Warning: Permanently added '10.128.1.151' (ED25519) to the list of known hosts. 2024/05/23 05:53:53 fuzzer started 2024/05/23 05:53:53 dialing manager at 10.128.0.169:30010 [ 56.822994][ T5088] cgroup: Unknown subsys name 'net' [ 56.972840][ T5088] cgroup: Unknown subsys name 'rlimit' 2024/05/23 05:53:55 starting 5 executor processes [ 58.155279][ T5091] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 58.170024][ T5091] syz-executor (5091) used greatest stack depth: 18424 bytes left [ 59.552159][ T53] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 59.572081][ T5115] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 59.580076][ T53] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 59.587880][ T53] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 59.598439][ T5119] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 59.598598][ T53] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 59.609431][ T5119] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 59.620768][ T5119] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 59.628847][ T53] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 59.629330][ T5119] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 59.644671][ T53] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 59.658655][ T53] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 59.663496][ T5119] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 59.677430][ T53] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 59.678341][ T5119] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 59.695544][ T5119] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 59.704661][ T5119] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 59.712364][ T5115] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 59.713008][ T5119] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 59.727870][ T5115] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 59.735957][ T5115] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 59.744801][ T5115] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 59.768918][ T5119] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 59.769930][ T5115] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 59.786081][ T5119] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 59.788157][ T5115] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 59.800807][ T5119] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 59.811813][ T5115] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 59.827319][ T5115] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 59.838626][ T5115] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 60.266424][ T5117] chnl_net:caif_netlink_parms(): no params data found [ 60.415612][ T5110] chnl_net:caif_netlink_parms(): no params data found [ 60.485230][ T5117] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.493023][ T5117] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.500724][ T5117] bridge_slave_0: entered allmulticast mode [ 60.507617][ T5117] bridge_slave_0: entered promiscuous mode [ 60.516375][ T5112] chnl_net:caif_netlink_parms(): no params data found [ 60.534501][ T5122] chnl_net:caif_netlink_parms(): no params data found [ 60.570793][ T5117] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.578036][ T5117] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.585210][ T5117] bridge_slave_1: entered allmulticast mode [ 60.592762][ T5117] bridge_slave_1: entered promiscuous mode [ 60.636134][ T5121] chnl_net:caif_netlink_parms(): no params data found [ 60.707378][ T5117] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 60.741160][ T5110] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.749366][ T5110] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.761915][ T5110] bridge_slave_0: entered allmulticast mode [ 60.770263][ T5110] bridge_slave_0: entered promiscuous mode [ 60.779332][ T5117] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 60.821245][ T5110] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.828490][ T5110] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.835622][ T5110] bridge_slave_1: entered allmulticast mode [ 60.842747][ T5110] bridge_slave_1: entered promiscuous mode [ 60.890019][ T5117] team0: Port device team_slave_0 added [ 60.902372][ T5117] team0: Port device team_slave_1 added [ 60.909483][ T5112] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.916584][ T5112] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.923824][ T5112] bridge_slave_0: entered allmulticast mode [ 60.931743][ T5112] bridge_slave_0: entered promiscuous mode [ 60.996554][ T5112] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.004028][ T5112] bridge0: port 2(bridge_slave_1) entered disabled state [ 61.011787][ T5112] bridge_slave_1: entered allmulticast mode [ 61.019387][ T5112] bridge_slave_1: entered promiscuous mode [ 61.038591][ T5110] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 61.065917][ T5122] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.073195][ T5122] bridge0: port 1(bridge_slave_0) entered disabled state [ 61.080913][ T5122] bridge_slave_0: entered allmulticast mode [ 61.087597][ T5122] bridge_slave_0: entered promiscuous mode [ 61.095930][ T5117] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 61.103012][ T5117] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 61.129997][ T5117] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 61.157655][ T5112] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 61.169534][ T5110] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 61.192358][ T5121] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.199950][ T5121] bridge0: port 1(bridge_slave_0) entered disabled state [ 61.207087][ T5121] bridge_slave_0: entered allmulticast mode [ 61.214389][ T5121] bridge_slave_0: entered promiscuous mode [ 61.221938][ T5122] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.229630][ T5122] bridge0: port 2(bridge_slave_1) entered disabled state [ 61.236890][ T5122] bridge_slave_1: entered allmulticast mode [ 61.243651][ T5122] bridge_slave_1: entered promiscuous mode [ 61.265196][ T5117] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 61.273478][ T5117] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 61.299570][ T5117] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 61.318919][ T5112] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 61.360722][ T5121] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.368486][ T5121] bridge0: port 2(bridge_slave_1) entered disabled state [ 61.375661][ T5121] bridge_slave_1: entered allmulticast mode [ 61.383367][ T5121] bridge_slave_1: entered promiscuous mode [ 61.406636][ T5122] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 61.421559][ T5122] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 61.495469][ T5117] hsr_slave_0: entered promiscuous mode [ 61.502332][ T5117] hsr_slave_1: entered promiscuous mode [ 61.512378][ T5112] team0: Port device team_slave_0 added [ 61.522569][ T5112] team0: Port device team_slave_1 added [ 61.530720][ T5110] team0: Port device team_slave_0 added [ 61.539626][ T5121] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 61.554501][ T5121] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 61.581029][ T5122] team0: Port device team_slave_0 added [ 61.610117][ T5110] team0: Port device team_slave_1 added [ 61.671496][ T5115] Bluetooth: hci0: command tx timeout [ 61.679784][ T5122] team0: Port device team_slave_1 added [ 61.693844][ T5112] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 61.701081][ T5112] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 61.727421][ T5112] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 61.740840][ T5112] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 61.755102][ T5112] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 61.755130][ T5115] Bluetooth: hci2: command tx timeout [ 61.789280][ T5112] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 61.789451][ T53] Bluetooth: hci1: command tx timeout [ 61.817183][ T5121] team0: Port device team_slave_0 added [ 61.828118][ T5115] Bluetooth: hci3: command tx timeout [ 61.851415][ T5122] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 61.861647][ T5122] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 61.888904][ T5122] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 61.905550][ T5122] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 61.913305][ T5122] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 61.918467][ T5115] Bluetooth: hci4: command tx timeout [ 61.945213][ T5122] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 61.956786][ T5110] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 61.964360][ T5110] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 61.990609][ T5110] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 62.003920][ T5110] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 62.010999][ T5110] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 62.038463][ T5110] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 62.054369][ T5121] team0: Port device team_slave_1 added [ 62.133198][ T5121] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 62.140927][ T5121] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 62.170069][ T5121] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 62.233826][ T5121] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 62.241620][ T5121] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 62.275081][ T5121] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 62.301241][ T5112] hsr_slave_0: entered promiscuous mode [ 62.307824][ T5112] hsr_slave_1: entered promiscuous mode [ 62.315199][ T5112] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 62.323535][ T5112] Cannot create hsr debugfs directory [ 62.344264][ T5122] hsr_slave_0: entered promiscuous mode [ 62.351305][ T5122] hsr_slave_1: entered promiscuous mode [ 62.357835][ T5122] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 62.365595][ T5122] Cannot create hsr debugfs directory [ 62.417088][ T5110] hsr_slave_0: entered promiscuous mode [ 62.424071][ T5110] hsr_slave_1: entered promiscuous mode [ 62.431092][ T5110] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 62.438986][ T5110] Cannot create hsr debugfs directory [ 62.527542][ T5121] hsr_slave_0: entered promiscuous mode [ 62.534593][ T5121] hsr_slave_1: entered promiscuous mode [ 62.541297][ T5121] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 62.548982][ T5121] Cannot create hsr debugfs directory [ 62.780406][ T5117] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 62.835689][ T5117] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 62.886164][ T5117] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 62.913949][ T5117] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 63.027301][ T5112] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 63.037473][ T5112] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 63.064448][ T5112] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 63.074435][ T5112] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 63.135404][ T5122] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 63.161067][ T5122] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 63.174274][ T5122] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 63.184179][ T5122] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 63.201408][ T5117] 8021q: adding VLAN 0 to HW filter on device bond0 [ 63.279623][ T5117] 8021q: adding VLAN 0 to HW filter on device team0 [ 63.302305][ T5121] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 63.314148][ T5121] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 63.323912][ T5121] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 63.334049][ T5121] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 63.377508][ T58] bridge0: port 1(bridge_slave_0) entered blocking state [ 63.385007][ T58] bridge0: port 1(bridge_slave_0) entered forwarding state [ 63.465236][ T5110] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 63.475086][ T5110] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 63.501797][ T58] bridge0: port 2(bridge_slave_1) entered blocking state [ 63.508925][ T58] bridge0: port 2(bridge_slave_1) entered forwarding state [ 63.529487][ T5110] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 63.541470][ T5110] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 63.707469][ T5112] 8021q: adding VLAN 0 to HW filter on device bond0 [ 63.759506][ T5115] Bluetooth: hci0: command tx timeout [ 63.773170][ T5122] 8021q: adding VLAN 0 to HW filter on device bond0 [ 63.815305][ T5112] 8021q: adding VLAN 0 to HW filter on device team0 [ 63.829144][ T53] Bluetooth: hci1: command tx timeout [ 63.834825][ T5115] Bluetooth: hci2: command tx timeout [ 63.856506][ T58] bridge0: port 1(bridge_slave_0) entered blocking state [ 63.865569][ T58] bridge0: port 1(bridge_slave_0) entered forwarding state [ 63.883768][ T5121] 8021q: adding VLAN 0 to HW filter on device bond0 [ 63.906207][ T58] bridge0: port 2(bridge_slave_1) entered blocking state [ 63.913419][ T58] bridge0: port 2(bridge_slave_1) entered forwarding state [ 63.923061][ T5115] Bluetooth: hci3: command tx timeout [ 63.951187][ T5121] 8021q: adding VLAN 0 to HW filter on device team0 [ 63.962171][ T5122] 8021q: adding VLAN 0 to HW filter on device team0 [ 63.988528][ T5115] Bluetooth: hci4: command tx timeout [ 64.019841][ T5159] bridge0: port 1(bridge_slave_0) entered blocking state [ 64.027083][ T5159] bridge0: port 1(bridge_slave_0) entered forwarding state [ 64.059496][ T5159] bridge0: port 1(bridge_slave_0) entered blocking state [ 64.067167][ T5159] bridge0: port 1(bridge_slave_0) entered forwarding state [ 64.084570][ T5159] bridge0: port 2(bridge_slave_1) entered blocking state [ 64.092333][ T5159] bridge0: port 2(bridge_slave_1) entered forwarding state [ 64.110594][ T5110] 8021q: adding VLAN 0 to HW filter on device bond0 [ 64.161349][ T5159] bridge0: port 2(bridge_slave_1) entered blocking state [ 64.168582][ T5159] bridge0: port 2(bridge_slave_1) entered forwarding state [ 64.201600][ T5117] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 64.226340][ T5110] 8021q: adding VLAN 0 to HW filter on device team0 [ 64.280919][ T5161] bridge0: port 1(bridge_slave_0) entered blocking state [ 64.288130][ T5161] bridge0: port 1(bridge_slave_0) entered forwarding state [ 64.297077][ T5161] bridge0: port 2(bridge_slave_1) entered blocking state [ 64.304219][ T5161] bridge0: port 2(bridge_slave_1) entered forwarding state [ 64.484337][ T5117] veth0_vlan: entered promiscuous mode [ 64.560482][ T5117] veth1_vlan: entered promiscuous mode [ 64.626393][ T5110] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 64.683389][ T5112] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 64.701627][ T5121] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 64.753034][ T5117] veth0_macvtap: entered promiscuous mode [ 64.804007][ T5117] veth1_macvtap: entered promiscuous mode [ 64.911454][ T5121] veth0_vlan: entered promiscuous mode [ 64.922862][ T5117] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 64.940292][ T5112] veth0_vlan: entered promiscuous mode [ 64.961218][ T5117] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 64.984307][ T5112] veth1_vlan: entered promiscuous mode [ 64.995096][ T5117] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.007026][ T5117] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.016622][ T5117] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.025756][ T5117] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.070560][ T5121] veth1_vlan: entered promiscuous mode [ 65.097528][ T5122] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 65.121220][ T5112] veth0_macvtap: entered promiscuous mode [ 65.183652][ T5110] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 65.201644][ T5112] veth1_macvtap: entered promiscuous mode [ 65.293380][ T5121] veth0_macvtap: entered promiscuous mode [ 65.311900][ T5161] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 65.333727][ T5122] veth0_vlan: entered promiscuous mode [ 65.347117][ T5161] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 65.386455][ T5121] veth1_macvtap: entered promiscuous mode [ 65.409696][ T5112] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 65.422805][ T5112] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 65.437442][ T5112] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 65.461739][ T5112] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 65.477529][ T5112] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 65.490376][ T5112] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 65.524333][ T5122] veth1_vlan: entered promiscuous mode [ 65.545013][ T58] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 65.551010][ T5121] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 65.563370][ T58] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 65.572600][ T5121] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 65.584037][ T5121] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 65.595869][ T5121] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 65.607674][ T5121] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 65.617733][ T5112] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.628521][ T5112] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.643063][ T5112] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.657200][ T5112] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.683153][ T5121] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 65.694812][ T5121] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 65.705083][ T5121] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 65.715651][ T5121] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 65.729503][ T5121] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 65.779970][ T5121] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.790946][ T5121] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.802799][ T5121] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.811753][ T5121] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000001840), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r1, &(0x7f00000019c0)={0x0, 0x0, &(0x7f0000001980)={&(0x7f0000001880)={0x84, r2, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe, 0x8e}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}, {0x5}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}, {0x5}}]}, 0x84}}, 0x0) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f0000000700)) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_PIT(r3, 0x8048ae66, &(0x7f00000000c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x7, 0x0, 0x8}, {0x3fe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000180)="66ba4300b006ee0f01c40f009b27000000b9800000c00f3235008000000f30b80e0000000f23d80f21f835800000a00f23f8c9b9490300000f60b932c00a000000328fe858b660002fb90d090000b800680000ba000000000f30", 0x5a}], 0x1, 0x60, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = openat$full(0xffffffffffffff9c, &(0x7f0000001900), 0x88102, 0x0) write$FUSE_NOTIFY_POLL(r5, 0x0, 0x0) ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000680)=0x20) setsockopt$inet6_tcp_TCP_MD5SIG(r5, 0x6, 0xe, &(0x7f0000000000)={@in6={{0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x1}}, 0x0, 0x0, 0x0, 0x0, "6970db5e1a5e59ab54053861b182c1aa5bfa09d21b699379ab04eb29ee95bfd4aa2e83662eefcca878e3677208de36650006bfdf10d35ddf3148573cbc274287f6f94c55fc2a25f51f91b69e87873ea1"}, 0xd8) ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000100)=0x2) ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000080)=0x7) ioctl$TIOCVHANGUP(r6, 0x5437, 0x0) [ 65.839491][ T5115] Bluetooth: hci0: command tx timeout [ 65.891548][ T5122] veth0_macvtap: entered promiscuous mode [ 65.908316][ T53] Bluetooth: hci1: command tx timeout [ 65.913840][ T5115] Bluetooth: hci2: command tx timeout [ 65.924198][ T5122] veth1_macvtap: entered promiscuous mode [ 65.959895][ T5193] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 65.998797][ T5115] Bluetooth: hci3: command tx timeout [ 66.060754][ T5122] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 66.072612][ T5115] Bluetooth: hci4: command tx timeout [ 66.077063][ T1084] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 66.079971][ T5122] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 66.098987][ T5122] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 66.110805][ T5122] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 66.114984][ T1084] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 66.120643][ T5122] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 66.120671][ T5122] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 66.122499][ T5122] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 66.167376][ T5110] veth0_vlan: entered promiscuous mode [ 66.186751][ T5122] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 66.201473][ T5122] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 66.211720][ T5122] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 66.223192][ T5122] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 66.234307][ T5122] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 66.244963][ T5122] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 66.263491][ T5122] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 66.284977][ T5110] veth1_vlan: entered promiscuous mode [ 66.309286][ T5122] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 66.326038][ T5122] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 66.335699][ T5122] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 66.347825][ T5122] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 66.377357][ T5191] sp0: Synchronizing with TNC [ 66.436845][ T51] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 66.450552][ T51] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240), &(0x7f0000000280)=0x5) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x300001a, &(0x7f0000000500)=ANY=[], 0x1, 0x2b6, &(0x7f00000000c0)="$eJzs3UFrY1UUAODz0jSNukgRN4qLB7pwVaZu3bTKCGJXSgR1ocXpgCRhIIWAI5iZ1fwCl/4Pf4IbN/4Dwa3gri6qV17ee01iX9PS1hT1+1an995z73nvQrrKyeevjgYPHmXx9OTn6HazaO3FXvyZxXa0ovYk2nFe0xgA8G/we0rxW7pOZrt1+9UAAOtQ/v8v3XUtAMB6fPjxJ+/vHxzc/yDPu/Fy79mkn0XE6NmkX87vP4wvYxhHcS96cRqRzpTxu+8d3I92XtiO10fTSb/IHH32Y7X//q8Rs/zd6MV2c/5uXlrIn076m/F85LH/cLMutRcvNee/2ZAf/U688dpC/TvRi5++iEcxjAdR5M7zv9nN83fStydff1ocU+RnrehvzdbNpY113gsAAAAAAAAAAAAAAAAAAAAAAP9tO3mele17Zv17iqGq/87G6Wx+J69tL/fnKfOzeqOyP1CKqkXPNMV3dX+de3mep2rhPL8dr7T9iAAAAAAAAAAAAAAAAAAAAAAUjr96PDgcDo/GtxLU3QDqr/Vfd5+9+cjWUrkNi7euftZit4Gi1pWLo92O1RuepNLlz9WqD21e89zFUzcItuaX+1GUQX0xN9o5/e2Fv/h2+ffjwWFeralf8uAwu+ysbr3P94tTnbjpS0izCk/T8p12z0pdzurc0pvvvNA49UdK6Wr7vPVLeUfVSDZrsXG10zeroPEBi6B7/i5+uHjDCz8yNq75UQMAAAAAAAAAAAAAAAAAAFyi/K7vk6PxccPk05WprX+sKAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABYs/L3/4dH47OgGxHLI+eCaZW8ak0VdGJ8fMePCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwP/AXwEAAP//wZJM4A==") syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x200002, &(0x7f0000000000)={[{@norecovery}, {@dioread_nolock}, {@jqfmt_vfsv0}, {@orlov}, {@jqfmt_vfsv0}, {@usrjquota, 0x2e}], [], 0x2c}, 0x0, 0x452, &(0x7f0000000480)="$eJzs20tvG1UUAOAz46bvklDKow/AUBARj6RJC3TBBgRSN0hIsCjLkKZVqdugJki0qmhAqCxRfwGwROIXsIINAlYgtrBHSBXqhsICDRp7nBrHDnbs1Gn9fdIk986Mfc/xzLXvzLUDGFrl/E8SsTMifomI0YgoNe9Qrv27cf3S7F/XL80mkWWv/5HkD4s/r1+are+aFP93FJXxNCL9KIn9LdpduHDxzEylMne+qE8unn1ncuHCxWdOn505NXdq7tz00aNHDk89/9z0s33Jc1ce67735w/sPfbm1Vdnj1996/sv83h3Ftsb86gZ67nNcpSXX5Nmj/f87BvLroZysmmAgdCVvK/nh2uk2v9HoxQ3D95ovPLhQIMD1lWWZdmWFWuXRwBLGXAHS2LQEQCDUf+gz69/68stHH4M3LUXaxdAed43iqW2ZVOkxT4jTde3/VSOiONLf3+aL9HyPgQAQH99nY9/nm41/kvjvob97irmhsYi4u6I2B0R90TEnoi4N6K67/0R8UCX7Zeb6ivHPz9tW1NiHcrHfy8Uc1v/Hf/VR38xVipqu6r5jyQnT1fmDhWvyXiMbMnrU6u08c3LP3/Sblvj+C9f8vbrY8Eijt83Nd2gOzGzONNLzo2ufVC9B3h5Zf7J8kxAEhF7I2LfGp5/a0ScfvKLA+22/3/+q+jDPFP2ecQTteO/FE351yWrz09Obo3K3KHJ+lmx0g8/XnmtXfs95d8H+fHf3vL8X85/LGmcr13ovo0rv37c9ppmref/5uSNanlzse69mcXF81MRm5Olleunbz62Xq/vn+c/frB1/98d8c9nxeP2R0R+Ej8YEQ9FxMNF7I9ExKMRcXCV/L976bG3157/+srzP9HV8e++UDrz7Vft2u/s+B+plsaLNZ28/3UaYC+vHQAAANwu0up34JN0YrmcphMTte/w74ntaWV+YfGpk/PvnjtR+678WIyk9Ttdow33Q6eKe8P1+nRT/XD1vnGWZdm2an1idr6yXnPqQGd2tOn/ud9Kg44OWHddzaO1+0UbcFvye00YXvo/DC/9H4aX/g/Dq1X/vxxxYwChALeYz38YXvo/DC/9H4aX/g9DqZff9a9W2H1svZ75TiuUNkYYXRci3RBhrK2QbowwaoUtEdHpzpfjVgU26HcmAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA/vg3AAD//zLQ7Dk=") mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1) mknod(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f00000011c0)={'vxcan0\x00', 0x0}) bind$can_j1939(0xffffffffffffffff, &(0x7f0000001200)={0x1d, r1}, 0x19) connect$can_j1939(0xffffffffffffffff, &(0x7f0000000080)={0x1d, r1}, 0x18) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000fc0)={0xffffffffffffffff, 0xe0, &(0x7f0000000ec0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, &(0x7f0000000d00)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x1, 0x5, &(0x7f0000000d40)=[0x0], &(0x7f0000000d80)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0xb4, &(0x7f0000000dc0)=[{}, {}, {}], 0x18, 0x10, &(0x7f0000000e00), &(0x7f0000000e40), 0x8, 0xcc, 0x8, 0x8, &(0x7f0000000e80)}}, 0x10) sendmmsg$inet(r0, &(0x7f0000001180)=[{{&(0x7f0000000000)={0x2, 0x4e21, @loopback}, 0x10, &(0x7f0000000c40)=[{&(0x7f0000000100)="093b710a2fc63a519381d994d42ed7915a9cd1e79ecbc0807918cd6e3c0b409495ddf812d1a1f46ac248038768270aea057bc6d85e45de735e5f066efbbaf828db065f45afa518a35264703028eaf30d167486785fe91dd6c850d6f7ab597cac7ec9790f199d91bb02a3fcd8bbd570fe9c95c6db276aae98eec26638b9f4464e0ea952e64f82e620dc8611e95754e2152f3efe20f0cbe0fad010242907aacba9a897af49a40f58", 0xa7}, {&(0x7f00000002c0)="a31eb6bf3b79244417cfadb7316fbe23b7d1f373d6b7c7f2ffed94800dc48aeee1f0379d7bb3137ad1a34be3d6bf0357056db4ab5cafac43eed98e0a7435b72c1c1b664d7c799b18647a888ca4b9efc7f6563dfcc8d97a13e69d93ce7f8859deff1c7c2d9eaba4a8133f54657cc10c529f36803b3576a627e8b46449967140c24f0a90175d471ce00ebbd7d3bf62f60a8fb8b67a59eb1805d81789838ce9b8fd7df311b785eb67917a8c24c5ee3014c2ea763bd9be01048507c9807b1d113e077edf5a6fe1c1b3f929a03c", 0xcb}, {&(0x7f00000001c0)="6fe5fb489729721515a70ee7c7309c363161228eb66f438f9a9726fdfc45701802c531c01cd8f3e5d2278f3514f909e40693b3b4fba9d4f5ac2928cb9f9f16bc4c91343ce6aebab14168", 0x4a}, {&(0x7f00000003c0)="a41b3b0114a62875cb9754716c7115a4cdb6b31f54e935721fe11f771098d75f19ae114be4cab3517e9ded2dc1e14cabc2513a4eb048e6ae0330cedb348cb7f1f41e09210fa14d08672b0dea885f83df818e3df56d2f57404f2f49176b32dd2085bb527ceffbf882115042e210be69b22ab37007aa8af6bdba21757742e6bf3c6f1b6205c9cf81699e358ac850f5cb86b1293867e36347a4b45e8e26d99baa525f1682b1ee56bfa5136a189dd66da69541fc96290c76bbea9b03769fab0cfb4231859392736d636fa2147890db7f6c2ca5a3", 0xd2}, {&(0x7f0000000040)}, {&(0x7f0000000a00)="af971f95fadcd6a215e8c27c72f55aab10e50a59589fef1f31cfd135dc8b5e0e775652bf26384169305a1860496aef1256ac5647074404f6813c0afd674d601dbb19a5fec453c0978a", 0x49}, {&(0x7f0000000a80)="313d418a5534105d763089a240147e216f0dd15e1c274585dd0a855b0318a006f2ceffa5e97c5412f2033a6e2364dd2cd9e194c1df1ff200ea76", 0x3a}, {&(0x7f0000000ac0)="46192bd75d67f5bb0243c3e80f7dc1f745bfa9825dafa4dfc1fc86d1e94c7426606b9d23c5f1443a33bc8ddbbc6f4ce0280b2afb1f0d7d3277af9dafee899a0539821666ffdf74426002373a18f00fcf2123d55025d7fbdb891140858ad2ef2bb23c59791606d248e21f57ad67e4ce01937b9d212b23dec88d2d7e69f308f0b98e5cf8132ae1d5ce9bffb01086009b9145fd8567e930336911ea906122206a3c430dd9b3bce5cdef39094ce8c7755b3a7acafe5b910119856bc2fe56ef0b3592b76e6b1ff604cf604ab33c25c14f0508a3ef586cf15a197e3a0738edac4582ac241a12d524087b3211d46eada9", 0xed}, {&(0x7f0000000bc0)="c065323a2fb5ae609bbebdef7fd5de8a5e65f1d302565f5834905f71ff1ac1baa0656d150dd086d6db7a535cc06e976f0890a37335ae2d41cceebe671d940fc661ae1ce60974f474080ef01992ae646aea491bcb492874a83f6138fc32ce0b28432fef46bd402ea48c776e69183976cb21", 0x71}], 0x9, &(0x7f0000001000)=[@ip_tos_int={{0x14, 0x0, 0x1, 0xfffffff9}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r1, @dev={0xac, 0x14, 0x14, 0x44}, @loopback}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r2, @remote, @broadcast}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x1}}, @ip_retopts={{0x7c, 0x0, 0x7, {[@noop, @cipso={0x86, 0x6a, 0x3, [{0x6, 0x11, "227c238f004cb275bf2414a85b417a"}, {0x7, 0xb, "6646c0f0ebd62d4782"}, {0x7, 0xb, "fa0ea6728fbd5cefe2"}, {0x1, 0xc, "69e1bce9fac70bdc5ec6"}, {0x0, 0xd, "2399fc90e3c1e897c341e8"}, {0x1, 0x7, "4fc02424a6"}, {0x5, 0xa, "060a50b6270b4fd5"}, {0x0, 0x6, "d33d22e9"}, {0x6, 0xd, "353b5a9cb07428b618e5e3"}]}]}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x9}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x6}}, @ip_ttl={{0x14, 0x0, 0x2, 0x1000}}, @ip_ttl={{0x14, 0x0, 0x2, 0xd44}}], 0x150}}], 0x1, 0x1) unshare(0x2c020400) msgsnd(0x0, &(0x7f0000000280)={0x1}, 0x8, 0x0) msgrcv(0x0, 0x0, 0x0, 0xeaffffff00000000, 0x0) [ 66.572666][ T51] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000001840), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r1, &(0x7f00000019c0)={0x0, 0x0, &(0x7f0000001980)={&(0x7f0000001880)={0x84, r2, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe, 0x8e}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}, {0x5}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}, {0x5}}]}, 0x84}}, 0x0) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f0000000700)) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_PIT(r3, 0x8048ae66, &(0x7f00000000c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x7, 0x0, 0x8}, {0x3fe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000180)="66ba4300b006ee0f01c40f009b27000000b9800000c00f3235008000000f30b80e0000000f23d80f21f835800000a00f23f8c9b9490300000f60b932c00a000000328fe858b660002fb90d090000b800680000ba000000000f30", 0x5a}], 0x1, 0x60, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = openat$full(0xffffffffffffff9c, &(0x7f0000001900), 0x88102, 0x0) write$FUSE_NOTIFY_POLL(r5, 0x0, 0x0) ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000680)=0x20) r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000100)=0x2) ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000080)=0x7) ioctl$TIOCVHANGUP(r6, 0x5437, 0x0) [ 66.616320][ T5198] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 66.627965][ T51] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 66.634434][ T5110] veth0_macvtap: entered promiscuous mode [ 66.692742][ T5198] loop0: detected capacity change from 0 to 256 [ 66.732309][ T5110] veth1_macvtap: entered promiscuous mode executing program 0: ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'sit0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x32, 0x4, 0x0, 0x0, 0xc8, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast, @remote, {[@timestamp={0x44, 0x1c, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @timestamp_prespec={0x44, 0x3c, 0x0, 0x3, 0x0, [{@multicast1}, {@remote}, {@dev}, {@broadcast}, {@empty}, {@multicast1}, {@private}]}, @timestamp_prespec={0x44, 0x34, 0x0, 0x3, 0x0, [{@dev}, {@remote}, {@multicast2}, {@private}, {}, {@broadcast}]}, @noop, @noop, @noop, @lsrr={0x83, 0xf, 0x0, [@private, @rand_addr, @multicast1]}, @rr={0x7, 0x13, 0x0, [@dev, @remote, @multicast1, @empty]}]}}}}}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e20}, 0x1c) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x0) [ 66.777354][ T5162] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 66.814560][ T5162] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 66.845693][ T51] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 66.868775][ T51] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 66.900680][ T5110] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 66.911688][ T5110] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 66.938097][ T5110] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 66.958321][ T5110] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 66.988013][ T5110] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 67.000198][ T5110] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 67.010448][ T5110] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 67.021403][ T5110] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 67.079029][ T5110] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 67.087598][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 67.091018][ T5110] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 67.103367][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 67.128913][ T5110] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 67.149078][ T5110] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 67.183392][ T5110] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 67.212230][ T5110] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 67.228937][ T5110] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 67.240455][ T5110] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 67.264068][ T5110] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 67.283948][ T5207] kvm: emulating exchange as write [ 67.306130][ T5110] batman_adv: batadv0: Interface activated: batadv_slave_1 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000001840), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r1, &(0x7f00000019c0)={0x0, 0x0, &(0x7f0000001980)={&(0x7f0000001880)={0x84, r2, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe, 0x8e}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}, {0x5}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}, {0x5}}]}, 0x84}}, 0x0) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f0000000700)) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_PIT(r3, 0x8048ae66, &(0x7f00000000c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x7, 0x0, 0x8}, {0x3fe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000180)="66ba4300b006ee0f01c40f009b27000000b9800000c00f3235008000000f30b80e0000000f23d80f21f835800000a00f23f8c9b9490300000f60b932c00a000000328fe858b660002fb90d090000b800680000ba000000000f30", 0x5a}], 0x1, 0x60, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = openat$full(0xffffffffffffff9c, &(0x7f0000001900), 0x88102, 0x0) write$FUSE_NOTIFY_POLL(r5, 0x0, 0x0) ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000680)=0x20) setsockopt$inet6_tcp_TCP_MD5SIG(r5, 0x6, 0xe, &(0x7f0000000000)={@in6={{0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x1}}, 0x0, 0x0, 0x0, 0x0, "6970db5e1a5e59ab54053861b182c1aa5bfa09d21b699379ab04eb29ee95bfd4aa2e83662eefcca878e3677208de36650006bfdf10d35ddf3148573cbc274287f6f94c55fc2a25f51f91b69e87873ea1"}, 0xd8) r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000100)=0x2) ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000080)=0x7) ioctl$TIOCVHANGUP(r6, 0x5437, 0x0) [ 67.357550][ T5201] sp0: Synchronizing with TNC [ 67.370858][ T5110] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.399164][ T5110] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.413096][ T5110] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.422373][ T5110] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.449779][ T5209] netlink: 'syz-executor.3': attribute type 142 has an invalid length. executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000001840), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r1, &(0x7f00000019c0)={0x0, 0x0, &(0x7f0000001980)={&(0x7f0000001880)={0x84, r2, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe, 0x8e}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}, {0x5}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}, {0x5}}]}, 0x84}}, 0x0) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f0000000700)) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_PIT(r3, 0x8048ae66, &(0x7f00000000c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x7, 0x0, 0x8}, {0x3fe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000180)="66ba4300b006ee0f01c40f009b27000000b9800000c00f3235008000000f30b80e0000000f23d80f21f835800000a00f23f8c9b9490300000f60b932c00a000000328fe858b660002fb90d090000b800680000ba000000000f30", 0x5a}], 0x1, 0x60, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = openat$full(0xffffffffffffff9c, &(0x7f0000001900), 0x88102, 0x0) write$FUSE_NOTIFY_POLL(r5, 0x0, 0x0) ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000680)=0x20) setsockopt$inet6_tcp_TCP_MD5SIG(r5, 0x6, 0xe, &(0x7f0000000000)={@in6={{0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x1}}, 0x0, 0x0, 0x0, 0x0, "6970db5e1a5e59ab54053861b182c1aa5bfa09d21b699379ab04eb29ee95bfd4aa2e83662eefcca878e3677208de36650006bfdf10d35ddf3148573cbc274287f6f94c55fc2a25f51f91b69e87873ea1"}, 0xd8) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CAP_DISABLE_QUIRKS(r6, 0x4068aea3, &(0x7f00000001c0)={0x74, 0x0, 0x18}) r7 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r7, 0x5423, &(0x7f0000000100)=0x2) ioctl$TIOCVHANGUP(r7, 0x5437, 0x0) executing program 0: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.current\x00', 0x275a, 0x0) socket$inet6_mptcp(0xa, 0x1, 0x106) socket$netlink(0x10, 0x3, 0x0) openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x4488c8}}, 0x50) creat(&(0x7f0000000340)='./file0\x00', 0x0) syz_fuse_handle_req(r0, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) close(r0) syz_open_dev$tty20(0xc, 0x4, 0x0) openat$nullb(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) unshare(0x8000400) pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f0000000040)={0x3ff}, 0x0, 0x0) executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000001840), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r1, &(0x7f00000019c0)={0x0, 0x0, &(0x7f0000001980)={&(0x7f0000001880)={0x84, r2, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe, 0x8e}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}, {0x5}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}, {0x5}}]}, 0x84}}, 0x0) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f0000000700)) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_PIT(r3, 0x8048ae66, &(0x7f00000000c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x7, 0x0, 0x8}, {0x3fe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000100)=0x2) ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000080)=0x7) ioctl$TIOCVHANGUP(r5, 0x5437, 0x0) [ 67.797491][ T5161] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 67.807144][ T5209] sp0: Synchronizing with TNC [ 67.814977][ T5161] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 67.909472][ T5115] Bluetooth: hci0: command tx timeout [ 67.990177][ T5115] Bluetooth: hci2: command tx timeout [ 67.995661][ T5115] Bluetooth: hci1: command tx timeout [ 68.009402][ T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 68.027777][ T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 68.068696][ T5115] Bluetooth: hci3: command tx timeout [ 68.121691][ T5215] sp0: Synchronizing with TNC [ 68.122600][ T5215] ------------[ cut here ]------------ [ 68.122856][ T5215] WARNING: CPU: 0 PID: 5215 at drivers/tty/serial/serial_core.c:625 uart_write+0x2b0/0x320 [ 68.122986][ T5215] Modules linked in: [ 68.123025][ T5215] CPU: 0 PID: 5215 Comm: syz-executor.1 Not tainted 6.9.0-next-20240521-syzkaller #0 [ 68.123085][ T5215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 68.123122][ T5215] RIP: 0010:uart_write+0x2b0/0x320 [ 68.123203][ T5215] Code: 74 08 48 89 df e8 c0 5e bf fc 48 83 3b 00 74 74 e8 55 7a 59 fc eb 97 e8 4e 7a 59 fc 45 31 e4 eb 08 e8 44 7a 59 fc 45 31 ed 90 <0f> 0b 90 45 84 e4 74 0a e8 33 7a 59 fc 45 31 f6 eb 84 e8 29 7a 59 [ 68.123242][ T5215] RSP: 0018:ffffc900047874b8 EFLAGS: 00010046 [ 68.123259][ T5215] RAX: ffffffff853ceb62 RBX: dffffc0000000000 RCX: 0000000000040000 [ 68.123274][ T5215] RDX: ffffc9000a14b000 RSI: 000000000001b0ec RDI: 000000000001b0ed [ 68.123287][ T5215] RBP: ffff888020728f48 R08: 0000000000000003 R09: fffff520008f0e74 [ 68.123300][ T5215] R10: dffffc0000000000 R11: fffff520008f0e74 R12: 0000000000000000 [ 68.123313][ T5215] R13: 0000000000000246 R14: ffff888020728be8 R15: ffffffff94adece0 [ 68.123328][ T5215] FS: 00007f53ae0446c0(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000 [ 68.123344][ T5215] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 68.123372][ T5215] CR2: 00007f1488dbcc98 CR3: 0000000079a6e000 CR4: 00000000003526f0 [ 68.123424][ T5215] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 68.123447][ T5215] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 68.123483][ T5215] Call Trace: [ 68.123507][ T5215] [ 68.123534][ T5215] ? __warn+0x163/0x4e0 [ 68.123609][ T5215] ? uart_write+0x2b0/0x320 [ 68.123697][ T5215] ? report_bug+0x2b3/0x500 [ 68.123787][ T5215] ? uart_write+0x2b0/0x320 [ 68.123879][ T5215] ? handle_bug+0x3e/0x70 [ 68.123910][ T5215] ? exc_invalid_op+0x1a/0x50 [ 68.123931][ T5215] ? asm_exc_invalid_op+0x1a/0x20 [ 68.123975][ T5215] ? uart_write+0x2a2/0x320 [ 68.124002][ T5215] ? uart_write+0x2b0/0x320 [ 68.124076][ T5215] ? uart_write+0x2a2/0x320 [ 68.124167][ T5215] sixpack_open+0x790/0xa80 [ 68.124261][ T5215] ? __pfx_sixpack_open+0x10/0x10 [ 68.124358][ T5215] tty_ldisc_reinit+0x2d4/0x4a0 [ 68.124393][ T5215] tty_reopen+0x20b/0x2d0 [ 68.124416][ T5215] tty_open+0xa26/0xdf0 [ 68.124442][ T5215] ? kobject_get_unless_zero+0x22d/0x330 [ 68.124467][ T5215] ? __pfx_tty_open+0x10/0x10 [ 68.124500][ T5215] ? do_raw_spin_unlock+0x13c/0x8b0 [ 68.124592][ T5215] ? module_put+0x13a/0x2d0 [ 68.124682][ T5215] chrdev_open+0x5b0/0x630 [ 68.124771][ T5215] ? __pfx_chrdev_open+0x10/0x10 [ 68.124867][ T5215] ? security_file_open+0x5bc/0x730 [ 68.124924][ T5215] ? __pfx_chrdev_open+0x10/0x10 [ 68.125021][ T5215] do_dentry_open+0x95a/0x1720 [ 68.125063][ T5215] path_openat+0x289f/0x3280 [ 68.125093][ T5215] ? mark_lock+0x9a/0x350 [ 68.125125][ T5215] ? mark_lock+0x9a/0x350 [ 68.125213][ T5215] ? __pfx_path_openat+0x10/0x10 [ 68.125345][ T5215] do_filp_open+0x235/0x490 [ 68.125419][ T5215] ? __pfx_do_filp_open+0x10/0x10 [ 68.125492][ T5215] ? _raw_spin_unlock+0x28/0x50 [ 68.125513][ T5215] ? alloc_fd+0x59d/0x640 [ 68.125545][ T5215] do_sys_openat2+0x13e/0x1d0 [ 68.125564][ T5215] ? __might_fault+0xaa/0x120 [ 68.125584][ T5215] ? __pfx_do_sys_openat2+0x10/0x10 [ 68.125614][ T5215] ? rcu_is_watching+0x15/0xb0 [ 68.125685][ T5215] ? __rseq_handle_notify_resume+0x353/0x14e0 [ 68.125793][ T5215] __x64_sys_openat+0x247/0x2a0 [ 68.125865][ T5215] ? __pfx___x64_sys_openat+0x10/0x10 [ 68.125940][ T5215] ? do_syscall_64+0x102/0x240 [ 68.126029][ T5215] ? do_syscall_64+0xb6/0x240 [ 68.126102][ T5215] do_syscall_64+0xf5/0x240 [ 68.126220][ T5215] ? clear_bhb_loop+0x35/0x90 [ 68.126270][ T5215] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 68.126295][ T5215] RIP: 0033:0x7f53ad27cee9 [ 68.126317][ T5215] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 68.126333][ T5215] RSP: 002b:00007f53ae0440c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 68.126355][ T5215] RAX: ffffffffffffffda RBX: 00007f53ad3ac050 RCX: 00007f53ad27cee9 [ 68.126368][ T5215] RDX: 0000000000000000 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 68.126381][ T5215] RBP: 00007f53ad2c949e R08: 0000000000000000 R09: 0000000000000000 [ 68.126396][ T5215] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 68.126409][ T5215] R13: 000000000000006e R14: 00007f53ad3ac050 R15: 00007ffc05d3f0d8 [ 68.126437][ T5215] [ 68.126449][ T5215] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 68.126459][ T5215] CPU: 0 PID: 5215 Comm: syz-executor.1 Not tainted 6.9.0-next-20240521-syzkaller #0 [ 68.126515][ T5215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 68.126549][ T5215] Call Trace: [ 68.126575][ T5215] [ 68.126601][ T5215] dump_stack_lvl+0x241/0x360 [ 68.126634][ T5215] ? __pfx_dump_stack_lvl+0x10/0x10 [ 68.126656][ T5215] ? __pfx__printk+0x10/0x10 [ 68.126673][ T5215] ? _printk+0xd5/0x120 [ 68.126699][ T5215] ? vscnprintf+0x5d/0x90 [ 68.126724][ T5215] panic+0x349/0x860 [ 68.126758][ T5215] ? __warn+0x172/0x4e0 [ 68.126842][ T5215] ? __pfx_panic+0x10/0x10 [ 68.126925][ T5215] ? show_trace_log_lvl+0x4e6/0x520 [ 68.127077][ T5215] __warn+0x346/0x4e0 [ 68.127151][ T5215] ? uart_write+0x2b0/0x320 [ 68.127240][ T5215] report_bug+0x2b3/0x500 [ 68.127317][ T5215] ? uart_write+0x2b0/0x320 [ 68.127393][ T5215] handle_bug+0x3e/0x70 [ 68.127451][ T5215] exc_invalid_op+0x1a/0x50 [ 68.127471][ T5215] asm_exc_invalid_op+0x1a/0x20 [ 68.127490][ T5215] RIP: 0010:uart_write+0x2b0/0x320 [ 68.127514][ T5215] Code: 74 08 48 89 df e8 c0 5e bf fc 48 83 3b 00 74 74 e8 55 7a 59 fc eb 97 e8 4e 7a 59 fc 45 31 e4 eb 08 e8 44 7a 59 fc 45 31 ed 90 <0f> 0b 90 45 84 e4 74 0a e8 33 7a 59 fc 45 31 f6 eb 84 e8 29 7a 59 [ 68.127530][ T5215] RSP: 0018:ffffc900047874b8 EFLAGS: 00010046 [ 68.127548][ T5215] RAX: ffffffff853ceb62 RBX: dffffc0000000000 RCX: 0000000000040000 [ 68.127564][ T5215] RDX: ffffc9000a14b000 RSI: 000000000001b0ec RDI: 000000000001b0ed [ 68.127595][ T5215] RBP: ffff888020728f48 R08: 0000000000000003 R09: fffff520008f0e74 [ 68.127637][ T5215] R10: dffffc0000000000 R11: fffff520008f0e74 R12: 0000000000000000 [ 68.127680][ T5215] R13: 0000000000000246 R14: ffff888020728be8 R15: ffffffff94adece0 [ 68.127748][ T5215] ? uart_write+0x2a2/0x320 [ 68.127782][ T5215] ? uart_write+0x2a2/0x320 [ 68.127810][ T5215] sixpack_open+0x790/0xa80 [ 68.127842][ T5215] ? __pfx_sixpack_open+0x10/0x10 [ 68.127902][ T5215] tty_ldisc_reinit+0x2d4/0x4a0 [ 68.127933][ T5215] tty_reopen+0x20b/0x2d0 [ 68.127954][ T5215] tty_open+0xa26/0xdf0 [ 68.127980][ T5215] ? kobject_get_unless_zero+0x22d/0x330 [ 68.128053][ T5215] ? __pfx_tty_open+0x10/0x10 [ 68.128112][ T5215] ? do_raw_spin_unlock+0x13c/0x8b0 [ 68.128200][ T5215] ? module_put+0x13a/0x2d0 [ 68.128290][ T5215] chrdev_open+0x5b0/0x630 [ 68.128375][ T5215] ? __pfx_chrdev_open+0x10/0x10 [ 68.128455][ T5215] ? security_file_open+0x5bc/0x730 [ 68.128511][ T5215] ? __pfx_chrdev_open+0x10/0x10 [ 68.128586][ T5215] do_dentry_open+0x95a/0x1720 [ 68.128628][ T5215] path_openat+0x289f/0x3280 [ 68.128659][ T5215] ? mark_lock+0x9a/0x350 [ 68.128691][ T5215] ? mark_lock+0x9a/0x350 [ 68.128780][ T5215] ? __pfx_path_openat+0x10/0x10 [ 68.128891][ T5215] do_filp_open+0x235/0x490 [ 68.128917][ T5215] ? __pfx_do_filp_open+0x10/0x10 [ 68.128962][ T5215] ? _raw_spin_unlock+0x28/0x50 [ 68.128994][ T5215] ? alloc_fd+0x59d/0x640 [ 68.129096][ T5215] do_sys_openat2+0x13e/0x1d0 [ 68.129151][ T5215] ? __might_fault+0xaa/0x120 [ 68.129211][ T5215] ? __pfx_do_sys_openat2+0x10/0x10 [ 68.129260][ T5215] ? rcu_is_watching+0x15/0xb0 [ 68.129329][ T5215] ? __rseq_handle_notify_resume+0x353/0x14e0 [ 68.129418][ T5215] __x64_sys_openat+0x247/0x2a0 [ 68.129486][ T5215] ? __pfx___x64_sys_openat+0x10/0x10 [ 68.129557][ T5215] ? do_syscall_64+0x102/0x240 [ 68.129627][ T5215] ? do_syscall_64+0xb6/0x240 [ 68.129696][ T5215] do_syscall_64+0xf5/0x240 [ 68.129723][ T5215] ? clear_bhb_loop+0x35/0x90 [ 68.129748][ T5215] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 68.129769][ T5215] RIP: 0033:0x7f53ad27cee9 [ 68.129786][ T5215] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 68.129801][ T5215] RSP: 002b:00007f53ae0440c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 68.129838][ T5215] RAX: ffffffffffffffda RBX: 00007f53ad3ac050 RCX: 00007f53ad27cee9 [ 68.129896][ T5215] RDX: 0000000000000000 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 68.129936][ T5215] RBP: 00007f53ad2c949e R08: 0000000000000000 R09: 0000000000000000 [ 68.129974][ T5215] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 68.130003][ T5215] R13: 000000000000006e R14: 00007f53ad3ac050 R15: 00007ffc05d3f0d8 [ 68.130032][ T5215] [ 68.130316][ T5215] Kernel Offset: disabled