0 = getpgid(0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x0, 0x0) r1 = epoll_create1(0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) creat(0x0, 0x0) r4 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r4, 0x10f, 0x87, &(0x7f0000000140)=@req3={0x7fffffff, 0x400, 0x1, 0xd, 0x1, 0x6, 0x6}, 0x1c) recvmmsg$unix(r4, &(0x7f0000003100)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000480)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0) r5 = fsopen(&(0x7f0000000000)='ecryptfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0) sendmmsg(r4, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000) openat$autofs(0xffffff9c, &(0x7f0000000240), 0x208400, 0x0) ftruncate(0xffffffffffffffff, 0xffff) fcntl$addseals(0xffffffffffffffff, 0x409, 0x7) r6 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r7 = epoll_create1(0x0) sendmsg$xdp(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000001480)="8051942a2c21351c46b3a16c440a13d47a430bdf3664806765ef448d28fc495c2f3af7dc612c091e590809d81a91335a1d5297340af011bf096d72efccebc17bafc139a3e7e98f3ccfc525e06a370b61549d64f26f3f928cf13d68340749e54d3f85d5b1df9ae0352593b9329643188423431098d1c5bf788ec2ce653e90f3c558881dc3325d83bdf559e248145ef509084195bb4d95b601979725c2edb3739d44aba4bfbfbccf6dd09621eb4c1d2e9c1897857c35e00149489c886b9960808473a63d4b5f9e8758a57571e63c93372b06db218c7c342025980d1dd9e1fb531fa6dc6b4098e7b2493d1e4d3d2228be103046b3c1765a819a9dd809578d3e16417ae5dfa55fc6fdf4972747a9f8a9262e23a3bae9005de379f847ab5ed11a8c3a7bd1df12fc186a025241c56720c2ddb0cf0538334c3c647cca353f092c7a9644defbccbef0c994e44f9a445e5beb0e77a307f006e4f9c8e792d183c778e08fe2cb9ee0fdc7d6db89ffc34c273e4786ff8bb0e263a62325fb2b4112bf521a6b1d3f08e48f0452eb6d4c9de0da7ddbc5fd41727a05e264f1cf5dd0cd85810c231e87e5e133a4b516916b2f212ec03752aa7770ba8710dea47de89c85be14efb163d8231795e2b5b7ec552341c63fda81063cae982ce26ae66cbf820855c25c86b78b11c046e4a6019265f61a164863f0963832f724060b6c17e0344e9d65e9bb2ee5df3e3274750790a45e3cf25bfa7f2b6634e993d82ecbb1bb54db01b7b42be56de0ee1bb16e73538813f547c2a9ebf7b7d0f208bc75ae3ed7dc2775d5ef0d0518f6392ca3e4a3bac6f83da9240f94c5b772074da21e89fe78c2f4944bca4b8ec937321c2719150e9b333ec7d28bb50926d77d1661483d40794451752388a4b539828c4390af417e04351a2c518574886fd63def7f1611f5dabe8dacc53e5675be7a1661ee71a0c19582b138bc8c6d78bcecd75072364108cfd4642878a58491304d229a22f013ca11a1ce1b022c74d5a7e8bbe85aa22e46af23888057339fda8f5971cb8a6628dbc5a2cb1cb3b7668ff820cc0ddc9aa7982a8bb907c9bc013541dcf2b6e0d5783dae02209bbb9386d4c56b5b741275be4f2d2dcad652dc7ff3d2a47f48315f8671262c3a1895eee032c08e6c6a4fd1940b60a5ecd64216c891d423108bf06ebeeb5c251a499e93003d4bcbb8af86247e4092d04fcbe73a510eaa971767149f122126bf6bec3e71f96f32842132790a920e55469210e25fc630db05ea7a2fcb4a8f823eab7237013974bb72b6d980f52c0cb3443e47a6e8c953843c952db913fa618f1f1ce898d4b6fa7daf80fa5bb6593392184a2a194b6f39169de99f274ec041cb1cfba370fea40f4112b0c8bd47ec3e0c236120356e4ab3de8c78c03a46107ae390fd065b1d30e04c095f532f7c3685ac93274c29d7d6ee74da5370c2f32c12c84bba793f1b6778a5fc640294855361d933c1348b6df65ef7dc013d2ac96213726ff40ab0d3e2bba16ad162b218cc45f32e82fc751ca56b4381d551105164fa017abc353a32ac00c4cb4816975d869f1fabc27f335ac1e61c8afd2c258db5239fcfc3abc56766b743932aef95df50ce7502c122a16a56664f209fd2a1ed5d1b214a8d55b9cd577e01ce0ea6efdd0a226ca9b480624406516bf59e59bd23aff305f1ed62573aad81c58c89374c4312732384b367b3e3638031afcba71471c5f466d1e01db5ce55951093b44ae8658e39851d911f2b14b4de92ce564178ffc5f074274fb3a5aaf6ba8a1c7cf7d64c3beb39703dc345b293ef5b636b4ec5d03dcb085ecce3d9964f93da4c2bc6a704fcfbe62c74321ec3ad97c6c79686f3a74f6403a84fc46100429e47b2c45be058101137faef4c3d50ae711512365bc9daf492e7be4b36b4dcab9e8b108fb2ecb8ea8f85ba8186f23b68eeddb68128ec0f9a34a23f477d12b92e875277fe0fa2e3dce35069a51587455a395cc3dc5c4f1c5177faaf1a5611819c17f5bc8befa435f9bec00e21d06b825f2ba11159fe15aec9674786f352146282521c23a5247d3c6441c355bcd49da8495818dcf49ed75f6439338f70f2d9ac53950453e245b1a7801b3af8e1c27c7cff319bfb0de31632f51177308fc92064886f5148a8d636a40b7934b26ef69b6ffd7bf61f49350bd1aecb0a5559d597fbac109edb5dc7051e03d0e45288e52f48d06530c4eb52146746c718e2cfe430c3d3efaa769054cedfe65b8864c88532abb4212abf73ffa2f0d3f4a235004b696e31fb7b746666d8005fa1250e0b740d8bca1f78df8052a519cab2da4034c0a259b40eeb42b916ae407074686474d2ea0918256353b528d904f74e52457456e96a01fca42d268f751b6145a67dac9073b6ece098cb0e9b41092ffb387d435b03188324f6e928f05c9c4ee813090526acd6489edd1a50cab2325f03108600823c04608ceb43cc897e282dd93bf4b1115c2f13a2b5a42583320fc2a266c84e9b90d3fa00ffa9a1fdc1215461ba2cb1f10e27b6f465f0a166fae697106b2215c63149f1c207805796781e45d24fbebd0cb9fa7bdebf69827239ca136aa1c56f3eb484dee0f9e50fd3b7a3a0cbe5a901fbf8e4a266bd01b8085393d05a83d7186e2f28663e3da7b74a4cdedc0c64dff845fdfc5d8c5ee6c32c3715cb6700f2f2e40b5c1ea56ba3a52856a115b1df4e7253844ff17ad681c8acbefea4731cb828d5d32da760d828af9581ea162f494191b1a797dc160fda88ef6a69ad4904f1b3616c1e5578f0277dfa542b98b5b6ba0335976b0760da78121400f6d0f0285a8718e0da5e9a16db2af2ae8e15b06db69c88c7963dbc4fc89f1ba6cfa02889564bc293f847095f4094cab82bcd83b08798b91df0fe9c1258a8b7ac8a889ce8ad7ec653907ad3170a151fa25e275b6527f6b36f7aa1099ffb1f2ff5dc577861c0b196b90c908031a2af3419b9e54d638387ecbbb4b57adb07c92506acb418fc747322608154f3ae66d8efad5f0d050df1cdb4de2da35d5e87dcc31bfba9e762bdb49041aa0dfb68bbadc84b3be6b0ba88d7212ddbc24f6957f6ba8f9d692d93af33a316583f9cf166d6978ca55a2dd8e43d5a81874fd21f4c28518654deb864498dfb1fd992578b754061efc90bd3580f66c0ec363ecd58717a22131fde73f5ea7ba68f4b79f2a3938fc154716a39549c2d7221f900c2edcc0404f6a5dd68f5e10c85f3c993e2ea75571437071446a535e6be7980d9dfd46ddcd5d4e7270600f4e39bd2a014f5863a490453fa739ba6eed42b9d9b2f57ed68d4c752026238e266aa32b8d0068d4d6b859d5823b5936c13d20dc6ccaf45245725e144db5c4b16b11e18bfb5b4b4247d048a465b0e6e44ae6581491775b9e450ccd2d5456f782723b8fefdcff0abdeb61e54e161cdf9a61fca6e8bbd89cd65ea2de6925ea588752ac78ca50cbcbc34782aae5d30684ed695ab2b88b9befc9da96f292a5cffdd04f1536d83e8c58d79d796742f636043975d8f8af87d65f03d4ea27777bb310bc54af4711d0adbaa71fe99d0c428d0bec1673d00f581c54f746c404dbff9e587f17d7200a0c959d9ea9c6285ee0dd526aa8693b41dcfdfa2bc7365c17ee4501838589652dccef8c907526830016c9cddc104297a06d901ef6e984f4afb24eb9cf62d06b406fb364632175a825567b2cfef7fee71c9f68d5555ec872b6cf84b3ee9b7d665060ed60f86b922de0d125e0dd2ae6b3c09be52c70dcc35b115cff7f71cc375b812c3ea8dc4f96f6f30fda1d5a01ed627789ed98fa6fde5133139d92fb957b6837a1b3dba6f141f47a077ac090cfd1682405b8698c3fd9e315b114865c24ab70baddcad6d6376981c8838610dcfd2a5319a27452415559ab270d94ac3014cedd0350578ceaceb16edb25d6cec949d6b224de059450168b8296e2d56646df50a5459341db6b64a03ccf31926bd6c2fd7f487ef9b782613eee9daccc5396f3782b28db0266b18fdd4558b89b8a9289e1983891b9c513a81757c50e0df92c73daab9c580cba483fd59a3bb665d403924a028ad07be2412371c512833d0a7b0fc05e23a5cd877cbad01be32813ef174d0764fe5dfedaa7c628ef6c534185f01b6493edd1db3d80157d189ab886b9de6f0ee1254421ad8f598c0c1719336843c4a508ff77f2c26fb2b9b3d36e7cc46428b647d502a61621294f66322fcc3c2ba2a16d538f50faa16c888e58c697f8d1327cb0122239691bd2f486d61f8b0893087d1a2018ad223da33aa7c133dd2f0e2cbba788dbfd2deb8dad2a94b58e6e2165b29112e099c8ebd2c161559d67c2df91921920d1831bb5f25732e29f2f62baebf9c5bdc4d7d1550bc871e4c3b105d96ffc27a30f2a064baba744b10bd957df31c10368d65c50e4fd45239a5219ea1f9053da03a8acf4010c34b199da0ed4fbdab2440f107e1a8c175bc0a5ffd597a2e43b022b11aff94ea306f80a2839977490b23531edea8f5fde59390626212da632b305017de0c227151a1cdad972562cbeda5f40e8b884def501b1629236225032bbc1a8584d58213825707368226b6fd18f16a8b2639e71b34720475810a967026661f948bbc1d774b799db483619c5088e0dec40db15a8a2c9e796b03ce50a707ae4a41da1a7921c046dcb5ed6c8b47994f3594cb7a41f3d8227221f861f2df2cde696cb5a15f8b5b5e7126a23b3e77b124ce6fba859432f841fc668b00c5fd53f136822171926bea6ef8f796fe11a984cff77fa8c04d4fd1a727a97da9291a5f3f5d16e7aac77607fdc067fb850c96045996d45841858a13903e32c35d597e959fac308d7f07bbaf5e96d72437c9b1b0f63dd2d7861791be85fa0a5b2cc215638eac6ebb2fe3767261e47042f4d9170ee4f6d0e3838f1fcbf45c330bd75e866b1552fcccaf9b840ca24349f9cb1321080df6775dfba02f15408a8974739a877368d64a79d1b64aaa2a38398ee10b4cba64443d4863be7448d425262020478c3f9b3420dfe5a7f34aed100ca1870a9bf897a6c96d0015a5bcfd7dc38233ae17ac179f5ff52d8cd6e93b446fe4ba1c1cf602175e7c60b7281340eadba62f4f6643b247f2064c42c47a66a3f51714314dcef6f2c155454bc515668235c987e1dc64fc5db752877928227af37f8f5fc08543716d66b27567f48c1c5797e4287f25b79667ae0614a1aafe41b93129ef0c191bf17bfaada2d0c343cdaad1e782cdc8732a2630733c41d1060a96b89fd820de25991c1234c97fb7c8ac06050ee3eede54ae1f819f2394536be492fc205b950aabab0759dd75701041160140a273fa57d12bbe1176f2e5d19e95e30e23ebbda6aac687b5f36ece9bde3a8d9b4b6845377d0a7c22496ad50f161681bc4b82eb353234aabfa92cd5f70e6117336fc68a3557121c2a9ef01397fcc434ffea3831c70817a3c698dc48c149eeb1c67a7b2b43831597a31a9ad703a1b0f56d3c4280d746217754a360d66f63f4d1a6c368bb39fb1838ccdbce660c0bf21c6fa254cf7a2c99902831947a514a959cebe1823eed64adde23081201c352fe43f9d2229f314a860622349b4699ecfaa84431efec600a52739d6b3f0dba323bc441cff82c51976baacff1c18b12792db31362c9f3801d83b004bcfc4086b58913028a1b7af238eb8378c225ada8e3a916565a7ada2ba957dc94d9e431206ed7ee26776c25aa4e0ffd96988e83a45699a03e3ae5012034573542e4d6e541fcc2aacf90247f531c73da60a6d98aa00472498d94a908574a8530776f44b1", 0x1000}], 0x1, 0x0, 0x0, 0x4000810}, 0x6010) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r3, &(0x7f0000000100)={0x20000014}) epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r1, &(0x7f0000000000)={0xa0000001}) epoll_wait(r7, &(0x7f0000000340)=[{}], 0x1, 0x1000) r8 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r8, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c) socket(0x11, 0xa, 0x0) 470.283103ms ago: executing program 2 (id=1756): syz_open_dev$vim2m(&(0x7f0000000140), 0x10001, 0x2) socket$netlink(0x10, 0x3, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, &(0x7f0000000340)=[{0x0, 0x1, 0xa, 0xb}, {0x4, 0x2, 0x13, 0x7}, {0x5, 0x5, 0x1005, 0x9}], 0x10, 0x37, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) semget$private(0x0, 0x207, 0x480) keyctl$dh_compute(0x17, &(0x7f0000000200), &(0x7f0000000040)=""/217, 0xd9, &(0x7f00000001c0)={&(0x7f0000000140)={'sha384-avx\x00'}}) r3 = socket$kcm(0x10, 0x2, 0x0) openat$vmci(0xffffff9c, &(0x7f0000000480), 0x2, 0x0) socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000980)="2e00000004000000000000003772cc9714060200125c000e000a0010000000028000001294c929c48b54a3a5e6e5816c8799e29e079e08ed9029bfb90e4c47149854f4243eeb18318b03db36e821b8d42da5c25fb0a379d43bb6eab9354e99", 0x5f}, {0x0}, {&(0x7f0000000680)="26fc4bcf8b00c19cd0eed8a91f7c36de44eed2752c4d27ee2e10986d2bd694e164fc474722a7c91068d2fff42d18651c7466c32df96c18b43e5095a55c8f442684a47a2b1230367b1863af16e7ec594dae1a21c0b8add1cc423c85bc93cab7e00ddbffb7eed22f57d9e6f3ee48e8eb6331fd2537a9e505dc2f3a5d2d033eaab4616b717c8c8014cdaa4c3005f766012a465faff47ffee447dc158503dd14756f48425e5065be60702f532d69a95b4784fe99995a968e15dca71d2ef063cfc156bbe16f7b8c61069d28a624da753204e887623a260f28e7e045b399ee522b80c79c0511e06d7357836d28370b90e0c240e70cbb35fb1b7035f8afe58dda91", 0xfe}, {&(0x7f0000000780)="507a820941f6d234a757b2de2fe516eb6857f51051e27bb99b33442507ee3dd395c93381abb5e6b9ff76eea128b6f395f74b64bc081efc463b192c1838538c8719738008a47502b4207297de026ed4ea30bef60af76f2b26e1a2768a7226725d1bdaaf35826dc04373837263fdf17c4f2639c8819e16e17d00fc21f8d7b44977ad781e5d30a73cde14ab215cea85a319e517ffb5f56fa62f8c8d87c91b590c92394f825d1acfb0d6cef6c31388f7e02ff3ef683300187fb8aa78472e41a28bbc8f3d2fd5e10956af04037ecbd9f94f631bc1bd877ab008073a4279d6f2b800"/246, 0xf6}, {&(0x7f0000000200)="57247d533633c256b37c6a4aedc53a12d585f860d01b94c14c8d", 0x1a}, {&(0x7f0000000240)="be1ac182feb197b37fadc7e8ad4b3a9a9b791e900ba3d654bb44d4402987f407bdbcefe93f535279d99bb839a1", 0x2d}, {&(0x7f0000000880)="91f0807b6afddf80750c5a560c2081f08de8a721aa5e3cfd20ea3bb4bda994bf8693656d03e1ecd9d468f2d4bb42292991d19fba6097597c9e6f16fdcb2b551f2bfeaaf98a60bc01df68984cf336e2d257b29840e3adfa847b5f420ea7b5e4d1545ae88f63dfbb3ecdfa6633997cbaaa79e2ada80941ed932cbd7a0b11325041f526151f6be00828495864ad9f61c009821728b246b5957891caf322b4a8c97874073ecf48e0cde8e05ba00619d7d90907550d123307265ef06a5ba4a640b82641a834e2684781e4b3e0a93e8d25795a7949e0864c40b8396a01a59b509e34ef484c938c3a677a072a4fba", 0xeb}, {0x0}], 0x8}, 0x0) r4 = getpid() r5 = syz_pidfd_open(r4, 0x0) setns(r5, 0x24020000) umount2(&(0x7f0000000040)='.\x00', 0x2) 287.839µs ago: executing program 1 (id=1757): socket$l2tp6(0xa, 0x2, 0x73) ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x89f7, &(0x7f0000000000)={'bridge0\x00', 0x0}) madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe) creat(0x0, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800"/13], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x6, 0x4, 0x5b, 0x8a, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000000500)=ANY=[@ANYBLOB="bf16000000000000b707000001009fa35070000000000000280000000000c00095000000000000002ba728041598d6fbd30cb599e83d24a3aa81d36bb3010100bd2321afb56fa54f26fb0b71d0e6adff07f1d8f7faf75e0f226bd99eea7960707142fa2dc79b9723741c4a0e168c1886d0d4d94f2f4e345c652fbc16ee988ee99fbfbf9b0a4def23d410f6296b32a834388107200759cda9036b4e369a9e152ddcc7b1b85f3c4744aeaccd3641110bec4e9027a0c8055bbfc3a96d2e8910c2c3b35967dec6e802f5ab3eea57b09a2ed4048d3b867ddd58211d6ececb0cd2b6d357b85a0218ce740068725837079e468ee2cf49822775985bf31b715f5888b24efa000000000000ffffffdf0000000000000000000000000000020000000000000000000000000000b27cf3d1848a54d7132be1ffb0adf9deab29ea3323aa9fdfb52faf449c3bfd09000000b9349e31aa3701c38c527d3237c18e521ab219efdebb7b3de8f67581cf796a1d4223b90b80fcad3f6c962b9f292324b7ab7f7da31cf41ab12012fb1e0a494034127de745409e35a30b23bcee46762c2093bcc9eae5ee3e980026c96f80ee1a74e04bde740750fa4d9aaa705989b8e673e3296e52d307db98ca112874ec309baed0499104dcfe7c00004bd5fc9e66d058b75fa4c81e5c9f42d9383e41d277b10392a96286744f049c3f128f8f92ef992239eafce5c1b3f97a297c9e49a0c3300ef7b7fb5f09e0c8a868a353009e34d3e82279637598f37ad380a447483cac394c7bbdcd0e3b1c39b2e00916de48a4e70f03cc415ba77af02c1d4cef5379da860aed8477dfa8ceefb405005c6977c78cdbf37704ec73755539280b064bda144910fe050038ec9e47de89298b7bf4d769ccc18eede00e8ca5457870eb30d211e23ccc8e06cd58b638c234bbb55ff413c86ba9affb12ec757c7234c270246c87a901160e6c07bf6cf8809c3a0d46ff7f000000000000ad1e1f493354b2822b9837421134c0167d78e6c24ed0a2768e825972ea3b774a1467c89fa0f82e8440105051e5510a33dcda5e143fbfff161c12ca389cbe4cc302b52e2101de18a1f1f7c551b3fa00055cc1c46c5fd9c26a54d43fa050645bd6109b113be7664e08bdd7115c61afcb718cf3c4680b2f6c7a84a4e378a9b15bc20f49e298727340e97c870800000047546103f123f661c84726e7c7c55eff231a1b033d8f841ba3442b2c7c503f3d0e7ab0e958adb862822e40009995ae166deb9856291a43a6f7eb2e32cefbf46306f2ef7be184f5e93ba5c8c2a4c04450b652b8d4c2ff030000000000000007c6bbd6cb2b240ce7d47ae636a5dbe9864a117d27326850a7c3b57086a4482c218b10af13d7be94987005088a83880ccab9c99220002af8c5e13d52c87c3a3ee6c08384865b66d2b4dcb5dd9cba16b64ebbbf8702ae12c77e6e34991a225c120a3c950942fe0bc9f2a1a7506d35e5b439edeb7088aeda890cf8a4a6f31ba6d9b8cb098f935bdcbb29fd0f1a342c9eed00000000ab6648a9dea0b6c91996d65da6c24a700a86c814459f3cdaaf99000000000000000000bf2130d1b32c826563c718d0ad23bc83ba3f3757210a057e177615c0683f000000000000006d4e0413ab52f5aaab812201d1aba3d70471fcd9b466569f3ef72f39d87fcccab514fcff030000629c9b73ce7bc4be7f8be71cb7b2d0a4acff8f6abe7dbad64dfa63966945d93c33b038ce0d890f85f8a6ab8487c383e24d4a8051f80e1811e387723a25dda119f64b35e71c5400000000000000000000000000000034c751ebdf3f207ea3df3d6c0002a41783078e56c70afe8016b3dd9dc7785b36e609f173cc747837d600283b3452c57a5d44cacd363589845637071320921d32c1663964eddec97cc33158bc306d8c3bdae8108a23d2dc96a5cdb518f58832ec0906aaec43659c79c8ad37b0f961f3beaa3e02f7762c5dd633d13b5e487e996597b200100000b7dd8390e13b395aacce4683e55bcfe8c17615257364365fd48bd77da79e52ce9adfe6dcb0c42c4d719347f3d16304fa000008ffffffffffffff003049ca923d059c0ab5d886a491adacb7e4b43b1b57586e5fe2aa611f6232a9b71882ce24fce75cf105fa57f000756755b7230e2c0c1fed5487271c4f2981cf8f4351ef5d08641dacaed000080000000000000000000000fa36bbac00bb77c933d3961556585295ce05643b0000000000000000000000967aef9c5706e13d5889e77dab80a2548ec31629b7355a2bb8b93e4b6323061f545b26accc4621b568ab0bfaf30aa4f60705532c4a09c0a4a5487c762167edf362be35b9c90ad7e372a66bbb1471aa21000000000000104061c66a7432f25687618e31dcef8c5d4a2457a93f3fc6d3d7131746c75ccf400fc1a7a51826832ef7f5fbc78827d937768443a1c1ca3aba93a34efd21aa1201d9225256df8de405d1f12c17cdaff3ad675aa333aa7e919459babd3cc1000000000000000000000000000000000000000000000000000000040000000059fdc6a54a2a8b28fa7d9b92aeb58e78e3b8594a5ef6bb67e52bf43b6145f544273a8f62852706c0abef368bfc72f92fa99a7bf121019cff8001fd7d2f6c2c295a5cab383235fec4c1decbed258ee9df8963c0fc828ad2119ffefe36c78692fffb6942b9da0922b2aa8f6b66c14ee7f42d5951ede3549f851ca340d9e425e355c1decb785a1042a72c1c98a084b04b1d9be473e50a15d76b110eda3b7cc1f2501211773cf510a43888422c1328476dd6f42659c61a18618fd28d5cd342c276aa9c4cc035077fa09d672b8dcfb3ac1751628647047d07338a8619037e3449a173ddd697f541a0795a2de7ef1396d70675341ebf004be122de04b5275fe7e53d28ebdc5051cec00759d73ca97229d93b965926060b6f91d01324bd458b425ea51c5d5b69551d599188fc6040370ac9ca7ae9eea9e5ede79bd66bd3d616dd7d7dd4c3a8fd055a3585af6fe7f5046c61154598cd33c33a48ece1072afd04b1fd85eb1655d9f3f813392c9634200d892dc6810b436820a1e0f6b464855e28953eb63cd3d6fc1b7bfb588ce28a51af1658d45d759a8399da55a3ff6597bb9f47167fe55ca240623a001e5fe15d9ddefea06a3750501916163844106c4ce662f418d9fc509e5447f712048d53e7e36ee7de083c5ea1119969d858eb6785395fc5a2c551de9a086cb4583f55c47828645e30464609"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x6, 0x4, 0x5b, 0x8a, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) read$FUSE(0xffffffffffffffff, &(0x7f00000103c0)={0x2020}, 0x2020) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="043ef502"], 0xf8) 0s ago: executing program 1 (id=1758): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) syz_open_dev$dri(&(0x7f00000001c0), 0x1, 0x1) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$vim2m_VIDIOC_REQBUFS(r2, 0xc0145608, &(0x7f0000000100)={0x0, 0x3, 0x1}) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_RATE_DEL(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000e40)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="000103000000000000004a000000"], 0x14}}, 0x10) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020786c25000000000020200000000007010000f8ffffffb7020000086d0000b70300000a00000085000000100000002c8500"/81], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r4}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x17, 0x3, &(0x7f0000000480)=@framed, &(0x7f0000000140)='syzkaller\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r5 = dup(r2) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@metacopy_on}]}) openat$nullb(0xffffff9c, &(0x7f0000000240), 0x10002, 0x0) r6 = open(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0) mknodat$loop(r6, &(0x7f0000001600)='./file1\x00', 0x0, 0x0) r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={r7, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001440)={r7, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a80)={0x6, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', r8, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001540)={0x3, 0x3, &(0x7f0000001c80)=@framed={{0x18, 0x2, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x7}}, &(0x7f0000000680)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r8, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r5, 0x89f0, &(0x7f0000000440)={'syztnl1\x00', &(0x7f0000000280)={'erspan0\x00', r8, 0x0, 0x8000, 0xea6, 0x7, {{0x18, 0x4, 0x2, 0x8, 0x60, 0x68, 0x0, 0x95, 0x4, 0x0, @multicast2, @dev={0xac, 0x14, 0x14, 0x29}, {[@end, @noop, @noop, @ra={0x94, 0x4}, @end, @timestamp={0x44, 0x8, 0xd7, 0x0, 0x6, [0x40]}, @timestamp_prespec={0x44, 0x3c, 0x59, 0x3, 0x6, [{@dev={0xac, 0x14, 0x14, 0x31}, 0x800}, {@multicast1, 0x7fff}, {@multicast2, 0xfffffffc}, {@local, 0x1618}, {@empty, 0x682}, {@private=0xa010102}, {@rand_addr=0x64010101, 0x100}]}]}}}}}) chdir(&(0x7f0000000140)='./bus\x00') syz_emit_ethernet(0x5e, &(0x7f00000001c0)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "ff00f5", 0x28, 0x6, 0x0, @local, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, {[@sack={0x1d, 0x2, [0x0, 0x0, 0x0, 0x0]}]}}}}}}}}, 0x0) link(&(0x7f0000000200)='./file1\x00', &(0x7f0000000300)='./bus\x00') open$dir(&(0x7f0000000000)='./bus\x00', 0x80200, 0x84) 0s ago: executing program 1 (id=1759): socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000003c0)={0xffffffffffffffff}) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_NEW_STATION(r1, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000600)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="cf0404000000200000001300000008000300", @ANYRES32=r3, @ANYBLOB="040013000a0006000802110000010000060010008005000006001200"], 0x48}}, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '[localhost]:27522' (ED25519) to the list of known hosts. [ 32.605076][ T5855] cgroup: Unknown subsys name 'net' [ 32.731876][ T5855] cgroup: Unknown subsys name 'cpuset' [ 32.734749][ T5855] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 33.627684][ T5855] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 35.513288][ T5294] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 35.517860][ T5294] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 35.532328][ T5939] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 35.536497][ T5936] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 35.538917][ T5936] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 35.542037][ T5936] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 35.545000][ T5936] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 35.546266][ T5934] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 35.548177][ T5936] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 35.549684][ T5934] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 35.552267][ T5936] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 35.553923][ T5934] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 35.555883][ T5936] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 35.558179][ T5934] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 35.561738][ T5942] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 35.565412][ T5942] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 35.567212][ T66] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 35.567474][ T5942] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 35.570608][ T66] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 35.573268][ T66] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 35.574683][ T5944] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 35.575497][ T66] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 35.577683][ T5944] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 35.583012][ T5939] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 35.683603][ T5929] chnl_net:caif_netlink_parms(): no params data found [ 35.778176][ T5929] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.780571][ T5929] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.782518][ T5929] bridge_slave_0: entered allmulticast mode [ 35.784640][ T5929] bridge_slave_0: entered promiscuous mode [ 35.791816][ T5929] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.793685][ T5929] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.795553][ T5929] bridge_slave_1: entered allmulticast mode [ 35.798038][ T5929] bridge_slave_1: entered promiscuous mode [ 35.816750][ T5940] chnl_net:caif_netlink_parms(): no params data found [ 35.836292][ T5929] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 35.840172][ T5933] chnl_net:caif_netlink_parms(): no params data found [ 35.850259][ T5937] chnl_net:caif_netlink_parms(): no params data found [ 35.854736][ T5929] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 35.950660][ T5929] team0: Port device team_slave_0 added [ 35.982918][ T5940] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.985282][ T5940] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.987420][ T5940] bridge_slave_0: entered allmulticast mode [ 35.989839][ T5940] bridge_slave_0: entered promiscuous mode [ 35.993426][ T5929] team0: Port device team_slave_1 added [ 36.021271][ T5940] bridge0: port 2(bridge_slave_1) entered blocking state [ 36.023505][ T5940] bridge0: port 2(bridge_slave_1) entered disabled state [ 36.025384][ T5940] bridge_slave_1: entered allmulticast mode [ 36.027458][ T5940] bridge_slave_1: entered promiscuous mode [ 36.061986][ T5933] bridge0: port 1(bridge_slave_0) entered blocking state [ 36.064553][ T5933] bridge0: port 1(bridge_slave_0) entered disabled state [ 36.067155][ T5933] bridge_slave_0: entered allmulticast mode [ 36.070273][ T5933] bridge_slave_0: entered promiscuous mode [ 36.084771][ T5929] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 36.087380][ T5929] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 36.096252][ T5929] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 36.114266][ T5933] bridge0: port 2(bridge_slave_1) entered blocking state [ 36.116212][ T5933] bridge0: port 2(bridge_slave_1) entered disabled state [ 36.118275][ T5933] bridge_slave_1: entered allmulticast mode [ 36.120259][ T5933] bridge_slave_1: entered promiscuous mode [ 36.131342][ T5940] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 36.142135][ T5929] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 36.143986][ T5929] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 36.150762][ T5929] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 36.153798][ T5937] bridge0: port 1(bridge_slave_0) entered blocking state [ 36.155645][ T5937] bridge0: port 1(bridge_slave_0) entered disabled state [ 36.157780][ T5937] bridge_slave_0: entered allmulticast mode [ 36.160733][ T5937] bridge_slave_0: entered promiscuous mode [ 36.164340][ T5937] bridge0: port 2(bridge_slave_1) entered blocking state [ 36.166909][ T5937] bridge0: port 2(bridge_slave_1) entered disabled state [ 36.170714][ T5937] bridge_slave_1: entered allmulticast mode [ 36.172880][ T5937] bridge_slave_1: entered promiscuous mode [ 36.175732][ T5940] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 36.180258][ T5933] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 36.230886][ T5933] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 36.235929][ T5937] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 36.241444][ T5940] team0: Port device team_slave_0 added [ 36.270394][ T5937] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 36.274292][ T5940] team0: Port device team_slave_1 added [ 36.318272][ T5929] hsr_slave_0: entered promiscuous mode [ 36.320156][ T5929] hsr_slave_1: entered promiscuous mode [ 36.323601][ T5933] team0: Port device team_slave_0 added [ 36.346477][ T5933] team0: Port device team_slave_1 added [ 36.357035][ T5937] team0: Port device team_slave_0 added [ 36.359292][ T5940] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 36.361514][ T5940] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 36.371313][ T5940] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 36.398007][ T5937] team0: Port device team_slave_1 added [ 36.400591][ T5940] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 36.403025][ T5940] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 36.410719][ T5940] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 36.415357][ T5933] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 36.417360][ T5933] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 36.423979][ T5933] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 36.430961][ T5933] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 36.433502][ T5933] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 36.441263][ T5933] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 36.481028][ T5937] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 36.482949][ T5937] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 36.490326][ T5937] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 36.497990][ T5937] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 36.500149][ T5937] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 36.507213][ T5937] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 36.570809][ T5940] hsr_slave_0: entered promiscuous mode [ 36.572775][ T5940] hsr_slave_1: entered promiscuous mode [ 36.574562][ T5940] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 36.576656][ T5940] Cannot create hsr debugfs directory [ 36.587993][ T5933] hsr_slave_0: entered promiscuous mode [ 36.590399][ T5933] hsr_slave_1: entered promiscuous mode [ 36.593452][ T5933] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 36.596203][ T5933] Cannot create hsr debugfs directory [ 36.636133][ T5937] hsr_slave_0: entered promiscuous mode [ 36.638519][ T5937] hsr_slave_1: entered promiscuous mode [ 36.640403][ T5937] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 36.642379][ T5937] Cannot create hsr debugfs directory [ 36.774258][ T5929] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 36.788584][ T5929] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 36.808441][ T5929] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 36.813596][ T5929] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 36.841998][ T5933] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 36.845137][ T5933] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 36.849792][ T5933] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 36.853285][ T5933] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 36.883015][ T5940] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 36.886718][ T5940] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 36.890855][ T5940] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 36.896714][ T5940] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 36.915291][ T5937] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 36.920425][ T5937] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 36.924947][ T5937] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 36.934624][ T5937] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 36.965776][ T5929] 8021q: adding VLAN 0 to HW filter on device bond0 [ 36.987510][ T5929] 8021q: adding VLAN 0 to HW filter on device team0 [ 36.998482][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.000409][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 37.009683][ T1237] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.012332][ T1237] bridge0: port 2(bridge_slave_1) entered forwarding state [ 37.032800][ T5933] 8021q: adding VLAN 0 to HW filter on device bond0 [ 37.040060][ T5940] 8021q: adding VLAN 0 to HW filter on device bond0 [ 37.050007][ T5933] 8021q: adding VLAN 0 to HW filter on device team0 [ 37.062751][ T5940] 8021q: adding VLAN 0 to HW filter on device team0 [ 37.072303][ T5929] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 37.077429][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.079313][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 37.088703][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.090843][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 37.093368][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.095236][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 37.098809][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.101383][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 37.118967][ T5937] 8021q: adding VLAN 0 to HW filter on device bond0 [ 37.134714][ T5933] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 37.143880][ T5937] 8021q: adding VLAN 0 to HW filter on device team0 [ 37.150898][ T45] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.153519][ T45] bridge0: port 1(bridge_slave_0) entered forwarding state [ 37.167217][ T5940] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 37.171386][ T5940] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 37.180506][ T45] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.183143][ T45] bridge0: port 2(bridge_slave_1) entered forwarding state [ 37.202795][ T5929] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 37.230125][ T5929] veth0_vlan: entered promiscuous mode [ 37.236168][ T5933] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 37.239501][ T5929] veth1_vlan: entered promiscuous mode [ 37.271632][ T5929] veth0_macvtap: entered promiscuous mode [ 37.274776][ T5929] veth1_macvtap: entered promiscuous mode [ 37.290964][ T5933] veth0_vlan: entered promiscuous mode [ 37.294362][ T5940] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 37.302464][ T5929] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 37.310050][ T5937] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 37.313951][ T5929] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 37.316276][ T5933] veth1_vlan: entered promiscuous mode [ 37.325248][ T5929] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 37.329310][ T5929] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 37.332385][ T5929] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 37.335539][ T5929] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 37.369064][ T5933] veth0_macvtap: entered promiscuous mode [ 37.386500][ T5933] veth1_macvtap: entered promiscuous mode [ 37.398604][ T5937] veth0_vlan: entered promiscuous mode [ 37.402195][ T70] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 37.405312][ T5937] veth1_vlan: entered promiscuous mode [ 37.405360][ T70] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 37.411718][ T5940] veth0_vlan: entered promiscuous mode [ 37.422536][ T5933] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 37.427100][ T5933] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 37.430699][ T5933] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 37.434923][ T45] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 37.434953][ T5940] veth1_vlan: entered promiscuous mode [ 37.437179][ T45] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 37.445470][ T5933] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 37.448436][ T5933] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 37.451886][ T5933] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 37.457375][ T5933] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 37.459657][ T5933] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 37.462151][ T5933] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 37.464379][ T5933] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 37.478291][ T5937] veth0_macvtap: entered promiscuous mode [ 37.486587][ T5929] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 37.488521][ T5937] veth1_macvtap: entered promiscuous mode [ 37.493535][ T5940] veth0_macvtap: entered promiscuous mode [ 37.498882][ T5940] veth1_macvtap: entered promiscuous mode [ 37.511886][ T5940] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 37.515107][ T5940] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 37.517997][ T5940] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 37.520736][ T5940] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 37.524120][ T5940] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 37.529280][ T1237] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 37.531596][ T1237] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 37.539913][ T5937] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 37.543455][ T5937] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 37.546983][ T5937] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 37.551348][ T5937] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 37.554804][ T5937] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 37.559618][ T5937] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 37.564031][ T5937] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 37.573577][ T5937] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 37.577453][ T5937] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 37.581192][ T5937] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 37.584788][ T5937] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 37.589556][ T5937] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 37.591655][ T5940] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 37.594370][ T5940] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 37.596865][ T5940] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 37.599662][ T5940] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 37.602795][ T5940] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 37.606497][ T5940] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 37.611064][ T5940] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 37.623976][ T5937] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 37.624119][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 37.626279][ T5937] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 37.628301][ T5939] Bluetooth: hci1: command tx timeout [ 37.628587][ T5294] Bluetooth: hci2: command tx timeout [ 37.629177][ T5294] Bluetooth: hci3: command tx timeout [ 37.629257][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 37.632367][ T5937] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 37.637823][ T5294] Bluetooth: hci0: command tx timeout [ 37.642126][ T5937] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 37.650397][ T5940] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 37.652790][ T5940] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 37.655017][ T5940] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 37.657914][ T5940] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 37.713264][ T1187] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 37.715346][ T1187] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 37.735280][ T45] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 37.737426][ T45] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 37.753123][ T45] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 37.755276][ T45] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 37.772173][ T45] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 37.774319][ T45] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 37.877513][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 37.879861][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 37.884582][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 38.058364][ T57] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 38.132674][ T6015] netlink: 'syz.3.4': attribute type 4 has an invalid length. [ 38.357205][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 38.450121][ T57] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 38.452622][ T57] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 38.455433][ T57] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 38.457909][ T57] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9 [ 38.460934][ T57] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024 [ 38.489053][ T6011] infiniband syz0: set active [ 38.497333][ T6011] infiniband syz0: added bond0 [ 38.518474][ T57] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 38.520924][ T57] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 38.523334][ T57] usb 6-1: Product: syz [ 38.524427][ T57] usb 6-1: Manufacturer: syz [ 38.542080][ T57] cdc_wdm 6-1:1.0: skipping garbage [ 38.543989][ T57] cdc_wdm 6-1:1.0: skipping garbage [ 38.548110][ T57] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device [ 38.550158][ T57] cdc_wdm 6-1:1.0: Unknown control protocol [ 38.557020][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 38.563266][ T6011] RDS/IB: syz0: added [ 38.564846][ T6011] smc: adding ib device syz0 with port count 1 [ 38.566993][ T6011] smc: ib device syz0 port 1 has pnetid [ 38.587772][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 38.667666][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 38.669886][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 38.672090][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 38.743966][ T5975] usb 6-1: USB disconnect, device number 2 [ 39.377429][ T5975] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 39.523887][ T6032] Bluetooth: MGMT ver 1.23 [ 39.529855][ T5975] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 39.532330][ T5975] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 39.535799][ T5975] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 39.539698][ T5975] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9 [ 39.549658][ T5975] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024 [ 39.554597][ T5975] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 39.556979][ T5975] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 39.560973][ T5975] usb 6-1: Product: syz [ 39.562249][ T5975] usb 6-1: Manufacturer: syz [ 39.572244][ T5975] cdc_wdm 6-1:1.0: skipping garbage [ 39.573946][ T5975] cdc_wdm 6-1:1.0: skipping garbage [ 39.578921][ T5975] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device [ 39.580561][ T5975] cdc_wdm 6-1:1.0: Unknown control protocol [ 39.707978][ T5294] Bluetooth: hci0: command tx timeout [ 39.709907][ T5294] Bluetooth: hci3: command tx timeout [ 39.711355][ T5294] Bluetooth: hci2: command tx timeout [ 39.712851][ T5294] Bluetooth: hci1: command tx timeout [ 39.890938][ T6041] netlink: 'syz.0.11': attribute type 39 has an invalid length. [ 40.139094][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.140634][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.142256][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.144082][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.145823][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.147333][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.149062][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.150694][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.152307][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.153976][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.155805][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.157461][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.159087][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.160723][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.162345][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.164013][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.165645][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.167327][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.168982][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.170624][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.172281][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.173964][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.175921][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.177599][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.179237][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.180920][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.182534][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.184312][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.185964][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.187452][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.189049][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.190524][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.192142][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.193814][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.195309][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.197580][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.199073][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.201011][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.202634][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.204170][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.205819][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.207446][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.209075][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.210825][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.212317][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.214065][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.215689][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.217156][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.218749][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.220266][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.221885][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.223403][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.224983][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.226445][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.228058][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.229586][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.231332][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.232802][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.234395][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.236015][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.237609][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.239097][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.240711][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.242207][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.243856][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.245336][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.246934][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.248447][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.250075][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.251487][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.253086][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.254589][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.256204][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.257686][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.259276][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.260754][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.262361][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.263853][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.265448][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.266919][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.268540][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.270012][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.271613][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.273141][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.274741][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.276228][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.277902][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.279522][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.281000][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.282595][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.284092][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.285705][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.287186][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.288824][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.290468][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.291952][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.293590][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.295060][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.296667][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.298180][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.299810][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.301282][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.302995][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.304650][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.306113][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.307718][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.309346][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.310806][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.312429][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.313932][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.315537][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.317024][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.318661][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.320335][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.321752][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.323377][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.324853][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.326453][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.327950][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.329558][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.331194][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.332572][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.334196][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.335841][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.337512][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.339185][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.340830][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.342462][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.344137][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.345771][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.347430][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.349067][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.350700][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.352193][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.353851][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.355477][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.357112][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.358747][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.360369][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.361901][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.363573][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.365208][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.366838][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.368471][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.370102][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.371735][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.373224][ C1] cdc_wdm 6-1:1.0: Cannot schedule work [ 40.374833][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.376478][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.378122][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.379766][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.381402][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.383075][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.384708][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.386335][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.388011][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.389632][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.391269][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.392886][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.394534][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.395971][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.397617][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.399250][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.400896][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.402545][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.404219][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.407416][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.409117][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.410761][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.412409][ C1] cdc_wdm 6-1:1.0: Stall on int endpoint [ 40.414049][ C1] cdc_wdm 6-1:1.0: wdm_int_callback - usb_submit_urb failed with result -1 [ 40.420332][ T5974] usb 6-1: USB disconnect, device number 3 [ 41.800784][ T5939] Bluetooth: hci1: command tx timeout [ 41.802749][ T5939] Bluetooth: hci2: command tx timeout [ 41.804673][ T5939] Bluetooth: hci3: command tx timeout [ 41.806491][ T5939] Bluetooth: hci0: command tx timeout [ 41.929605][ T6071] process 'syz.1.17' launched './file0' with NULL argv: empty string added [ 43.771209][ T6101] netlink: 4 bytes leftover after parsing attributes in process `syz.2.23'. [ 43.887364][ T5294] Bluetooth: hci0: command tx timeout [ 43.888973][ T5294] Bluetooth: hci3: command tx timeout [ 43.890393][ T5294] Bluetooth: hci2: command tx timeout [ 43.891813][ T5294] Bluetooth: hci1: command tx timeout [ 44.477491][ T6107] syz.0.26[6107] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 44.477611][ T6107] syz.0.26[6107] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 44.480700][ T6107] syz.0.26[6107] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 44.519235][ T6109] warning: `syz.2.27' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 45.112429][ T6121] netlink: 136 bytes leftover after parsing attributes in process `syz.3.30'. [ 45.320086][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 45.696493][ T6125] wireguard0: entered promiscuous mode [ 45.949952][ T6134] netlink: 'syz.1.34': attribute type 10 has an invalid length. [ 46.218320][ T6134] bond0: (slave wlan1): Enslaving as an active interface with an up link [ 46.239428][ T6134] fuse: Unknown parameter '0xffffffffffffffff0x0000000000000005' [ 46.380571][ T6139] cgroup: fork rejected by pids controller in /syz1 [ 46.754788][ T6495] netlink: 'syz.1.37': attribute type 21 has an invalid length. [ 46.757030][ T6495] netlink: 'syz.1.37': attribute type 1 has an invalid length. [ 46.759263][ T6495] netlink: 144 bytes leftover after parsing attributes in process `syz.1.37'. [ 47.500867][ T6509] sch_tbf: burst 32855 is lower than device lo mtu (65550) ! [ 47.920489][ T6517] xt_HMARK: proto mask must be zero with L3 mode [ 48.000640][ T6518] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 48.461295][ T6526] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 49.025786][ T6538] netlink: zone id is out of range [ 49.027557][ T6538] netlink: zone id is out of range [ 49.031819][ T6538] netlink: zone id is out of range [ 49.065485][ T6541] IPVS: sync thread started: state = BACKUP, mcast_ifn = hsr0, syncid = 0, id = 0 [ 49.065832][ T6540] fuse: Unknown parameter '0x0000000000000008' [ 49.594651][ T6559] netlink: 16 bytes leftover after parsing attributes in process `syz.0.56'. [ 49.663579][ T6561] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.57'. [ 49.877071][ T6565] syz_tun: entered promiscuous mode [ 49.880135][ T6565] batadv_slave_1: entered promiscuous mode [ 52.392644][ T5939] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:201' [ 52.396282][ T5939] CPU: 3 UID: 0 PID: 5939 Comm: kworker/u33:5 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0 [ 52.400211][ T5939] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 52.403950][ T5939] Workqueue: hci1 hci_rx_work [ 52.405688][ T5939] Call Trace: [ 52.407088][ T5939] [ 52.407371][ T39] audit: type=1326 audit(1734747622.291:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6630 comm="syz.2.83" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7fc00000 [ 52.408171][ T5939] dump_stack_lvl+0x16c/0x1f0 [ 52.413346][ T39] audit: type=1326 audit(1734747622.291:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6630 comm="syz.2.83" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f43579 code=0x7fc00000 [ 52.415041][ T5939] sysfs_warn_dup+0x7f/0xa0 [ 52.420899][ T39] audit: type=1326 audit(1734747622.291:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6630 comm="syz.2.83" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7fc00000 [ 52.422040][ T5939] sysfs_create_dir_ns+0x24d/0x2b0 [ 52.427676][ T39] audit: type=1326 audit(1734747622.291:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6630 comm="syz.2.83" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7fc00000 [ 52.428770][ T5939] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 52.434202][ T39] audit: type=1326 audit(1734747622.291:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6630 comm="syz.2.83" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7fc00000 [ 52.436216][ T5939] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 52.441781][ T39] audit: type=1326 audit(1734747622.291:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6630 comm="syz.2.83" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7fc00000 [ 52.443009][ T5939] ? kobject_add_internal+0x12d/0x990 [ 52.448638][ T39] audit: type=1326 audit(1734747622.291:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6630 comm="syz.2.83" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7fc00000 [ 52.449885][ T5939] ? do_raw_spin_unlock+0x172/0x230 [ 52.455298][ T39] audit: type=1326 audit(1734747622.291:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6630 comm="syz.2.83" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7fc00000 [ 52.457173][ T5939] kobject_add_internal+0x2c8/0x990 [ 52.462843][ T39] audit: type=1326 audit(1734747622.291:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6630 comm="syz.2.83" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7fc00000 [ 52.464257][ T5939] kobject_add+0x16f/0x240 [ 52.471804][ T39] audit: type=1326 audit(1734747622.291:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6630 comm="syz.2.83" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7fc00000 [ 52.471806][ T5939] ? __pfx_kobject_add+0x10/0x10 [ 52.472834][ T6636] netlink: 'syz.0.85': attribute type 1 has an invalid length. [ 52.481776][ T5939] ? class_to_subsys+0x3e/0x160 [ 52.483637][ T5939] ? do_raw_spin_unlock+0x172/0x230 [ 52.485543][ T5939] ? kobject_put+0xab/0x5a0 [ 52.487224][ T5939] device_add+0x289/0x1a70 [ 52.488871][ T5939] ? __pfx_dev_set_name+0x10/0x10 [ 52.490711][ T5939] ? __pfx_device_add+0x10/0x10 [ 52.492099][ T5939] ? mgmt_send_event_skb+0x2f2/0x460 [ 52.493509][ T5939] hci_conn_add_sysfs+0x17e/0x230 [ 52.494822][ T5939] le_conn_complete_evt+0xfce/0x1d10 [ 52.496213][ T5939] ? __pfx_le_conn_complete_evt+0x10/0x10 [ 52.497690][ T5939] ? __mutex_lock+0x1cc/0xa60 [ 52.498920][ T5939] hci_le_conn_complete_evt+0x23c/0x370 [ 52.500360][ T5939] hci_le_meta_evt+0x2e2/0x5d0 [ 52.501866][ T5939] ? __pfx_hci_le_conn_complete_evt+0x10/0x10 [ 52.504065][ T5939] hci_event_packet+0x666/0x1190 [ 52.505811][ T5939] ? __pfx_hci_le_meta_evt+0x10/0x10 [ 52.507225][ T5939] ? __pfx_hci_event_packet+0x10/0x10 [ 52.508636][ T5939] ? mark_held_locks+0x9f/0xe0 [ 52.509889][ T5939] ? kcov_remote_start+0x3cf/0x6e0 [ 52.510603][ T6637] Zero length message leads to an empty skb [ 52.511303][ T5939] ? lockdep_hardirqs_on+0x7c/0x110 [ 52.514427][ T5939] hci_rx_work+0x2c5/0x16b0 [ 52.515655][ T5939] ? process_one_work+0x8bb/0x1b30 [ 52.517030][ T5939] process_one_work+0x958/0x1b30 [ 52.518513][ T5939] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 52.519330][ T6640] mmap: syz.0.86 (6640) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 52.520147][ T5939] ? __pfx_process_one_work+0x10/0x10 [ 52.524468][ T5939] ? rcu_is_watching+0x12/0xc0 [ 52.525744][ T5939] ? assign_work+0x1a0/0x250 [ 52.526981][ T5939] worker_thread+0x6c8/0xf00 [ 52.528262][ T5939] ? __kthread_parkme+0x148/0x220 [ 52.529602][ T5939] ? __pfx_worker_thread+0x10/0x10 [ 52.530954][ T5939] kthread+0x2c1/0x3a0 [ 52.532152][ T5939] ? _raw_spin_unlock_irq+0x23/0x50 [ 52.533539][ T5939] ? __pfx_kthread+0x10/0x10 [ 52.534757][ T5939] ret_from_fork+0x45/0x80 [ 52.535972][ T5939] ? __pfx_kthread+0x10/0x10 [ 52.537201][ T5939] ret_from_fork_asm+0x1a/0x30 [ 52.538486][ T5939] [ 52.539514][ T5939] kobject: kobject_add_internal failed for hci1:201 with -EEXIST, don't try to register things with the same name in the same directory. [ 52.543355][ T5939] Bluetooth: hci1: failed to register connection device [ 52.790753][ T6653] netlink: 'syz.0.89': attribute type 10 has an invalid length. [ 52.797850][ T6653] team0: Device ipvlan1 failed to register rx_handler [ 52.876245][ T6649] fuse: Bad value for 'fd' [ 53.388787][ T5939] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0 [ 53.391143][ T5939] Bluetooth: hci0: Injecting HCI hardware error event [ 53.393729][ T5294] Bluetooth: hci0: hardware error 0x00 [ 53.485079][ T6671] overlayfs: failed to clone upperpath [ 54.341314][ T6694] IPv6: Can't replace route, no match found [ 54.470085][ T6703] ======================================================= [ 54.470085][ T6703] WARNING: The mand mount option has been deprecated and [ 54.470085][ T6703] and is ignored by this kernel. Remove the mand [ 54.470085][ T6703] option from the mount to silence this warning. [ 54.470085][ T6703] ======================================================= [ 54.720549][ T6729] overlayfs: failed to clone upperpath [ 55.308553][ T6757] netlink: 'syz.3.125': attribute type 10 has an invalid length. [ 55.317073][ T6757] batman_adv: batadv0: Adding interface: team0 [ 55.321164][ T6757] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 55.328011][ T6757] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active [ 55.467331][ T5294] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 55.966975][ T6774] infiniband syz0: set active [ 56.493306][ T6809] pim6reg: entered allmulticast mode [ 56.496786][ T6809] pim6reg: left allmulticast mode [ 56.550376][ T6809] overlayfs: missing 'lowerdir' [ 57.159818][ T6831] net veth1_virt_wifi ÿÿÿÿÿÿ: renamed from virt_wifi0 [ 57.308633][ T8] IPVS: starting estimator thread 0... [ 57.349138][ T6846] capability: warning: `syz.3.154' uses deprecated v2 capabilities in a way that may be insecure [ 57.407482][ T6843] IPVS: using max 37 ests per chain, 88800 per kthread [ 57.441191][ T6848] netlink: 'syz.2.156': attribute type 10 has an invalid length. [ 58.443543][ T6880] fuse: Bad value for 'fd' [ 58.708058][ T5294] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0 [ 58.711730][ T5294] Bluetooth: hci1: Injecting HCI hardware error event [ 58.714362][ T5294] Bluetooth: hci1: hardware error 0x00 [ 58.758559][ T5939] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0 [ 58.760814][ T5939] Bluetooth: hci2: Injecting HCI hardware error event [ 58.763873][ T5939] Bluetooth: hci2: hardware error 0x00 [ 58.878084][ T6921] netlink: 1280 bytes leftover after parsing attributes in process `syz.0.175'. [ 59.801653][ T6950] netlink: 4 bytes leftover after parsing attributes in process `syz.3.185'. [ 59.811676][ T6950] syz.3.185 uses obsolete (PF_INET,SOCK_PACKET) [ 60.747355][ T5294] Bluetooth: hci1: Opcode 0x0c03 failed: -110 [ 60.837567][ T5939] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 61.618178][ T6991] overlayfs: failed to resolve './file2': -2 [ 61.623664][ T6991] fuse: Unknown parameter 'fg' [ 61.736049][ T6993] team0: Port device team_slave_1 removed [ 62.865460][ T39] kauditd_printk_skb: 56 callbacks suppressed [ 62.865472][ T39] audit: type=1326 audit(1734747632.761:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7019 comm="syz.2.212" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x0 [ 63.019482][ T7028] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 63.720003][ T7039] fuse: Bad value for 'group_id' [ 63.721438][ T7039] fuse: Bad value for 'group_id' [ 64.260084][ T39] audit: type=1326 audit(1734747634.161:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7059 comm="syz.3.224" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75579 code=0x7ffc0000 [ 64.266364][ T39] audit: type=1326 audit(1734747634.161:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7059 comm="syz.3.224" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75579 code=0x7ffc0000 [ 64.273445][ T39] audit: type=1326 audit(1734747634.161:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7059 comm="syz.3.224" exe="/syz-executor" sig=0 arch=40000003 syscall=138 compat=1 ip=0xf7f75579 code=0x7ffc0000 [ 64.279647][ T39] audit: type=1326 audit(1734747634.161:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7059 comm="syz.3.224" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75579 code=0x7ffc0000 [ 64.285164][ T39] audit: type=1326 audit(1734747634.161:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7059 comm="syz.3.224" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75579 code=0x7ffc0000 [ 64.291055][ T39] audit: type=1326 audit(1734747634.161:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7059 comm="syz.3.224" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f75579 code=0x7ffc0000 [ 64.296658][ T39] audit: type=1326 audit(1734747634.161:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7059 comm="syz.3.224" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75579 code=0x7ffc0000 [ 64.302360][ T39] audit: type=1326 audit(1734747634.161:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7059 comm="syz.3.224" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75579 code=0x7ffc0000 [ 64.308235][ T39] audit: type=1326 audit(1734747634.161:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7059 comm="syz.3.224" exe="/syz-executor" sig=0 arch=40000003 syscall=365 compat=1 ip=0xf7f75579 code=0x7ffc0000 [ 64.579842][ T7080] wg2: entered promiscuous mode [ 64.582063][ T7080] wg2: entered allmulticast mode [ 64.616183][ T7087] netlink: 8 bytes leftover after parsing attributes in process `syz.0.232'. [ 65.090464][ T7113] netlink: 12 bytes leftover after parsing attributes in process `syz.3.241'. [ 65.352597][ T30] libceph: connect (1)[c::]:6789 error -101 [ 65.355819][ T30] libceph: mon0 (1)[c::]:6789 connect error [ 65.524938][ T7128] netlink: 76 bytes leftover after parsing attributes in process `syz.2.245'. [ 65.619503][ T30] libceph: connect (1)[c::]:6789 error -101 [ 65.621996][ T30] libceph: mon0 (1)[c::]:6789 connect error [ 65.928501][ T7120] ceph: No mds server is up or the cluster is laggy [ 66.453932][ T7155] overlayfs: failed to resolve './file1/file3': -2 [ 66.458148][ T7155] overlayfs: failed to clone upperpath [ 68.323554][ T7217] netlink: 4 bytes leftover after parsing attributes in process `syz.1.281'. [ 68.329634][ T7217] overlayfs: failed to clone upperpath [ 68.601039][ T7225] 9pnet_fd: Insufficient options for proto=fd [ 68.616767][ T7225] trusted_key: encrypted_key: keylen parameter is missing [ 68.662288][ T7230] fuse: Bad value for 'user_id' [ 68.664199][ T7230] fuse: Bad value for 'user_id' [ 68.918591][ T7240] netlink: 4 bytes leftover after parsing attributes in process `syz.0.285'. [ 69.184076][ T7246] netlink: 8 bytes leftover after parsing attributes in process `syz.2.291'. [ 69.230670][ T7250] netlink: 4 bytes leftover after parsing attributes in process `syz.3.293'. [ 69.239387][ T7250] bridge_slave_1: left allmulticast mode [ 69.241550][ T7250] bridge_slave_1: left promiscuous mode [ 69.243584][ T7250] bridge0: port 2(bridge_slave_1) entered disabled state [ 69.249757][ T7250] bridge_slave_0: left allmulticast mode [ 69.251189][ T7250] bridge_slave_0: left promiscuous mode [ 69.252630][ T7250] bridge0: port 1(bridge_slave_0) entered disabled state [ 70.363893][ T7311] netlink: 104 bytes leftover after parsing attributes in process `syz.3.314'. [ 70.468523][ T7311] netlink: 1260 bytes leftover after parsing attributes in process `syz.3.314'. [ 70.471017][ T7311] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 70.726938][ T39] kauditd_printk_skb: 11 callbacks suppressed [ 70.726949][ T39] audit: type=1326 audit(1734747640.621:89): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=7318 comm="syz.1.317" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fc6579 code=0x0 [ 70.750575][ T1415] ieee802154 phy0 wpan0: encryption failed: -22 [ 70.752796][ T1415] ieee802154 phy1 wpan1: encryption failed: -22 [ 72.125732][ T7345] 9pnet_fd: Insufficient options for proto=fd [ 72.274268][ T7363] tipc: Started in network mode [ 72.275762][ T7363] tipc: Node identity 10000, cluster identity 4711 [ 72.278307][ T7363] tipc: Node number set to 65536 [ 72.457156][ T7386] netlink: 136 bytes leftover after parsing attributes in process `syz.3.340'. [ 72.480391][ T7389] capability: warning: `syz.3.341' uses 32-bit capabilities (legacy support in use) [ 72.935591][ T7405] batman_adv: batadv0: Removing interface: team0 [ 72.943122][ T7405] bond0: (slave bond_slave_0): Releasing backup interface [ 72.950117][ T7405] bond0: (slave bond_slave_1): Releasing backup interface [ 72.964734][ T7405] team0: Port device team_slave_0 removed [ 72.972655][ T7405] team0: Port device team_slave_1 removed [ 72.975147][ T7405] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 72.978193][ T7405] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 72.981682][ T7405] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 72.984304][ T7405] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 72.999506][ T7406] team0: Mode changed to "broadcast" [ 73.009269][ T7405] vlan0: entered promiscuous mode [ 73.015976][ T7405] team0: Port device vlan0 added [ 73.021437][ T7405] tipc: Started in network mode [ 73.022925][ T7405] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711 [ 73.024920][ T7405] tipc: Enabled bearer , priority 0 [ 73.228009][ T7416] netlink: 4 bytes leftover after parsing attributes in process `syz.2.349'. [ 73.231248][ T7416] netlink: 4 bytes leftover after parsing attributes in process `syz.2.349'. [ 73.234157][ T7416] netlink: 52 bytes leftover after parsing attributes in process `syz.2.349'. [ 73.396824][ T7427] netlink: 'syz.3.354': attribute type 10 has an invalid length. [ 73.404422][ T7427] 8021q: adding VLAN 0 to HW filter on device bond0 [ 73.406615][ T7427] team0: Port device bond0 added [ 74.028439][ T5975] tipc: Node number set to 11578026 [ 74.482958][ T7462] can: request_module (can-proto-0) failed. [ 74.623809][ T7466] netlink: 28 bytes leftover after parsing attributes in process `syz.2.364'. [ 74.758270][ T39] audit: type=1326 audit(1734747644.661:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7470 comm="syz.2.366" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 74.768031][ T39] audit: type=1326 audit(1734747644.661:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7470 comm="syz.2.366" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 74.775034][ T39] audit: type=1326 audit(1734747644.661:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7470 comm="syz.2.366" exe="/syz-executor" sig=0 arch=40000003 syscall=373 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 74.784748][ T7480] fuse: Unknown parameter 'ÿÿÿÿÿÿÿÿ0x0000000000000003' [ 74.791913][ T39] audit: type=1326 audit(1734747644.661:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7470 comm="syz.2.366" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 74.800099][ T39] audit: type=1326 audit(1734747644.661:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7470 comm="syz.2.366" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 74.867167][ T39] audit: type=1326 audit(1734747644.751:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7490 comm="syz.2.375" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 74.877381][ T39] audit: type=1326 audit(1734747644.751:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7490 comm="syz.2.375" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 74.882930][ T39] audit: type=1326 audit(1734747644.761:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7490 comm="syz.2.375" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 74.888595][ T39] audit: type=1326 audit(1734747644.761:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7490 comm="syz.2.375" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 75.254617][ T7508] fuse: Bad value for 'group_id' [ 75.256030][ T7508] fuse: Bad value for 'group_id' [ 75.571476][ T7521] overlayfs: failed to clone upperpath [ 75.869169][ T833] cfg80211: failed to load regulatory.db [ 76.474942][ T7554] 9pnet_fd: p9_fd_create_unix (7554): address too long: ./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa [ 76.899710][ T7571] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 76.929823][ T7571] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98 [ 77.312980][ T7585] netlink: zone id is out of range [ 77.314487][ T7585] netlink: zone id is out of range [ 77.315889][ T7585] netlink: zone id is out of range [ 77.319693][ T7585] netlink: zone id is out of range [ 77.321143][ T7585] netlink: zone id is out of range [ 77.322569][ T7585] netlink: zone id is out of range [ 77.323993][ T7585] netlink: zone id is out of range [ 77.325407][ T7585] netlink: zone id is out of range [ 77.326859][ T7585] netlink: zone id is out of range [ 77.328630][ T7585] netlink: zone id is out of range [ 77.332993][ T7585] netlink: 'syz.2.406': attribute type 30 has an invalid length. [ 77.335196][ T7585] (unnamed net_device) (uninitialized): option arp_missed_max: invalid value (0) [ 77.338431][ T7585] (unnamed net_device) (uninitialized): option arp_missed_max: allowed values 1 - 255 [ 77.818506][ T7614] netlink: 12 bytes leftover after parsing attributes in process `syz.3.415'. [ 77.821534][ T7614] netlink: 12 bytes leftover after parsing attributes in process `syz.3.415'. [ 77.829643][ T39] kauditd_printk_skb: 73 callbacks suppressed [ 77.829652][ T39] audit: type=1326 audit(1734747647.731:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7615 comm="syz.0.416" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fef579 code=0x7ffc0000 [ 77.840305][ T39] audit: type=1326 audit(1734747647.731:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7615 comm="syz.0.416" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fef579 code=0x7ffc0000 [ 77.853085][ T39] audit: type=1326 audit(1734747647.731:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7615 comm="syz.0.416" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7fef579 code=0x7ffc0000 [ 77.864417][ T39] audit: type=1326 audit(1734747647.731:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7615 comm="syz.0.416" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fef579 code=0x7ffc0000 [ 77.872247][ T39] audit: type=1326 audit(1734747647.731:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7615 comm="syz.0.416" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fef579 code=0x7ffc0000 [ 77.879765][ T39] audit: type=1326 audit(1734747647.731:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7615 comm="syz.0.416" exe="/syz-executor" sig=0 arch=40000003 syscall=94 compat=1 ip=0xf7fef579 code=0x7ffc0000 [ 77.885975][ T39] audit: type=1326 audit(1734747647.731:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7615 comm="syz.0.416" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fef579 code=0x7ffc0000 [ 77.892227][ T39] audit: type=1326 audit(1734747647.731:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7615 comm="syz.0.416" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fef579 code=0x7ffc0000 [ 77.898049][ T39] audit: type=1326 audit(1734747647.731:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7615 comm="syz.0.416" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fef579 code=0x7ffc0000 [ 77.903682][ T39] audit: type=1326 audit(1734747647.731:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7615 comm="syz.0.416" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fef579 code=0x7ffc0000 [ 78.158730][ T833] libceph: connect (1)[c::]:6789 error -101 [ 78.160518][ T833] libceph: mon0 (1)[c::]:6789 connect error [ 78.307092][ T7634] ceph: No mds server is up or the cluster is laggy [ 78.422544][ T7642] netlink: 8 bytes leftover after parsing attributes in process `syz.3.423'. [ 78.581661][ T7649] netlink: 'syz.2.426': attribute type 4 has an invalid length. [ 78.842623][ T7654] netlink: 8 bytes leftover after parsing attributes in process `syz.0.427'. [ 80.016750][ T7687] overlayfs: failed to clone upperpath [ 81.059120][ T7706] netlink: 56 bytes leftover after parsing attributes in process `syz.1.443'. [ 81.160440][ T7712] netlink: 11 bytes leftover after parsing attributes in process `syz.1.444'. [ 81.164156][ T7712] trusted_key: syz.1.444 sent an empty control message without MSG_MORE. [ 81.177440][ T7714] netlink: 'syz.3.446': attribute type 10 has an invalid length. [ 81.183716][ T7714] macvlan0: entered promiscuous mode [ 81.185157][ T7714] macvlan0: entered allmulticast mode [ 81.189370][ T7714] veth1_vlan: entered allmulticast mode [ 81.192057][ T7714] bond0: (slave macvlan0): Enslaving as an active interface with an up link [ 82.569875][ T7755] overlayfs: failed to clone upperpath [ 82.619286][ T7758] netlink: 60 bytes leftover after parsing attributes in process `syz.2.462'. [ 82.869344][ T7770] netlink: 4 bytes leftover after parsing attributes in process `syz.3.466'. [ 82.887365][ C0] vxcan0: j1939_session_tx_dat: 0xffff88801258bc00: queue data error: -100 [ 83.726004][ T39] kauditd_printk_skb: 8 callbacks suppressed [ 83.726015][ T39] audit: type=1326 audit(1734747653.621:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7787 comm="syz.2.471" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 83.733277][ T39] audit: type=1326 audit(1734747653.621:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7787 comm="syz.2.471" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 83.747728][ T39] audit: type=1326 audit(1734747653.621:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7787 comm="syz.2.471" exe="/syz-executor" sig=0 arch=40000003 syscall=247 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 83.753417][ T39] audit: type=1326 audit(1734747653.621:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7787 comm="syz.2.471" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 83.759447][ T39] audit: type=1326 audit(1734747653.621:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7787 comm="syz.2.471" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 83.765007][ T39] audit: type=1326 audit(1734747653.621:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7787 comm="syz.2.471" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 83.771059][ T39] audit: type=1326 audit(1734747653.621:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7787 comm="syz.2.471" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 83.777076][ T39] audit: type=1326 audit(1734747653.621:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7787 comm="syz.2.471" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 83.782867][ T39] audit: type=1326 audit(1734747653.621:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7787 comm="syz.2.471" exe="/syz-executor" sig=0 arch=40000003 syscall=361 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 83.788947][ T39] audit: type=1326 audit(1734747653.621:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7787 comm="syz.2.471" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 85.582998][ T7834] Driver unsupported XDP return value 0 on prog (id 282) dev N/A, expect packet loss! [ 85.637246][ T7842] netlink: 'syz.1.488': attribute type 9 has an invalid length. [ 85.752742][ T7850] netlink: 1280 bytes leftover after parsing attributes in process `syz.1.491'. [ 85.756040][ T7850] net_ratelimit: 9 callbacks suppressed [ 85.756052][ T7850] openvswitch: netlink: Flow actions attr not present in new flow. [ 85.761586][ T7850] autofs: Bad value for 'fd' [ 85.932313][ T7857] mmap: syz.3.494 (7857): VmData 37769216 exceed data ulimit 2. Update limits or use boot option ignore_rlimit_data. [ 86.080992][ T7866] netlink: 7942 bytes leftover after parsing attributes in process `syz.0.497'. [ 86.686710][ T7882] netlink: 'syz.1.502': attribute type 25 has an invalid length. [ 86.689094][ T7882] netlink: 'syz.1.502': attribute type 7 has an invalid length. [ 87.505160][ T7902] openvswitch: netlink: ufid size 20 bytes exceeds the range (1, 16) [ 87.507554][ T7902] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 88.895683][ T7946] netlink: 12 bytes leftover after parsing attributes in process `syz.0.523'. [ 89.594985][ T7958] geneve0: entered allmulticast mode [ 89.715245][ T7971] netlink: 12 bytes leftover after parsing attributes in process `syz.0.531'. [ 90.543484][ T8026] overlayfs: failed to clone upperpath [ 90.556560][ T8015] fuse: Bad value for 'fd' [ 91.006296][ T8050] overlayfs: failed to clone upperpath [ 91.462285][ T8065] netlink: 456 bytes leftover after parsing attributes in process `syz.0.564'. [ 91.509514][ T8063] Process accounting resumed [ 91.529717][ T8071] tmpfs: Bad value for 'mpol' [ 91.693318][ T8086] netlink: 'syz.3.571': attribute type 1 has an invalid length. [ 91.719492][ T8086] 8021q: adding VLAN 0 to HW filter on device bond2 [ 91.721997][ T8086] bond1: (slave bond2): making interface the new active one [ 91.724253][ T8086] bond1: (slave bond2): Enslaving as an active interface with an up link [ 92.001051][ T8095] netlink: 'syz.3.574': attribute type 10 has an invalid length. [ 92.006133][ T8091] overlayfs: failed to clone upperpath [ 92.008625][ T8098] overlayfs: failed to clone upperpath [ 92.014914][ T8095] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 92.018022][ T8095] bond0: (slave batadv0): Enslaving as an active interface with an up link [ 92.036432][ T8103] netlink: 456 bytes leftover after parsing attributes in process `syz.0.576'. [ 92.591743][ T8095] syz.3.574 (8095) used greatest stack depth: 20912 bytes left [ 92.787439][ T8123] netlink: 36 bytes leftover after parsing attributes in process `syz.3.583'. [ 118.714451][ T8159] overlayfs: failed to clone upperpath [ 119.836509][ T39] kauditd_printk_skb: 116 callbacks suppressed [ 119.836521][ T39] audit: type=1326 audit(1734747689.731:316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8194 comm="syz.1.602" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fc6579 code=0x0 [ 120.147825][ T39] audit: type=1326 audit(1734747690.051:317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8203 comm="syz.0.605" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fef579 code=0x7ffc0000 [ 120.153269][ T39] audit: type=1326 audit(1734747690.051:318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8203 comm="syz.0.605" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fef579 code=0x7ffc0000 [ 120.316245][ T8222] netlink: 48 bytes leftover after parsing attributes in process `syz.0.612'. [ 120.318932][ T8222] netlink: 'syz.0.612': attribute type 10 has an invalid length. [ 120.322688][ T8222] bridge0: port 2(bridge_slave_1) entered disabled state [ 120.324738][ T8222] bridge0: port 1(bridge_slave_0) entered disabled state [ 120.330004][ T8222] bridge0: port 2(bridge_slave_1) entered blocking state [ 120.331879][ T8222] bridge0: port 2(bridge_slave_1) entered forwarding state [ 120.333829][ T8222] bridge0: port 1(bridge_slave_0) entered blocking state [ 120.336028][ T8222] bridge0: port 1(bridge_slave_0) entered forwarding state [ 120.339048][ T8222] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 120.345254][ T8222] netlink: 4 bytes leftover after parsing attributes in process `syz.0.612'. [ 120.345283][ T8223] netlink: 4 bytes leftover after parsing attributes in process `syz.0.612'. [ 120.348153][ T8222] bridge_slave_1: left allmulticast mode [ 120.351454][ T8222] bridge_slave_1: left promiscuous mode [ 120.352894][ T8222] bridge0: port 2(bridge_slave_1) entered disabled state [ 120.355536][ T8222] bridge_slave_0: left allmulticast mode [ 120.356954][ T8222] bridge_slave_0: left promiscuous mode [ 120.358907][ T8222] bridge0: port 1(bridge_slave_0) entered disabled state [ 120.368759][ T8222] bond0: (slave bridge0): Releasing backup interface [ 120.525113][ T39] audit: type=1326 audit(1734747690.421:319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8235 comm="syz.3.616" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75579 code=0x7ffc0000 [ 120.531084][ T39] audit: type=1326 audit(1734747690.421:320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8235 comm="syz.3.616" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75579 code=0x7ffc0000 [ 120.538985][ T39] audit: type=1326 audit(1734747690.421:321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8235 comm="syz.3.616" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f75579 code=0x7ffc0000 [ 120.544558][ T39] audit: type=1326 audit(1734747690.421:322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8235 comm="syz.3.616" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75579 code=0x7ffc0000 [ 120.548675][ T8238] overlay: Bad value for 'uuid' [ 120.550257][ T39] audit: type=1326 audit(1734747690.421:323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8235 comm="syz.3.616" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f75579 code=0x7ffc0000 [ 120.556854][ T39] audit: type=1326 audit(1734747690.421:324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8235 comm="syz.3.616" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75579 code=0x7ffc0000 [ 120.562631][ T39] audit: type=1326 audit(1734747690.421:325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8235 comm="syz.3.616" exe="/syz-executor" sig=0 arch=40000003 syscall=145 compat=1 ip=0xf7f75579 code=0x7ffc0000 [ 120.776248][ T5939] Bluetooth: hci3: Malformed LE Event: 0x02 [ 121.491364][ T8276] overlayfs: failed to clone upperpath [ 121.514479][ T8276] netlink: 144 bytes leftover after parsing attributes in process `syz.3.628'. [ 121.697898][ T8291] overlayfs: failed to clone upperpath [ 121.738228][ T8292] overlayfs: failed to clone upperpath [ 122.482204][ T8309] netlink: 1275 bytes leftover after parsing attributes in process `syz.3.639'. [ 122.484721][ T8309] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 123.716151][ T8419] bridge0: port 1(bridge_slave_0) entered disabled state [ 124.430163][ T8537] sock: sock_set_timeout: `syz.0.726' (pid 8537) tries to set negative timeout [ 125.649401][ T8664] wg2: left promiscuous mode [ 125.651138][ T8664] wg2: left allmulticast mode [ 125.659501][ T8664] wg2: entered promiscuous mode [ 125.661239][ T8664] wg2: entered allmulticast mode [ 126.405150][ T39] kauditd_printk_skb: 10 callbacks suppressed [ 126.405160][ T39] audit: type=1326 audit(1734747696.301:336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8713 comm="syz.1.811" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fc6579 code=0x0 [ 126.826749][ T8736] netlink: 16 bytes leftover after parsing attributes in process `syz.3.818'. [ 128.419718][ T8781] netlink: 60 bytes leftover after parsing attributes in process `syz.0.835'. [ 129.097774][ T8816] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1 [ 130.526667][ T8854] netlink: 8 bytes leftover after parsing attributes in process `syz.0.859'. [ 130.679523][ T1015] IPVS: starting estimator thread 0... [ 130.767472][ T8862] IPVS: using max 38 ests per chain, 91200 per kthread [ 132.188414][ T1415] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.190577][ T1415] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.194375][ T8942] netlink: 'syz.0.891': attribute type 10 has an invalid length. [ 133.197464][ T8942] syz_tun: entered promiscuous mode [ 133.202095][ T8942] bond0: (slave syz_tun): Enslaving as an active interface with an up link [ 133.230958][ T39] audit: type=1326 audit(1734747959.139:337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8945 comm="syz.0.893" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fef579 code=0x0 [ 133.377211][ T8953] netlink: 8 bytes leftover after parsing attributes in process `syz.3.895'. [ 133.403878][ T8955] netlink: 12 bytes leftover after parsing attributes in process `syz.1.896'. [ 133.408169][ T8955] netlink: 'syz.1.896': attribute type 1 has an invalid length. [ 133.410142][ T8955] netlink: 8 bytes leftover after parsing attributes in process `syz.1.896'. [ 133.659876][ T8971] netlink: 188 bytes leftover after parsing attributes in process `syz.2.903'. [ 134.951545][ T9004] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.916'. [ 136.341286][ T9043] 9pnet_fd: Insufficient options for proto=fd [ 137.189146][ T5939] Bluetooth: hci3: Malformed LE Event: 0x02 [ 138.969502][ T9124] IPVS: set_ctl: invalid protocol: 47 10.1.1.2:20001 [ 139.064530][ T9127] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.958'. [ 139.695524][ T9165] netlink: 'syz.3.973': attribute type 32 has an invalid length. [ 139.697688][ T9165] netlink: 4 bytes leftover after parsing attributes in process `syz.3.973'. [ 139.699964][ T9165] netlink: 'syz.3.973': attribute type 32 has an invalid length. [ 140.353243][ T9191] Device name cannot be null; rc = [-22] [ 141.309164][ T9212] syz_tun: entered promiscuous mode [ 141.311114][ T9212] batadv_slave_1: entered promiscuous mode [ 141.313221][ T9212] debugfs: Directory 'hsr1' with parent 'hsr' already present! [ 141.315241][ T9212] Cannot create hsr debugfs directory [ 141.614615][ T5939] Bluetooth: hci3: Malformed LE Event: 0x02 [ 142.223983][ T5976] IPVS: starting estimator thread 0... [ 142.307491][ T9252] IPVS: using max 37 ests per chain, 88800 per kthread [ 143.220514][ T9281] overlayfs: missing 'lowerdir' [ 144.153577][ T9302] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.1023'. [ 144.376684][ T5939] Bluetooth: hci3: Malformed LE Event: 0x02 [ 144.545971][ T9313] Cannot find set identified by id 65535 to match [ 144.784656][ T9327] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.1034'. [ 145.204416][ T39] audit: type=1326 audit(1734747971.109:338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9342 comm="syz.2.1041" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x0 [ 145.428503][ T5976] IPVS: starting estimator thread 0... [ 145.527509][ T9348] IPVS: using max 38 ests per chain, 91200 per kthread [ 146.519609][ T9390] delete_channel: no stack [ 146.521339][ T9387] overlayfs: failed to clone upperpath [ 147.073584][ T9403] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1062'. [ 148.405598][ T9446] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1076'. [ 148.420323][ T9446] openvswitch: netlink: IPv4 tunnel dst address is zero [ 149.337094][ T9473] tipc: Started in network mode [ 149.340131][ T9473] tipc: Node identity 7, cluster identity 4711 [ 149.341737][ T9473] tipc: Node number set to 7 [ 149.754208][ T9493] x_tables: ip_tables: TCPMSS target: only valid for protocol 6 [ 149.858371][ T9498] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1096'. [ 151.005460][ T9541] netlink: zone id is out of range [ 151.459218][ T9564] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1121'. [ 151.599346][ T39] audit: type=1326 audit(1734747977.509:339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9569 comm="syz.2.1123" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 151.606297][ T39] audit: type=1326 audit(1734747977.509:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9569 comm="syz.2.1123" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 151.615104][ T39] audit: type=1326 audit(1734747977.509:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9569 comm="syz.2.1123" exe="/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 151.621577][ T39] audit: type=1326 audit(1734747977.509:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9569 comm="syz.2.1123" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 151.627613][ T39] audit: type=1326 audit(1734747977.509:343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9569 comm="syz.2.1123" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 151.633126][ T39] audit: type=1326 audit(1734747977.519:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9569 comm="syz.2.1123" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 151.638886][ T39] audit: type=1326 audit(1734747977.519:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9569 comm="syz.2.1123" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 151.654475][ T39] audit: type=1326 audit(1734747977.519:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9569 comm="syz.2.1123" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 151.660036][ T39] audit: type=1326 audit(1734747977.519:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9569 comm="syz.2.1123" exe="/syz-executor" sig=0 arch=40000003 syscall=394 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 151.665485][ T39] audit: type=1326 audit(1734747977.519:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9569 comm="syz.2.1123" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 152.024929][ T9583] overlayfs: failed to clone upperpath [ 152.036246][ T9581] netlink: 'syz.3.1127': attribute type 10 has an invalid length. [ 152.038701][ T9581] team0: Device ipvlan1 failed to enter team mode [ 152.040372][ T9581] team0: Device ipvlan1 failed to enter team mode [ 152.496007][ T9607] tipc: Enabling of bearer rejected, failed to enable media [ 152.867582][ T9629] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1144'. [ 152.889559][ T9631] netlink: 'syz.1.1142': attribute type 10 has an invalid length. [ 152.900305][ T9631] team0: Port device netdevsim0 added [ 153.273951][ T9652] netlink: 'syz.3.1152': attribute type 10 has an invalid length. [ 153.404348][ T9656] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1154'. [ 155.016436][ T9700] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1168'. [ 155.019689][ T9700] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1168'. [ 155.486380][ T9710] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1172'. [ 156.921536][ T9756] overlayfs: failed to clone upperpath [ 156.985817][ T39] kauditd_printk_skb: 18 callbacks suppressed [ 156.985832][ T39] audit: type=1326 audit(1734747982.889:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9761 comm="syz.0.1189" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fef579 code=0x0 [ 157.432153][ T9769] overlayfs: failed to clone lowerpath [ 158.062245][ T9787] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1198'. [ 158.384717][ T9807] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1204'. [ 158.447640][ T9809] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1204'. [ 158.450139][ T9809] netlink: 104 bytes leftover after parsing attributes in process `syz.1.1204'. [ 159.485597][ T9825] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1209'. [ 159.867365][ T5294] Bluetooth: hci3: command 0x0406 tx timeout [ 160.489392][ T9848] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1218'. [ 160.573599][ T9856] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1222'. [ 160.575975][ T9856] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1222'. [ 160.578766][ T9856] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1222'. [ 160.581169][ T9856] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1222'. [ 161.436799][ T9878] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1229'. [ 161.589471][ C3] IPv4: Oversized IP packet from 172.20.20.24 [ 161.617562][ T9900] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1238'. [ 161.618155][ T9898] overlay: ./file0 is not a directory [ 162.560550][ T9928] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1248'. [ 162.793742][ T9949] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1257'. [ 162.841766][ T9952] netlink: 'syz.0.1258': attribute type 4 has an invalid length. [ 162.847790][ T9953] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1258'. [ 164.237868][ T9981] RDS: rds_bind could not find a transport for fe80::1a, load rds_tcp or rds_rdma? [ 164.966259][ T39] audit: type=1326 audit(1734747990.869:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9998 comm="syz.2.1274" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 164.975667][ T9999] veth0_to_batadv: entered promiscuous mode [ 164.982073][ T9998] veth0_to_batadv: left promiscuous mode [ 164.983172][ T39] audit: type=1326 audit(1734747990.869:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9998 comm="syz.2.1274" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 164.989836][ T39] audit: type=1326 audit(1734747990.879:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9998 comm="syz.2.1274" exe="/syz-executor" sig=0 arch=40000003 syscall=122 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 164.997222][ T39] audit: type=1326 audit(1734747990.879:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9998 comm="syz.2.1274" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 165.004483][ T39] audit: type=1326 audit(1734747990.879:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9998 comm="syz.2.1274" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 165.012078][ T39] audit: type=1326 audit(1734747990.879:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9998 comm="syz.2.1274" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 165.019248][ T39] audit: type=1326 audit(1734747990.879:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9998 comm="syz.2.1274" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 165.025153][ T39] audit: type=1326 audit(1734747990.879:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9998 comm="syz.2.1274" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 165.031137][ T39] audit: type=1326 audit(1734747990.879:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9998 comm="syz.2.1274" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 165.036706][ T39] audit: type=1326 audit(1734747990.879:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9998 comm="syz.2.1274" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 165.864097][T10046] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1295'. [ 166.263839][ T5939] Bluetooth: hci3: SCO packet for unknown connection handle 200 [ 166.600892][T10074] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 166.605604][T10074] overlayfs: missing 'lowerdir' [ 167.725109][T10090] overlayfs: failed to clone upperpath [ 169.715813][T10158] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1336'. [ 169.819909][T10161] netlink: 'syz.3.1337': attribute type 1 has an invalid length. [ 170.019982][T10182] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1345'. [ 171.841687][ T39] kauditd_printk_skb: 8 callbacks suppressed [ 171.841698][ T39] audit: type=1326 audit(1734747997.749:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10217 comm="syz.2.1358" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x0 [ 172.810251][ T5939] Bluetooth: hci3: Malformed LE Event: 0x02 [ 172.818897][T10244] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1366'. [ 172.821537][T10244] netlink: 'syz.0.1366': attribute type 10 has an invalid length. [ 172.823656][T10244] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1366'. [ 173.381335][T10257] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1371'. [ 173.385475][T10257] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 173.395504][T10257] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 174.194084][T10271] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1383'. [ 174.843679][T10308] @: renamed from vlan0 (while UP) [ 175.245252][T10332] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1395'. [ 175.741372][T10341] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1398'. [ 179.545547][T10398] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1420'. [ 180.121919][ T5939] Bluetooth: hci3: Malformed LE Event: 0x02 [ 180.383288][T10425] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1431'. [ 180.442738][ T39] audit: type=1326 audit(1734748006.349:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10426 comm="syz.2.1432" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x0 [ 181.268830][T10454] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1442'. [ 182.494072][T10486] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1454'. [ 183.237932][T10511] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1462'. [ 183.379356][T10518] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1465'. [ 184.158664][ T30] libceph: connect (1)[c::]:6789 error -101 [ 184.182450][ T30] libceph: mon0 (1)[c::]:6789 connect error [ 184.338603][T10544] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1472'. [ 184.445250][T10549] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1474'. [ 184.477573][ T30] libceph: connect (1)[c::]:6789 error -101 [ 184.481114][ T30] libceph: mon0 (1)[c::]:6789 connect error [ 184.672398][T10530] ceph: No mds server is up or the cluster is laggy [ 185.081182][T10566] xt_HMARK: proto mask must be zero with L3 mode [ 185.133209][T10568] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1482'. [ 185.429784][ T5939] Bluetooth: hci3: Malformed LE Event: 0x02 [ 185.499277][ T30] libceph: connect (1)[c::]:6789 error -101 [ 185.501178][ T30] libceph: mon0 (1)[c::]:6789 connect error [ 185.648387][T10593] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1491'. [ 185.654051][T10585] ceph: No mds server is up or the cluster is laggy [ 186.227359][T10613] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 0, id = 0 [ 186.416203][T10623] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1500'. [ 186.979951][T10642] x_tables: duplicate underflow at hook 1 [ 187.282358][T10655] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1510'. [ 187.562034][ T39] audit: type=1326 audit(1734748013.459:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10670 comm="syz.2.1515" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 187.585407][ T39] audit: type=1326 audit(1734748013.459:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10670 comm="syz.2.1515" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 187.592743][ T39] audit: type=1326 audit(1734748013.459:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10670 comm="syz.2.1515" exe="/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 187.608629][ T39] audit: type=1326 audit(1734748013.459:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10670 comm="syz.2.1515" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 187.622159][ T39] audit: type=1326 audit(1734748013.459:392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10670 comm="syz.2.1515" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 187.633145][ T39] audit: type=1326 audit(1734748013.459:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10670 comm="syz.2.1515" exe="/syz-executor" sig=0 arch=40000003 syscall=177 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 187.646672][ T39] audit: type=1326 audit(1734748013.459:394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10670 comm="syz.2.1515" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 187.657759][ T39] audit: type=1326 audit(1734748013.459:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10670 comm="syz.2.1515" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 187.664959][ T39] audit: type=1326 audit(1734748013.459:396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10670 comm="syz.2.1515" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 187.672370][ T39] audit: type=1326 audit(1734748013.459:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10670 comm="syz.2.1515" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000 [ 187.921040][T10690] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1520'. [ 187.955583][T10692] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1521'. [ 188.192024][T10713] infiniband syz0: set active [ 188.195008][T10713] bridge_slave_0: left allmulticast mode [ 188.196643][T10713] bridge_slave_0: left promiscuous mode [ 188.198286][T10713] bridge0: port 1(bridge_slave_0) entered disabled state [ 188.202091][T10713] bridge_slave_1: left allmulticast mode [ 188.203611][T10713] bridge_slave_1: left promiscuous mode [ 188.205101][T10713] bridge0: port 2(bridge_slave_1) entered disabled state [ 188.211205][T10713] bond0: (slave bond_slave_0): Releasing backup interface [ 188.216064][T10713] bond0: (slave bond_slave_1): Releasing backup interface [ 188.231699][T10713] team0: Port device team_slave_0 removed [ 188.236874][T10713] team0: Port device team_slave_1 removed [ 188.239253][T10713] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 188.241264][T10713] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 188.243972][T10713] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 188.245930][T10713] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 188.259087][ T6800] infiniband syz0: set down [ 188.269390][T10714] team0: Mode changed to "broadcast" [ 188.278739][T10713] vlan0: entered promiscuous mode [ 188.283873][T10713] team0: Port device vlan0 added [ 188.286847][T10713] tipc: Started in network mode [ 188.291322][T10713] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711 [ 188.293523][T10713] tipc: Enabled bearer , priority 0 [ 188.375241][T10719] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1530'. [ 188.529102][T10734] xt_HMARK: proto mask must be zero with L3 mode [ 188.552588][T10737] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1539'. [ 189.007864][T10764] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1549'. [ 189.278675][T10778] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1555'. [ 189.307653][ T5930] tipc: Node number set to 11578026 [ 190.626112][T10816] __nla_validate_parse: 1 callbacks suppressed [ 190.626123][T10816] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1569'. [ 190.700810][T10822] overlay: ./file0 is not a directory [ 190.933152][T10839] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1579'. [ 191.214758][T10857] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1586'. [ 191.218257][T10857] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1586'. [ 191.660167][T10861] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1588'. [ 191.915822][ T5939] Bluetooth: hci3: Malformed LE Event: 0x02 [ 191.991297][T10884] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1597'. [ 192.289581][T10895] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1600'. [ 192.516259][T10902] netlink: 'syz.3.1602': attribute type 10 has an invalid length. [ 192.518421][T10902] team0: Device ipvlan1 failed to enter team mode [ 192.520083][T10902] team0: Device ipvlan1 failed to enter team mode [ 192.795756][T10913] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1606'. [ 193.280321][ T5939] Bluetooth: hci3: Malformed LE Event: 0x02 [ 193.456805][T10942] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1617'. [ 193.627201][T10952] can: request_module (can-proto-5) failed. [ 193.631265][ T1415] ieee802154 phy0 wpan0: encryption failed: -22 [ 193.632999][ T1415] ieee802154 phy1 wpan1: encryption failed: -22 [ 193.930137][T10969] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1627'. [ 194.643504][T11001] fuse: Bad value for 'fd' [ 195.265484][ T5939] Bluetooth: hci3: Malformed LE Event: 0x02 [ 195.722103][T11038] netlink: 'syz.1.1650': attribute type 10 has an invalid length. [ 195.729573][T11038] team0: Device ipvlan1 failed to register rx_handler [ 196.128857][T11042] __nla_validate_parse: 4 callbacks suppressed [ 196.128873][T11042] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1654'. [ 196.133238][T11042] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1654'. [ 196.470612][T11059] Device name cannot be null; rc = [-22] [ 197.292153][T11077] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1665'. [ 197.294981][T11077] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1665'. [ 197.409709][T11084] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1668'. [ 197.409984][T11086] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1675'. [ 197.417215][T11082] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1667'. [ 197.418038][T11086] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1675'. [ 197.420031][T11082] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1667'. [ 197.420182][T11084] openvswitch: netlink: IPv4 tunnel dst address is zero [ 197.729209][T11100] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1672'. [ 197.968956][T11107] Device name cannot be null; rc = [-22] [ 198.901113][T11123] 9pnet_fd: Insufficient options for proto=fd [ 199.586622][T11147] netlink: 'syz.2.1688': attribute type 10 has an invalid length. [ 199.598847][T11147] bond0: (slave wlan1): Enslaving as an active interface with an up link [ 199.602078][ T74] infiniband syz0: set active [ 199.733892][T11150] ceph: No mds server is up or the cluster is laggy [ 199.762029][T11150] netlink: 'syz.2.1690': attribute type 10 has an invalid length. [ 199.775731][T11150] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 199.778852][T11150] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 199.781167][T11150] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 199.783398][T11150] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 199.790279][T11150] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 199.793623][T11150] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 199.795738][T11150] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 199.798510][T11150] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 199.802349][T11150] team0: Port device geneve1 added [ 200.580772][ T5939] Bluetooth: hci3: Malformed LE Event: 0x02 [ 201.312631][T11195] Device name cannot be null; rc = [-22] [ 202.216288][T11226] Device name cannot be null; rc = [-22] [ 203.773384][T11257] __nla_validate_parse: 1 callbacks suppressed [ 203.773396][T11257] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1727'. [ 204.348404][T11286] Device name cannot be null; rc = [-22] [ 204.826856][T11298] netlink: 16178 bytes leftover after parsing attributes in process `syz.0.1738'. [ 204.836267][T11303] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1739'. [ 204.872115][T11307] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1741'. [ 204.948074][T11313] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1743'. [ 204.953731][T11315] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1743'. [ 205.219389][T11326] netlink: 'syz.1.1747': attribute type 1 has an invalid length. [ 205.284890][T11333] netlink: 'syz.1.1749': attribute type 10 has an invalid length. [ 205.294128][T11333] batman_adv: batadv0: Adding interface: team0 [ 205.295858][T11333] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 205.304639][T11333] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active [ 205.310781][T11333] netlink: 'syz.1.1749': attribute type 10 has an invalid length. [ 205.312901][T11333] netlink: 2 bytes leftover after parsing attributes in process `syz.1.1749'. [ 205.315273][T11333] team0: entered promiscuous mode [ 205.316715][T11333] team_slave_0: entered promiscuous mode [ 205.320250][T11333] netdevsim netdevsim1 netdevsim0: entered promiscuous mode [ 205.324042][T11333] 8021q: adding VLAN 0 to HW filter on device team0 [ 205.325918][T11333] batman_adv: batadv0: Interface activated: team0 [ 205.327808][T11333] batman_adv: batadv0: Interface deactivated: team0 [ 205.329616][T11333] batman_adv: batadv0: Removing interface: team0 [ 205.332270][T11333] bridge0: port 3(team0) entered blocking state [ 205.334006][T11333] bridge0: port 3(team0) entered disabled state [ 205.335995][T11333] team0: entered allmulticast mode [ 205.337505][T11333] team_slave_0: entered allmulticast mode [ 205.339051][T11333] netdevsim netdevsim1 netdevsim0: entered allmulticast mode [ 205.341875][T11333] bridge0: port 3(team0) entered blocking state [ 205.343662][T11333] bridge0: port 3(team0) entered forwarding state [ 205.377047][T11336] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1750'. [ 206.206745][T11357] Device name cannot be null; rc = [-22] [ 206.628059][T11364] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1759'. [ 206.630818][T11364] ------------[ cut here ]------------ [ 206.632424][T11364] WARNING: CPU: 2 PID: 11364 at net/mac80211/rate.c:53 rate_control_rate_init+0x5c0/0x720 [ 206.634952][T11364] Modules linked in: [ 206.636738][T11364] CPU: 2 UID: 0 PID: 11364 Comm: syz.1.1759 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0 [ 206.641209][T11364] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 206.643858][T11364] RIP: 0010:rate_control_rate_init+0x5c0/0x720 [ 206.645353][T11364] Code: 48 8d 35 00 00 00 00 e8 3e 31 e1 f6 e8 a9 db ea f6 e9 25 fe ff ff e8 2f 39 04 f7 90 0f 0b 90 e9 17 fe ff ff e8 21 39 04 f7 90 <0f> 0b 90 eb b1 e8 16 39 04 f7 e8 f1 04 ea f6 31 ff 89 c3 89 c6 e8 [ 206.650336][T11364] RSP: 0018:ffffc900063371f0 EFLAGS: 00010287 [ 206.651853][T11364] RAX: 000000000000118d RBX: ffff888068da0000 RCX: ffffc9000c001000 [ 206.653815][T11364] RDX: 0000000000080000 RSI: ffffffff8a9515cf RDI: 0000000000000005 [ 206.655761][T11364] RBP: 0000000000000001 R08: 0000000000000005 R09: 0000000000000000 [ 206.657860][T11364] R10: 0000000000000001 R11: 0000000000000002 R12: ffff888023b1fbe0 [ 206.663377][T11364] R13: ffff888068938e40 R14: ffff88806d300000 R15: 0000000000000000 [ 206.665441][T11364] FS: 0000000000000000(0000) GS:ffff88802b600000(0063) knlGS:00000000f5116b40 [ 206.668123][T11364] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 206.670114][T11364] CR2: 00000000f5115528 CR3: 000000006aa0e000 CR4: 0000000000352ef0 [ 206.672218][T11364] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 206.674405][T11364] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 206.676486][T11364] Call Trace: [ 206.677830][T11364] [ 206.678653][T11364] ? __warn+0xea/0x3c0 [ 206.679744][T11364] ? rate_control_rate_init+0x5c0/0x720 [ 206.681207][T11364] ? report_bug+0x3c0/0x580 [ 206.682470][T11364] ? handle_bug+0x54/0xa0 [ 206.683620][T11364] ? exc_invalid_op+0x17/0x50 [ 206.684863][T11364] ? asm_exc_invalid_op+0x1a/0x20 [ 206.686205][T11364] ? rate_control_rate_init+0x5bf/0x720 [ 206.687776][T11364] ? rate_control_rate_init+0x5c0/0x720 [ 206.689243][T11364] rate_control_rate_init_all_links+0x76/0x1e0 [ 206.690872][T11364] sta_apply_auth_flags.constprop.0+0x4bb/0x510 [ 206.692531][T11364] sta_apply_parameters+0xb6e/0x1740 [ 206.694320][T11364] ieee80211_add_station+0x3fa/0x6c0 [ 206.696041][T11364] nl80211_new_station+0x1442/0x1bc0 [ 206.697511][T11364] ? __rtnl_unlock+0x68/0xf0 [ 206.698720][T11364] ? __pfx_nl80211_new_station+0x10/0x10 [ 206.700112][T11364] ? nl80211_pre_doit+0x71e/0xb10 [ 206.701426][T11364] ? nl80211_pre_doit+0x1b0/0xb10 [ 206.702747][T11364] genl_family_rcv_msg_doit+0x202/0x2f0 [ 206.704169][T11364] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 206.705856][T11364] ? genl_get_cmd+0x195/0x580 [ 206.707056][T11364] ? bpf_lsm_capable+0x9/0x10 [ 206.708356][T11364] ? security_capable+0x7e/0x260 [ 206.709614][T11364] ? ns_capable+0xd7/0x110 [ 206.710757][T11364] genl_rcv_msg+0x565/0x800 [ 206.711876][T11364] ? __pfx_genl_rcv_msg+0x10/0x10 [ 206.712972][T11366] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1760'. [ 206.713150][T11364] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 206.717516][T11364] ? __pfx_nl80211_new_station+0x10/0x10 [ 206.718951][T11364] ? __pfx_nl80211_post_doit+0x10/0x10 [ 206.720397][T11364] netlink_rcv_skb+0x165/0x410 [ 206.721679][T11364] ? __pfx_genl_rcv_msg+0x10/0x10 [ 206.722988][T11364] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 206.724401][T11364] ? down_read+0xc9/0x330 [ 206.725524][T11364] ? __pfx_down_read+0x10/0x10 [ 206.726756][T11364] ? netlink_deliver_tap+0x1ae/0xca0 [ 206.728119][T11364] genl_rcv+0x28/0x40 [ 206.729149][T11364] netlink_unicast+0x53c/0x7f0 [ 206.730370][T11364] ? __pfx_netlink_unicast+0x10/0x10 [ 206.731728][T11364] ? __phys_addr_symbol+0x30/0x80 [ 206.733070][T11364] ? __check_object_size+0x488/0x710 [ 206.734524][T11364] netlink_sendmsg+0x8b8/0xd70 [ 206.735757][T11364] ? __pfx_netlink_sendmsg+0x10/0x10 [ 206.737095][T11364] ____sys_sendmsg+0x9ae/0xb40 [ 206.738397][T11364] ? __pfx_____sys_sendmsg+0x10/0x10 [ 206.739788][T11364] ? get_compat_msghdr+0x11b/0x170 [ 206.741154][T11364] ___sys_sendmsg+0x135/0x1e0 [ 206.742393][T11364] ? __pfx____sys_sendmsg+0x10/0x10 [ 206.743795][T11364] ? __pfx_lock_release+0x10/0x10 [ 206.745126][T11364] ? trace_lock_acquire+0x14e/0x1f0 [ 206.746467][T11364] ? __fget_files+0x206/0x3a0 [ 206.747722][T11364] __sys_sendmsg+0x16e/0x220 [ 206.748896][T11364] ? __pfx___sys_sendmsg+0x10/0x10 [ 206.750231][T11364] ? __ia32_sys_futex_time32+0x1da/0x460 [ 206.751728][T11364] __do_fast_syscall_32+0x73/0x120 [ 206.753187][T11364] do_fast_syscall_32+0x32/0x80 [ 206.754459][T11364] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 206.756040][T11364] RIP: 0023:0xf7fc6579 [ 206.757085][T11364] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 206.761966][T11364] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 206.764198][T11364] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020001080 [ 206.766174][T11364] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 206.768207][T11364] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 206.770169][T11364] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 206.772290][T11364] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 206.774883][T11364] [ 206.775703][T11364] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 206.777606][T11364] CPU: 2 UID: 0 PID: 11364 Comm: syz.1.1759 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0 [ 206.780360][T11364] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 206.783356][T11364] Call Trace: [ 206.784217][T11364] [ 206.784977][T11364] dump_stack_lvl+0x3d/0x1f0 [ 206.786162][T11364] panic+0x71d/0x800 [ 206.787170][T11364] ? __pfx_panic+0x10/0x10 [ 206.788337][T11364] ? show_trace_log_lvl+0x29d/0x3d0 [ 206.789666][T11364] ? rate_control_rate_init+0x5c0/0x720 [ 206.791044][T11364] check_panic_on_warn+0xab/0xb0 [ 206.792433][T11364] __warn+0xf6/0x3c0 [ 206.793438][T11364] ? rate_control_rate_init+0x5c0/0x720 [ 206.794829][T11364] report_bug+0x3c0/0x580 [ 206.795916][T11364] handle_bug+0x54/0xa0 [ 206.796983][T11364] exc_invalid_op+0x17/0x50 [ 206.798157][T11364] asm_exc_invalid_op+0x1a/0x20 [ 206.799396][T11364] RIP: 0010:rate_control_rate_init+0x5c0/0x720 [ 206.801001][T11364] Code: 48 8d 35 00 00 00 00 e8 3e 31 e1 f6 e8 a9 db ea f6 e9 25 fe ff ff e8 2f 39 04 f7 90 0f 0b 90 e9 17 fe ff ff e8 21 39 04 f7 90 <0f> 0b 90 eb b1 e8 16 39 04 f7 e8 f1 04 ea f6 31 ff 89 c3 89 c6 e8 [ 206.805849][T11364] RSP: 0018:ffffc900063371f0 EFLAGS: 00010287 [ 206.807393][T11364] RAX: 000000000000118d RBX: ffff888068da0000 RCX: ffffc9000c001000 [ 206.809368][T11364] RDX: 0000000000080000 RSI: ffffffff8a9515cf RDI: 0000000000000005 [ 206.811919][T11364] RBP: 0000000000000001 R08: 0000000000000005 R09: 0000000000000000 [ 206.814234][T11364] R10: 0000000000000001 R11: 0000000000000002 R12: ffff888023b1fbe0 [ 206.816231][T11364] R13: ffff888068938e40 R14: ffff88806d300000 R15: 0000000000000000 [ 206.818290][T11364] ? rate_control_rate_init+0x5bf/0x720 [ 206.819850][T11364] rate_control_rate_init_all_links+0x76/0x1e0 [ 206.822035][T11364] sta_apply_auth_flags.constprop.0+0x4bb/0x510 [ 206.824036][T11364] sta_apply_parameters+0xb6e/0x1740 [ 206.825669][T11364] ieee80211_add_station+0x3fa/0x6c0 [ 206.827032][T11364] nl80211_new_station+0x1442/0x1bc0 [ 206.828364][T11364] ? __rtnl_unlock+0x68/0xf0 [ 206.829624][T11364] ? __pfx_nl80211_new_station+0x10/0x10 [ 206.831551][T11364] ? nl80211_pre_doit+0x71e/0xb10 [ 206.832822][T11364] ? nl80211_pre_doit+0x1b0/0xb10 [ 206.834092][T11364] genl_family_rcv_msg_doit+0x202/0x2f0 [ 206.835474][T11364] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 206.836999][T11364] ? genl_get_cmd+0x195/0x580 [ 206.838202][T11364] ? bpf_lsm_capable+0x9/0x10 [ 206.839419][T11364] ? security_capable+0x7e/0x260 [ 206.840642][T11364] ? ns_capable+0xd7/0x110 [ 206.841802][T11364] genl_rcv_msg+0x565/0x800 [ 206.842987][T11364] ? __pfx_genl_rcv_msg+0x10/0x10 [ 206.844304][T11364] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 206.845655][T11364] ? __pfx_nl80211_new_station+0x10/0x10 [ 206.847070][T11364] ? __pfx_nl80211_post_doit+0x10/0x10 [ 206.848571][T11364] netlink_rcv_skb+0x165/0x410 [ 206.850174][T11364] ? __pfx_genl_rcv_msg+0x10/0x10 [ 206.851516][T11364] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 206.852917][T11364] ? down_read+0xc9/0x330 [ 206.854024][T11364] ? __pfx_down_read+0x10/0x10 [ 206.855244][T11364] ? netlink_deliver_tap+0x1ae/0xca0 [ 206.856611][T11364] genl_rcv+0x28/0x40 [ 206.857607][T11364] netlink_unicast+0x53c/0x7f0 [ 206.858806][T11364] ? __pfx_netlink_unicast+0x10/0x10 [ 206.860150][T11364] ? __phys_addr_symbol+0x30/0x80 [ 206.861391][T11364] ? __check_object_size+0x488/0x710 [ 206.862682][T11364] netlink_sendmsg+0x8b8/0xd70 [ 206.863848][T11364] ? __pfx_netlink_sendmsg+0x10/0x10 [ 206.865178][T11364] ____sys_sendmsg+0x9ae/0xb40 [ 206.866416][T11364] ? __pfx_____sys_sendmsg+0x10/0x10 [ 206.867713][T11364] ? get_compat_msghdr+0x11b/0x170 [ 206.868977][T11364] ___sys_sendmsg+0x135/0x1e0 [ 206.870178][T11364] ? __pfx____sys_sendmsg+0x10/0x10 [ 206.871538][T11364] ? __pfx_lock_release+0x10/0x10 [ 206.872813][T11364] ? trace_lock_acquire+0x14e/0x1f0 [ 206.874148][T11364] ? __fget_files+0x206/0x3a0 [ 206.875342][T11364] __sys_sendmsg+0x16e/0x220 [ 206.876528][T11364] ? __pfx___sys_sendmsg+0x10/0x10 [ 206.877877][T11364] ? __ia32_sys_futex_time32+0x1da/0x460 [ 206.879330][T11364] __do_fast_syscall_32+0x73/0x120 [ 206.880665][T11364] do_fast_syscall_32+0x32/0x80 [ 206.881956][T11364] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 206.883562][T11364] RIP: 0023:0xf7fc6579 [ 206.884637][T11364] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 206.889497][T11364] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 206.891625][T11364] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020001080 [ 206.893615][T11364] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 206.895598][T11364] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 206.897557][T11364] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 206.899562][T11364] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 206.901549][T11364] [ 206.902766][T11364] Kernel Offset: disabled [ 206.903923][T11364] Rebooting in 86400 seconds.. VM DIAGNOSIS: 02:22:56 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000001 RBX=ffffffff9a60d088 RCX=ffffffff8176c683 RDX=0000000000000000 RSI=0000000000000004 RDI=ffffffff9a60d088 RBP=ffffffff9a60d090 RSP=ffffc900037f7a18 R8 =0000000000000000 R9 =fffffbfff34c1a11 R10=ffffffff9a60d08b R11=0000000000000002 R12=ffffffff9a60d098 R13=ffff88806a801068 R14=ffffffff8b4f8020 R15=1ffff920006fef50 RIP=ffffffff8b1cbe92 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802b400000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000200c1018 CR3=0000000068fd6000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000a000000000 0000000200000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=dffffc0000000000 RBX=0000000000000001 RCX=ffffc900249ef230 RDX=0000000000000000 RSI=ffffffff8b4cd480 RDI=ffff888070330444 RBP=ffff888070330000 RSP=ffffc900249ef280 R8 =0000000000000000 R9 =fffffbfff2039c72 R10=ffffffff901ce397 R11=0000000000000002 R12=ffff888070330000 R13=00000000ffffffff R14=0000000000000000 R15=ffffea00013e8298 RIP=ffffffff817ff1d0 RFL=00000807 [-O---PC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b500000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000002012f018 CR3=0000000068fd6000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 962e1d5dfdea3c9f ec1e122913336fa9 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 da8504009fd36670 b9353228abd01da7 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 e3c86b9a321f129e 9a95a4108fd08d1f ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0479b60937d769e4 15d5e82c63c81da0 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000f280 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 001fc4ec34f1fa88 0000007e0000007e ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 32ed5112353f20ee 384090980b07b617 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 01061f3400000000 0000007e00000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000007e00000000 383f8ea20000007e ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1738274326188e31 63cf09f2e896964c ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 fca3e412872346b0 69539e22df0d0c7d ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000000000030 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff85142675 RDI=ffffffff9a6672c0 RBP=ffffffff9a667280 RSP=ffffc90006336b58 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000007 R12=0000000000000000 R13=0000000000000030 R14=ffffffff85142610 R15=0000000000000000 RIP=ffffffff8514269f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802b600000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000f5115528 CR3=000000006aa0e000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=00000000001c5a89 RBX=0000000000000003 RCX=ffffffff8b1a3819 RDX=0000000000000000 RSI=ffffffff8b4cd180 RDI=ffffffff8bb16ec0 RBP=ffffed10039df488 RSP=ffffc9000049fe08 R8 =0000000000000001 R9 =ffffed10056e6fed R10=ffff88802b737f6b R11=0000000000000000 R12=0000000000000003 R13=ffff88801cefa440 R14=ffffffff901ce390 R15=0000000000000000 RIP=ffffffff8b1a4bff RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b700000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000000020001080 CR3=0000000068fd6000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000