last executing test programs: 7.041169401s ago: executing program 3 (id=946): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) poll(0x0, 0x0, 0x0) 6.68638308s ago: executing program 3 (id=949): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="0e000000040000000800"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x6, 0x6, &(0x7f00000000c0)=ANY=[@ANYRES32=r0], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000b80)={r1, 0x2000012, 0x0, 0x0, &(0x7f0000000c40), 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xb}, 0x50) socket$nl_route(0x10, 0x3, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0xfffffffffffffffe) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) socket$nl_netfilter(0x10, 0x3, 0xc) socket$nl_xfrm(0x10, 0x3, 0x6) bpf$BPF_LINK_CREATE(0x8, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff, 0x1d, 0x0, @val=@netkit}, 0x1c) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="d80100001c00"], 0x1d8}}, 0x0) 5.81539245s ago: executing program 2 (id=951): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) sendmsg$NFT_MSG_GETSET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)={0x14, 0xa, 0xa, 0x201, 0x0, 0x0, {0x2}}, 0x14}}, 0x4000000) r1 = socket$inet_sctp(0x2, 0x1, 0x84) dup3(r1, r0, 0x0) getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000ac0)=0x8) setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000540)={0x8, 0x8, 0x202, 0x17558e07, 0x6, 0x3, 0xffffffff, 0x7, r2}, 0x20) 4.990501117s ago: executing program 2 (id=953): socket$inet6_tcp(0xa, 0x1, 0x0) r0 = socket$tipc(0x1e, 0x2, 0x0) bind$tipc(r0, &(0x7f0000000080)=@name={0x1e, 0x2, 0x0, {{0x42}}}, 0x10) r1 = socket$tipc(0x1e, 0x5, 0x0) r2 = socket$tipc(0x1e, 0x2, 0x0) setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000080)={0x42, 0x80000009, 0x2}, 0x10) r3 = socket$tipc(0x1e, 0x2, 0x0) setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000300)={0x42, 0x3}, 0x10) bind$tipc(r1, &(0x7f00000001c0)=@nameseq={0x1e, 0x1, 0x2, {0x42, 0x4, 0x10000000}}, 0x10) sendmsg$tipc(r2, 0x0, 0x4) 4.915991242s ago: executing program 2 (id=954): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000680)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020756c3c00000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={0x0, r0}, 0x18) mq_unlink(0x0) ioprio_set$pid(0x1, 0x0, 0x4007) openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0) ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) 4.871972486s ago: executing program 3 (id=955): socketpair$unix(0x1, 0x2, 0x0, 0x0) capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff}) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) 3.83166947s ago: executing program 3 (id=957): sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000300)=@abs={0x0, 0x0, 0x4e20}, 0x6c) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r3, 0x6, 0x13, 0x0, 0x0) connect$inet6(r3, 0x0, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = dup3(r3, r4, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r4, 0x0) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r5, 0x6, 0x23, 0x0, &(0x7f0000001380)) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x10) r6 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_REG(r6, 0x11b, 0x4, &(0x7f00000000c0)={0x0, 0x101000, 0x800, 0x3, 0x1}, 0x20) setsockopt$XDP_UMEM_COMPLETION_RING(r6, 0x11b, 0x6, 0x0, 0x0) setsockopt$XDP_UMEM_FILL_RING(r6, 0x11b, 0x5, &(0x7f0000000140)=0x4000, 0x4) bind$xdp(r6, &(0x7f00000001c0)={0x2c, 0x8, 0x0, 0x1000000}, 0x10) 3.761880056s ago: executing program 2 (id=958): socket$l2tp6(0xa, 0x2, 0x73) openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0) socket(0x28, 0x5, 0x0) openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi4\x00', 0x42, 0x0) epoll_create1(0x0) r0 = fsopen(&(0x7f00000001c0)='devpts\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) fsmount(r0, 0x0, 0xf) pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x8}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff, 0x2}, 0x0, 0x0) 3.47063539s ago: executing program 0 (id=960): openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x62000, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000280)='fd/3\x00') r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000240)={0x80000011}) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000c40)) 3.417747434s ago: executing program 2 (id=961): syz_usb_connect(0x2, 0x24, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x7c, 0x6, 0x31, 0x20, 0x77d, 0x410, 0x3afa, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0xc0, 0x5, [{{0x9, 0x4, 0x5a, 0x0, 0x0, 0x84, 0xda, 0x28}}]}}]}}, 0x0) 3.408111194s ago: executing program 1 (id=962): socket$inet6_tcp(0xa, 0x1, 0x0) r0 = socket$tipc(0x1e, 0x2, 0x0) bind$tipc(r0, &(0x7f0000000080)=@name={0x1e, 0x2, 0x0, {{0x42}}}, 0x10) r1 = socket$tipc(0x1e, 0x5, 0x0) r2 = socket$tipc(0x1e, 0x2, 0x0) setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000080)={0x42, 0x80000009, 0x2}, 0x10) r3 = socket$tipc(0x1e, 0x2, 0x0) setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000300)={0x42, 0x3}, 0x10) bind$tipc(r1, &(0x7f00000001c0)=@nameseq={0x1e, 0x1, 0x2, {0x42, 0x4, 0x10000000}}, 0x10) sendmsg$tipc(r2, 0x0, 0x4) 3.254529367s ago: executing program 0 (id=963): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="0e000000040000000800"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x6, 0x6, &(0x7f00000000c0)=ANY=[@ANYRES32=r0], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000b80)={r1, 0x2000012, 0x0, 0x0, &(0x7f0000000c40), 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xb}, 0x50) socket$nl_route(0x10, 0x3, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0xfffffffffffffffe) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) socket$nl_netfilter(0x10, 0x3, 0xc) socket$nl_xfrm(0x10, 0x3, 0x6) bpf$BPF_LINK_CREATE(0x8, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff, 0x1d, 0x0, @val=@netkit}, 0x1c) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="d80100001c00"], 0x1d8}}, 0x0) 3.09239062s ago: executing program 1 (id=964): unshare(0x600) sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x4048884) r0 = socket$pppl2tp(0x18, 0x1, 0x1) r1 = socket$inet6_udp(0xa, 0x2, 0x0) connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x0, @dev}, 0x2}}, 0x2e) r2 = socket$pppl2tp(0x18, 0x1, 0x1) connect$pppl2tp(r2, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x18}}, 0x2, 0x1}}, 0x2e) getsockopt(r2, 0x111, 0x5, 0x0, &(0x7f0000000080)=0x5a) 2.59948953s ago: executing program 1 (id=965): unshare(0x2040400) r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) ioctl$UI_SET_SWBIT(r0, 0x4004556d, 0x1ffffffffffff) 2.482624499s ago: executing program 0 (id=966): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000680)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020756c3c00000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000000)='sys_enter\x00', r0}, 0x18) mq_unlink(0x0) ioprio_set$pid(0x1, 0x0, 0x4007) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) 2.409584045s ago: executing program 0 (id=967): socket$packet(0x11, 0x3, 0x300) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ptype\x00') read$FUSE(r0, &(0x7f0000001780)={0x2020}, 0x2020) 2.375172098s ago: executing program 1 (id=968): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r0, &(0x7f00000bd000), 0x318, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = socket$can_j1939(0x1d, 0x2, 0x7) r2 = socket$can_j1939(0x1d, 0x2, 0x7) ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, 0x0) bind$can_j1939(r1, &(0x7f00000000c0)={0x1d, 0x0, 0xfffffffffffffffc, {0x0, 0x0, 0x4}}, 0x18) r3 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000400)={'vcan0\x00', 0x0}) r5 = socket$can_j1939(0x1d, 0x2, 0x7) bind$can_j1939(r5, &(0x7f0000000080)={0x1d, r4, 0x0, {0x0, 0x0, 0x4}, 0xfe}, 0x18) sendmsg$can_j1939(r5, &(0x7f00000001c0)={&(0x7f0000000040)={0x1d, 0x0, 0x0, {0x0, 0xf0}}, 0x18, &(0x7f0000000180)={&(0x7f0000000280)="4dfb0cf0d556f1327d", 0x9}, 0x1, 0x0, 0x0, 0x400c000}, 0xee) sendmsg$nl_route_sched(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000007c0)=@newtfilter={0x24, 0x11, 0x111, 0x70bd27, 0x100000, {0x0, 0x0, 0x74, r4, {0x6, 0xfff2}, {0x5, 0xfff3}, {0xd, 0xfff3}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x4010}, 0xc4) 2.186616293s ago: executing program 0 (id=969): pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x2, &(0x7f00000001c0)=0x7ff, 0x4) bind$inet6(r1, &(0x7f0000000000)={0xa, 0x8000002, 0x2000}, 0x1c) socket$packet(0x11, 0xa, 0x300) sendto$inet6(r1, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x3, @loopback}, 0x1c) sendto$inet6(r1, &(0x7f0000000080)="44f9b108b1cdc885c9c533d21f474bec8bfef1df1e2da71e578dc6b91d09f7ab15378571d8e27546090000006e75436914ab717528ee4b7a9beaf908d11137c11903064e83b4951f4d433a5404970c85d92d7083fd38844cbb0c6c5eb508ddc2dc7a590aa7941b1e9eeb5a688138dea09b776cbfa784cbf550bf3074fb0d775da4df5a3f48bbdf452eeb6b923da9d0e25b80f76a873664b5753444fe05f33e5f91045540836c3cd6af10f0cd018f0c6f57f926ac959a5628c45088fbe0c87fbe6cbcda4662d2a12f6d00"/215, 0xd0d0c2ac, 0x1, 0x0, 0x0) splice(r1, 0x0, r0, 0x0, 0x406f413, 0x0) 1.750434098s ago: executing program 3 (id=970): r0 = socket(0x840000000002, 0x3, 0x100) connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) sendmmsg$inet(r0, &(0x7f0000005240), 0x4000095, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0) sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce) sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1) r1 = syz_open_dev$MSR(&(0x7f0000000200), 0x0, 0x0) read$msr(r1, &(0x7f0000002700)=""/102392, 0x18ff8) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) 1.713585651s ago: executing program 2 (id=971): prctl$PR_SCHED_CORE(0x3e, 0x10000000001, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x1400200bce) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1) r0 = syz_open_dev$MSR(&(0x7f0000000200), 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@gettaction={0x44, 0x32, 0x20, 0x70bd25, 0x25dfdbfe, {}, [@action_gd=@TCA_ACT_TAB={0x1c, 0x1, [{0xc, 0x1c, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'bpf\x00'}}, {0xc, 0x1d, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'ife\x00'}}]}, @action_gd=@TCA_ACT_TAB={0x14, 0x1, [{0x10, 0xe, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'mirred\x00'}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x4048840) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c0000001000010400b5000000000400000000", @ANYRES32=0x0, @ANYBLOB="00000000001400001c00128009000100626f6e6400"], 0x3c}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)=@newqdisc={0x34, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xfff2, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x44}, 0x1, 0x0, 0x0, 0x8000010}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600007842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840) r1 = socket$netlink(0x10, 0x3, 0x0) setsockopt$inet_mreqsrc(0xffffffffffffffff, 0x0, 0x3, 0x0, 0x0) sendmmsg(r1, &(0x7f00000002c0), 0x40000000000009f, 0x0) read$msr(r0, &(0x7f000001b700)=""/102392, 0x18ff8) socket$kcm(0x10, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x6, 0xe, &(0x7f0000000300)=ANY=[@ANYBLOB="b700000018000000bca30000000000002403000040feffff720af0ff0000000071a4f0ff000000001f030000000000002e140200000000002604fdffffff000061140400000000001d430000000000007a0a00fe0000001f6114000000000000b503f7fff80000009500000000000000033bc065b78111c6dfa041b63af4a3912435f1a864a7aad58db6a693002e7f3be361917adef6ee1c8a2a4f8ef1e50becb19bc461e91a7168e5181554a090f30002af51efd601b6bf01c8e8b1fee5bef7af9aa0d7d600c095199fe3ff3128e599b0eaebbdbd732c9cc00eec363e4a8f6456e2cc21557c0afc646cb7798b3e6440c2fbdb00a3e35208b0bb0d2cd829e65440000000000000000028610643a98d9ec21ead2ed51b104d4d91af25b845b9f7d08d123deda88c658d42ecbf28bf7076c15b463bebc72f526dd70252e79166d858fcd0e06dd31af9612fa402d0b11008e59a5923906f88b53987ad1714e72ba7a54f0c33d39000d06a59ff616236fd9aa58f0177184b6a89adaf17b0a6041bdef728f5089048ddff6da40f9411fe7226a40409d6e37c4f46756d31cb467600ade70063e5291569b33d21dae356e1c51f03a801be8189679a16da18ec0ae564162a27afea62d84f3a10076443d643649393bf52d2105bd901128c7e0ec82701c8204a1deeed4155617572652d950ad31928b0b036dc2869f478341d02d0f5ad94b081fcd507acb4b9c67382f13d000000225d85ae49cee383dc5049076b98fb6853ab39a21514da60d2ae20cfb91d6a49964757cdf538f9ce2bdbb9893a5de817101ab062cd54e67051d355d84ce97bb0c6b6a595e487a2cc47c0efbb2d71cde2c10f0bc6980fe78683ac5c0c31032599dd273863be9261eee52216d009f4c52048ef8c126aeef5f510a8f1aded94a129e4aec6e8d9ab06faffc3a15d91c2ea3e2e04cfe031b287539d0540059fe6c7fe7cd8697502c7596566de74e425da5e7f009602a9f61d3804b3e0a1053abdc31282dfb15eb6841bb64a1b3045024a982f3c48b936e6f9e0fcda88fe4413537528fd79153baae244e7bf573eac34b781337ad5901a4cad2422ee965a38f7defbd2960242b104e20dc2d9b0c35608d402ccdd9069bd50b994fda7a9de44022a579dfc0229cc0dc98816106dec28eaeb883418f562ae00003ea96d10f172c0374d6eed826416050000000bfe9b4a9c5a90ff59d54d1f92ecc48899b212c55318294270a1ad10c80fef7c24d47afcc829ba0f85da6d888f18ea40ab959f6074ab2a40d85d1501783a7ab51380d7b4ead35a385e0b4a26b602396df7e0c1e02b88c114f244a9bf93f04bf072f0861f5c0b000000000000eedcf2ba1a9508f9d6aba582a896a9f1ffa968eacea75caf822a7a63ba3401e6a52acb1188883ad2a3b1832371fe5bc621426d1ed01b389708165b9cdbae2ed9dc7358f0ebadde0b727f27feeb7464dcc536cbae2f5c7d951680f6f2f9a6a8346962a350845ffa0d82884f79adc287906943408e6df3c391e97ba48db0a5adbfd03aac93df8866fb010ae20e92bed1fe39af169d2a466f0db6f3d9436a7d55fc30511d00000000c95265b2bd83d648532869d701723fedcbada1ee7baa19faf67256b56a41fd355b6a686b50f0937f778af083e055f6138a757ebd0ed91124a6b244f9acf41ac5d73a008364e0606a594817031fc2654026c6ea08b83b123145ab5703dad844ceb201efeb6dc5f6a9037d2283c42efc54dd84323afc4c10eff462c8843187f1dd48ef0900000000000000ff0f4000000000f00700003c17888e1cdba94a6ea80c33ead5722c3293a493f1479531dd88261458f40d31fe8df15efaaeea831555877f9538c6ee6ba65893ff1f908ba7554ba583ec7932f5954f31a878e2fae6691d1aee1da02ba516467df3e7d1daac43738612e4fee18a22da19fcdb4c1011e32f808890205f0e6da2819d2f9e77c7c64affa54fec0136cbafa5f62e96753b639a924599c1f69219927ea5301fff0a6063d427180d61542c2571f983e96635600000554f327a3535e7c7542799493c31ac05a7b57f03ca91a01ba2a30ca99e969d6fd09dc28ebc15edb4d91675767912d146aef7799738b292fd64bbca48568325b2969e2b15f36b788bce0900000000000000499f6947a967a794963442aece449a0d80010f5c653d22d49030a8c2a4ab595bf4238f18ca428dafc7ac96d404607a0000000051a2104f22e6db5a62b5089c1b45282d38864daa3ae81d6b0968d1d2869291b7d12096833d6864da40b54783a17aaeb6737c323f9f98e354cc98dcfe23ad01bd1c61563e69ffe1c2c73e16e637d4219ef7ec61261173f359e93d2c5e424c17998809ec8f0232b3955e052a4cecd89008f70314a0bdd491ecab5d232f89fe0120f64c62e8e3ed8bcb45202c204bbec8d722824c0ebca8db1ea4a05e41f6016ab5bbe4fe7ff5d785d0128171c90d9900ca2532b0f9d01c4b45294fbba468df3e1b393cb4e62e753b4172ba7ac1f2b51c94bc5d047899fd219f448bf9189c65c9d91eda6b52a373803a9efe44f86909bc90addbc4b3093c91b8068c5adfcb0d7fd849904568916694d461b76a58d88cf0f520310a1e9fdc18cde98d662eee077515d0a881192292ffff5392ab3d1311b82432662806add87047f601fa888400000000000000000000000000006acc19808d7cf29bc974b0ea92499a41b9b9a7c2bca311a28ee4952f2d325a56397c78f12205db653a536f0100e0eda300a43a13bd1b9f3322405d1efd78e578dc6b3fb84f3738a4b6caa800000087efa51c5d95ecba4e50e529d1e8c89600e809dc3d0a2f65579e23457949a50f2d0455cf699b3746979f99f6a1527f004f37e84fb478199dc1020f4beb98b8074bf7df8b5e783637daf121f175a81cffff4ac55a4385e9a617aa6c8e10d4202c5afeb06e2f9115558ea12f92d7ae633d44086b3f03b20d546fa66a72e38207c9d20035abc46271a30f1240de52536941242d23896ab74a3c6670fdc49c14f34fc4eadd6db8d80eba439772bf60a1db18c472dafc5569adc682928d2a1ffe29f1a57d3f18f4edaeb5d37918e6fddcd821da67a0785585a4443440dc65600e64a4a274000000000000000000000000000000000000000000000009dd14b38f2f5426d7cf5075047c31f6ce6adddfe3ac649c0643c8bfbeb14ba1fd7a485aa893915cf81e29aaf375e904bbe52691a4120260ffcd030000006d291ebcef893e1b9ccb6797d0646fe0e7274434f28efb43e06e64f0698caca42f4e6018a455736c482a017e2b13dac4a90faa109f0e87cc94e3efb649692456463ca74aa6ad4bf50c1acb3928143be1c1023a375e528285544d0064b98646f3109e9a4942ce42c6e7ec84b664f6c2770803f10b0a1fcbfc309381aeba191950bae71f37f1eb7ceeffb3c0547ac6571603adbfde4c8b5f8d7f4b854441613633b48865b65bdc415e1e0dcf672d68cf4cebf04f4bc1eebf560a26d3b332240d450fdb0a9a69f432e277f3a0386eb2bd1305c821c64757f786b79fef54dbe64c67d73934bc80b2133fb3c04cc7ea48bf97a6243c9f95dcbddecf45f008f1822c7868e1ff5a3cff5d6b6898335792749df7b1f51e91f8c1c3b1b93b33aaa3fab69cef08a9f6f6cf39dea3d878b2ed42545421970cc426e644332bc956d1c6adefdf0ede2c5c94aa632646ae225accdf031f611d01622921f1b922a5ac887cca3136133dce8d9f5f4da7bed2ea5d94362200000000000000000000f296b0c1484e5f781ad26bff696b05ff0a5e2270e07e18b04273bd4075ea38ab463bfa6a38e7c537498ba3e4df8dfc9e8c0a0d213c3ffad44d2a376def42e41e9fc3167a257e040fa7cf32c221aaac6cfdeb33c27500001a0000000000000000000017350000c11ae694b0c69c2c03f6790044a357e785af6e153d5f1ea460af92c7cbbd6295afe740f5e154346d483e0d10522a7a945b93fb705b95b6aae27a8fab1e6984c8bdc12360627137ab6737b68ab08acb29a74dc36b51209cfbc87f61182bbeb2772e9d5a1ffc477179be481ffe46a4ce86be0b1f8eee42a611a3d44ca450b14586ed63dd92005c79e4a8ab8a94f0b74903580ac98708007c80d6c7d0de4614195e40d797c0348de20f36a220e8b3710fb5358c27e90793bcb9ee6319342c4b239ca8cbc6fc83d32e6eb62ad92e43991f2447be9c2a1ae1119eafb901a43d57e885116d19aa152bfb89f8d0b2516f80120a1cddff771657f3d0288ec3899f1e3ba0151c4037148fb479de703fc52b6573349c28d1b107d859b4961324c17756dde99de1924a1d2b7095d34a55060f47f4407d89acf9f285b20c2e6b3d0491d0d3591b0d94713332b6b79c8297117b0d14eff64e0aca8a4b4aa773d8fba1217e9519952419bb9dd998d0ec870ff00b6d556018602738fbc6cec89d6dd13cf55b96f6fe9a137d2d6a56ad78e52c23ed080000000000002bc261a781fd14126c146a0aac4221839a4b9bbf61e4bba695a41e2109eba8e40c370267cc51ffadbd15cafc97b4d3edfdcb9b5729307c6bdaf7b69325fb05fa8a9869de0600ee477d71bf3e36d1d9019edfa27aae24b632f251df210c86a18fae731ecb8b0d48357378caf2b6789509b1bacfd4fa812dc341875cfa5e798bbf59770000000000000000c8a594ea3c3347962d9113b1fecdfad5a8da641053f02e49456f5d21674521e67a5b18ea451eccf69dd6af928d2d68da9304a296c22fdcea26498d26229110b1aade386b113045033a6188d56e675564d8cb8d5b40114b4f5bf15dd64c9ece60b8588ee8777d0ea8f4713b258427c7d90f9e93348e17723ba9ab8ae790f74cc41ae5795835f3cec40dff485d2802c08611454d9ea784a205bcc07ec26f906f3cf45bb37014ab6f22af6213618e242b283ea9d3f0677ee598072ec06f7170009d92bb7ed9d12c378dfd3e74ec056ee83eef666423d934fc5908c9ff98715218a5964f1e00000000426ac9588e27aefe307f49662990ee823568bbc2f89596ced7c6c52d76b8096f1848410843b93fd404f535be474f456778b5ef85abb8fc2336abd5ea64a6efea8a5aca0015499b88ae780a7bae4df603bd3c72808cf300440b1b638a6640f7de8d0d82f359ca2f779cd48cd8d3603f4f69e47f386988c9b7b5d6dd3d48a1fdca780049d7c87bea42161a4c0d7cf0125b43dc9d8845f3c05a08acda647e7143d0e0aee2949a45e2848890522c2288072467d2afe269f589fb1bfe206c9690b6d0eebb06a29349229eb45ff15c63aa2c82c56d7420738cd1b04eb36e87cb524315d7361ea3635d3799bb7fcc56aa5e1dbe031a7a12554dee6754b72f43a6fddf427f32ec3df274a88097725679769beebf1aa6eb09d5154e4900000000000d0f7160a05911d969879953d3d4702b78825d5ed789711b77d40dc31e0b8fc651b45559da463f0000000000000000000000000052d42124e9c26aba885015e69d42ecd710342ac597ebea576ae15fdf611356f622e831741ab15549e0d7a2bd0324e2b3b48a10551607492c19eaf58485feb4cab19c303b30ba2ddea0d792d77724c9fa4ed58b93668fc20484f141ee2b6a0029e88fdc853189b4dafd36ff23b11967090e8a52ef275cf9e3e4b5d30b12d138dfa70930c603b5e3f4b7be67be3dba3cbd8d4d143195af0697d779445d67dcfbd922d12a8b49f93eac7a72faacf80346b3b60000000000000000"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffff8, 0x10, &(0x7f00000000c0), 0xffffffffffffffc2}, 0x48) openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000001c0)={{0x0, 0xdddcffff, 0xe, 0xf0, 0x40, 0xfd, 0xd4, 0xd4, 0x0, 0x4, 0x7, 0x7}, {0x0, 0x2, 0xd, 0x9, 0x8, 0x3, 0x6, 0x8, 0x5, 0xf, 0x3, 0xca}, {0xeeee0000, 0xe6e50002, 0xb, 0x0, 0x2, 0x7, 0x4, 0x1, 0xc, 0x0, 0x6, 0x5}, {0xd646e6a5f4c08fb3, 0x3000, 0x10, 0xfc, 0x3, 0x46, 0x2, 0xd, 0x6, 0x3, 0x0, 0x1}, {0x100000, 0x0, 0x9, 0x1, 0x3, 0x9, 0x9, 0x5, 0x5, 0x44, 0xe, 0x4b}, {0x2, 0xd000, 0x0, 0x7, 0x3, 0x6e, 0x1, 0xff, 0x4, 0x80, 0x1, 0xfc}, {0x6000, 0x1000, 0xf, 0x9d, 0x3, 0x0, 0x0, 0xb, 0x5, 0x7, 0x0, 0xf8}, {0x8000000, 0x8000000, 0xd, 0x5, 0x3, 0x3, 0xa, 0x9, 0x54, 0x6, 0x2, 0x7}, {0x100000, 0x5}, {0x2, 0x9}, 0x40010000, 0x0, 0xf000, 0x302, 0x8, 0x0, 0xe6e70c00, [0x3, 0x401, 0x5, 0xc5]}) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000000)=ANY=[@ANYBLOB="0100000000000000380800"]) 1.027247007s ago: executing program 1 (id=972): socket$inet6_tcp(0xa, 0x1, 0x0) r0 = socket$tipc(0x1e, 0x2, 0x0) bind$tipc(r0, &(0x7f0000000080)=@name={0x1e, 0x2, 0x0, {{0x42}}}, 0x10) r1 = socket$tipc(0x1e, 0x5, 0x0) r2 = socket$tipc(0x1e, 0x2, 0x0) setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000080)={0x42, 0x80000009, 0x2}, 0x10) r3 = socket$tipc(0x1e, 0x2, 0x0) setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000300)={0x42, 0x3}, 0x10) bind$tipc(r1, &(0x7f00000001c0)=@nameseq={0x1e, 0x1, 0x2, {0x42, 0x4, 0x10000000}}, 0x10) sendmsg$tipc(r2, 0x0, 0x4) 878.502308ms ago: executing program 0 (id=973): r0 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x4, @tid=r0}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) bind$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x0, @none}, 0xe) listen(r1, 0x1) accept4$bt_l2cap(r1, 0x0, 0x0, 0x800) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7) r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102) writev(r2, &(0x7f0000000840)=[{0x0}], 0x1) socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, &(0x7f0000000300)={0x1, 0x5}, 0x8) 878.245828ms ago: executing program 1 (id=974): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="0e000000040000000800"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x6, 0x6, &(0x7f00000000c0)=ANY=[@ANYRES32=r0, @ANYBLOB], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000b80)={r1, 0x2000012, 0x0, 0x0, &(0x7f0000000c40), 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xb}, 0x50) socket$nl_route(0x10, 0x3, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0xfffffffffffffffe) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) socket$nl_netfilter(0x10, 0x3, 0xc) socket$nl_xfrm(0x10, 0x3, 0x6) bpf$BPF_LINK_CREATE(0x8, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff, 0x1d, 0x0, @val=@netkit}, 0x1c) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="d80100001c00"], 0x1d8}}, 0x0) 0s ago: executing program 3 (id=975): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000680)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020756c3c00000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000000)='sys_enter\x00', r0}, 0x18) mq_unlink(0x0) ioprio_set$pid(0x1, 0x0, 0x4007) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.85' (ED25519) to the list of known hosts. [ 72.544063][ T5776] cgroup: Unknown subsys name 'net' [ 72.714518][ T5776] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 74.372852][ T5776] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 76.116195][ T50] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 76.136603][ T5797] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 76.144184][ T5797] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 76.160782][ T5797] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 76.170068][ T5797] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 76.178448][ T5800] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 76.178798][ T5797] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 76.194953][ T5800] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 76.202692][ T5797] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 76.211232][ T5797] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 76.219006][ T5800] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 76.226270][ T5797] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 76.234173][ T5797] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 76.238480][ T5802] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 76.245721][ T5804] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 76.249563][ T5802] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 76.256116][ T5804] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 76.263116][ T5802] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 76.271683][ T5804] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 76.277901][ T5797] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 76.283653][ T5804] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 76.301922][ T5804] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 76.313653][ T5796] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 76.323780][ T5796] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 76.765438][ T5787] chnl_net:caif_netlink_parms(): no params data found [ 76.916667][ T5792] chnl_net:caif_netlink_parms(): no params data found [ 76.941337][ T5794] chnl_net:caif_netlink_parms(): no params data found [ 76.999007][ T5787] bridge0: port 1(bridge_slave_0) entered blocking state [ 77.007454][ T5787] bridge0: port 1(bridge_slave_0) entered disabled state [ 77.014807][ T5787] bridge_slave_0: entered allmulticast mode [ 77.022158][ T5787] bridge_slave_0: entered promiscuous mode [ 77.034713][ T5787] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.041935][ T5787] bridge0: port 2(bridge_slave_1) entered disabled state [ 77.049150][ T5787] bridge_slave_1: entered allmulticast mode [ 77.056423][ T5787] bridge_slave_1: entered promiscuous mode [ 77.166656][ T5787] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 77.181932][ T5787] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 77.208304][ T5786] chnl_net:caif_netlink_parms(): no params data found [ 77.236013][ T5792] bridge0: port 1(bridge_slave_0) entered blocking state [ 77.243236][ T5792] bridge0: port 1(bridge_slave_0) entered disabled state [ 77.250891][ T5792] bridge_slave_0: entered allmulticast mode [ 77.258043][ T5792] bridge_slave_0: entered promiscuous mode [ 77.302360][ T5792] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.309546][ T5792] bridge0: port 2(bridge_slave_1) entered disabled state [ 77.317399][ T5792] bridge_slave_1: entered allmulticast mode [ 77.324353][ T5792] bridge_slave_1: entered promiscuous mode [ 77.355268][ T5787] team0: Port device team_slave_0 added [ 77.406564][ T5787] team0: Port device team_slave_1 added [ 77.412726][ T5794] bridge0: port 1(bridge_slave_0) entered blocking state [ 77.420829][ T5794] bridge0: port 1(bridge_slave_0) entered disabled state [ 77.428609][ T5794] bridge_slave_0: entered allmulticast mode [ 77.435554][ T5794] bridge_slave_0: entered promiscuous mode [ 77.445021][ T5792] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 77.485468][ T5794] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.493001][ T5794] bridge0: port 2(bridge_slave_1) entered disabled state [ 77.501191][ T5794] bridge_slave_1: entered allmulticast mode [ 77.508500][ T5794] bridge_slave_1: entered promiscuous mode [ 77.517736][ T5792] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 77.532962][ T5787] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 77.540440][ T5787] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 77.566753][ T5787] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 77.614831][ T5787] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 77.621972][ T5787] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 77.649161][ T5787] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 77.706688][ T5794] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 77.720189][ T5794] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 77.732780][ T5792] team0: Port device team_slave_0 added [ 77.741725][ T5792] team0: Port device team_slave_1 added [ 77.748557][ T5786] bridge0: port 1(bridge_slave_0) entered blocking state [ 77.756200][ T5786] bridge0: port 1(bridge_slave_0) entered disabled state [ 77.763377][ T5786] bridge_slave_0: entered allmulticast mode [ 77.770493][ T5786] bridge_slave_0: entered promiscuous mode [ 77.851243][ T5786] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.858889][ T5786] bridge0: port 2(bridge_slave_1) entered disabled state [ 77.866570][ T5786] bridge_slave_1: entered allmulticast mode [ 77.873570][ T5786] bridge_slave_1: entered promiscuous mode [ 77.893549][ T5792] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 77.900627][ T5792] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 77.927216][ T5792] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 77.943408][ T5787] hsr_slave_0: entered promiscuous mode [ 77.950295][ T5787] hsr_slave_1: entered promiscuous mode [ 77.973857][ T5794] team0: Port device team_slave_0 added [ 77.981065][ T5792] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 77.988444][ T5792] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 78.014605][ T5792] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 78.061498][ T5794] team0: Port device team_slave_1 added [ 78.113720][ T5786] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 78.126374][ T5786] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 78.184248][ T5794] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 78.191425][ T5794] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 78.217568][ T5794] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 78.233312][ T5792] hsr_slave_0: entered promiscuous mode [ 78.240742][ T5792] hsr_slave_1: entered promiscuous mode [ 78.247289][ T5792] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 78.255158][ T5792] Cannot create hsr debugfs directory [ 78.283842][ T5786] team0: Port device team_slave_0 added [ 78.290589][ T5794] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 78.297800][ T5794] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 78.323873][ T5794] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 78.361137][ T5786] team0: Port device team_slave_1 added [ 78.376796][ T5804] Bluetooth: hci1: command tx timeout [ 78.377077][ T5796] Bluetooth: hci0: command tx timeout [ 78.382769][ T5790] Bluetooth: hci3: command tx timeout [ 78.388770][ T50] Bluetooth: hci2: command tx timeout [ 78.442382][ T5786] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 78.449579][ T5786] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 78.477489][ T5786] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 78.524068][ T5794] hsr_slave_0: entered promiscuous mode [ 78.530793][ T5794] hsr_slave_1: entered promiscuous mode [ 78.537551][ T5794] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 78.545183][ T5794] Cannot create hsr debugfs directory [ 78.551622][ T5786] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 78.559318][ T5786] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 78.585751][ T5786] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 78.735075][ T5786] hsr_slave_0: entered promiscuous mode [ 78.743287][ T5786] hsr_slave_1: entered promiscuous mode [ 78.749595][ T5786] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 78.758919][ T5786] Cannot create hsr debugfs directory [ 78.914124][ T5787] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 78.966470][ T5787] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 78.980392][ T5787] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 79.027668][ T5787] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 79.123399][ T5792] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 79.134975][ T5792] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 79.159348][ T5792] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 79.185954][ T5792] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 79.251553][ T5786] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 79.264117][ T5786] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 79.274887][ T5786] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 79.285411][ T5786] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 79.383399][ T5794] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 79.393496][ T5794] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 79.421155][ T5794] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 79.433167][ T5794] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 79.522207][ T5787] 8021q: adding VLAN 0 to HW filter on device bond0 [ 79.582569][ T5787] 8021q: adding VLAN 0 to HW filter on device team0 [ 79.642929][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 79.650336][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 79.661865][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 79.669022][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 79.739987][ T5794] 8021q: adding VLAN 0 to HW filter on device bond0 [ 79.753098][ T5792] 8021q: adding VLAN 0 to HW filter on device bond0 [ 79.789255][ T5786] 8021q: adding VLAN 0 to HW filter on device bond0 [ 79.826437][ T5792] 8021q: adding VLAN 0 to HW filter on device team0 [ 79.841454][ T5786] 8021q: adding VLAN 0 to HW filter on device team0 [ 79.861781][ T5794] 8021q: adding VLAN 0 to HW filter on device team0 [ 79.880082][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 79.887298][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 79.928615][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 79.935826][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 79.948673][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 79.955916][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 79.965681][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 79.972900][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 80.018959][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 80.026168][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 80.042432][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 80.049657][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 80.259517][ T5787] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 80.428449][ T5787] veth0_vlan: entered promiscuous mode [ 80.462192][ T5787] veth1_vlan: entered promiscuous mode [ 80.466728][ T50] Bluetooth: hci3: command tx timeout [ 80.473401][ T50] Bluetooth: hci1: command tx timeout [ 80.475915][ T5796] Bluetooth: hci2: command tx timeout [ 80.480777][ T50] Bluetooth: hci0: command tx timeout [ 80.540281][ T5787] veth0_macvtap: entered promiscuous mode [ 80.570593][ T5787] veth1_macvtap: entered promiscuous mode [ 80.651652][ T5787] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 80.680481][ T5787] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 80.731689][ T5787] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.743162][ T5787] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.754299][ T5787] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.763742][ T5787] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.784503][ T5794] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 80.830796][ T5786] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 80.848161][ T5792] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 80.996552][ T48] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 81.004849][ T48] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 81.008314][ T5792] veth0_vlan: entered promiscuous mode [ 81.044812][ T5792] veth1_vlan: entered promiscuous mode [ 81.084461][ T5786] veth0_vlan: entered promiscuous mode [ 81.102242][ T1133] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 81.113355][ T1133] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 81.122747][ T5794] veth0_vlan: entered promiscuous mode [ 81.154988][ T5794] veth1_vlan: entered promiscuous mode [ 81.170589][ T5786] veth1_vlan: entered promiscuous mode [ 81.213984][ T5792] veth0_macvtap: entered promiscuous mode [ 81.250299][ T5792] veth1_macvtap: entered promiscuous mode [ 81.301359][ T5786] veth0_macvtap: entered promiscuous mode [ 81.337812][ T5794] veth0_macvtap: entered promiscuous mode [ 81.350948][ T5786] veth1_macvtap: entered promiscuous mode [ 81.361781][ T5792] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 81.375145][ T5792] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 81.388198][ T5792] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 81.408564][ T5792] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 81.421448][ T5792] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 81.433961][ T5792] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 81.442962][ T5794] veth1_macvtap: entered promiscuous mode [ 81.465636][ T5786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 81.487506][ T5786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 81.503111][ T5786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 81.514459][ T5786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 81.531486][ T5786] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 81.552840][ T5792] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.569351][ T5792] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.593037][ T5792] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.603721][ T5792] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.632067][ T5786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 81.643112][ T5786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 81.653414][ T5786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 81.664553][ T5786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 81.685724][ T5786] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 81.801755][ T5794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 81.862820][ T5794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 81.919142][ T5794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 81.979246][ T5794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.047812][ T5794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 82.174242][ T5794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.229282][ T5794] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 82.272366][ T5786] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.284893][ T5786] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.296615][ T5786] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.305351][ T5786] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.340373][ T5794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 82.361202][ T5794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.372679][ T5794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 82.432290][ T5794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.471585][ T5794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 82.482459][ T5794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.499359][ T5794] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 82.536336][ T50] Bluetooth: hci0: command tx timeout [ 82.539587][ T5794] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.551052][ T5790] Bluetooth: hci2: command tx timeout [ 82.556941][ T5796] Bluetooth: hci1: command tx timeout [ 82.562391][ T5804] Bluetooth: hci3: command tx timeout [ 82.580490][ T5794] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.594322][ T5794] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.616627][ T5794] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.012802][ T48] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.032441][ T48] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.126388][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 83.146798][ T1133] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.172672][ T1133] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.392096][ T48] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.400381][ T48] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.478450][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.494093][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.603822][ T1133] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.636133][ T1133] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.666448][ T5882] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6'. [ 83.697527][ T48] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.715193][ T48] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.806697][ T5884] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1'. [ 83.817240][ T5884] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1'. [ 83.826419][ T5884] Zero length message leads to an empty skb [ 84.524706][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 84.616366][ T5796] Bluetooth: hci2: command tx timeout [ 84.617832][ T50] Bluetooth: hci3: command tx timeout [ 84.622346][ T5796] Bluetooth: hci1: command tx timeout [ 84.634048][ T5804] Bluetooth: hci0: command tx timeout [ 85.597493][ T5854] IPVS: starting estimator thread 0... [ 85.656256][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 86.697196][ T5899] IPVS: using max 16 ests per chain, 38400 per kthread [ 87.337617][ T5917] netlink: 4 bytes leftover after parsing attributes in process `syz.2.10'. [ 87.596781][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 87.801488][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 87.816336][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 88.536284][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 88.776180][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 88.825928][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 88.866450][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 90.240673][ T5933] syz.0.15[5933]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set [ 90.597482][ T9] cfg80211: failed to load regulatory.db [ 90.757774][ T5942] netlink: 452 bytes leftover after parsing attributes in process `syz.3.16'. [ 91.041564][ T5796] Bluetooth: hci2: command tx timeout [ 93.044125][ T5953] netlink: 4 bytes leftover after parsing attributes in process `syz.3.18'. [ 93.053389][ T5953] netlink: 4 bytes leftover after parsing attributes in process `syz.3.18'. [ 95.444816][ T8] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 95.588217][ T5972] netlink: 'syz.3.24': attribute type 29 has an invalid length. [ 95.616463][ T5972] netlink: 'syz.3.24': attribute type 29 has an invalid length. [ 95.715868][ T8] usb 2-1: Using ep0 maxpacket: 16 [ 95.752641][ T8] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 95.777675][ T8] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 95.802428][ T8] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 95.828909][ T8] usb 2-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00 [ 95.841594][ T8] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 96.034095][ T8] usb 2-1: config 0 descriptor?? [ 96.978386][ T8] usb 2-1: can't set config #0, error -71 [ 97.013908][ T8] usb 2-1: USB disconnect, device number 2 [ 99.608283][ T6004] netlink: 4 bytes leftover after parsing attributes in process `syz.1.31'. [ 101.541121][ T6011] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 101.606761][ T6015] netlink: 68 bytes leftover after parsing attributes in process `syz.2.36'. [ 102.580785][ T6025] netlink: 'syz.2.41': attribute type 29 has an invalid length. [ 102.603721][ T6025] netlink: 'syz.2.41': attribute type 29 has an invalid length. [ 103.867743][ T6032] netlink: 4 bytes leftover after parsing attributes in process `syz.3.43'. [ 103.880157][ T6032] netlink: 4 bytes leftover after parsing attributes in process `syz.3.43'. [ 109.197895][ T6059] netlink: 452 bytes leftover after parsing attributes in process `syz.2.52'. [ 110.898947][ T6068] --map-set only usable from mangle table [ 113.886134][ T6079] netlink: 4 bytes leftover after parsing attributes in process `syz.3.57'. [ 117.910099][ T6113] netlink: 4 bytes leftover after parsing attributes in process `syz.0.66'. [ 117.923139][ T6113] netlink: 4 bytes leftover after parsing attributes in process `syz.0.66'. [ 118.998039][ T6131] netlink: 452 bytes leftover after parsing attributes in process `syz.3.70'. [ 125.235911][ T5854] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 125.373013][ T6176] netlink: 8 bytes leftover after parsing attributes in process `syz.3.82'. [ 125.437611][ T5854] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 125.460890][ T5854] usb 1-1: config 0 interface 0 has no altsetting 0 [ 125.481570][ T5854] usb 1-1: New USB device found, idVendor=10fd, idProduct=1513, bcdDevice=7e.ce [ 125.504016][ T5854] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 125.525846][ T5854] usb 1-1: Product: syz [ 125.530080][ T5854] usb 1-1: Manufacturer: syz [ 125.549662][ T5854] usb 1-1: SerialNumber: syz [ 125.566292][ T5854] usb 1-1: config 0 descriptor?? [ 125.598407][ T5854] dvb-usb: found a 'MSI DIGI VOX mini II DVB-T USB2.0' in warm state. [ 125.631331][ T5854] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 125.684815][ T5854] dvbdev: DVB: registering new adapter (MSI DIGI VOX mini II DVB-T USB2.0) [ 125.706972][ T5854] usb 1-1: media controller created [ 125.747090][ T5854] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 125.820117][ T6183] netlink: 4 bytes leftover after parsing attributes in process `syz.2.86'. [ 125.846360][ T6183] netlink: 4 bytes leftover after parsing attributes in process `syz.2.86'. [ 125.871088][ T5854] DVB: Unable to find symbol tda10046_attach() [ 125.905009][ T5854] dvb-usb: no frontend was attached by 'MSI DIGI VOX mini II DVB-T USB2.0' [ 125.936355][ T5854] dvb-usb: MSI DIGI VOX mini II DVB-T USB2.0 successfully initialized and connected. [ 126.139578][ T6189] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 126.171768][ T6189] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 126.241567][ T5854] dvb_usb_m920x: probe of 1-1:0.0 failed with error -71 [ 126.279506][ T5854] usb 1-1: USB disconnect, device number 2 [ 133.037002][ T1278] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.047322][ T1278] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.110648][ T6233] netlink: 'syz.0.97': attribute type 29 has an invalid length. [ 133.178553][ T6233] netlink: 'syz.0.97': attribute type 29 has an invalid length. [ 137.072857][ T6273] netlink: 4 bytes leftover after parsing attributes in process `syz.3.113'. [ 137.086362][ T6273] netlink: 4 bytes leftover after parsing attributes in process `syz.3.113'. [ 139.337803][ T6287] netlink: 'syz.3.117': attribute type 6 has an invalid length. [ 144.602999][ T6321] netlink: 'syz.2.126': attribute type 29 has an invalid length. [ 144.677219][ T6321] netlink: 'syz.2.126': attribute type 29 has an invalid length. [ 144.868000][ T6325] netlink: 'syz.1.128': attribute type 6 has an invalid length. [ 150.275912][ T5791] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 150.559424][ T5791] usb 1-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33 [ 150.893975][ T5791] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 150.915329][ T5791] usb 1-1: config 0 descriptor?? [ 152.486105][ T5791] usb 1-1: Cannot read MAC address [ 152.491895][ T5791] MOSCHIP usb-ethernet driver: probe of 1-1:0.0 failed with error -71 [ 152.621424][ T5791] usb 1-1: USB disconnect, device number 3 [ 152.713011][ T6379] netlink: 8 bytes leftover after parsing attributes in process `syz.3.143'. [ 154.797270][ T6394] netlink: 4 bytes leftover after parsing attributes in process `syz.3.148'. [ 154.806627][ T6394] netlink: 4 bytes leftover after parsing attributes in process `syz.3.148'. [ 159.849851][ T6438] netlink: 4 bytes leftover after parsing attributes in process `syz.0.162'. [ 159.859214][ T6438] netlink: 4 bytes leftover after parsing attributes in process `syz.0.162'. [ 162.798153][ T6456] sctp: failed to load transform for md5: -2 [ 163.676849][ T6478] netlink: 4 bytes leftover after parsing attributes in process `syz.0.172'. [ 163.686873][ T6478] netlink: 4 bytes leftover after parsing attributes in process `syz.0.172'. [ 168.583609][ T6517] netlink: 4 bytes leftover after parsing attributes in process `syz.3.187'. [ 168.626489][ T6517] netlink: 4 bytes leftover after parsing attributes in process `syz.3.187'. [ 168.995826][ T6522] netlink: 452 bytes leftover after parsing attributes in process `syz.2.188'. [ 174.709012][ T6563] netlink: 4 bytes leftover after parsing attributes in process `syz.1.201'. [ 174.773117][ T6563] netlink: 4 bytes leftover after parsing attributes in process `syz.1.201'. [ 175.656037][ T6573] netlink: 452 bytes leftover after parsing attributes in process `syz.3.203'. [ 180.432001][ T6600] netlink: 452 bytes leftover after parsing attributes in process `syz.2.213'. [ 185.002682][ T6639] netlink: 452 bytes leftover after parsing attributes in process `syz.0.223'. [ 187.513719][ T6661] netlink: 4 bytes leftover after parsing attributes in process `syz.1.230'. [ 187.523230][ T6661] netlink: 4 bytes leftover after parsing attributes in process `syz.1.230'. [ 194.556804][ T1278] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.563429][ T1278] ieee802154 phy1 wpan1: encryption failed: -22 [ 195.330449][ T6724] netlink: 452 bytes leftover after parsing attributes in process `syz.3.251'. [ 198.705342][ T6750] netlink: 452 bytes leftover after parsing attributes in process `syz.3.260'. [ 201.615357][ T6780] netlink: 452 bytes leftover after parsing attributes in process `syz.3.270'. [ 201.656489][ T5804] Bluetooth: hci2: command 0x0406 tx timeout [ 201.668320][ T5802] Bluetooth: hci0: command 0x0406 tx timeout [ 201.669605][ T5796] Bluetooth: hci3: command 0x0406 tx timeout [ 201.675309][ T5802] Bluetooth: hci1: command 0x0406 tx timeout [ 202.696294][ T6788] netlink: 8 bytes leftover after parsing attributes in process `syz.3.271'. [ 202.705117][ T6788] netlink: 20 bytes leftover after parsing attributes in process `syz.3.271'. [ 202.718978][ T6788] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 202.727982][ T6788] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 202.736704][ T6788] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 202.745388][ T6788] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 202.756306][ T6788] netlink: 8 bytes leftover after parsing attributes in process `syz.3.271'. [ 202.765390][ T6788] netlink: 20 bytes leftover after parsing attributes in process `syz.3.271'. [ 203.413799][ T6796] netlink: 'syz.2.276': attribute type 1 has an invalid length. [ 203.629531][ T6799] bond1: (slave ip6gretap1): Enslaving as a backup interface with an up link [ 203.910342][ T6807] netlink: 452 bytes leftover after parsing attributes in process `syz.0.280'. [ 205.432169][ T6819] netlink: 8 bytes leftover after parsing attributes in process `syz.0.284'. [ 205.441096][ T6819] netlink: 20 bytes leftover after parsing attributes in process `syz.0.284'. [ 205.454355][ T6819] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 205.463928][ T6819] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 205.472800][ T6819] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 205.481593][ T6819] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 205.492149][ T6819] netlink: 8 bytes leftover after parsing attributes in process `syz.0.284'. [ 205.501018][ T6819] netlink: 20 bytes leftover after parsing attributes in process `syz.0.284'. [ 208.421819][ T6844] __nla_validate_parse: 1 callbacks suppressed [ 208.421834][ T6844] netlink: 452 bytes leftover after parsing attributes in process `syz.2.292'. [ 208.816379][ T6849] fuse: Unknown parameter 'fd0xffffffffffffffff' [ 209.354340][ T6852] process 'syz.2.294' launched './file0' with NULL argv: empty string added [ 210.752429][ T6857] netlink: 8 bytes leftover after parsing attributes in process `syz.0.297'. [ 210.761359][ T6857] netlink: 20 bytes leftover after parsing attributes in process `syz.0.297'. [ 210.771224][ T6857] netlink: 8 bytes leftover after parsing attributes in process `syz.0.297'. [ 210.780098][ T6857] netlink: 20 bytes leftover after parsing attributes in process `syz.0.297'. [ 215.817088][ T5854] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 216.908995][ T5854] usb 2-1: too many endpoints for config 4 interface 0 altsetting 0: 101, using maximum allowed: 30 [ 216.930441][ T5854] usb 2-1: config 4 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 216.950706][ T5854] usb 2-1: config 4 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 101 [ 216.966773][ T5854] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b [ 216.983519][ T5854] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 217.234271][ T5854] ath6kl: Failed to submit usb control message: -71 [ 217.270251][ T5854] ath6kl: unable to send the bmi data to the device: -71 [ 217.278236][ T5854] ath6kl: Unable to send get target info: -71 [ 217.289494][ T5854] ath6kl: Failed to init ath6kl core: -71 [ 217.308161][ T5854] ath6kl_usb: probe of 2-1:4.0 failed with error -71 [ 217.370141][ T5854] usb 2-1: USB disconnect, device number 3 [ 221.589966][ T6938] netlink: 452 bytes leftover after parsing attributes in process `syz.1.320'. [ 221.855001][ T6946] netlink: 4 bytes leftover after parsing attributes in process `syz.0.321'. [ 222.975051][ T6954] netlink: 20 bytes leftover after parsing attributes in process `syz.2.326'. [ 225.276528][ T6975] netlink: 8 bytes leftover after parsing attributes in process `syz.3.332'. [ 225.285369][ T6975] netlink: 20 bytes leftover after parsing attributes in process `syz.3.332'. [ 225.294854][ T6975] netlink: 8 bytes leftover after parsing attributes in process `syz.3.332'. [ 225.303715][ T6975] netlink: 20 bytes leftover after parsing attributes in process `syz.3.332'. [ 226.775204][ T6982] fuse: Unknown parameter 'fd0xffffffffffffffff' [ 228.269732][ T6995] netlink: 4 bytes leftover after parsing attributes in process `syz.3.337'. [ 233.003409][ T7032] netlink: 452 bytes leftover after parsing attributes in process `syz.1.356'. [ 234.116085][ T5901] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 235.848056][ T5901] usb 4-1: device descriptor read/all, error -71 [ 236.092739][ T7060] netlink: 20 bytes leftover after parsing attributes in process `syz.1.357'. [ 237.781296][ T7070] netlink: 452 bytes leftover after parsing attributes in process `syz.3.359'. [ 240.614686][ T7088] netlink: 4 bytes leftover after parsing attributes in process `syz.2.366'. [ 242.496237][ T7096] netlink: 452 bytes leftover after parsing attributes in process `syz.3.369'. [ 243.635167][ T7111] netlink: 20 bytes leftover after parsing attributes in process `syz.3.371'. [ 247.659211][ T7144] netlink: 452 bytes leftover after parsing attributes in process `syz.3.381'. [ 249.495830][ T5847] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 249.928014][ T5847] usb 2-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33 [ 249.942502][ T5847] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 250.634924][ T5847] usb 2-1: config 0 descriptor?? [ 252.152157][ T5847] usb 2-1: Cannot read MAC address [ 252.163583][ T5847] MOSCHIP usb-ethernet driver: probe of 2-1:0.0 failed with error -71 [ 252.920065][ T5847] usb 2-1: USB disconnect, device number 4 [ 254.158427][ T7178] netdevsim netdevsim1: Direct firmware load for ./file0 failed with error -2 [ 254.167734][ T7178] netdevsim netdevsim1: Falling back to sysfs fallback for: ./file0 [ 254.210281][ T7179] mmap: syz.1.390 (7179) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 256.099447][ T1278] ieee802154 phy0 wpan0: encryption failed: -22 [ 256.108778][ T1278] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.377827][ T7198] netlink: 4 bytes leftover after parsing attributes in process `syz.3.393'. [ 257.781736][ T7213] netlink: 452 bytes leftover after parsing attributes in process `syz.3.398'. [ 261.170100][ T7243] netlink: 4 bytes leftover after parsing attributes in process `syz.0.407'. [ 265.366180][ T23] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 266.142909][ T23] usb 1-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33 [ 266.191536][ T23] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 266.250106][ T23] usb 1-1: config 0 descriptor?? [ 267.580693][ T23] usb 1-1: Cannot read MAC address [ 267.606756][ T23] MOSCHIP usb-ethernet driver: probe of 1-1:0.0 failed with error -71 [ 267.700838][ T23] usb 1-1: USB disconnect, device number 4 [ 267.897363][ T7282] netlink: 452 bytes leftover after parsing attributes in process `syz.0.418'. [ 273.505893][ T5901] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 274.528330][ T5901] usb 3-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33 [ 274.561429][ T5901] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 274.600589][ T5901] usb 3-1: config 0 descriptor?? [ 275.987528][ T5901] usb 3-1: Cannot read MAC address [ 275.992860][ T5901] MOSCHIP usb-ethernet driver: probe of 3-1:0.0 failed with error -71 [ 276.106865][ T5901] usb 3-1: USB disconnect, device number 2 [ 278.285824][ T5901] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 279.185842][ T5901] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 279.227708][ T5901] usb 2-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33 [ 279.257554][ T5901] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 279.301897][ T5901] usb 2-1: config 0 descriptor?? [ 279.346202][ T7366] netlink: 4 bytes leftover after parsing attributes in process `syz.0.441'. [ 280.556997][ T5791] usb 2-1: USB disconnect, device number 5 [ 281.141643][ T7378] netlink: 452 bytes leftover after parsing attributes in process `syz.0.444'. [ 285.338652][ T7417] netlink: 4 bytes leftover after parsing attributes in process `syz.3.452'. [ 287.722800][ T7434] netlink: 8 bytes leftover after parsing attributes in process `syz.3.461'. [ 287.731672][ T7434] netlink: 20 bytes leftover after parsing attributes in process `syz.3.461'. [ 287.741078][ T7434] netlink: 8 bytes leftover after parsing attributes in process `syz.3.461'. [ 287.749875][ T7434] netlink: 20 bytes leftover after parsing attributes in process `syz.3.461'. [ 287.766265][ T5901] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 287.973265][ T5901] usb 1-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 288.067341][ T5901] usb 1-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33 [ 288.152120][ T5901] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 289.137545][ T5901] usb 1-1: config 0 descriptor?? [ 289.154086][ T5901] usb 1-1: can't set config #0, error -71 [ 289.182889][ T5901] usb 1-1: USB disconnect, device number 5 [ 291.513580][ T7460] netlink: 452 bytes leftover after parsing attributes in process `syz.1.467'. [ 291.616272][ T7465] netlink: 4 bytes leftover after parsing attributes in process `syz.3.466'. [ 294.706570][ T5854] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 295.169734][ T5854] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 295.204759][ T5854] usb 3-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33 [ 295.215952][ T5854] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 295.297299][ T5854] usb 3-1: config 0 descriptor?? [ 296.673015][ T55] usb 3-1: USB disconnect, device number 3 [ 296.776926][ T7492] netlink: 8 bytes leftover after parsing attributes in process `syz.3.475'. [ 296.785846][ T7492] netlink: 20 bytes leftover after parsing attributes in process `syz.3.475'. [ 296.795130][ T7492] netlink: 8 bytes leftover after parsing attributes in process `syz.3.475'. [ 296.804592][ T7492] netlink: 20 bytes leftover after parsing attributes in process `syz.3.475'. [ 301.069378][ T7527] netlink: 4 bytes leftover after parsing attributes in process `syz.3.481'. [ 301.444277][ T7533] netdevsim netdevsim0: Direct firmware load for ./file0 failed with error -2 [ 301.453601][ T7533] netdevsim netdevsim0: Falling back to sysfs fallback for: ./file0 [ 302.469178][ T7540] netlink: 452 bytes leftover after parsing attributes in process `syz.0.485'. [ 303.529093][ T7543] netlink: 8 bytes leftover after parsing attributes in process `syz.3.487'. [ 303.538179][ T7543] netlink: 20 bytes leftover after parsing attributes in process `syz.3.487'. [ 303.547532][ T7543] netlink: 8 bytes leftover after parsing attributes in process `syz.3.487'. [ 303.556392][ T7543] netlink: 20 bytes leftover after parsing attributes in process `syz.3.487'. [ 304.161592][ T7547] netlink: 32 bytes leftover after parsing attributes in process `syz.2.488'. [ 307.895177][ T7573] netlink: 4 bytes leftover after parsing attributes in process `syz.1.496'. [ 308.051426][ T7579] netlink: 8 bytes leftover after parsing attributes in process `syz.0.499'. [ 308.060554][ T7579] netlink: 20 bytes leftover after parsing attributes in process `syz.0.499'. [ 308.070699][ T7579] netlink: 8 bytes leftover after parsing attributes in process `syz.0.499'. [ 308.079527][ T7579] netlink: 20 bytes leftover after parsing attributes in process `syz.0.499'. [ 308.896854][ T7584] netlink: 452 bytes leftover after parsing attributes in process `syz.2.500'. [ 309.391926][ T7588] netlink: 32 bytes leftover after parsing attributes in process `syz.1.501'. [ 313.036359][ T7624] netlink: 452 bytes leftover after parsing attributes in process `syz.0.510'. [ 313.070208][ T8] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 313.238750][ T7623] netlink: 4 bytes leftover after parsing attributes in process `syz.1.509'. [ 313.526000][ T8] usb 4-1: Using ep0 maxpacket: 32 [ 313.566070][ T8] usb 4-1: config 0 has an invalid interface number: 51 but max is 0 [ 313.574320][ T8] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 313.613811][ T8] usb 4-1: config 0 has no interface number 0 [ 313.633789][ T8] usb 4-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 313.643809][ T7628] netlink: 8 bytes leftover after parsing attributes in process `syz.0.512'. [ 313.652751][ T7628] netlink: 20 bytes leftover after parsing attributes in process `syz.0.512'. [ 313.662514][ T7628] netlink: 8 bytes leftover after parsing attributes in process `syz.0.512'. [ 313.671399][ T7628] netlink: 20 bytes leftover after parsing attributes in process `syz.0.512'. [ 313.959529][ T8] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 314.076216][ T8] usb 4-1: Product: syz [ 314.124193][ T8] usb 4-1: Manufacturer: syz [ 314.259873][ T8] usb 4-1: SerialNumber: syz [ 314.301572][ T8] usb 4-1: config 0 descriptor?? [ 314.372206][ T8] quatech2 4-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 314.636350][ T8] usb 4-1: qt2_attach - failed to power on unit: -71 [ 314.665309][ T8] quatech2: probe of 4-1:0.51 failed with error -71 [ 315.576098][ T8] usb 4-1: USB disconnect, device number 4 [ 315.691373][ T7642] netlink: 32 bytes leftover after parsing attributes in process `syz.0.516'. [ 316.679796][ T7656] netlink: 452 bytes leftover after parsing attributes in process `syz.0.520'. [ 317.350321][ T1278] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.356875][ T1278] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.385251][ T7668] netlink: 4 bytes leftover after parsing attributes in process `syz.2.523'. [ 317.436839][ T7670] netlink: 8 bytes leftover after parsing attributes in process `syz.3.524'. [ 318.728379][ T7681] __nla_validate_parse: 3 callbacks suppressed [ 318.728396][ T7681] netlink: 32 bytes leftover after parsing attributes in process `syz.2.527'. [ 319.216076][ T27] usb 3-1: new full-speed USB device number 4 using dummy_hcd [ 319.237635][ T7688] netlink: 452 bytes leftover after parsing attributes in process `syz.3.530'. [ 319.568636][ T27] usb 3-1: config 0 has an invalid interface number: 29 but max is 0 [ 319.577923][ T27] usb 3-1: config 0 has no interface number 0 [ 319.584324][ T27] usb 3-1: config 0 interface 29 has no altsetting 0 [ 319.619974][ T27] usb 3-1: New USB device found, idVendor=0c72, idProduct=0014, bcdDevice=39.ac [ 319.629401][ T27] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 319.788777][ T27] usb 3-1: Product: syz [ 319.793189][ T27] usb 3-1: Manufacturer: syz [ 319.897499][ T27] usb 3-1: SerialNumber: syz [ 319.966487][ T27] usb 3-1: config 0 descriptor?? [ 322.298137][ T7698] netlink: 8 bytes leftover after parsing attributes in process `syz.0.534'. [ 322.307133][ T7698] netlink: 20 bytes leftover after parsing attributes in process `syz.0.534'. [ 322.316658][ T7698] netlink: 8 bytes leftover after parsing attributes in process `syz.0.534'. [ 322.325539][ T7698] netlink: 20 bytes leftover after parsing attributes in process `syz.0.534'. [ 323.536814][ T7715] netlink: 32 bytes leftover after parsing attributes in process `syz.3.537'. [ 323.555874][ T27] peak_usb 3-1:0.29 can0: unable to request usb[type=0 value=1] err=-71 [ 323.564374][ T27] peak_usb 3-1:0.29: unable to read PCAN-USB X6 firmware info (err -71) [ 323.640045][ T27] peak_usb: probe of 3-1:0.29 failed with error -71 [ 323.686219][ T27] usb 3-1: USB disconnect, device number 4 [ 324.233818][ T7727] netlink: 452 bytes leftover after parsing attributes in process `syz.0.541'. [ 326.778943][ T7755] netlink: 8 bytes leftover after parsing attributes in process `syz.1.546'. [ 326.787858][ T7755] netlink: 20 bytes leftover after parsing attributes in process `syz.1.546'. [ 326.801035][ T7755] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 326.810521][ T7755] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 326.819272][ T7755] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 326.827999][ T7755] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 326.838899][ T7755] netlink: 8 bytes leftover after parsing attributes in process `syz.1.546'. [ 326.847792][ T7755] netlink: 20 bytes leftover after parsing attributes in process `syz.1.546'. [ 327.263410][ T7761] netlink: 32 bytes leftover after parsing attributes in process `syz.0.548'. [ 327.577916][ T7768] netlink: 452 bytes leftover after parsing attributes in process `syz.3.550'. [ 330.325225][ T7803] netlink: 452 bytes leftover after parsing attributes in process `syz.0.562'. [ 331.177245][ T7808] iommufd_mock iommufd_mock1: Adding to iommu group 0 [ 331.817320][ T7810] netlink: 8 bytes leftover after parsing attributes in process `syz.2.564'. [ 331.826775][ T7810] netlink: 20 bytes leftover after parsing attributes in process `syz.2.564'. [ 331.840055][ T7810] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 331.848874][ T7810] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 331.857612][ T7810] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 331.866337][ T7810] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 331.879501][ T7810] netlink: 8 bytes leftover after parsing attributes in process `syz.2.564'. [ 331.888422][ T7810] netlink: 20 bytes leftover after parsing attributes in process `syz.2.564'. [ 334.588630][ T7847] netlink: 452 bytes leftover after parsing attributes in process `syz.1.574'. [ 337.111610][ T7880] netlink: 452 bytes leftover after parsing attributes in process `syz.0.584'. [ 338.441691][ T7890] netlink: 8 bytes leftover after parsing attributes in process `syz.3.586'. [ 338.450883][ T7890] netlink: 20 bytes leftover after parsing attributes in process `syz.3.586'. [ 338.460558][ T7890] netlink: 8 bytes leftover after parsing attributes in process `syz.3.586'. [ 338.469456][ T7890] netlink: 20 bytes leftover after parsing attributes in process `syz.3.586'. [ 339.359461][ T7905] netlink: 4 bytes leftover after parsing attributes in process `syz.1.588'. [ 340.629358][ T7918] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 341.464013][ T7921] netlink: 32 bytes leftover after parsing attributes in process `syz.0.594'. [ 341.629140][ T5797] Bluetooth: min 0 < 6 [ 342.071001][ T7930] netlink: 452 bytes leftover after parsing attributes in process `syz.2.593'. [ 342.629604][ T7934] netlink: 8 bytes leftover after parsing attributes in process `syz.1.599'. [ 342.638565][ T7934] netlink: 4 bytes leftover after parsing attributes in process `syz.1.599'. [ 343.666063][ T5797] Bluetooth: hci0: command 0x0406 tx timeout [ 344.679602][ T7961] netlink: 4 bytes leftover after parsing attributes in process `syz.1.603'. [ 344.995511][ T7966] netlink: 32 bytes leftover after parsing attributes in process `syz.3.606'. [ 345.506023][ T7969] netlink: 452 bytes leftover after parsing attributes in process `syz.3.608'. [ 346.433513][ T7979] netlink: 8 bytes leftover after parsing attributes in process `syz.1.612'. [ 346.442531][ T7979] netlink: 4 bytes leftover after parsing attributes in process `syz.1.612'. [ 347.762585][ T7996] netlink: 32 bytes leftover after parsing attributes in process `syz.0.617'. [ 348.946213][ T8005] netlink: 452 bytes leftover after parsing attributes in process `syz.3.619'. [ 349.093284][ T8013] netlink: 4 bytes leftover after parsing attributes in process `syz.0.620'. [ 350.068620][ T8027] binder: 8022:8027 ioctl c0306201 200000000080 returned -14 [ 350.786078][ T8029] netlink: 8 bytes leftover after parsing attributes in process `syz.0.626'. [ 350.794921][ T8029] netlink: 4 bytes leftover after parsing attributes in process `syz.0.626'. [ 350.870285][ T8029] netlink: 8 bytes leftover after parsing attributes in process `syz.0.626'. [ 350.879236][ T8029] netlink: 4 bytes leftover after parsing attributes in process `syz.0.626'. [ 352.640083][ T8056] netlink: 452 bytes leftover after parsing attributes in process `syz.0.632'. [ 354.042897][ T8069] netlink: 4 bytes leftover after parsing attributes in process `syz.1.635'. [ 355.567511][ T8081] netlink: 8 bytes leftover after parsing attributes in process `syz.0.640'. [ 355.597799][ T8081] netlink: 4 bytes leftover after parsing attributes in process `syz.0.640'. [ 357.063147][ T8101] netlink: 452 bytes leftover after parsing attributes in process `syz.2.646'. [ 357.224265][ T8] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 357.778228][ T8] usb 2-1: Using ep0 maxpacket: 8 [ 359.359117][ T8] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 359.558747][ T8] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 359.730891][ T8] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 359.741355][ T8] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 359.896951][ T8] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 359.906533][ T8] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 359.944885][ T8] usb 2-1: can't set config #16, error -71 [ 360.647544][ T8] usb 2-1: USB disconnect, device number 6 [ 360.743148][ T8120] netlink: 4 bytes leftover after parsing attributes in process `syz.0.650'. [ 361.613834][ T8136] netlink: 8 bytes leftover after parsing attributes in process `syz.3.656'. [ 361.623408][ T8136] netlink: 4 bytes leftover after parsing attributes in process `syz.3.656'. [ 363.408247][ T8147] netlink: 452 bytes leftover after parsing attributes in process `syz.0.658'. [ 365.038005][ T8164] netlink: 4 bytes leftover after parsing attributes in process `syz.1.663'. [ 366.789582][ T8183] netlink: 8 bytes leftover after parsing attributes in process `syz.2.670'. [ 366.798657][ T8183] netlink: 4 bytes leftover after parsing attributes in process `syz.2.670'. [ 367.126417][ T8191] netlink: 452 bytes leftover after parsing attributes in process `syz.0.671'. [ 369.467626][ T8] usb 1-1: new full-speed USB device number 6 using dummy_hcd [ 369.785446][ T8] usb 1-1: config 0 has an invalid interface number: 29 but max is 0 [ 369.814550][ T8] usb 1-1: config 0 has no interface number 0 [ 369.831956][ T8] usb 1-1: config 0 interface 29 has no altsetting 0 [ 369.855062][ T8] usb 1-1: New USB device found, idVendor=0c72, idProduct=0014, bcdDevice=39.ac [ 370.252563][ T8220] netlink: 4 bytes leftover after parsing attributes in process `syz.2.677'. [ 370.367459][ T8] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 370.398347][ T8] usb 1-1: Product: syz [ 370.410862][ T8] usb 1-1: Manufacturer: syz [ 370.425629][ T8] usb 1-1: SerialNumber: syz [ 370.445056][ T8] usb 1-1: config 0 descriptor?? [ 371.661458][ T8233] netlink: 452 bytes leftover after parsing attributes in process `syz.2.682'. [ 373.481608][ T8244] netlink: 8 bytes leftover after parsing attributes in process `syz.3.686'. [ 373.490732][ T8244] netlink: 4 bytes leftover after parsing attributes in process `syz.3.686'. [ 373.539311][ T8] peak_usb 1-1:0.29 can0: unable to request usb[type=0 value=1] err=-71 [ 373.683563][ T8] peak_usb 1-1:0.29: unable to read PCAN-USB X6 firmware info (err -71) [ 374.004878][ T8] peak_usb: probe of 1-1:0.29 failed with error -71 [ 374.398602][ T8] usb 1-1: USB disconnect, device number 6 [ 374.775438][ T8268] netlink: 4 bytes leftover after parsing attributes in process `syz.1.690'. [ 375.496572][ T5797] Bluetooth: hci0: unexpected event for opcode 0x202a [ 378.116828][ T8292] netlink: 452 bytes leftover after parsing attributes in process `syz.2.696'. [ 378.417247][ T8298] netlink: 8 bytes leftover after parsing attributes in process `syz.0.700'. [ 378.426154][ T8298] netlink: 4 bytes leftover after parsing attributes in process `syz.0.700'. [ 379.275973][ T1278] ieee802154 phy0 wpan0: encryption failed: -22 [ 379.291905][ T1278] ieee802154 phy1 wpan1: encryption failed: -22 [ 384.136255][ T5901] usb 4-1: new full-speed USB device number 5 using dummy_hcd [ 384.161566][ T8338] netlink: 4 bytes leftover after parsing attributes in process `syz.0.706'. [ 384.338064][ T5901] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 384.374979][ T5901] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 384.403376][ T5901] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a5, bcdDevice= 0.40 [ 384.430175][ T5901] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 384.473042][ T5901] usb 4-1: SerialNumber: syz [ 384.492582][ T5901] usb 4-1: bad CDC descriptors [ 384.526749][ T5901] usb-storage 4-1:1.0: USB Mass Storage device detected [ 384.796522][ T5901] usb-storage 4-1:1.0: Quirks match for vid 0525 pid a4a5: 10000 [ 385.590906][ T5901] scsi host1: usb-storage 4-1:1.0 [ 385.755734][ T8354] netlink: 452 bytes leftover after parsing attributes in process `syz.1.714'. [ 385.762665][ T5901] usb 4-1: USB disconnect, device number 5 [ 386.358241][ T8362] netlink: 8 bytes leftover after parsing attributes in process `syz.2.715'. [ 386.367209][ T8362] netlink: 4 bytes leftover after parsing attributes in process `syz.2.715'. [ 389.646550][ T8387] netlink: 4 bytes leftover after parsing attributes in process `syz.1.721'. [ 392.769571][ T8408] netlink: 452 bytes leftover after parsing attributes in process `syz.1.726'. [ 396.354301][ T8434] netlink: 8 bytes leftover after parsing attributes in process `syz.3.734'. [ 396.363404][ T8434] netlink: 4 bytes leftover after parsing attributes in process `syz.3.734'. [ 396.611680][ T8444] netlink: 4 bytes leftover after parsing attributes in process `syz.2.735'. [ 398.232503][ T28] audit: type=1326 audit(1756630636.695:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8459 comm="syz.0.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f78e938ebe9 code=0x7ffc0000 [ 398.297710][ T28] audit: type=1326 audit(1756630636.695:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8459 comm="syz.0.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f78e938ebe9 code=0x7ffc0000 [ 398.377192][ T28] audit: type=1326 audit(1756630636.695:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8459 comm="syz.0.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=284 compat=0 ip=0x7f78e938ebe9 code=0x7ffc0000 [ 398.626233][ T28] audit: type=1326 audit(1756630636.695:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8459 comm="syz.0.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f78e938ebe9 code=0x7ffc0000 [ 399.689184][ T8477] netlink: 452 bytes leftover after parsing attributes in process `syz.0.746'. [ 401.827508][ T8489] netlink: 8 bytes leftover after parsing attributes in process `syz.3.749'. [ 401.838410][ T8489] netlink: 4 bytes leftover after parsing attributes in process `syz.3.749'. [ 402.163718][ T8500] netlink: 4 bytes leftover after parsing attributes in process `syz.0.751'. [ 402.721256][ T28] audit: type=1326 audit(1756630641.185:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8503 comm="syz.2.752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f130d58ebe9 code=0x7ffc0000 [ 402.725318][ T8504] capability: warning: `syz.2.752' uses deprecated v2 capabilities in a way that may be insecure [ 402.856419][ T28] audit: type=1326 audit(1756630641.185:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8503 comm="syz.2.752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f130d58ebe9 code=0x7ffc0000 [ 402.901722][ T28] audit: type=1326 audit(1756630641.185:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8503 comm="syz.2.752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=126 compat=0 ip=0x7f130d58ebe9 code=0x7ffc0000 [ 402.924087][ C0] vkms_vblank_simulate: vblank timer overrun [ 402.985203][ T28] audit: type=1326 audit(1756630641.235:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8503 comm="syz.2.752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f130d58ebe9 code=0x7ffc0000 [ 403.007247][ C0] vkms_vblank_simulate: vblank timer overrun [ 403.094409][ T28] audit: type=1326 audit(1756630641.235:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8503 comm="syz.2.752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f130d58ebe9 code=0x7ffc0000 [ 403.379678][ T8514] netlink: 452 bytes leftover after parsing attributes in process `syz.3.756'. [ 405.435669][ C1] sched: RT throttling activated [ 405.786965][ T8536] netlink: 16 bytes leftover after parsing attributes in process `syz.2.764'. [ 406.436955][ T8544] netlink: 4 bytes leftover after parsing attributes in process `syz.3.762'. [ 406.914781][ T8551] netlink: 8 bytes leftover after parsing attributes in process `syz.1.765'. [ 406.923718][ T8551] netlink: 4 bytes leftover after parsing attributes in process `syz.1.765'. [ 406.995978][ T8552] netlink: 452 bytes leftover after parsing attributes in process `syz.0.767'. [ 407.359223][ T8551] netlink: 8 bytes leftover after parsing attributes in process `syz.1.765'. [ 407.368147][ T8551] netlink: 4 bytes leftover after parsing attributes in process `syz.1.765'. [ 412.093595][ T8597] netlink: 452 bytes leftover after parsing attributes in process `syz.1.781'. [ 413.096663][ T8604] netlink: 4 bytes leftover after parsing attributes in process `syz.0.779'. [ 414.943885][ T8623] netlink: 8 bytes leftover after parsing attributes in process `syz.3.787'. [ 414.952804][ T8623] netlink: 4 bytes leftover after parsing attributes in process `syz.3.787'. [ 415.026429][ T8627] netlink: 76 bytes leftover after parsing attributes in process `syz.0.786'. [ 415.375764][ T9] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 416.763404][ T9] usb 1-1: config 0 has an invalid interface number: 1 but max is 0 [ 416.785903][ T9] usb 1-1: config 0 has no interface number 0 [ 416.797414][ T9] usb 1-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 416.830016][ T9] usb 1-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 416.845279][ T9] usb 1-1: New USB device found, idVendor=041e, idProduct=2801, bcdDevice= 0.00 [ 416.865081][ T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 417.048387][ T9] usb 1-1: config 0 descriptor?? [ 418.026267][ T8642] netlink: 452 bytes leftover after parsing attributes in process `syz.1.792'. [ 418.646038][ T9] usbhid 1-1:0.1: can't add hid device: -71 [ 418.652121][ T9] usbhid: probe of 1-1:0.1 failed with error -71 [ 418.833041][ T9] usb 1-1: USB disconnect, device number 7 [ 419.953273][ T8663] netlink: 4 bytes leftover after parsing attributes in process `syz.2.796'. [ 422.126032][ T8682] netlink: 8 bytes leftover after parsing attributes in process `syz.1.803'. [ 422.134909][ T8682] netlink: 4 bytes leftover after parsing attributes in process `syz.1.803'. [ 424.653415][ T8699] netlink: 452 bytes leftover after parsing attributes in process `syz.0.807'. [ 425.683036][ T8713] netlink: 4 bytes leftover after parsing attributes in process `syz.0.810'. [ 425.998449][ T8721] netlink: 8 bytes leftover after parsing attributes in process `syz.3.815'. [ 426.007748][ T8721] netlink: 4 bytes leftover after parsing attributes in process `syz.3.815'. [ 427.472659][ T8734] netlink: 'syz.0.818': attribute type 10 has an invalid length. [ 427.565707][ T8737] netlink: 452 bytes leftover after parsing attributes in process `syz.1.819'. [ 428.057035][ T8734] team0: Port device dummy0 added [ 428.105585][ T8738] netlink: 'syz.0.818': attribute type 10 has an invalid length. [ 428.191733][ T8738] team0: Port device dummy0 removed [ 428.200352][ T8738] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 428.283464][ T8734] syz.0.818 (8734) used greatest stack depth: 20392 bytes left [ 432.027255][ T8769] netlink: 8 bytes leftover after parsing attributes in process `syz.1.830'. [ 432.036308][ T8769] netlink: 4 bytes leftover after parsing attributes in process `syz.1.830'. [ 432.970525][ T8780] netlink: 452 bytes leftover after parsing attributes in process `syz.2.829'. [ 433.220472][ T8782] netlink: 4 bytes leftover after parsing attributes in process `syz.3.828'. [ 435.055470][ T8801] netlink: 4 bytes leftover after parsing attributes in process `syz.3.835'. [ 435.508877][ T8801] bond0: (slave bond_slave_1): Releasing backup interface [ 437.146113][ T8826] netlink: 76 bytes leftover after parsing attributes in process `syz.1.842'. [ 438.412841][ T8827] netlink: 4 bytes leftover after parsing attributes in process `syz.3.841'. [ 438.556251][ T8] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 438.906875][ T8] usb 2-1: config 0 has an invalid interface number: 1 but max is 0 [ 438.941287][ T8835] netlink: 452 bytes leftover after parsing attributes in process `syz.2.843'. [ 439.055704][ T8] usb 2-1: config 0 has no interface number 0 [ 439.100452][ T8] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 439.237306][ T8] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 439.475801][ T8] usb 2-1: New USB device found, idVendor=041e, idProduct=2801, bcdDevice= 0.00 [ 439.484900][ T8] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 439.546930][ T8] usb 2-1: config 0 descriptor?? [ 439.834186][ T8843] netlink: 8 bytes leftover after parsing attributes in process `syz.2.847'. [ 439.843200][ T8843] netlink: 4 bytes leftover after parsing attributes in process `syz.2.847'. [ 440.405337][ T1278] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.412647][ T1278] ieee802154 phy1 wpan1: encryption failed: -22 [ 441.345772][ T8] usbhid 2-1:0.1: can't add hid device: -71 [ 441.351791][ T8] usbhid: probe of 2-1:0.1 failed with error -71 [ 441.437696][ T8] usb 2-1: USB disconnect, device number 7 [ 442.617850][ T8868] netlink: 4 bytes leftover after parsing attributes in process `syz.3.853'. [ 442.730885][ T8871] netlink: 452 bytes leftover after parsing attributes in process `syz.2.854'. [ 443.447646][ T8882] bond0: entered promiscuous mode [ 444.534620][ T28] audit: type=1326 audit(1756630682.315:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8876 comm="syz.3.857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04e9f8ebe9 code=0x7ffc0000 [ 444.638066][ T8882] bond_slave_0: entered promiscuous mode [ 444.655474][ T8882] bond_slave_1: entered promiscuous mode [ 444.693714][ T28] audit: type=1326 audit(1756630682.315:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8876 comm="syz.3.857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04e9f8ebe9 code=0x7ffc0000 [ 444.735017][ T8882] batadv0: entered promiscuous mode [ 444.769271][ T8882] hsr1: entered allmulticast mode [ 444.806209][ T8889] netlink: 'syz.1.861': attribute type 10 has an invalid length. [ 444.824771][ T28] audit: type=1326 audit(1756630682.315:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8876 comm="syz.3.857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=160 compat=0 ip=0x7f04e9f8ebe9 code=0x7ffc0000 [ 444.910709][ T28] audit: type=1326 audit(1756630682.325:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8876 comm="syz.3.857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04e9f8ebe9 code=0x7ffc0000 [ 444.933476][ T28] audit: type=1326 audit(1756630682.325:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8876 comm="syz.3.857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04e9f8ebe9 code=0x7ffc0000 [ 444.947250][ T8889] team0: Port device netdevsim0 added [ 444.968278][ T28] audit: type=1326 audit(1756630682.325:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8876 comm="syz.3.857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7f04e9f8ebe9 code=0x7ffc0000 [ 445.025410][ T28] audit: type=1326 audit(1756630682.325:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8876 comm="syz.3.857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04e9f8ebe9 code=0x7ffc0000 [ 445.212893][ T28] audit: type=1326 audit(1756630682.325:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8876 comm="syz.3.857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04e9f8ebe9 code=0x7ffc0000 [ 446.104067][ T8895] netlink: 8 bytes leftover after parsing attributes in process `syz.2.863'. [ 446.112954][ T8895] netlink: 4 bytes leftover after parsing attributes in process `syz.2.863'. [ 446.355272][ T8906] netlink: 4 bytes leftover after parsing attributes in process `syz.3.865'. [ 447.358594][ T8915] netlink: 452 bytes leftover after parsing attributes in process `syz.3.867'. [ 447.651162][ T8920] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 447.651162][ T8920] The task syz.2.870 (8920) triggered the difference, watch for misbehavior. [ 448.068423][ T8930] netlink: set zone limit has 8 unknown bytes [ 449.473188][ T8934] netlink: 8 bytes leftover after parsing attributes in process `syz.0.875'. [ 449.483250][ T8934] netlink: 4 bytes leftover after parsing attributes in process `syz.0.875'. [ 449.557300][ T8934] netlink: 8 bytes leftover after parsing attributes in process `syz.0.875'. [ 449.568711][ T8934] netlink: 4 bytes leftover after parsing attributes in process `syz.0.875'. [ 449.665612][ T8946] netlink: 4 bytes leftover after parsing attributes in process `syz.3.876'. [ 451.288530][ T8961] netlink: 452 bytes leftover after parsing attributes in process `syz.3.881'. [ 452.503770][ T8985] netlink: 4 bytes leftover after parsing attributes in process `syz.2.890'. [ 452.533604][ T8984] netlink: 8 bytes leftover after parsing attributes in process `syz.1.891'. [ 452.542516][ T8984] netlink: 4 bytes leftover after parsing attributes in process `syz.1.891'. [ 454.067535][ T8999] ======================================================= [ 454.067535][ T8999] WARNING: The mand mount option has been deprecated and [ 454.067535][ T8999] and is ignored by this kernel. Remove the mand [ 454.067535][ T8999] option from the mount to silence this warning. [ 454.067535][ T8999] ======================================================= [ 454.118858][ T8999] overlay: Unknown parameter 'smackfsroot' [ 454.456816][ T9008] netlink: 452 bytes leftover after parsing attributes in process `syz.1.897'. [ 456.336872][ T9016] netlink: 8 bytes leftover after parsing attributes in process `syz.1.900'. [ 456.496272][ T9021] netlink: 4 bytes leftover after parsing attributes in process `syz.0.901'. [ 456.829641][ T9033] netlink: 8 bytes leftover after parsing attributes in process `syz.3.906'. [ 456.838532][ T9033] netlink: 4 bytes leftover after parsing attributes in process `syz.3.906'. [ 456.966182][ T9037] netlink: 452 bytes leftover after parsing attributes in process `syz.2.907'. [ 459.166879][ T9061] netlink: 4 bytes leftover after parsing attributes in process `syz.1.915'. [ 459.191321][ T9064] netlink: 4 bytes leftover after parsing attributes in process `syz.3.914'. [ 459.463675][ T9070] netlink: 'syz.1.916': attribute type 10 has an invalid length. [ 459.559050][ T9070] bond0: (slave wlan1): Enslaving as an active interface with an up link [ 459.707791][ T9075] Unsupported ieee802154 address type: 0 [ 460.454554][ T9084] netlink: 452 bytes leftover after parsing attributes in process `syz.1.918'. [ 460.626367][ T5797] Bluetooth: hci0: ACL packet for unknown connection handle 200 [ 460.708358][ T9094] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 460.725058][ T9092] netlink: 8 bytes leftover after parsing attributes in process `syz.1.920'. [ 460.733916][ T9092] netlink: 4 bytes leftover after parsing attributes in process `syz.1.920'. [ 460.746211][ T9094] overlayfs: "xino" feature enabled using 2 upper inode bits. [ 461.148628][ T9107] xt_CT: You must specify a L4 protocol and not use inversions on it [ 462.008221][ T9111] netlink: 4 bytes leftover after parsing attributes in process `syz.2.926'. [ 462.211365][ T9115] netlink: 452 bytes leftover after parsing attributes in process `syz.0.928'. [ 463.123048][ T9129] netdevsim netdevsim2: Direct firmware load for ./file0 failed with error -2 [ 463.132426][ T9129] netdevsim netdevsim2: Falling back to sysfs fallback for: ./file0 [ 466.093316][ T9148] netlink: 452 bytes leftover after parsing attributes in process `syz.3.938'. [ 466.296754][ T9157] netlink: 8 bytes leftover after parsing attributes in process `syz.1.940'. [ 466.305881][ T9157] netlink: 4 bytes leftover after parsing attributes in process `syz.1.940'. [ 466.340340][ T9160] netlink: 4 bytes leftover after parsing attributes in process `syz.2.939'. [ 466.464696][ T9165] netlink: 12 bytes leftover after parsing attributes in process `syz.3.941'. [ 469.475667][ T9190] netlink: 452 bytes leftover after parsing attributes in process `syz.3.949'. [ 470.949679][ T9209] netlink: 4 bytes leftover after parsing attributes in process `syz.0.952'. [ 470.974778][ T9206] netlink: 8 bytes leftover after parsing attributes in process `syz.1.956'. [ 470.984285][ T9206] netlink: 4 bytes leftover after parsing attributes in process `syz.1.956'. [ 471.956063][ T9232] netlink: 452 bytes leftover after parsing attributes in process `syz.0.963'. [ 472.027092][ T787] usb 3-1: new full-speed USB device number 5 using dummy_hcd [ 472.344162][ T787] usb 3-1: config 0 has an invalid interface number: 90 but max is 0 [ 472.390103][ T787] usb 3-1: config 0 has no interface number 0 [ 472.406834][ T787] usb 3-1: New USB device found, idVendor=077d, idProduct=0410, bcdDevice=3a.fa [ 472.425345][ T787] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 472.440719][ T787] usb 3-1: Product: syz [ 472.446158][ T787] usb 3-1: Manufacturer: syz [ 472.450911][ T787] usb 3-1: SerialNumber: syz [ 472.479340][ T787] usb 3-1: config 0 descriptor?? [ 472.497992][ T787] powermate: probe of 3-1:0.90 failed with error -22 [ 472.701757][ T5855] usb 3-1: USB disconnect, device number 5 [ 472.811155][ T9249] netlink: 4 bytes leftover after parsing attributes in process `syz.1.968'. [ 473.320240][ T9255] netlink: 8 bytes leftover after parsing attributes in process `syz.2.971'. [ 473.329353][ T9255] netlink: 4 bytes leftover after parsing attributes in process `syz.2.971'. [ 474.483345][ T9271] netlink: 452 bytes leftover after parsing attributes in process `syz.1.974'. [ 474.987684][ T34] ------------[ cut here ]------------ [ 474.993656][ T34] WARNING: CPU: 0 PID: 34 at net/mac80211/chan.c:92 ieee80211_vif_use_reserved_switch+0x10e8/0x28f0 [ 475.004593][ T34] Modules linked in: [ 475.008574][ T34] CPU: 0 PID: 34 Comm: kworker/u4:2 Not tainted syzkaller #0 [ 475.016028][ T34] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 475.026319][ T34] Workqueue: phy8 ieee80211_csa_finalize_work [ 475.032444][ T34] RIP: 0010:ieee80211_vif_use_reserved_switch+0x10e8/0x28f0 [ 475.040100][ T34] Code: 48 89 df e8 1a 06 ea f7 e9 dc fc ff ff e8 f0 bf 92 f7 eb 24 e8 e9 bf 92 f7 c7 04 24 f4 ff ff ff e9 e4 f5 ff ff e8 d8 bf 92 f7 <0f> 0b 0f 0b e9 cf f5 ff ff e8 ca bf 92 f7 48 8b 7c 24 08 4c 8b 7c [ 475.060021][ T34] RSP: 0018:ffffc90000aaf9c0 EFLAGS: 00010293 [ 475.066343][ T34] RAX: ffffffff89f2cbce RBX: 0000000000000001 RCX: ffff8880182d8000 [ 475.074365][ T34] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000 [ 475.079051][ C1] ------------[ cut here ]------------ [ 475.083496][ T34] RBP: dffffc0000000000 R08: ffff88805d1d55af R09: 1ffff1100ba3aab5 [ 475.088135][ C1] WARNING: CPU: 1 PID: 5792 at net/mac80211/tx.c:5031 __ieee80211_beacon_get+0x1233/0x1600 [ 475.088180][ C1] Modules linked in: [ 475.088196][ C1] CPU: 1 PID: 5792 Comm: syz-executor Not tainted syzkaller #0 [ 475.088217][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 475.088230][ C1] RIP: 0010:__ieee80211_beacon_get+0x1233/0x1600 [ 475.088264][ C1] Code: 24 4c 89 e7 e8 0e 88 d4 f7 45 31 f6 4c 8b bc 24 a0 00 00 00 e9 7a fe ff ff e8 19 65 97 f7 0f 0b e9 f6 f7 ff ff e8 0d 65 97 f7 <0f> 0b e9 48 fb ff ff e8 01 65 97 f7 48 c7 c7 a0 09 24 8e 4c 89 e6 [ 475.088282][ C1] RSP: 0018:ffffc900001f0a18 EFLAGS: 00010246 [ 475.088304][ C1] RAX: ffffffff89ee2a93 RBX: ffffffff89ee1896 RCX: ffff888028e6bc00 [ 475.096423][ T34] R10: dffffc0000000000 R11: ffffed100ba3aab6 R12: 0000000000000001 [ 475.106327][ C1] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000 [ 475.106345][ C1] RBP: 0000000000000000 R08: ffff888028e6bc00 R09: 0000000000000003 [ 475.106360][ C1] R10: 0000000000000007 R11: 0000000000000100 R12: ffff88805d1d63c0 [ 475.106374][ C1] R13: dffffc0000000000 R14: ffff88805d1d68b0 R15: ffff88801d77c824 [ 475.106392][ C1] FS: 0000555559a09500(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 475.106411][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 475.106426][ C1] CR2: 00007f04eacf56c0 CR3: 00000000626f5000 CR4: 00000000003506e0 [ 475.106444][ C1] Call Trace: [ 475.106453][ C1] [ 475.106476][ C1] ? __ieee80211_beacon_get+0x36/0x1600 [ 475.106524][ C1] ieee80211_beacon_get_tim+0xb8/0x560 [ 475.106563][ C1] ? ieee80211_beacon_get_template_ema_list+0x90/0x90 [ 475.110507][ T34] R13: ffff88805d1d65d9 R14: ffff88807cc92c70 R15: ffff88807cc92ce8 [ 475.118033][ C1] mac80211_hwsim_beacon_tx+0x3c7/0x780 [ 475.128225][ T34] FS: 0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 475.134546][ C1] __iterate_interfaces+0x243/0x500 [ 475.154200][ T34] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 475.160269][ C1] ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0 [ 475.160300][ C1] ? ieee80211_iterate_active_interfaces_atomic+0x2a/0x180 [ 475.160330][ C1] ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0 [ 475.168355][ T34] CR2: 0000200000034000 CR3: 0000000062aa6000 CR4: 00000000003506f0 [ 475.176426][ C1] ieee80211_iterate_active_interfaces_atomic+0xdb/0x180 [ 475.176463][ C1] mac80211_hwsim_beacon+0xbb/0x1b0 [ 475.176492][ C1] __hrtimer_run_queues+0x51e/0xc40 [ 475.176524][ C1] ? hw_scan_work+0xf40/0xf40 [ 475.176555][ C1] ? hrtimer_interrupt+0x9c0/0x9c0 [ 475.176579][ C1] ? ktime_get_update_offsets_now+0x3d2/0x3f0 [ 475.176613][ C1] hrtimer_run_softirq+0x187/0x2b0 [ 475.176642][ C1] handle_softirqs+0x280/0x820 [ 475.176673][ C1] ? __irq_exit_rcu+0xc7/0x190 [ 475.176698][ C1] ? do_softirq+0x180/0x180 [ 475.176724][ C1] ? irqtime_account_irq+0xb6/0x1c0 [ 475.176756][ C1] __irq_exit_rcu+0xc7/0x190 [ 475.176777][ C1] ? irq_exit_rcu+0x20/0x20 [ 475.176807][ C1] irq_exit_rcu+0x9/0x20 [ 475.176825][ C1] sysvec_apic_timer_interrupt+0xa4/0xc0 [ 475.176856][ C1] [ 475.176866][ C1] [ 475.185540][ T34] Call Trace: [ 475.192845][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 475.192871][ C1] RIP: 0010:lock_acquire+0x1f2/0x410 [ 475.192896][ C1] Code: 00 9c 8f 84 24 80 00 00 00 f6 84 24 81 00 00 00 02 0f 85 f5 00 00 00 41 f7 c6 00 02 00 00 74 01 fb 48 c7 44 24 60 0e 36 e0 45 <4b> c7 04 3c 00 00 00 00 66 43 c7 44 3c 09 00 00 43 c6 44 3c 0b 00 [ 475.192914][ C1] RSP: 0018:ffffc900045bf380 EFLAGS: 00000206 [ 475.192937][ C1] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 5d78ccf80ddf1300 [ 475.192953][ C1] RDX: 0000000000000000 RSI: ffffffff8aaacba0 RDI: ffffffff8afc7040 [ 475.192967][ C1] RBP: ffffc900045bf4a0 R08: dffffc0000000000 R09: 1ffffffff21b4aa0 [ 475.200981][ T34] [ 475.208965][ C1] R10: dffffc0000000000 R11: fffffbfff21b4aa1 R12: 1ffff920008b7e7c [ 475.217972][ T34] ieee80211_link_use_reserved_context+0x383/0x5c0 [ 475.224501][ C1] R13: ffffffff8cd2fca0 R14: 0000000000000246 R15: dffffc0000000000 [ 475.232565][ T34] ieee80211_csa_finalize+0x59a/0xf00 [ 475.235861][ C1] ? read_lock_is_recursive+0x20/0x20 [ 475.238777][ T34] ? mutex_lock_nested+0x20/0x20 [ 475.244322][ C1] ? page_ext_put+0x9c/0xb0 [ 475.249819][ T34] ? lockdep_hardirqs_on_prepare+0x400/0x760 [ 475.256601][ C1] ? pfn_valid+0xcd/0x420 [ 475.256632][ C1] pfn_valid+0xe9/0x420 [ 475.264599][ T34] ? ieee80211_csa_finalize_work+0x140/0x140 [ 475.270166][ C1] ? pfn_valid+0xcd/0x420 [ 475.270199][ C1] page_table_check_set+0x25/0x6f0 [ 475.279156][ T34] ? read_lock_is_recursive+0x20/0x20 [ 475.284351][ C1] copy_page_range+0x248d/0x3600 [ 475.284425][ C1] ? pfn_valid+0x450/0x450 [ 475.284453][ C1] ? mas_wr_store_entry+0x151/0x340 [ 475.284481][ C1] ? mas_store+0x34d/0x500 [ 475.284506][ C1] ? mas_empty_area_rev+0x1880/0x1880 [ 475.284541][ C1] ? up_write+0x1c3/0x410 [ 475.284560][ C1] ? anon_vma_interval_tree_verify+0x150/0x150 [ 475.284592][ C1] copy_mm+0x112a/0x1c20 [ 475.284634][ C1] ? copy_signal+0x680/0x680 [ 475.284662][ C1] ? lockdep_init_map_type+0xa1/0x880 [ 475.284708][ C1] ? __init_rwsem+0x122/0x160 [ 475.284744][ C1] ? copy_signal+0x556/0x680 [ 475.284768][ C1] copy_process+0x16d3/0x3d70 [ 475.284808][ C1] ? copy_process+0x945/0x3d70 [ 475.284845][ C1] ? __pidfd_prepare+0x140/0x140 [ 475.284871][ C1] ? vma_end_read+0x18/0x170 [ 475.284906][ C1] kernel_clone+0x21b/0x840 [ 475.284938][ C1] ? create_io_thread+0x140/0x140 [ 475.284984][ C1] __x64_sys_clone+0x18c/0x1e0 [ 475.291758][ T34] ieee80211_csa_finalize_work+0xf6/0x140 [ 475.297845][ C1] ? __ia32_sys_vfork+0x100/0x100 [ 475.297889][ C1] ? lock_chain_count+0x20/0x20 [ 475.305055][ T34] ? process_scheduled_works+0x957/0x15b0 [ 475.311317][ C1] ? lock_chain_count+0x20/0x20 [ 475.311347][ C1] ? lockdep_hardirqs_on+0x98/0x150 [ 475.319343][ T34] process_scheduled_works+0xa45/0x15b0 [ 475.326388][ C1] do_syscall_64+0x55/0xb0 [ 475.331624][ T34] ? assign_work+0x400/0x400 [ 475.336804][ C1] ? clear_bhb_loop+0x40/0x90 [ 475.336826][ C1] ? clear_bhb_loop+0x40/0x90 [ 475.336849][ C1] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 475.336881][ C1] RIP: 0033:0x7f04e9f85453 [ 475.336903][ C1] Code: 1f 84 00 00 00 00 00 64 48 8b 04 25 10 00 00 00 45 31 c0 31 d2 31 f6 bf 11 00 20 01 4c 8d 90 d0 02 00 00 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 35 89 c2 85 c0 75 2c 64 48 8b 04 25 10 00 00 [ 475.336921][ C1] RSP: 002b:00007fff9e800d78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 475.336947][ C1] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f04e9f85453 [ 475.336963][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011 [ 475.336977][ C1] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000001 [ 475.336990][ C1] R10: 0000555559a097d0 R11: 0000000000000246 R12: 0000000000000000 [ 475.337005][ C1] R13: 00000000000927c0 R14: 0000000000073bf1 R15: 00007fff9e800f10 [ 475.337038][ C1] [ 475.337049][ C1] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 475.337060][ C1] CPU: 1 PID: 5792 Comm: syz-executor Not tainted syzkaller #0 [ 475.337079][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 475.337091][ C1] Call Trace: [ 475.337098][ C1] [ 475.337105][ C1] dump_stack_lvl+0x16c/0x230 [ 475.337133][ C1] ? show_regs_print_info+0x20/0x20 [ 475.337178][ C1] ? load_image+0x3b0/0x3b0 [ 475.337218][ C1] panic+0x2c0/0x710 [ 475.337259][ C1] ? bpf_jit_dump+0xd0/0xd0 [ 475.337314][ C1] __warn+0x2e0/0x470 [ 475.337344][ C1] ? __ieee80211_beacon_get+0x1233/0x1600 [ 475.337385][ C1] ? __ieee80211_beacon_get+0x1233/0x1600 [ 475.337417][ C1] report_bug+0x2be/0x4f0 [ 475.337457][ C1] ? __ieee80211_beacon_get+0x1233/0x1600 [ 475.337491][ C1] ? __ieee80211_beacon_get+0x1233/0x1600 [ 475.337525][ C1] ? __ieee80211_beacon_get+0x1235/0x1600 [ 475.337559][ C1] handle_bug+0xcf/0x120 [ 475.337586][ C1] exc_invalid_op+0x1a/0x50 [ 475.337613][ C1] asm_exc_invalid_op+0x1a/0x20 [ 475.337653][ C1] RIP: 0010:__ieee80211_beacon_get+0x1233/0x1600 [ 475.337689][ C1] Code: 24 4c 89 e7 e8 0e 88 d4 f7 45 31 f6 4c 8b bc 24 a0 00 00 00 e9 7a fe ff ff e8 19 65 97 f7 0f 0b e9 f6 f7 ff ff e8 0d 65 97 f7 <0f> 0b e9 48 fb ff ff e8 01 65 97 f7 48 c7 c7 a0 09 24 8e 4c 89 e6 [ 475.337706][ C1] RSP: 0018:ffffc900001f0a18 EFLAGS: 00010246 [ 475.337726][ C1] RAX: ffffffff89ee2a93 RBX: ffffffff89ee1896 RCX: ffff888028e6bc00 [ 475.337741][ C1] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000 [ 475.337755][ C1] RBP: 0000000000000000 R08: ffff888028e6bc00 R09: 0000000000000003 [ 475.337770][ C1] R10: 0000000000000007 R11: 0000000000000100 R12: ffff88805d1d63c0 [ 475.337783][ C1] R13: dffffc0000000000 R14: ffff88805d1d68b0 R15: ffff88801d77c824 [ 475.337805][ C1] ? __ieee80211_beacon_get+0x36/0x1600 [ 475.337840][ C1] ? __ieee80211_beacon_get+0x1233/0x1600 [ 475.337881][ C1] ? __ieee80211_beacon_get+0x1233/0x1600 [ 475.337936][ C1] ? __ieee80211_beacon_get+0x36/0x1600 [ 475.337982][ C1] ieee80211_beacon_get_tim+0xb8/0x560 [ 475.338022][ C1] ? ieee80211_beacon_get_template_ema_list+0x90/0x90 [ 475.338073][ C1] mac80211_hwsim_beacon_tx+0x3c7/0x780 [ 475.338111][ C1] __iterate_interfaces+0x243/0x500 [ 475.338138][ C1] ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0 [ 475.338167][ C1] ? ieee80211_iterate_active_interfaces_atomic+0x2a/0x180 [ 475.338197][ C1] ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0 [ 475.338227][ C1] ieee80211_iterate_active_interfaces_atomic+0xdb/0x180 [ 475.338260][ C1] mac80211_hwsim_beacon+0xbb/0x1b0 [ 475.338291][ C1] __hrtimer_run_queues+0x51e/0xc40 [ 475.338323][ C1] ? hw_scan_work+0xf40/0xf40 [ 475.338359][ C1] ? hrtimer_interrupt+0x9c0/0x9c0 [ 475.338383][ C1] ? ktime_get_update_offsets_now+0x3d2/0x3f0 [ 475.338421][ C1] hrtimer_run_softirq+0x187/0x2b0 [ 475.338451][ C1] handle_softirqs+0x280/0x820 [ 475.338478][ C1] ? __irq_exit_rcu+0xc7/0x190 [ 475.338507][ C1] ? do_softirq+0x180/0x180 [ 475.338534][ C1] ? irqtime_account_irq+0xb6/0x1c0 [ 475.338568][ C1] __irq_exit_rcu+0xc7/0x190 [ 475.338590][ C1] ? irq_exit_rcu+0x20/0x20 [ 475.338624][ C1] irq_exit_rcu+0x9/0x20 [ 475.338650][ C1] sysvec_apic_timer_interrupt+0xa4/0xc0 [ 475.338686][ C1] [ 475.338693][ C1] [ 475.338703][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 475.338724][ C1] RIP: 0010:lock_acquire+0x1f2/0x410 [ 475.338749][ C1] Code: 00 9c 8f 84 24 80 00 00 00 f6 84 24 81 00 00 00 02 0f 85 f5 00 00 00 41 f7 c6 00 02 00 00 74 01 fb 48 c7 44 24 60 0e 36 e0 45 <4b> c7 04 3c 00 00 00 00 66 43 c7 44 3c 09 00 00 43 c6 44 3c 0b 00 [ 475.338767][ C1] RSP: 0018:ffffc900045bf380 EFLAGS: 00000206 [ 475.338786][ C1] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 5d78ccf80ddf1300 [ 475.338801][ C1] RDX: 0000000000000000 RSI: ffffffff8aaacba0 RDI: ffffffff8afc7040 [ 475.338817][ C1] RBP: ffffc900045bf4a0 R08: dffffc0000000000 R09: 1ffffffff21b4aa0 [ 475.338834][ C1] R10: dffffc0000000000 R11: fffffbfff21b4aa1 R12: 1ffff920008b7e7c [ 475.338850][ C1] R13: ffffffff8cd2fca0 R14: 0000000000000246 R15: dffffc0000000000 [ 475.338899][ C1] ? read_lock_is_recursive+0x20/0x20 [ 475.338936][ C1] ? page_ext_put+0x9c/0xb0 [ 475.338961][ C1] ? pfn_valid+0xcd/0x420 [ 475.338989][ C1] pfn_valid+0xe9/0x420 [ 475.339014][ C1] ? pfn_valid+0xcd/0x420 [ 475.339042][ C1] page_table_check_set+0x25/0x6f0 [ 475.339077][ C1] copy_page_range+0x248d/0x3600 [ 475.339157][ C1] ? pfn_valid+0x450/0x450 [ 475.339186][ C1] ? mas_wr_store_entry+0x151/0x340 [ 475.339213][ C1] ? mas_store+0x34d/0x500 [ 475.339239][ C1] ? mas_empty_area_rev+0x1880/0x1880 [ 475.339276][ C1] ? up_write+0x1c3/0x410 [ 475.339294][ C1] ? anon_vma_interval_tree_verify+0x150/0x150 [ 475.339328][ C1] copy_mm+0x112a/0x1c20 [ 475.339368][ C1] ? copy_signal+0x680/0x680 [ 475.339391][ C1] ? lockdep_init_map_type+0xa1/0x880 [ 475.339436][ C1] ? __init_rwsem+0x122/0x160 [ 475.339472][ C1] ? copy_signal+0x556/0x680 [ 475.339499][ C1] copy_process+0x16d3/0x3d70 [ 475.339541][ C1] ? copy_process+0x945/0x3d70 [ 475.339579][ C1] ? __pidfd_prepare+0x140/0x140 [ 475.339605][ C1] ? vma_end_read+0x18/0x170 [ 475.339640][ C1] kernel_clone+0x21b/0x840 [ 475.339681][ C1] ? create_io_thread+0x140/0x140 [ 475.339730][ C1] __x64_sys_clone+0x18c/0x1e0 [ 475.339759][ C1] ? __ia32_sys_vfork+0x100/0x100 [ 475.339799][ C1] ? lock_chain_count+0x20/0x20 [ 475.339824][ C1] ? lock_chain_count+0x20/0x20 [ 475.339853][ C1] ? lockdep_hardirqs_on+0x98/0x150 [ 475.339889][ C1] do_syscall_64+0x55/0xb0 [ 475.339914][ C1] ? clear_bhb_loop+0x40/0x90 [ 475.339937][ C1] ? clear_bhb_loop+0x40/0x90 [ 475.339960][ C1] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 475.339996][ C1] RIP: 0033:0x7f04e9f85453 [ 475.340014][ C1] Code: 1f 84 00 00 00 00 00 64 48 8b 04 25 10 00 00 00 45 31 c0 31 d2 31 f6 bf 11 00 20 01 4c 8d 90 d0 02 00 00 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 35 89 c2 85 c0 75 2c 64 48 8b 04 25 10 00 00 [ 475.340032][ C1] RSP: 002b:00007fff9e800d78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 475.340056][ C1] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f04e9f85453 [ 475.340073][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011 [ 475.340087][ C1] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000001 [ 475.340101][ C1] R10: 0000555559a097d0 R11: 0000000000000246 R12: 0000000000000000 [ 475.340116][ C1] R13: 00000000000927c0 R14: 0000000000073bf1 R15: 00007fff9e800f10 [ 475.340150][ C1] [ 475.342101][ C1] Kernel Offset: disabled