last executing test programs: 10.841665584s ago: executing program 4 (id=115): bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x8, 0x0, 0x0}, 0x90) r0 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IPVS_CMD_NEW_SERVICE(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x4c, r0, 0x1, 0x0, 0x0, {}, [@IPVS_CMD_ATTR_SERVICE={0x38, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_AF={0x6, 0x1, 0x2}, @IPVS_SVC_ATTR_FWMARK={0x8}, @IPVS_SVC_ATTR_FLAGS={0xc}, @IPVS_SVC_ATTR_NETMASK={0x8}, @IPVS_SVC_ATTR_TIMEOUT={0x8}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0x6}]}]}, 0x4c}}, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$IP_VS_SO_GET_SERVICES(r2, 0x0, 0x482, &(0x7f0000001640)=""/139, &(0x7f0000000100)=0x8) 10.49893867s ago: executing program 4 (id=120): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000008c0)=@can_newroute={0x34, 0x18, 0x1, 0x0, 0x0, {}, [@CGW_MOD_XOR={0x15, 0x3, {{{}, 0x0, 0x0, 0x0, 0x0, "8ca5be073cff296e"}, 0x2}}, @CGW_CS_XOR={0x8}]}, 0x34}}, 0x0) 10.367289861s ago: executing program 4 (id=122): r0 = socket$inet6_udp(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0xe22, 0x0, @empty}, 0x1c) r1 = socket$pppl2tp(0x18, 0x1, 0x1) connect$pppl2tp(r1, &(0x7f0000000040)=@pppol2tp={0x18, 0x1, {0x0, r0, {0x2, 0x0, @private}, 0x4}}, 0x26) syz_emit_ethernet(0x0, 0x0, 0x0) 10.199164825s ago: executing program 4 (id=126): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) socket$inet6_sctp(0xa, 0x5, 0x84) ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000180)={@private0, @mcast1, @loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10200}) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000040)={@private0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @ipv4={'\x00', '\xff\xff', @broadcast}, 0x0, 0x0, 0x7e, 0x0, 0x0, 0x10200}) 10.012740551s ago: executing program 4 (id=130): bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x8, 0x0, 0x0}, 0x90) r0 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IPVS_CMD_NEW_SERVICE(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x4c, r0, 0x1, 0x0, 0x0, {}, [@IPVS_CMD_ATTR_SERVICE={0x38, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_AF={0x6, 0x1, 0x2}, @IPVS_SVC_ATTR_FWMARK={0x8}, @IPVS_SVC_ATTR_FLAGS={0xc}, @IPVS_SVC_ATTR_NETMASK={0x8}, @IPVS_SVC_ATTR_TIMEOUT={0x8}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0x6}]}]}, 0x4c}}, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$IP_VS_SO_GET_SERVICES(r2, 0x0, 0x482, &(0x7f0000001640)=""/139, &(0x7f0000000100)=0x8) 9.69882841s ago: executing program 4 (id=136): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-camellia-asm\x00'}, 0x58) r1 = accept4(r0, 0x0, 0x0, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000200)="ad00"/16, 0x10) recvmmsg(r1, &(0x7f0000002440), 0x3ffffffffffff67, 0x0, 0x0) 3.268480555s ago: executing program 2 (id=240): r0 = socket(0x848000000015, 0x805, 0x0) bind$inet6(r0, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback={0x3}}, 0x1c) 3.06530884s ago: executing program 2 (id=243): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, 0x0) sendmsg$NL80211_CMD_FRAME_WAIT_CANCEL(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000380)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000004300000008000300", @ANYRES32, @ANYBLOB="0c00580001"], 0x28}}, 0x0) 2.913719255s ago: executing program 2 (id=246): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0xffffbfff, 0x1, 0x1}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000810018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 2.45321474s ago: executing program 2 (id=252): r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000080)=0x1, 0x4) setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000040)=@req3={0x0, 0x3a, 0x1000, 0x3a}, 0x1c) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c) 2.177088905s ago: executing program 2 (id=256): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, 0x0) sendmsg$NL80211_CMD_FRAME_WAIT_CANCEL(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000380)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000004300000008000300", @ANYRES32, @ANYBLOB="0c00580001"], 0x28}}, 0x0) 1.964748817s ago: executing program 2 (id=259): setsockopt$XDP_TX_RING(0xffffffffffffffff, 0x11b, 0x3, &(0x7f00000003c0)=0x800, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0) writev(r0, &(0x7f0000000180)=[{&(0x7f0000000200)='@\x00', 0x2}], 0x1) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f00000000c0)={0x26, 'hash\x00', 0x0, 0x0, 'crc32c-generic\x00'}, 0x77) r2 = accept$alg(r1, 0x0, 0x0) sendfile(r2, r0, 0x0, 0x7ffff000) 1.813675298s ago: executing program 0 (id=263): r0 = socket(0x0, 0x803, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000004780)={'syz_tun\x00', &(0x7f0000000400)=@ethtool_link_settings={0x8}}) 1.477854477s ago: executing program 0 (id=266): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newlink={0x40, 0x10, 0xc09, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x10, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_QUERY_RESPONSE_INTVL={0xc}]}}}]}, 0x40}}, 0x0) 1.46832659s ago: executing program 3 (id=267): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, 0x0, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ed5696c5820fae0000000000000080beef911d564c90c200", 0x18) r1 = accept4(r0, 0x0, 0x0, 0x0) sendmmsg$unix(r1, &(0x7f0000006b40)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f00000007c0)=[@rights={{0x10, 0x117, 0x2}}], 0x10}}], 0x2, 0x0) 1.228601866s ago: executing program 3 (id=269): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, 0x0) sendmsg$NL80211_CMD_FRAME_WAIT_CANCEL(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000380)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000004300000008000300", @ANYRES32, @ANYBLOB="0c00580001"], 0x28}}, 0x0) 1.228484398s ago: executing program 0 (id=270): r0 = socket$igmp(0x2, 0x3, 0x2) setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f0000000b00), 0x4) r1 = socket$igmp(0x2, 0x3, 0x2) setsockopt$inet_opts(r1, 0x0, 0x5, 0x0, 0x0) 879.777149ms ago: executing program 3 (id=271): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000600)=ANY=[@ANYBLOB="600000000101010100000000000000000a0000000c001980080001000d02000008001a"], 0x60}}, 0x0) 635.226964ms ago: executing program 0 (id=273): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f00000000c0)={0x38, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_DEBUG_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_DEBUG_MSGMASK={0xc, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x4}, @ETHTOOL_A_BITSET_VALUE={0x4}]}]}, 0x38}}, 0x0) 618.773018ms ago: executing program 3 (id=274): r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0xb, &(0x7f0000000040)=0x1c, 0x4) r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000009b67edc70c5c0c319e8b3eb0007ae53c60fdf11b51e3a8799cf1724900fa2aa07e8cb9e68054f7eb42f961579d00"/65, @ANYRES16=r1, @ANYBLOB="030e000000000000000001000000"], 0x14}}, 0x0) socket$nl_route(0x10, 0x3, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r2 = socket$inet6(0xa, 0x80002, 0x0) r3 = socket$nl_audit(0x10, 0x3, 0x9) sendmsg$AUDIT_USER_AVC(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000002c0)={0x10, 0x453, 0x0, 0x0, 0x25dfdbfd}, 0x10}, 0x1, 0x0, 0x0, 0x4008084}, 0x0) setsockopt$sock_linger(r2, 0x1, 0x3c, &(0x7f0000000100)={0x200000000000001}, 0x8) r4 = socket$kcm(0x10, 0x2, 0x0) sendmsg$FOU_CMD_GET(0xffffffffffffffff, 0x0, 0x0) socket$inet6_sctp(0xa, 0x5, 0x84) sendmsg$kcm(r4, &(0x7f0000000600)={0x0, 0xfffffffffffffe24, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73f72cc9f0ba1f848140000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x5}, 0x1c) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r5, 0x5452, &(0x7f0000000080)=0x8000000ffffffff) r7 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r7}, 0x10) pipe(&(0x7f00000000c0)) shutdown(r6, 0x1) sendmmsg$inet6(r2, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000) setsockopt$inet6_IPV6_HOPOPTS(r2, 0x29, 0x6, 0x0, 0xc8) 507.604246ms ago: executing program 1 (id=275): r0 = socket(0x0, 0x803, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000004780)={'syz_tun\x00', &(0x7f0000000400)=@ethtool_link_settings={0x8}}) 359.445436ms ago: executing program 0 (id=276): openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0) bpf$BPF_PROG_TEST_RUN(0x1c, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0xffffffff, 0x1, 0x1}, 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0xf, 0x0, 0x0, 0x0, 0x0, 0x20, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) 306.063563ms ago: executing program 1 (id=277): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r0}, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a68000000060a09040000000006000000020000000900010073797a3000e2ff000900020073797a32000000003c000480380001800b00010064796e73"], 0x90}}, 0x0) r2 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000540), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_SUBFLOW_CREATE(r1, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="a0000000", @ANYRES16=r2, @ANYBLOB="010000000000000000000a"], 0xa0}}, 0x0) 246.395018ms ago: executing program 1 (id=278): bpf$MAP_CREATE(0x0, 0x0, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e22}, 0x1c) setsockopt$inet6_int(r0, 0x29, 0x3c, &(0x7f0000000180)=0x100003, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x200008d4, &(0x7f000072e000)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000680)=ANY=[@ANYBLOB="0001"], 0x18) sendto$inet6(r0, &(0x7f0000000080)='w', 0x1, 0xc1, 0x0, 0x0) setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000280)=ANY=[], 0x8) sendto$inet6(r0, &(0x7f0000000280)="03", 0xfeaa, 0x4008000, 0x0, 0x241) 246.143916ms ago: executing program 3 (id=279): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, 0x0, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ed5696c5820fae0000000000000080beef911d564c90c200", 0x18) r1 = accept4(r0, 0x0, 0x0, 0x0) sendmmsg$unix(r1, &(0x7f0000006b40)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f00000007c0)=[@rights={{0x10, 0x117, 0x2}}], 0x10}}], 0x2, 0x0) 151.551674ms ago: executing program 1 (id=280): socket$nl_generic(0x10, 0x3, 0x10) r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000480)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME_WAIT_CANCEL(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000380)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010000000000000000004300000008000300", @ANYRES32=r2, @ANYBLOB="0c00580001"], 0x28}}, 0x0) 111.247236ms ago: executing program 1 (id=281): socket$nl_route(0x10, 0x3, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) r0 = socket$can_j1939(0x1d, 0x2, 0x7) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'geneve1\x00'}) r1 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000010008108040f80ecdb4cb92e0a480e000f000000e8bd6efb250314000e000100240248ff050005001200", 0x2e}], 0x1}, 0x0) 97.812642ms ago: executing program 0 (id=282): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000440)=ANY=[@ANYBLOB="440000001000370400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000002400128009000100626f6e64000000001400028008000b004205"], 0x44}}, 0x0) 27.546376ms ago: executing program 3 (id=283): r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/pid_for_children\x00') ioctl$NS_GET_PARENT(r0, 0x8004b708, 0x0) 0s ago: executing program 1 (id=284): mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0) r1 = openat$cgroup_devices(r0, &(0x7f0000000000)='devices.deny\x00', 0x2, 0x0) write$cgroup_devices(r1, &(0x7f0000000140)={'b', ' *:* ', 'm\x00'}, 0x8) write$cgroup_devices(r1, &(0x7f0000000080)={'a', ' *:* ', 'w\x00'}, 0x8) bpf$ITER_CREATE(0x21, &(0x7f00000000c0)={r0}, 0x8) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.55' (ED25519) to the list of known hosts. [ 69.286070][ T5094] cgroup: Unknown subsys name 'net' [ 69.491856][ T5094] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 71.170426][ T5094] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 71.791232][ T1249] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.799242][ T1249] ieee802154 phy1 wpan1: encryption failed: -22 [ 73.597726][ T5116] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 73.610910][ T5118] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 73.620719][ T5118] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 73.635844][ T5118] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 73.643785][ T5118] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 73.652307][ T5118] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 73.667949][ T5118] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 73.669131][ T5120] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 73.675968][ T5118] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 73.684276][ T5120] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 73.690619][ T5118] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 73.704304][ T5120] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 73.704541][ T5118] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 73.719995][ T5118] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 73.722733][ T5124] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 73.729225][ T5118] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 73.735355][ T5124] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 73.743934][ T5118] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 73.750254][ T5124] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 73.756241][ T5118] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 73.762610][ T5125] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 73.776968][ T5125] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 73.785460][ T5124] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 73.785659][ T5118] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 73.792884][ T5120] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 73.800290][ T5118] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 73.811473][ T5120] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 73.819008][ T5118] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 73.833962][ T54] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 73.854676][ T4492] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 74.348656][ T5105] chnl_net:caif_netlink_parms(): no params data found [ 74.505376][ T5109] chnl_net:caif_netlink_parms(): no params data found [ 74.622702][ T5104] chnl_net:caif_netlink_parms(): no params data found [ 74.677338][ T5105] bridge0: port 1(bridge_slave_0) entered blocking state [ 74.684772][ T5105] bridge0: port 1(bridge_slave_0) entered disabled state [ 74.698436][ T5105] bridge_slave_0: entered allmulticast mode [ 74.706287][ T5105] bridge_slave_0: entered promiscuous mode [ 74.758445][ T5105] bridge0: port 2(bridge_slave_1) entered blocking state [ 74.765618][ T5105] bridge0: port 2(bridge_slave_1) entered disabled state [ 74.774055][ T5105] bridge_slave_1: entered allmulticast mode [ 74.782249][ T5105] bridge_slave_1: entered promiscuous mode [ 74.812539][ T5107] chnl_net:caif_netlink_parms(): no params data found [ 74.882766][ T5105] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 74.895763][ T5105] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 74.905145][ T5109] bridge0: port 1(bridge_slave_0) entered blocking state [ 74.913718][ T5109] bridge0: port 1(bridge_slave_0) entered disabled state [ 74.921032][ T5109] bridge_slave_0: entered allmulticast mode [ 74.929223][ T5109] bridge_slave_0: entered promiscuous mode [ 74.936607][ T5106] chnl_net:caif_netlink_parms(): no params data found [ 74.998442][ T5109] bridge0: port 2(bridge_slave_1) entered blocking state [ 75.005656][ T5109] bridge0: port 2(bridge_slave_1) entered disabled state [ 75.013676][ T5109] bridge_slave_1: entered allmulticast mode [ 75.021536][ T5109] bridge_slave_1: entered promiscuous mode [ 75.062651][ T5104] bridge0: port 1(bridge_slave_0) entered blocking state [ 75.070113][ T5104] bridge0: port 1(bridge_slave_0) entered disabled state [ 75.081343][ T5104] bridge_slave_0: entered allmulticast mode [ 75.088960][ T5104] bridge_slave_0: entered promiscuous mode [ 75.098096][ T5104] bridge0: port 2(bridge_slave_1) entered blocking state [ 75.105265][ T5104] bridge0: port 2(bridge_slave_1) entered disabled state [ 75.112680][ T5104] bridge_slave_1: entered allmulticast mode [ 75.120863][ T5104] bridge_slave_1: entered promiscuous mode [ 75.200281][ T5105] team0: Port device team_slave_0 added [ 75.209047][ T5109] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 75.222516][ T5109] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 75.247720][ T5104] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 75.260993][ T5104] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 75.272095][ T5105] team0: Port device team_slave_1 added [ 75.394916][ T5105] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 75.402693][ T5105] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 75.428805][ T5105] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 75.444252][ T5109] team0: Port device team_slave_0 added [ 75.487368][ T5104] team0: Port device team_slave_0 added [ 75.493657][ T5107] bridge0: port 1(bridge_slave_0) entered blocking state [ 75.501476][ T5107] bridge0: port 1(bridge_slave_0) entered disabled state [ 75.509338][ T5107] bridge_slave_0: entered allmulticast mode [ 75.516811][ T5107] bridge_slave_0: entered promiscuous mode [ 75.525451][ T5105] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 75.533027][ T5105] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 75.559153][ T5105] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 75.579041][ T5109] team0: Port device team_slave_1 added [ 75.602740][ T5104] team0: Port device team_slave_1 added [ 75.622136][ T5107] bridge0: port 2(bridge_slave_1) entered blocking state [ 75.629799][ T5107] bridge0: port 2(bridge_slave_1) entered disabled state [ 75.637436][ T5107] bridge_slave_1: entered allmulticast mode [ 75.644626][ T5107] bridge_slave_1: entered promiscuous mode [ 75.678571][ T5106] bridge0: port 1(bridge_slave_0) entered blocking state [ 75.685740][ T5106] bridge0: port 1(bridge_slave_0) entered disabled state [ 75.696442][ T5106] bridge_slave_0: entered allmulticast mode [ 75.704602][ T5106] bridge_slave_0: entered promiscuous mode [ 75.754903][ T5105] hsr_slave_0: entered promiscuous mode [ 75.762481][ T5105] hsr_slave_1: entered promiscuous mode [ 75.782539][ T5106] bridge0: port 2(bridge_slave_1) entered blocking state [ 75.790106][ T5106] bridge0: port 2(bridge_slave_1) entered disabled state [ 75.797541][ T5106] bridge_slave_1: entered allmulticast mode [ 75.804812][ T5106] bridge_slave_1: entered promiscuous mode [ 75.813649][ T5104] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 75.820869][ T5104] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 75.847095][ T5104] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 75.867482][ T5112] Bluetooth: hci0: command tx timeout [ 75.873840][ T5116] Bluetooth: hci3: command tx timeout [ 75.873864][ T54] Bluetooth: hci2: command tx timeout [ 75.889814][ T5107] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 75.900614][ T5109] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 75.907699][ T5109] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 75.933663][ T5109] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 75.947306][ T5116] Bluetooth: hci1: command tx timeout [ 75.949187][ T5112] Bluetooth: hci4: command tx timeout [ 75.981452][ T5104] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 75.988577][ T5104] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 76.015175][ T5104] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 76.029055][ T5107] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 76.072200][ T5109] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 76.079978][ T5109] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 76.106982][ T5109] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 76.128164][ T5106] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 76.140787][ T5106] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 76.227303][ T5106] team0: Port device team_slave_0 added [ 76.237940][ T5107] team0: Port device team_slave_0 added [ 76.250291][ T5107] team0: Port device team_slave_1 added [ 76.265212][ T5106] team0: Port device team_slave_1 added [ 76.341365][ T5106] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 76.352472][ T5106] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 76.379851][ T5106] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 76.423249][ T5109] hsr_slave_0: entered promiscuous mode [ 76.430022][ T5109] hsr_slave_1: entered promiscuous mode [ 76.436367][ T5109] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 76.444339][ T5109] Cannot create hsr debugfs directory [ 76.478326][ T5106] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 76.485319][ T5106] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 76.514510][ T5106] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 76.533479][ T5107] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 76.540599][ T5107] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 76.567403][ T5107] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 76.580229][ T5107] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 76.587317][ T5107] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 76.613627][ T5107] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 76.642418][ T5104] hsr_slave_0: entered promiscuous mode [ 76.649591][ T5104] hsr_slave_1: entered promiscuous mode [ 76.656209][ T5104] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 76.663993][ T5104] Cannot create hsr debugfs directory [ 76.772504][ T5107] hsr_slave_0: entered promiscuous mode [ 76.779123][ T5107] hsr_slave_1: entered promiscuous mode [ 76.785398][ T5107] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 76.793887][ T5107] Cannot create hsr debugfs directory [ 76.883222][ T5106] hsr_slave_0: entered promiscuous mode [ 76.889991][ T5106] hsr_slave_1: entered promiscuous mode [ 76.896264][ T5106] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 76.903981][ T5106] Cannot create hsr debugfs directory [ 77.262034][ T5105] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 77.279458][ T5105] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 77.319701][ T5105] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 77.331386][ T5105] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 77.443865][ T5109] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 77.458080][ T5109] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 77.485675][ T5109] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 77.518561][ T5109] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 77.574857][ T5104] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 77.618591][ T5104] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 77.629875][ T5104] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 77.642076][ T5104] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 77.731015][ T5106] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 77.742140][ T5106] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 77.773453][ T5106] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 77.812718][ T5106] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 77.857433][ T5105] 8021q: adding VLAN 0 to HW filter on device bond0 [ 77.902953][ T5107] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 77.913703][ T5107] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 77.927534][ T5107] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 77.939379][ T5107] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 77.951819][ T5112] Bluetooth: hci3: command tx timeout [ 77.951889][ T54] Bluetooth: hci2: command tx timeout [ 77.964050][ T5116] Bluetooth: hci0: command tx timeout [ 78.027884][ T54] Bluetooth: hci4: command tx timeout [ 78.033382][ T5116] Bluetooth: hci1: command tx timeout [ 78.042353][ T5105] 8021q: adding VLAN 0 to HW filter on device team0 [ 78.083677][ T5109] 8021q: adding VLAN 0 to HW filter on device bond0 [ 78.114163][ T5161] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.121621][ T5161] bridge0: port 1(bridge_slave_0) entered forwarding state [ 78.133412][ T5161] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.140652][ T5161] bridge0: port 2(bridge_slave_1) entered forwarding state [ 78.180108][ T5105] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 78.191269][ T5105] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 78.250191][ T5109] 8021q: adding VLAN 0 to HW filter on device team0 [ 78.340282][ T5163] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.347511][ T5163] bridge0: port 1(bridge_slave_0) entered forwarding state [ 78.385961][ T5104] 8021q: adding VLAN 0 to HW filter on device bond0 [ 78.406335][ T5163] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.413602][ T5163] bridge0: port 2(bridge_slave_1) entered forwarding state [ 78.510038][ T5104] 8021q: adding VLAN 0 to HW filter on device team0 [ 78.559727][ T5163] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.566910][ T5163] bridge0: port 1(bridge_slave_0) entered forwarding state [ 78.606246][ T5106] 8021q: adding VLAN 0 to HW filter on device bond0 [ 78.629763][ T5163] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.637002][ T5163] bridge0: port 2(bridge_slave_1) entered forwarding state [ 78.676043][ T5107] 8021q: adding VLAN 0 to HW filter on device bond0 [ 78.705046][ T5105] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 78.734357][ T5106] 8021q: adding VLAN 0 to HW filter on device team0 [ 78.769428][ T5107] 8021q: adding VLAN 0 to HW filter on device team0 [ 78.843670][ T5104] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 78.856232][ T5104] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 78.874442][ T5163] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.881701][ T5163] bridge0: port 1(bridge_slave_0) entered forwarding state [ 78.899130][ T5163] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.906415][ T5163] bridge0: port 1(bridge_slave_0) entered forwarding state [ 78.932236][ T5163] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.939403][ T5163] bridge0: port 2(bridge_slave_1) entered forwarding state [ 79.001994][ T5163] bridge0: port 2(bridge_slave_1) entered blocking state [ 79.009270][ T5163] bridge0: port 2(bridge_slave_1) entered forwarding state [ 79.315782][ T5109] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 79.500721][ T5104] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 79.595390][ T5109] veth0_vlan: entered promiscuous mode [ 79.611625][ T5105] veth0_vlan: entered promiscuous mode [ 79.656234][ T5109] veth1_vlan: entered promiscuous mode [ 79.712703][ T5105] veth1_vlan: entered promiscuous mode [ 79.765208][ T5107] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 79.789723][ T5109] veth0_macvtap: entered promiscuous mode [ 79.812946][ T5104] veth0_vlan: entered promiscuous mode [ 79.826018][ T5109] veth1_macvtap: entered promiscuous mode [ 79.846333][ T5106] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 79.863291][ T5105] veth0_macvtap: entered promiscuous mode [ 79.874661][ T5104] veth1_vlan: entered promiscuous mode [ 79.901922][ T5105] veth1_macvtap: entered promiscuous mode [ 79.965100][ T5109] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 79.989339][ T5105] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 80.000450][ T5105] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 80.012304][ T5105] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 80.031244][ T5109] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 80.036821][ T5116] Bluetooth: hci3: command tx timeout [ 80.047406][ T5116] Bluetooth: hci0: command tx timeout [ 80.047494][ T54] Bluetooth: hci2: command tx timeout [ 80.060670][ T5109] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.070268][ T5109] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.082387][ T5109] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.091222][ T5109] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.107416][ T5112] Bluetooth: hci1: command tx timeout [ 80.112976][ T5112] Bluetooth: hci4: command tx timeout [ 80.160317][ T5105] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 80.171312][ T5105] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 80.183575][ T5105] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 80.198332][ T5104] veth0_macvtap: entered promiscuous mode [ 80.225918][ T5106] veth0_vlan: entered promiscuous mode [ 80.239321][ T5105] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.248487][ T5105] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.257300][ T5105] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.266031][ T5105] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.279714][ T5104] veth1_macvtap: entered promiscuous mode [ 80.294269][ T5107] veth0_vlan: entered promiscuous mode [ 80.312374][ T5106] veth1_vlan: entered promiscuous mode [ 80.360541][ T5107] veth1_vlan: entered promiscuous mode [ 80.422104][ T5104] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 80.436216][ T5104] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 80.446831][ T5104] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 80.457831][ T5104] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 80.472386][ T5104] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 80.515292][ T5104] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 80.531779][ T5104] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 80.542608][ T5104] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 80.553209][ T5104] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 80.564673][ T5104] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 80.588402][ T5104] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.597318][ T5104] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.606369][ T5104] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.615541][ T5104] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.648336][ T5106] veth0_macvtap: entered promiscuous mode [ 80.659306][ T1057] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 80.676071][ T1057] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 80.712907][ T5107] veth0_macvtap: entered promiscuous mode [ 80.735908][ T5106] veth1_macvtap: entered promiscuous mode [ 80.766261][ T5107] veth1_macvtap: entered promiscuous mode [ 80.795658][ T1095] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 80.804608][ T1095] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 80.817914][ T1057] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 80.828296][ T1057] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 80.890668][ T5106] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 80.906381][ T5106] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 80.920921][ T5106] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 80.931937][ T5106] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 80.941882][ T5106] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 80.952911][ T5106] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 80.967394][ T5106] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 80.975333][ T5107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 80.990362][ T5107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 81.000324][ T5107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 81.010861][ T5107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 81.020784][ T5107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 81.031350][ T5107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 81.041282][ T5107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 81.051815][ T5107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 81.064898][ T5107] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 81.091543][ T5107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 81.102224][ T5107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 81.119726][ T5107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 81.134387][ T5107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 81.187358][ T5107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 81.205160][ T5107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 81.230865][ T5107] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 81.319206][ T5196] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6'. [ 81.330610][ T5106] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 81.346473][ T5106] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 81.374423][ T5106] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 81.393718][ T5106] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 81.404118][ T5106] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 81.414741][ T5106] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 81.424872][ T5106] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 81.436154][ T5106] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 81.448482][ T5106] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 81.471429][ T5107] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.480528][ T5107] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.490992][ T5107] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.500253][ T5107] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.534684][ T52] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 81.556313][ T5106] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.565333][ T52] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 81.574268][ T5106] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.583928][ T5106] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.593132][ T5106] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.608129][ T1095] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 81.629452][ T1095] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 81.861646][ T5203] netlink: 'syz.0.9': attribute type 29 has an invalid length. [ 81.880899][ T5203] netlink: 'syz.0.9': attribute type 29 has an invalid length. [ 81.915234][ T1095] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 81.936147][ T1095] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 82.107107][ T54] Bluetooth: hci0: command tx timeout [ 82.114095][ T54] Bluetooth: hci3: command tx timeout [ 82.119716][ T5112] Bluetooth: hci2: command tx timeout [ 82.187787][ T5112] Bluetooth: hci4: command tx timeout [ 82.193269][ T5112] Bluetooth: hci1: command tx timeout [ 82.206490][ T1057] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 82.208610][ T1108] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 82.270272][ T1108] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 82.324902][ T1057] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 82.519082][ T5218] netlink: 24 bytes leftover after parsing attributes in process `syz.0.13'. [ 82.549581][ T73] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 82.569215][ T1057] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 82.597263][ T1057] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 82.607995][ T73] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.689050][ T5250] warning: `syz.1.23' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 83.824405][ T5253] netlink: 4 bytes leftover after parsing attributes in process `syz.4.25'. [ 84.954315][ T5305] netlink: 32 bytes leftover after parsing attributes in process `syz.3.46'. [ 85.105704][ T5311] netlink: 'syz.1.50': attribute type 10 has an invalid length. [ 85.172057][ T5311] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 85.243437][ T5311] bond0: (slave batadv0): Enslaving as an active interface with an up link [ 85.299207][ T5320] netlink: 'syz.1.50': attribute type 8 has an invalid length. [ 85.307942][ T5319] netlink: 25 bytes leftover after parsing attributes in process `syz.3.51'. [ 85.578584][ T5332] syz.4.59 uses obsolete (PF_INET,SOCK_PACKET) [ 86.782891][ T5381] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 86.852078][ T5381] macvlan2: entered allmulticast mode [ 86.865467][ T5381] geneve1: entered promiscuous mode [ 86.876046][ T5381] geneve1: entered allmulticast mode [ 86.920281][ T5381] bond0: (slave macvlan2): Enslaving as an active interface with an up link [ 87.041101][ T5384] bond0: entered promiscuous mode [ 87.059451][ T5384] bond_slave_0: entered promiscuous mode [ 87.077336][ T5384] bond_slave_1: entered promiscuous mode [ 87.102920][ T5384] macvlan2: entered promiscuous mode [ 87.159028][ T8] cfg80211: failed to load regulatory.db [ 88.031481][ T5425] IPVS: Scheduler module ip_vs_sip not found [ 88.758152][ T5455] netlink: 'syz.3.114': attribute type 10 has an invalid length. [ 88.863497][ T5455] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 88.895571][ T5464] netlink: 'syz.3.114': attribute type 8 has an invalid length. [ 88.930590][ T5455] bond0: (slave batadv0): Enslaving as an active interface with an up link [ 88.958656][ T5457] IPVS: Scheduler module ip_vs_sip not found [ 89.401410][ T5484] netlink: 2 bytes leftover after parsing attributes in process `syz.1.124'. [ 89.439059][ T5484] netlink: 2 bytes leftover after parsing attributes in process `syz.1.124'. [ 89.679509][ T5493] IPVS: Scheduler module ip_vs_sip not found [ 89.681605][ T5498] Zero length message leads to an empty skb [ 90.402259][ T5526] macvlan2: entered allmulticast mode [ 90.420688][ T5526] geneve1: entered promiscuous mode [ 90.426431][ T5526] geneve1: entered allmulticast mode [ 90.441042][ T5526] bond0: (slave macvlan2): Enslaving as an active interface with an up link [ 90.512902][ T5526] bond0: entered promiscuous mode [ 90.536872][ T5526] bond_slave_0: entered promiscuous mode [ 90.550274][ T5526] bond_slave_1: entered promiscuous mode [ 90.556286][ T5526] macvlan2: entered promiscuous mode [ 90.723112][ T5531] IPVS: Scheduler module ip_vs_sip not found [ 91.434675][ T5557] mac80211_hwsim hwsim10 wlan1: entered allmulticast mode [ 92.236766][ T29] audit: type=1107 audit(1721220070.672:2): pid=5590 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='!' [ 93.378390][ T5630] netlink: 'syz.3.193': attribute type 11 has an invalid length. [ 93.993019][ T5651] macvlan2: entered allmulticast mode [ 94.003651][ T5651] geneve1: entered promiscuous mode [ 94.024644][ T5651] geneve1: entered allmulticast mode [ 94.066888][ T5651] bond0: (slave macvlan2): Enslaving as an active interface with an up link [ 94.934084][ T5683] macvlan3: entered allmulticast mode [ 94.962691][ T5683] bond0: (slave macvlan3): Error -98 calling set_mac_address [ 97.332600][ T5758] Illegal XDP return value 4294967274 on prog (id 29) dev N/A, expect packet loss! [ 97.688655][ T5774] netlink: 'syz.1.261': attribute type 10 has an invalid length. [ 98.439488][ T5793] bond0: entered promiscuous mode [ 98.460200][ T5793] bond_slave_0: entered promiscuous mode [ 98.478691][ T5793] bond_slave_1: entered promiscuous mode [ 98.535257][ T5793] batadv0: entered promiscuous mode [ 98.542763][ T54] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 98.543972][ T5793] macvlan2: entered promiscuous mode [ 98.558448][ T54] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 98.571352][ T54] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 98.586012][ T54] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 98.605471][ T54] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 98.613234][ T54] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 98.798589][ T5802] netlink: 56 bytes leftover after parsing attributes in process `syz.3.271'. [ 99.036203][ T12] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 99.096577][ T5807] netlink: 'syz.3.274': attribute type 10 has an invalid length. [ 99.252510][ T5818] netlink: 36 bytes leftover after parsing attributes in process `syz.1.277'. [ 99.386956][ T12] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 99.570317][ T5831] [ 99.572712][ T5831] ================================================ [ 99.579238][ T5831] WARNING: lock held when returning to user space! [ 99.585775][ T5831] 6.10.0-syzkaller-04472-g51835949dda3 #0 Not tainted [ 99.592568][ T5831] ------------------------------------------------ [ 99.599096][ T5831] syz.3.283/5831 is leaving the kernel with locks still held! [ 99.606576][ T5831] 1 lock held by syz.3.283/5831: [ 99.611552][ T5831] #0: ffffffff8e335fe0 (rcu_read_lock){....}-{1:2}, at: ns_ioctl+0x3e0/0x740 [ 99.623608][ T5831] ------------[ cut here ]------------ [ 99.629109][ T5831] Voluntary context switch within RCU read-side critical section! [ 99.629219][ T5831] WARNING: CPU: 1 PID: 5831 at kernel/rcu/tree_plugin.h:330 rcu_note_context_switch+0xcf4/0xff0 [ 99.647481][ T5831] Modules linked in: [ 99.651391][ T5831] CPU: 1 PID: 5831 Comm: syz.3.283 Not tainted 6.10.0-syzkaller-04472-g51835949dda3 #0 [ 99.661030][ T5831] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 99.671103][ T5831] RIP: 0010:rcu_note_context_switch+0xcf4/0xff0 [ 99.677372][ T5831] Code: 00 ba 02 00 00 00 e8 cb 02 fe ff 4c 8b b4 24 80 00 00 00 eb 91 c6 05 98 3f 1b 0e 01 90 48 c7 c7 40 21 cc 8b e8 8d 26 db ff 90 <0f> 0b 90 90 e9 3b f4 ff ff 90 0f 0b 90 45 84 ed 0f 84 00 f4 ff ff [ 99.696994][ T5831] RSP: 0000:ffffc900130b7ba0 EFLAGS: 00010046 [ 99.703072][ T5831] RAX: f4dce7c7bdd09200 RBX: ffff88802496c044 RCX: 0000000000040000 [ 99.711052][ T5831] RDX: ffffc90009c23000 RSI: 0000000000010c76 RDI: 0000000000010c77 [ 99.719029][ T5831] RBP: ffffc900130b7cf0 R08: ffffffff815878a2 R09: 1ffff110172a519a [ 99.727017][ T5831] R10: dffffc0000000000 R11: ffffed10172a519b R12: ffff88802496bc00 [ 99.735016][ T5831] R13: 0000000000000000 R14: 1ffff92002616f8c R15: dffffc0000000000 [ 99.743156][ T5831] FS: 00007f6b916216c0(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000 [ 99.752095][ T5831] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 99.758687][ T5831] CR2: 00007f6c5f904030 CR3: 0000000023f76000 CR4: 00000000003506f0 [ 99.766681][ T5831] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 99.774670][ T5831] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 99.782653][ T5831] Call Trace: [ 99.785938][ T5831] [ 99.788876][ T5831] ? __warn+0x163/0x4e0 [ 99.793049][ T5831] ? rcu_note_context_switch+0xcf4/0xff0 [ 99.798729][ T5831] ? report_bug+0x2b3/0x500 [ 99.803253][ T5831] ? rcu_note_context_switch+0xcf4/0xff0 [ 99.808905][ T5831] ? handle_bug+0x3e/0x70 [ 99.813273][ T5831] ? exc_invalid_op+0x1a/0x50 [ 99.817958][ T5831] ? asm_exc_invalid_op+0x1a/0x20 [ 99.822994][ T5831] ? __warn_printk+0x292/0x360 [ 99.827782][ T5831] ? rcu_note_context_switch+0xcf4/0xff0 [ 99.833443][ T5831] ? __schedule+0x1808/0x4a60 [ 99.838145][ T5831] ? irq_work_queue+0xd1/0x150 [ 99.842922][ T5831] ? __pfx_rcu_note_context_switch+0x10/0x10 [ 99.848922][ T5831] ? rcu_is_watching+0x15/0xb0 [ 99.853698][ T5831] __schedule+0x348/0x4a60 [ 99.858136][ T5831] ? trace_irq_disable+0x3b/0x120 [ 99.863169][ T5831] ? preempt_schedule_irq+0x144/0x1c0 [ 99.868561][ T5831] ? __pfx_preempt_schedule_irq+0x10/0x10 [ 99.874292][ T5831] ? __pfx___schedule+0x10/0x10 [ 99.879155][ T5831] ? trace_irq_disable+0x2c/0x120 [ 99.884189][ T5831] ? rcu_is_watching+0x15/0xb0 [ 99.888971][ T5831] schedule+0x14b/0x320 [ 99.893152][ T5831] irqentry_exit_to_user_mode+0xe7/0x280 [ 99.898791][ T5831] asm_sysvec_reschedule_ipi+0x1a/0x20 [ 99.904262][ T5831] RIP: 0033:0x7f6b90775a19 [ 99.908693][ T5831] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 99.928308][ T5831] RSP: 002b:00007f6b91621048 EFLAGS: 00000246 [ 99.934382][ T5831] RAX: fffffffffffffffd RBX: 00007f6b90903f60 RCX: 00007f6b90775a19 [ 99.942371][ T5831] RDX: 0000000000000000 RSI: 000000008004b708 RDI: 0000000000000003 [ 99.950374][ T5831] RBP: 00007f6b907e4e49 R08: 0000000000000000 R09: 0000000000000000 [ 99.958352][ T5831] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 99.966328][ T5831] R13: 000000000000000b R14: 00007f6b90903f60 R15: 00007fff13ea64f8 [ 99.974313][ T5831] [ 99.977336][ T5831] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 99.984615][ T5831] CPU: 1 PID: 5831 Comm: syz.3.283 Not tainted 6.10.0-syzkaller-04472-g51835949dda3 #0 [ 99.994422][ T5831] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 100.004486][ T5831] Call Trace: [ 100.007772][ T5831] [ 100.010707][ T5831] dump_stack_lvl+0x241/0x360 [ 100.015406][ T5831] ? __pfx_dump_stack_lvl+0x10/0x10 [ 100.020609][ T5831] ? __pfx__printk+0x10/0x10 [ 100.025215][ T5831] ? vscnprintf+0x5d/0x90 [ 100.029575][ T5831] panic+0x349/0x860 [ 100.033483][ T5831] ? __warn+0x172/0x4e0 [ 100.037660][ T5831] ? __pfx_panic+0x10/0x10 [ 100.042092][ T5831] __warn+0x346/0x4e0 [ 100.046093][ T5831] ? rcu_note_context_switch+0xcf4/0xff0 [ 100.051751][ T5831] report_bug+0x2b3/0x500 [ 100.056099][ T5831] ? rcu_note_context_switch+0xcf4/0xff0 [ 100.061756][ T5831] handle_bug+0x3e/0x70 [ 100.066016][ T5831] exc_invalid_op+0x1a/0x50 [ 100.070535][ T5831] asm_exc_invalid_op+0x1a/0x20 [ 100.075399][ T5831] RIP: 0010:rcu_note_context_switch+0xcf4/0xff0 [ 100.081658][ T5831] Code: 00 ba 02 00 00 00 e8 cb 02 fe ff 4c 8b b4 24 80 00 00 00 eb 91 c6 05 98 3f 1b 0e 01 90 48 c7 c7 40 21 cc 8b e8 8d 26 db ff 90 <0f> 0b 90 90 e9 3b f4 ff ff 90 0f 0b 90 45 84 ed 0f 84 00 f4 ff ff [ 100.101285][ T5831] RSP: 0000:ffffc900130b7ba0 EFLAGS: 00010046 [ 100.107383][ T5831] RAX: f4dce7c7bdd09200 RBX: ffff88802496c044 RCX: 0000000000040000 [ 100.115368][ T5831] RDX: ffffc90009c23000 RSI: 0000000000010c76 RDI: 0000000000010c77 [ 100.123349][ T5831] RBP: ffffc900130b7cf0 R08: ffffffff815878a2 R09: 1ffff110172a519a [ 100.131335][ T5831] R10: dffffc0000000000 R11: ffffed10172a519b R12: ffff88802496bc00 [ 100.139324][ T5831] R13: 0000000000000000 R14: 1ffff92002616f8c R15: dffffc0000000000 [ 100.147401][ T5831] ? __warn_printk+0x292/0x360 [ 100.152195][ T5831] ? __schedule+0x1808/0x4a60 [ 100.156918][ T5831] ? irq_work_queue+0xd1/0x150 [ 100.161690][ T5831] ? __pfx_rcu_note_context_switch+0x10/0x10 [ 100.167724][ T5831] ? rcu_is_watching+0x15/0xb0 [ 100.172528][ T5831] __schedule+0x348/0x4a60 [ 100.177056][ T5831] ? trace_irq_disable+0x3b/0x120 [ 100.182090][ T5831] ? preempt_schedule_irq+0x144/0x1c0 [ 100.187483][ T5831] ? __pfx_preempt_schedule_irq+0x10/0x10 [ 100.193217][ T5831] ? __pfx___schedule+0x10/0x10 [ 100.198081][ T5831] ? trace_irq_disable+0x2c/0x120 [ 100.203127][ T5831] ? rcu_is_watching+0x15/0xb0 [ 100.207909][ T5831] schedule+0x14b/0x320 [ 100.212079][ T5831] irqentry_exit_to_user_mode+0xe7/0x280 [ 100.217753][ T5831] asm_sysvec_reschedule_ipi+0x1a/0x20 [ 100.223224][ T5831] RIP: 0033:0x7f6b90775a19 [ 100.227648][ T5831] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 100.247269][ T5831] RSP: 002b:00007f6b91621048 EFLAGS: 00000246 [ 100.253351][ T5831] RAX: fffffffffffffffd RBX: 00007f6b90903f60 RCX: 00007f6b90775a19 [ 100.261333][ T5831] RDX: 0000000000000000 RSI: 000000008004b708 RDI: 0000000000000003 [ 100.269319][ T5831] RBP: 00007f6b907e4e49 R08: 0000000000000000 R09: 0000000000000000 [ 100.277295][ T5831] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 100.285275][ T5831] R13: 000000000000000b R14: 00007f6b90903f60 R15: 00007fff13ea64f8 [ 100.293265][ T5831] [ 100.296625][ T5831] Kernel Offset: disabled [ 100.300979][ T5831] Rebooting in 86400 seconds..