last executing test programs: 40.580018209s ago: executing program 1 (id=64): syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), 0xffffffffffffffff) bpf$PROG_LOAD(0x5, 0x0, 0xffffffffffffff0f) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) ioctl$sock_SIOCGIFCONF(r1, 0x8912, &(0x7f0000000100)) socket$alg(0x26, 0x5, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)="350400003f000511d25a80648c63940d0324fc60040035400c0002000200002037153e370c040180061010004500", 0x2e}], 0x1}, 0x0) sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000400)=ANY=[], 0x3c}}, 0x0) socket$alg(0x26, 0x5, 0x0) r4 = openat$smackfs_relabel_self(0xffffffffffffff9c, &(0x7f0000001ec0), 0x2, 0x0) writev(r4, &(0x7f0000002040)=[{&(0x7f0000001f40)="e4", 0x1}], 0x1) r5 = openat$vimc2(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) ioctl$VIDIOC_ENUM_FRAMESIZES(r5, 0xc02c564a, &(0x7f0000000000)={0x2, 0x59565955, 0x1, @discrete={0x2, 0x8}}) ioctl$CEC_RECEIVE(0xffffffffffffffff, 0xc0386106, &(0x7f0000000000)={0x700, 0x5, 0x71a, 0xffffffff, 0x0, 0xfffffffc, '&\x00', 0x0, 0xfe, 0xfc, 0x0, 0x1}) r6 = syz_open_dev$video(&(0x7f0000000040), 0x400000a7, 0x20102) ioctl$VIDIOC_S_FMT(r6, 0xc0d05605, &(0x7f0000000180)={0x1, @pix={0x0, 0x0, 0x3132564e, 0x0, 0x0, 0x0, 0x6, 0x4, 0x3}}) setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0) clock_adjtime(0x4, &(0x7f0000000100)={0x3, 0x7, 0x3, 0xffffffffffff0001, 0x3, 0x0, 0x6, 0x100000001, 0xe1e, 0x1, 0x7d, 0x9, 0xb, 0x1000, 0xfffffffffffffffd, 0x7, 0x2, 0x6, 0x7, 0x8000000000000000, 0x2, 0x1, 0x7fffffffffffffff, 0x5a87, 0x3, 0x2}) 39.539877513s ago: executing program 2 (id=66): bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) pipe2$watch_queue(&(0x7f0000000000)={0xffffffffffffffff}, 0x80) pipe2$watch_queue(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r5}, 0x10) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) clock_gettime(0x0, 0x0) r6 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r6, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r6, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @local}]}, &(0x7f0000000440)=0x10) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r6, 0x84, 0x72, &(0x7f0000001300)={r7, 0x0, 0x0, 0x0, 0x5}, &(0x7f00000000c0)=0x18) r8 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$KEYCTL_WATCH_KEY(0x20, r8, r1, 0x0) keyctl$KEYCTL_WATCH_KEY(0x20, r8, r0, 0x0) keyctl$setperm(0x5, r8, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={0x0, 0x0, 0x1a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20) r9 = socket(0x15, 0x5, 0x0) getsockopt(r9, 0x200000000114, 0x2718, 0x0, &(0x7f0000000000)) getsockopt$PNPIPE_IFINDEX(r9, 0x113, 0x2, &(0x7f0000000080), &(0x7f00000000c0)=0x4) stat(&(0x7f0000000140)='\xe9\x1fq\x89Y\x1e\x923aK\x00', &(0x7f0000000200)) syz_usb_connect(0x0, 0x36, &(0x7f0000000300)=ANY=[@ANYBLOB="120100009b23fd406d04c1088dee000000410902"], 0x0) 37.870995883s ago: executing program 1 (id=70): openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000080), 0x290082, 0x0) mkdir(&(0x7f00000000c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) chdir(&(0x7f0000001180)='./bus\x00') setxattr$system_posix_acl(&(0x7f0000000000)='./bus\x00', &(0x7f0000000040)='system.posix_acl_access\x00', 0x0, 0x0, 0x1) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x6d, 0x6d, 0x3, [@datasec={0x2, 0x0, 0x0, 0xf, 0x1, [], '7'}, @enum64={0xf, 0x7, 0x0, 0x13, 0x1, 0x0, [{0x4, 0x7, 0x4}, {0x4, 0x8, 0xffffffff}, {0x7, 0x7275, 0x10000}, {0xb, 0x1, 0x8}, {0x10, 0xd09, 0x223e}, {0x9, 0x9, 0x6}, {0xf, 0xc, 0xd1}]}]}, {0x0, [0x5f]}}, 0x0, 0x8b, 0x0, 0xa, 0x0, 0x0, @void, @value}, 0x28) 37.631721728s ago: executing program 1 (id=74): r0 = socket$inet_sctp(0x2, 0x5, 0x84) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000080)=0x10) syz_usb_connect(0x3, 0x133, &(0x7f0000001540)={{0x12, 0x1, 0x110, 0xea, 0x80, 0x43, 0x20, 0x12d1, 0xc4a9, 0xbd40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x121, 0x2, 0xfb, 0xff, 0x10, 0x1, [{{0x9, 0x4, 0x13, 0xa3, 0x0, 0xff, 0x2, 0x79, 0x4}}, {{0x9, 0x4, 0xd9, 0x1, 0x0, 0xe, 0x1, 0x0, 0xf8, [@cdc_ecm={{0x5}, {0x5, 0x24, 0x0, 0x7}, {0xd, 0x24, 0xf, 0x1, 0x101, 0xe, 0x5, 0x4}, [@call_mgmt={0x5, 0x24, 0x1, 0x3, 0xfc}, @mdlm_detail={0xe2, 0x24, 0x13, 0xfe, "fd54e35233ef58e0e3dbefda87167099023f4cefa21005a372ae3f7ad9e63c2156add58c886b252c6c0665afae318b7c5a3a239103307383f1c5be40c6a7f0c95433f053022e2373cc89525956a8609d87439b6ad0404066220a2ca64936c1969232912d68924f802bc2cc5c8892004fd400c9725e7b0aefd1a21e585b91365ada038b6ebe4a062fe81d44471a6527f186a1bd4fba889dc26fea2e1b89913c1b8be0b445fb45921aae8d0b36cead9315f914eaaeeb9a730fdeaebf8bf876a017fb3646d5a792d7a179e563e0e4e3eb68089e6d1083cad3604fb3db5ce4be"}, @mdlm_detail={0x8, 0x24, 0x13, 0x7, "1722f312"}]}]}}]}}]}}, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000140)={0x1, [0x0]}, &(0x7f0000000240)=0x8) sendmsg$inet_sctp(r0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=[@sndinfo={0x20, 0x84, 0x2, {0x6, 0x4, 0x8, 0x200000b, r2}}], 0x20, 0x6044}, 0x6) 36.241813922s ago: executing program 2 (id=78): syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='comm\x00') prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0) openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) openat$cuse(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000500), 0x3) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x5) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r0 = syz_open_dev$MSR(&(0x7f0000000300), 0x100040000, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) socket$inet_smc(0x2b, 0x1, 0x0) write$cgroup_pid(0xffffffffffffffff, &(0x7f00000001c0), 0x12) r1 = syz_open_dev$usbfs(&(0x7f0000000100), 0x206, 0x8401) ioctl$USBDEVFS_ALLOW_SUSPEND(r1, 0x5522) ioctl$USBDEVFS_CONTROL(r1, 0xc0185500, &(0x7f0000001380)={0x0, 0x10, 0xf109, 0x8, 0x0, 0x4, 0x0}) 35.047636987s ago: executing program 4 (id=79): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), r0) sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000006040)={0x34, r1, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_TAGLST={0x4}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_MLSLVLLST={0x4}, @NLBL_CIPSOV4_A_MLSCATLST={0x10, 0xc, 0x0, 0x1, [{0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xfffffffe}]}]}]}, 0x34}}, 0x0) 34.974039462s ago: executing program 4 (id=80): syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), 0xffffffffffffffff) bpf$PROG_LOAD(0x5, 0x0, 0xffffffffffffff0f) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) ioctl$sock_SIOCGIFCONF(r1, 0x8912, &(0x7f0000000100)) socket$alg(0x26, 0x5, 0x0) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)="350400003f000511d25a80648c63940d0324fc60040035400c0002000200002037153e370c040180061010004500", 0x2e}], 0x1}, 0x0) sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000400)=ANY=[], 0x3c}}, 0x0) socket$alg(0x26, 0x5, 0x0) r4 = openat$smackfs_relabel_self(0xffffffffffffff9c, &(0x7f0000001ec0), 0x2, 0x0) writev(r4, &(0x7f0000002040)=[{&(0x7f0000001f40)="e4", 0x1}], 0x1) r5 = openat$vimc2(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) ioctl$VIDIOC_ENUM_FRAMESIZES(r5, 0xc02c564a, &(0x7f0000000000)={0x2, 0x59565955, 0x1, @discrete={0x2, 0x8}}) ioctl$CEC_RECEIVE(0xffffffffffffffff, 0xc0386106, &(0x7f0000000000)={0x700, 0x5, 0x71a, 0xffffffff, 0x0, 0xfffffffc, '&\x00', 0x0, 0xfe, 0xfc, 0x0, 0x1}) r6 = syz_open_dev$video(&(0x7f0000000040), 0x400000a7, 0x20102) ioctl$VIDIOC_S_FMT(r6, 0xc0d05605, &(0x7f0000000180)={0x1, @pix={0x0, 0x0, 0x3132564e, 0x0, 0x0, 0x0, 0x6, 0x4, 0x3}}) setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0) clock_adjtime(0x4, &(0x7f0000000100)={0x3, 0x7, 0x3, 0xffffffffffff0001, 0x3, 0x0, 0x6, 0x100000001, 0xe1e, 0x1, 0x7d, 0x9, 0xb, 0x1000, 0xfffffffffffffffd, 0x7, 0x2, 0x6, 0x7, 0x8000000000000000, 0x2, 0x1, 0x7fffffffffffffff, 0x5a87, 0x3, 0x2}) 33.851515328s ago: executing program 4 (id=82): r0 = socket$packet(0x11, 0x3, 0x300) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'bridge0\x00', 0x0}) setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000280)={r2, 0x11, 0x6}, 0x10) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'bridge0\x00', 0x0}) sendmsg$nl_route_sched(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=@getchain={0x24, 0x11, 0x839, 0x0, 0x0, {0x0, 0x0, 0x0, r5}}, 0x24}}, 0x0) (fail_nth: 2) 33.193499588s ago: executing program 2 (id=83): openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, 0x0, 0x0) r0 = socket$inet6(0xa, 0x806, 0x0) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e23}, 0x1c) listen(r0, 0x3) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="140000001000009006000000000000000000000a44000000090a0000000000fa82a3fa211411fa0008000a40000000000900020073797a31000000000900010073797a30000000000800054000000000080008400000000014000000110001"], 0x6c}}, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="1400000010000100000000000000000000fc000a20000000000a03000000000000000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a3000000000080005400000001c08000640ffffff000800034000000028580000000c0a01010000000000000000070000000900020073797a31000000000900010073797a30000000002c0003802800008008000340000000021c00028018000280080001"], 0xec}}, 0x0) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0) 33.071610634s ago: executing program 3 (id=84): r0 = socket$packet(0x11, 0x3, 0x300) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'bridge0\x00', 0x0}) setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000280)={r2, 0x11, 0x6}, 0x10) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'bridge0\x00', 0x0}) sendmsg$nl_route_sched(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=@getchain={0x24, 0x11, 0x839, 0x0, 0x0, {0x0, 0x0, 0x0, r5}}, 0x24}}, 0x0) 33.070916631s ago: executing program 1 (id=85): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$NL802154_CMD_NEW_SEC_KEY(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)={0x60, r1, 0x1, 0x70bd2b, 0x25dfdbfd, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_SEC_KEY={0x40, 0x30, 0x0, 0x1, [@NL802154_KEY_ATTR_BYTES={0x14, 0x4, "61cce2444181321f0e8c4ae529500443"}, @NL802154_KEY_ATTR_ID={0x20, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_IMPLICIT={0x14, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x2}, @NL802154_DEV_ADDR_ATTR_SHORT]}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}]}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x4, 0x2, 0x7f}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x8}, 0x20000810) (fail_nth: 2) 33.059566757s ago: executing program 0 (id=86): mkdir(&(0x7f0000000040)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff001000000800395032303030"], 0x15) r2 = dup(r1) write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_DIRENT(r2, &(0x7f0000000000)=ANY=[@ANYBLOB="58000000000000009fed2788c5532994414b47034801d524faf416638217", @ANYRES32], 0x58) mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfd', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1]) chdir(&(0x7f0000000100)='./file0\x00') read$FUSE(r0, &(0x7f0000000300)={0x2020}, 0x2020) mknodat(0xffffffffffffff9c, &(0x7f0000000100)='./file3\x00', 0x1100, 0x0) 32.714335704s ago: executing program 0 (id=87): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$SW_SYNC_IOC_CREATE_FENCE(r2, 0xc0285700, &(0x7f0000000000)={0x9, "c6579e97c026f2030000007d659ec1300fac5408bf584f63ebf89b20d5748c07", 0xffffffffffffffff}) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg$NFT_MSG_GETOBJ_RESET(0xffffffffffffffff, 0x0, 0x4) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setaffinity(0x0, 0x0, 0x0) r4 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2) ppoll(&(0x7f00000000c0)=[{r4, 0x1007}], 0x1, 0x0, 0x0, 0x0) ioctl$vim2m_VIDIOC_S_CTRL(r4, 0xc008561c, &(0x7f0000000040)={0xf0f046}) read$FUSE(r4, &(0x7f00000024c0)={0x2020}, 0x2020) r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8) process_vm_writev(0x0, &(0x7f0000000200)=[{0x0}], 0x1, &(0x7f00000003c0), 0x0, 0x0) ioctl$TCSETS(0xffffffffffffffff, 0x40045431, 0x0) r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r6, &(0x7f0000000340)={0x1f, 0xffff, 0x3}, 0x6) write(r6, &(0x7f0000000100)="05000000010000", 0x7) r7 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/netfilter\x00') bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0800000004000000040000001200000000000000", @ANYRES32, @ANYBLOB="feffffff00"/17, @ANYRES32], 0x48) close_range(r7, 0xffffffffffffffff, 0x0) ioctl$IOCTL_VMCI_NOTIFY_RESOURCE(0xffffffffffffffff, 0x7a5, &(0x7f0000000240)={{}, 0x0, 0x1}) openat$udambuf(0xffffffffffffff9c, 0x0, 0x2) openat$udambuf(0xffffffffffffff9c, &(0x7f00000000c0), 0x2) poll(&(0x7f0000000140)=[{r3}], 0x1, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000002080), 0x0, 0x0) ioctl$SW_SYNC_IOC_INC(r2, 0x40045701, &(0x7f0000000080)=0xfdfdffff) 32.398854228s ago: executing program 1 (id=88): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x1e7d, 0x2cf6, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x2, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000400)={0x2c, &(0x7f0000000280)={0x0, 0x21, 0x7, {0x7, 0x0, "3d7da32915"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000480)={0x2c, 0x0, 0x0, 0x0, &(0x7f00000003c0)={0x20, 0x1, 0x3, "5f68dd"}, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x2, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000200)=ANY=[@ANYBLOB="18040000000000000000000000400000850000000800000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f00000000c0)='percpu_alloc_percpu\x00', r2}, 0x10) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6) sendmsg$IPVS_CMD_FLUSH(0xffffffffffffffff, &(0x7f0000001340)={0x0, 0x0, &(0x7f0000001300)={&(0x7f0000001280)=ANY=[@ANYBLOB='B'], 0x4c}}, 0x0) write$binfmt_misc(r3, &(0x7f0000001280), 0x6) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x5, 0x16, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) syz_usb_control_io(r0, 0x0, &(0x7f0000000cc0)={0x84, &(0x7f00000008c0)={0x0, 0x11, 0xd, "b4146fee8d873facefd670f859"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) 32.39775412s ago: executing program 2 (id=89): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="5c00000010000100"/20, @ANYRES32=r2, @ANYBLOB="c89904bd0000000008000d000000000034001680300001802c000c80140001"], 0x5c}}, 0x0) 31.605975269s ago: executing program 3 (id=90): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), r0) sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000006040)={0x34, r1, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_TAGLST={0x4}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_MLSLVLLST={0x4}, @NLBL_CIPSOV4_A_MLSCATLST={0x10, 0xc, 0x0, 0x1, [{0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xfffffffe}]}]}]}, 0x34}}, 0x0) 31.555845942s ago: executing program 4 (id=91): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$WG_CMD_SET_DEVICE(r0, 0x0, 0x20000010) openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) socket$tipc(0x1e, 0x4, 0x0) r2 = socket$alg(0x26, 0x5, 0x0) bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0) bind$alg(r2, &(0x7f0000000340)={0x26, 'skcipher\x00', 0x0, 0x0, 'chacha20-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000300)="c99b57381801238c09d0ff0f1d0dbd301e5a47b2f3caa73dcd2a6a370554375a", 0x20) r3 = accept4(r2, 0x0, 0x0, 0x0) read$alg(r3, &(0x7f0000000780)=""/148, 0x94) sendmsg$RDMA_NLDEV_CMD_RES_CM_ID_GET(r3, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000400)={0x0, 0x40}, 0x1, 0x0, 0x0, 0xc5}, 0x48005) 30.96949561s ago: executing program 0 (id=92): socket$caif_seqpacket(0x25, 0x5, 0x2) r0 = syz_io_uring_setup(0x27f1, &(0x7f0000000340)={0x0, 0x0, 0x10100}, &(0x7f0000000140), &(0x7f0000000100)=0x0) syz_io_uring_setup(0x1868, &(0x7f00000003c0), &(0x7f0000000040)=0x0, 0x0) syz_io_uring_submit(r2, r1, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xfffffffffffffe54}) io_uring_enter(r0, 0x184c, 0x0, 0x0, 0x0, 0x0) 30.927282766s ago: executing program 2 (id=93): madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000500)=0x4) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x40008, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f00000005c0)=ANY=[@ANYBLOB="14000000100001ff00000000000000000000000a2c000000050a01020000000000000000020000000900030073797a32000000000900010073797a300000000014000000020a031747d21400000000000000000014000000110001"], 0x68}}, 0x0) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[@ANYBLOB="14000000100001000b000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000044000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001f08000340000000045c0000000c0a01020000000000000000010000000900020073797a32000000000900010073797a3000000000300003802c00008028000180230001"], 0xe8}}, 0x0) mlock2(&(0x7f00000ac000/0x3000)=nil, 0x3000, 0x0) r5 = io_uring_setup(0x376c, &(0x7f0000000080)) io_uring_register$IORING_REGISTER_BUFFERS(r5, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a) mremap(&(0x7f00003eb000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000003000/0x1000)=nil) r6 = socket$inet_sctp(0x2, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, &(0x7f0000000380)={0x0, @in={{0x2, 0x4e21, @private=0xa010102}}, 0x9, 0x1000}, &(0x7f0000000440)=0x90) getsockopt$inet_sctp_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f00000004c0)={r7, 0x7, 0xa, 0x100, 0x6, 0x8}, &(0x7f0000000640)=0x14) io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r5, 0x10, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000003700)=""/4096, 0x1000}], 0x0, 0x1}, 0x20) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r10 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r10}, 0x10) 30.910366437s ago: executing program 3 (id=94): ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'sit0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x2e, 0x4, 0x0, 0x0, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast, @remote, {[@timestamp={0x44, 0x14, 0x0, 0x0, 0x0, [0x401, 0x5, 0x0, 0x5]}, @timestamp_prespec={0x44, 0x3c, 0xc0, 0x3, 0x0, [{@private=0xa010100}, {@multicast1}, {@remote}, {@dev={0xac, 0x14, 0x14, 0x32}, 0x659}, {@broadcast}, {@multicast1}, {@private=0xa010100}]}, @timestamp_prespec={0x44, 0x34, 0x0, 0x3, 0x8, [{@dev}, {@remote}, {@multicast2}, {@private=0xa010101}, {@rand_addr=0x64010101}, {@broadcast, 0x52ae}]}, @noop, @lsrr={0x83, 0xf, 0xdc, [@private=0xa010102, @rand_addr=0x64010102, @multicast1]}, @rr={0x7, 0xf, 0x0, [@dev, @remote, @private]}]}}}}}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x8, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000c50018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70200000a000000b703000000000000850000002a000000bf090000000000004d090100000000009500000000000000bf91000000000000b7020000000000008500000000000000b70000000000080095"], &(0x7f0000000200)='syzkaller\x00', 0x9, 0x100b, &(0x7f0000001e40)=""/4107, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) 30.771592326s ago: executing program 0 (id=95): socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000100)='\x00\x00', 0x2}], 0x1}, 0x8001) ioctl$SIOCSIFHWADDR(r0, 0x8905, &(0x7f0000000340)={'syzkaller1\x00', @remote}) r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000000)={0x1b, 0x0, 0x0, 0x5, 0x0, 0x1, 0x8, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x0, 0x2, 0x0, @void, @value, @void, @value}, 0x50) r3 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000180)=@o_path={&(0x7f0000000140)='./file0\x00', 0x0, 0x4008, r1}, 0x18) r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000200)={0x1b, 0x0, 0x0, 0x8b, 0x0, 0x1, 0x1, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x2, 0x2, 0x0, @void, @value, @void, @value}, 0x50) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f00000002c0)={'batadv_slave_1\x00', 0x0}) r6 = creat(&(0x7f00000001c0)='./file0\x00', 0x0) close(r6) mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x20808, &(0x7f0000000740)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r6, @ANYBLOB="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", @ANYRESOCT=r6]) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x23, &(0x7f0000000880)=ANY=[@ANYBLOB="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", @ANYRES32=r2, @ANYRESDEC=r5, @ANYRES32, @ANYBLOB="000000000b4f00008500000086000000864600000400000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000006000000850000000600000018240000", @ANYRES32=r3, @ANYBLOB="000000000c00000018100000", @ANYRES32=r4, @ANYBLOB="0000000000000000180000000500000000000000020000000b420000010100005b69eb00fcffffffbf91000000000000b7020000010000008500000085000000b7000000000003009500000000000000"], &(0x7f0000000280)='syzkaller\x00', 0x10000, 0xf3, &(0x7f00000004c0)=""/243, 0x40f00, 0x10, '\x00', r5, 0x0, r6, 0x8, &(0x7f0000000300)={0xa, 0x1}, 0x8, 0x10, &(0x7f00000005c0)={0x4, 0x4, 0xf, 0xfffff789}, 0x10, 0x0, 0x0, 0x5, 0x0, &(0x7f0000000600)=[{0x4, 0x1, 0x9, 0x4}, {0x3, 0x5, 0x1, 0xa}, {0x3, 0x3, 0x10, 0x9}, {0x4, 0x1, 0xe, 0x4}, {0x9, 0x2, 0xb, 0xc}], 0x10, 0x40, @void, @value}, 0x94) 30.64689566s ago: executing program 4 (id=96): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="05010000000000107d1e222e00000000000109022400010000000009040000020300020009"], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000180)={0x2c, &(0x7f0000000200)=ANY=[@ANYBLOB="000004"], 0x0, 0x0, 0x0, 0x0}, 0x0) 30.483593485s ago: executing program 0 (id=97): mkdir(&(0x7f0000000040)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff001000000800395032303030"], 0x15) r2 = dup(r1) write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_DIRENT(r2, &(0x7f0000000000)=ANY=[@ANYBLOB="58000000000000009fed2788c5532994414b47034801d524faf416638217", @ANYRES32], 0x58) mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1]) chdir(&(0x7f0000000100)='./file0\x00') read$FUSE(r0, &(0x7f0000000300)={0x2020}, 0x2020) mknodat(0xffffffffffffff9c, &(0x7f0000000100)='./file3\x00', 0x1100, 0x0) 30.356777644s ago: executing program 0 (id=98): r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000086552108cd0c69005500000000010902120001000000000904"], 0x0) syz_usb_disconnect(r0) 30.312120273s ago: executing program 3 (id=99): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x1, 0xc, 0x9, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180), &(0x7f0000000280), 0x84, r0}, 0x38) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r1}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x4, 0x5, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) socket(0x10, 0x803, 0x0) sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000940)=@newlink={0x48, 0x10, 0xffffff1f, 0xee020000, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x35288}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_IPTUN_REMOTE={0x14, 0x3, @mcast2}]}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x80}, 0x4000080) r4 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'netdevsim0\x00', 0x0}) sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="5c00000010000100"/20, @ANYRES32=r5, @ANYBLOB="c89904bd0000000008000d000000000034001680300001802c000c"], 0x5c}}, 0x0) 30.071773183s ago: executing program 3 (id=100): unshare(0x24020400) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000240)={@cgroup=r1, r0, 0x2, 0x6, 0x4000, @void, @value}, 0x10) (fail_nth: 2) 29.567698542s ago: executing program 3 (id=101): syz_open_dev$usbmon(&(0x7f0000000000), 0x5, 0x1) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000500), 0x28002) r1 = dup(r0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f00000001c0)='.\x00', &(0x7f0000000180), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r2]) creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39ddd8) rename(&(0x7f0000000080)='./file0\x00', &(0x7f0000000540)='./file1\x00') execve(&(0x7f0000000680)='./file1\x00', 0x0, &(0x7f00000007c0)={[&(0x7f0000000700)='={:\\\xf4']}) r3 = socket(0x11, 0x800000003, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000600)={'team0\x00', 0x0}) r5 = socket$netlink(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000000)={'vcan0\x00'}) sendmsg$nl_route_sched(r5, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000000c0)=@newqdisc={0xc4, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x94, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [], 0x0, [0x8, 0x4, 0x0, 0x80], [0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8]}}, @TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8, 0x5, 0x7}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x10000}]}]}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x20, 0x2, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x1}, @TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x6d5}, @TCA_TAPRIO_SCHED_ENTRY_GATE_MASK={0x8, 0x3, 0x2}]}]}]}}]}, 0xc4}}, 0x0) 29.420352108s ago: executing program 2 (id=102): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = syz_open_dev$dri(0x0, 0x1ff, 0x0) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, 0x0) ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r1, 0xc05064a7, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0}) ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, &(0x7f0000000a00)={0x0, &(0x7f0000000940)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000980)=[0x0, 0x0, 0x0], &(0x7f00000009c0)=[0x0, 0x0, 0x0], 0x0, 0x8, 0x3, 0x3}) r3 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0) ioctl$DRM_IOCTL_MODE_GETCRTC(r3, 0xc06864a1, &(0x7f00000003c0)={0x0}) ioctl$DRM_IOCTL_MODE_GETCRTC(0xffffffffffffffff, 0xc06864a1, &(0x7f0000000ac0)={0x0, 0x0, 0x0, 0x0}) ioctl$DRM_IOCTL_MODE_SETCRTC(0xffffffffffffffff, 0xc06864a2, &(0x7f0000000b40)={&(0x7f0000000a40)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2], 0x8, 0x0, r4, 0x8, 0x5, 0x5, 0x1, {0x6, 0x6, 0x7, 0xaae5, 0x8cdd, 0xc, 0x9, 0x4, 0xf001, 0x6, 0xfffd, 0x2, 0x7, 0x24, "a604262f1b575233f8a1b42d81e7f87442369840b9b912145e41f1c50fa5c75c"}}) r5 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r8 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(r8, 0x0, 0x2a, &(0x7f0000000240)={0x3, {{0x2, 0x0, @multicast2}}}, 0x88) r9 = epoll_create(0x6) r10 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) r11 = dup2(r9, r10) close_range(r11, 0xffffffffffffffff, 0x0) 27.37456277s ago: executing program 4 (id=103): getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) accept$alg(0xffffffffffffffff, 0x0, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x5, 0x1ff000, 0x6, 0x7f, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) unshare(0x24020400) bpf$MAP_GET_NEXT_KEY(0x15, &(0x7f0000000580)={r3, &(0x7f0000001600), 0x0}, 0x20) 21.834915ms ago: executing program 1 (id=104): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), r0) sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000006040)={0x34, r1, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_TAGLST={0x4}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MLSLVLLST={0x4}, @NLBL_CIPSOV4_A_MLSCATLST={0x10, 0xc, 0x0, 0x1, [{0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xfffffffe}]}]}]}, 0x34}}, 0x0) 0s ago: executing program 32 (id=98): r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000086552108cd0c69005500000000010902120001000000000904"], 0x0) syz_usb_disconnect(r0) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.168' (ED25519) to the list of known hosts. [ 70.158940][ T5819] cgroup: Unknown subsys name 'net' [ 70.273319][ T5819] cgroup: Unknown subsys name 'cpuset' [ 70.282460][ T5819] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 71.631044][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.637564][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.825567][ T5819] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 74.171260][ T5846] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 74.179219][ T5846] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 74.187442][ T5846] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 74.196131][ T5846] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 74.205642][ T5846] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 74.210364][ T5847] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 74.214319][ T5846] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 74.228173][ T5846] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 74.232187][ T5848] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 74.235523][ T5846] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 74.244867][ T5848] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 74.251048][ T5846] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 74.256943][ T5848] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 74.270648][ T5847] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 74.270948][ T5846] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 74.280181][ T5847] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 74.289241][ T5139] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 74.292310][ T5848] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 74.306429][ T5139] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 74.307670][ T5848] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 74.321984][ T5848] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 74.327967][ T5139] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 74.343615][ T5848] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 74.350982][ T5139] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 74.358380][ T5848] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 74.360047][ T5846] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 74.375064][ T54] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 74.382693][ T5846] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 74.393691][ T54] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 74.401211][ T5846] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 74.793495][ T5829] chnl_net:caif_netlink_parms(): no params data found [ 74.839526][ T5831] chnl_net:caif_netlink_parms(): no params data found [ 74.901605][ T5830] chnl_net:caif_netlink_parms(): no params data found [ 75.034892][ T5833] chnl_net:caif_netlink_parms(): no params data found [ 75.057263][ T5832] chnl_net:caif_netlink_parms(): no params data found [ 75.104724][ T5830] bridge0: port 1(bridge_slave_0) entered blocking state [ 75.113154][ T5830] bridge0: port 1(bridge_slave_0) entered disabled state [ 75.120718][ T5830] bridge_slave_0: entered allmulticast mode [ 75.127528][ T5830] bridge_slave_0: entered promiscuous mode [ 75.135655][ T5829] bridge0: port 1(bridge_slave_0) entered blocking state [ 75.142993][ T5829] bridge0: port 1(bridge_slave_0) entered disabled state [ 75.150472][ T5829] bridge_slave_0: entered allmulticast mode [ 75.157236][ T5829] bridge_slave_0: entered promiscuous mode [ 75.192616][ T5830] bridge0: port 2(bridge_slave_1) entered blocking state [ 75.199855][ T5830] bridge0: port 2(bridge_slave_1) entered disabled state [ 75.207037][ T5830] bridge_slave_1: entered allmulticast mode [ 75.214659][ T5830] bridge_slave_1: entered promiscuous mode [ 75.221895][ T5829] bridge0: port 2(bridge_slave_1) entered blocking state [ 75.229502][ T5829] bridge0: port 2(bridge_slave_1) entered disabled state [ 75.236683][ T5829] bridge_slave_1: entered allmulticast mode [ 75.243585][ T5829] bridge_slave_1: entered promiscuous mode [ 75.250585][ T5831] bridge0: port 1(bridge_slave_0) entered blocking state [ 75.257871][ T5831] bridge0: port 1(bridge_slave_0) entered disabled state [ 75.265059][ T5831] bridge_slave_0: entered allmulticast mode [ 75.272342][ T5831] bridge_slave_0: entered promiscuous mode [ 75.316650][ T5831] bridge0: port 2(bridge_slave_1) entered blocking state [ 75.323944][ T5831] bridge0: port 2(bridge_slave_1) entered disabled state [ 75.331452][ T5831] bridge_slave_1: entered allmulticast mode [ 75.338408][ T5831] bridge_slave_1: entered promiscuous mode [ 75.393922][ T5829] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 75.415169][ T5831] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 75.442359][ T5833] bridge0: port 1(bridge_slave_0) entered blocking state [ 75.449837][ T5833] bridge0: port 1(bridge_slave_0) entered disabled state [ 75.457149][ T5833] bridge_slave_0: entered allmulticast mode [ 75.464351][ T5833] bridge_slave_0: entered promiscuous mode [ 75.474292][ T5830] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 75.485518][ T5829] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 75.504896][ T5831] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 75.523533][ T5832] bridge0: port 1(bridge_slave_0) entered blocking state [ 75.530932][ T5832] bridge0: port 1(bridge_slave_0) entered disabled state [ 75.538327][ T5832] bridge_slave_0: entered allmulticast mode [ 75.545036][ T5832] bridge_slave_0: entered promiscuous mode [ 75.552673][ T5833] bridge0: port 2(bridge_slave_1) entered blocking state [ 75.561200][ T5833] bridge0: port 2(bridge_slave_1) entered disabled state [ 75.568474][ T5833] bridge_slave_1: entered allmulticast mode [ 75.575212][ T5833] bridge_slave_1: entered promiscuous mode [ 75.591309][ T5830] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 75.626930][ T5832] bridge0: port 2(bridge_slave_1) entered blocking state [ 75.634685][ T5832] bridge0: port 2(bridge_slave_1) entered disabled state [ 75.642661][ T5832] bridge_slave_1: entered allmulticast mode [ 75.649773][ T5832] bridge_slave_1: entered promiscuous mode [ 75.675247][ T5830] team0: Port device team_slave_0 added [ 75.684528][ T5829] team0: Port device team_slave_0 added [ 75.693049][ T5831] team0: Port device team_slave_0 added [ 75.719018][ T5833] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 75.732372][ T5833] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 75.743398][ T5830] team0: Port device team_slave_1 added [ 75.754433][ T5829] team0: Port device team_slave_1 added [ 75.769868][ T5831] team0: Port device team_slave_1 added [ 75.785400][ T5832] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 75.798392][ T5832] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 75.866777][ T5833] team0: Port device team_slave_0 added [ 75.885370][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 75.892714][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 75.920209][ T5829] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 75.943622][ T5831] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 75.951126][ T5831] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 75.977381][ T5831] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 75.991373][ T5832] team0: Port device team_slave_0 added [ 75.997869][ T5831] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 76.004861][ T5831] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 76.031397][ T5831] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 76.044850][ T5833] team0: Port device team_slave_1 added [ 76.060876][ T5830] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 76.068496][ T5830] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 76.095313][ T5830] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 76.108494][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 76.115571][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 76.141829][ T5829] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 76.160138][ T5832] team0: Port device team_slave_1 added [ 76.179565][ T5830] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 76.186570][ T5830] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 76.213144][ T5830] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 76.247582][ T5832] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 76.255113][ T5832] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 76.281568][ T5832] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 76.304942][ T5833] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 76.312209][ T5833] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 76.338584][ T5833] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 76.349554][ T54] Bluetooth: hci0: command tx timeout [ 76.351509][ T5833] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 76.362594][ T5833] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 76.388928][ T5833] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 76.419005][ T5832] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 76.426011][ T5832] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 76.452284][ T5832] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 76.464127][ T54] Bluetooth: hci4: command tx timeout [ 76.464219][ T5840] Bluetooth: hci1: command tx timeout [ 76.470160][ T54] Bluetooth: hci2: command tx timeout [ 76.498461][ T5831] hsr_slave_0: entered promiscuous mode [ 76.505420][ T5831] hsr_slave_1: entered promiscuous mode [ 76.511274][ T54] Bluetooth: hci3: command tx timeout [ 76.544911][ T5830] hsr_slave_0: entered promiscuous mode [ 76.551160][ T5830] hsr_slave_1: entered promiscuous mode [ 76.558009][ T5830] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 76.565824][ T5830] Cannot create hsr debugfs directory [ 76.584537][ T5829] hsr_slave_0: entered promiscuous mode [ 76.594742][ T5829] hsr_slave_1: entered promiscuous mode [ 76.601228][ T5829] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 76.609201][ T5829] Cannot create hsr debugfs directory [ 76.667682][ T5832] hsr_slave_0: entered promiscuous mode [ 76.675913][ T5832] hsr_slave_1: entered promiscuous mode [ 76.683880][ T5832] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 76.692009][ T5832] Cannot create hsr debugfs directory [ 76.734046][ T5833] hsr_slave_0: entered promiscuous mode [ 76.741027][ T5833] hsr_slave_1: entered promiscuous mode [ 76.747103][ T5833] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 76.755202][ T5833] Cannot create hsr debugfs directory [ 77.107473][ T5830] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 77.121038][ T5830] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 77.145361][ T5830] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 77.160953][ T5830] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 77.186728][ T5829] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 77.208438][ T5829] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 77.235622][ T5829] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 77.257226][ T5829] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 77.281055][ T5831] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 77.291809][ T5831] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 77.309599][ T5831] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 77.349899][ T5831] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 77.398921][ T5833] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 77.430968][ T5833] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 77.442531][ T5833] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 77.467673][ T5833] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 77.568187][ T5832] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 77.592222][ T5830] 8021q: adding VLAN 0 to HW filter on device bond0 [ 77.599600][ T5832] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 77.610653][ T5832] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 77.628052][ T5832] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 77.659651][ T5829] 8021q: adding VLAN 0 to HW filter on device bond0 [ 77.693003][ T5830] 8021q: adding VLAN 0 to HW filter on device team0 [ 77.742243][ T5829] 8021q: adding VLAN 0 to HW filter on device team0 [ 77.754374][ T35] bridge0: port 1(bridge_slave_0) entered blocking state [ 77.761754][ T35] bridge0: port 1(bridge_slave_0) entered forwarding state [ 77.774988][ T35] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.782158][ T35] bridge0: port 2(bridge_slave_1) entered forwarding state [ 77.815492][ T5831] 8021q: adding VLAN 0 to HW filter on device bond0 [ 77.825609][ T35] bridge0: port 1(bridge_slave_0) entered blocking state [ 77.832777][ T35] bridge0: port 1(bridge_slave_0) entered forwarding state [ 77.845955][ T35] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.853121][ T35] bridge0: port 2(bridge_slave_1) entered forwarding state [ 77.905341][ T5833] 8021q: adding VLAN 0 to HW filter on device bond0 [ 77.979773][ T5832] 8021q: adding VLAN 0 to HW filter on device bond0 [ 77.994855][ T5831] 8021q: adding VLAN 0 to HW filter on device team0 [ 78.022832][ T743] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.030082][ T743] bridge0: port 1(bridge_slave_0) entered forwarding state [ 78.053493][ T5833] 8021q: adding VLAN 0 to HW filter on device team0 [ 78.072141][ T52] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.079366][ T52] bridge0: port 2(bridge_slave_1) entered forwarding state [ 78.093485][ T5832] 8021q: adding VLAN 0 to HW filter on device team0 [ 78.142552][ T52] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.149774][ T52] bridge0: port 1(bridge_slave_0) entered forwarding state [ 78.170020][ T52] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.177185][ T52] bridge0: port 1(bridge_slave_0) entered forwarding state [ 78.189928][ T52] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.197486][ T52] bridge0: port 2(bridge_slave_1) entered forwarding state [ 78.213927][ T70] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.221737][ T70] bridge0: port 2(bridge_slave_1) entered forwarding state [ 78.428586][ T54] Bluetooth: hci0: command tx timeout [ 78.464453][ T5830] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 78.508033][ T54] Bluetooth: hci2: command tx timeout [ 78.508296][ T5840] Bluetooth: hci1: command tx timeout [ 78.513475][ T54] Bluetooth: hci4: command tx timeout [ 78.588180][ T54] Bluetooth: hci3: command tx timeout [ 78.644110][ T5829] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 78.665220][ T5830] veth0_vlan: entered promiscuous mode [ 78.760911][ T5830] veth1_vlan: entered promiscuous mode [ 78.784726][ T5831] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 78.846580][ T5829] veth0_vlan: entered promiscuous mode [ 78.903936][ T5829] veth1_vlan: entered promiscuous mode [ 78.914428][ T5832] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 78.923648][ T5830] veth0_macvtap: entered promiscuous mode [ 78.939082][ T5833] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 78.961966][ T5830] veth1_macvtap: entered promiscuous mode [ 78.987129][ T5831] veth0_vlan: entered promiscuous mode [ 79.036139][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 79.069184][ T5831] veth1_vlan: entered promiscuous mode [ 79.080357][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 79.092205][ T5829] veth0_macvtap: entered promiscuous mode [ 79.120967][ T5829] veth1_macvtap: entered promiscuous mode [ 79.142031][ T5830] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 79.159534][ T5830] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 79.173674][ T5830] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 79.184333][ T5830] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 79.235367][ T5832] veth0_vlan: entered promiscuous mode [ 79.290859][ T5829] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 79.306970][ T5829] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 79.320552][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 79.333687][ T5832] veth1_vlan: entered promiscuous mode [ 79.346463][ T5831] veth0_macvtap: entered promiscuous mode [ 79.359821][ T5829] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 79.370375][ T5829] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 79.382527][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 79.410138][ T5831] veth1_macvtap: entered promiscuous mode [ 79.430677][ T5832] veth0_macvtap: entered promiscuous mode [ 79.443159][ T5829] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 79.452342][ T5829] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 79.461576][ T5829] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 79.471408][ T5829] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 79.503804][ T5832] veth1_macvtap: entered promiscuous mode [ 79.546579][ T5833] veth0_vlan: entered promiscuous mode [ 79.570803][ T5894] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 79.579410][ T5894] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 79.593260][ T5832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 79.607453][ T5832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 79.618577][ T5832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 79.630306][ T5832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 79.641910][ T5832] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 79.651385][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 79.662888][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 79.673161][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 79.683787][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 79.693775][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 79.704295][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 79.715728][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 79.738029][ T5833] veth1_vlan: entered promiscuous mode [ 79.753853][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 79.764976][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 79.774997][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 79.788542][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 79.799761][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 79.816247][ T5832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 79.827055][ T5832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 79.837550][ T5832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 79.848611][ T5832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 79.858899][ T5832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 79.870406][ T5832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 79.881931][ T5832] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 79.909993][ T5832] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 79.921283][ T5832] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 79.930220][ T5832] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 79.939283][ T5832] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 79.960313][ T5831] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 79.970099][ T5831] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 79.981637][ T5831] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 79.992594][ T5831] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.015967][ T5833] veth0_macvtap: entered promiscuous mode [ 80.035866][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 80.045769][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 80.061314][ T5833] veth1_macvtap: entered promiscuous mode [ 80.088095][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 80.095988][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 80.171103][ T743] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 80.179443][ T743] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 80.213551][ T5830] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 80.269543][ T5833] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 80.283309][ T5833] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 80.294719][ T5833] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 80.306010][ T5833] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 80.317168][ T5833] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 80.330773][ T5833] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 80.340784][ T5833] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 80.353865][ T5833] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 80.366401][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 80.412545][ T5833] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 80.423346][ T5833] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 80.433890][ T5833] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 80.444662][ T5833] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 80.454800][ T5833] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 80.465427][ T5833] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 80.475857][ T5833] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 80.486456][ T5833] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 80.500326][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 80.518341][ T54] Bluetooth: hci0: command tx timeout [ 80.523969][ T4167] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 80.524968][ T70] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 80.539867][ T70] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 80.547856][ T4167] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 80.570893][ T5833] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.580049][ T5833] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.589271][ T54] Bluetooth: hci4: command tx timeout [ 80.595748][ T5833] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.604617][ T54] Bluetooth: hci1: command tx timeout [ 80.607854][ T5840] Bluetooth: hci2: command tx timeout [ 80.610615][ T5833] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.712945][ T5840] Bluetooth: hci3: command tx timeout [ 81.891602][ T5894] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 82.245883][ T5894] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 82.625101][ T5840] Bluetooth: hci0: command tx timeout [ 82.703664][ T5840] Bluetooth: hci2: command tx timeout [ 82.709784][ T5840] Bluetooth: hci1: command tx timeout [ 82.716061][ T5840] Bluetooth: hci4: command tx timeout [ 82.793632][ T54] Bluetooth: hci3: command tx timeout [ 83.350480][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.383609][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.539555][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.547431][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.944079][ T5932] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.985335][ T5932] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.951213][ T5962] FAULT_INJECTION: forcing a failure. [ 84.951213][ T5962] name failslab, interval 1, probability 0, space 0, times 1 [ 84.964024][ T5962] CPU: 1 UID: 0 PID: 5962 Comm: syz.3.9 Not tainted 6.12.0-rc6-syzkaller-00110-gff7afaeca1a1 #0 [ 84.974477][ T5962] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 84.984582][ T5962] Call Trace: [ 84.987895][ T5962] [ 84.990857][ T5962] dump_stack_lvl+0x241/0x360 [ 84.995614][ T5962] ? __pfx_dump_stack_lvl+0x10/0x10 [ 85.000872][ T5962] ? __pfx__printk+0x10/0x10 [ 85.005595][ T5962] ? fs_reclaim_acquire+0x93/0x130 [ 85.010751][ T5962] ? __pfx___might_resched+0x10/0x10 [ 85.016084][ T5962] should_fail_ex+0x3b0/0x4e0 [ 85.020801][ T5962] ? tomoyo_encode+0x26f/0x540 [ 85.025607][ T5962] should_failslab+0xac/0x100 [ 85.030338][ T5962] ? tomoyo_encode+0x26f/0x540 [ 85.035146][ T5962] __kmalloc_noprof+0xd8/0x400 [ 85.039947][ T5962] tomoyo_encode+0x26f/0x540 [ 85.044590][ T5962] tomoyo_realpath_from_path+0x59e/0x5e0 [ 85.050277][ T5962] tomoyo_path_number_perm+0x23a/0x880 [ 85.055782][ T5962] ? tomoyo_path_number_perm+0x208/0x880 [ 85.061462][ T5962] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 85.067520][ T5962] ? __fget_files+0x29/0x470 [ 85.072166][ T5962] ? __fget_files+0x3f3/0x470 [ 85.076900][ T5962] security_file_ioctl+0xc6/0x2a0 [ 85.081972][ T5962] __se_sys_ioctl+0x47/0x170 [ 85.086599][ T5962] do_syscall_64+0xf3/0x230 [ 85.091138][ T5962] ? clear_bhb_loop+0x35/0x90 [ 85.095868][ T5962] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 85.101805][ T5962] RIP: 0033:0x7f76f257e719 [ 85.106255][ T5962] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 85.125903][ T5962] RSP: 002b:00007f76f09b4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 85.134370][ T5962] RAX: ffffffffffffffda RBX: 00007f76f2736130 RCX: 00007f76f257e719 [ 85.142382][ T5962] RDX: 0000000020000700 RSI: 00000000c0505350 RDI: 0000000000000007 [ 85.150382][ T5962] RBP: 00007f76f09b4090 R08: 0000000000000000 R09: 0000000000000000 [ 85.158382][ T5962] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 85.166381][ T5962] R13: 0000000000000000 R14: 00007f76f2736130 R15: 00007fffb59b67a8 [ 85.174397][ T5962] [ 85.179494][ T5962] ERROR: Out of memory at tomoyo_realpath_from_path. [ 85.546310][ T5834] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 85.583110][ T5959] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 85.641210][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 85.787897][ T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!! [ 86.288131][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 86.358104][ T0] NOHZ tick-stop error: local softirq work is pending, handler #1c0!!! [ 87.379004][ T970] cfg80211: failed to load regulatory.db [ 87.758354][ T5978] netlink: 'syz.0.17': attribute type 11 has an invalid length. [ 87.788685][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 87.798272][ T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!! [ 87.820198][ T5834] usb 2-1: Using ep0 maxpacket: 32 [ 87.948748][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 87.970742][ T5981] syz.1.18 uses obsolete (PF_INET,SOCK_PACKET) [ 87.983939][ T5981] FAULT_INJECTION: forcing a failure. [ 87.983939][ T5981] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 88.404706][ T5834] usb 2-1: device descriptor read/all, error -71 [ 88.422355][ T5981] CPU: 0 UID: 0 PID: 5981 Comm: syz.1.18 Not tainted 6.12.0-rc6-syzkaller-00110-gff7afaeca1a1 #0 [ 88.432906][ T5981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 88.443095][ T5981] Call Trace: [ 88.446378][ T5981] [ 88.449316][ T5981] dump_stack_lvl+0x241/0x360 [ 88.454027][ T5981] ? __pfx_dump_stack_lvl+0x10/0x10 [ 88.459235][ T5981] ? __pfx__printk+0x10/0x10 [ 88.463836][ T5981] ? __pfx_lock_release+0x10/0x10 [ 88.468899][ T5981] ? validate_chain+0x11e/0x5920 [ 88.473880][ T5981] should_fail_ex+0x3b0/0x4e0 [ 88.478585][ T5981] _copy_from_iter+0x21f/0x1e70 [ 88.483480][ T5981] ? unwind_next_frame+0x18e6/0x22d0 [ 88.488789][ T5981] ? __pfx_validate_chain+0x10/0x10 [ 88.494010][ T5981] ? mark_lock+0x9a/0x360 [ 88.498398][ T5981] ? __pfx__copy_from_iter+0x10/0x10 [ 88.503730][ T5981] tun_get_user+0x445/0x47e0 [ 88.508363][ T5981] ? __lock_acquire+0x1384/0x2050 [ 88.513437][ T5981] ? __pfx_tun_get_user+0x10/0x10 [ 88.518511][ T5981] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 88.524007][ T5981] ? tun_get+0x1e/0x2f0 [ 88.528193][ T5981] ? __pfx_lock_release+0x10/0x10 [ 88.533264][ T5981] ? tun_get+0x1e/0x2f0 [ 88.537430][ T5981] ? tun_get+0x27d/0x2f0 [ 88.541690][ T5981] tun_chr_write_iter+0x10d/0x1f0 [ 88.546748][ T5981] vfs_write+0xaeb/0xd30 [ 88.551112][ T5981] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 88.556676][ T5981] ? __pfx_vfs_write+0x10/0x10 [ 88.561482][ T5981] ? fdget_pos+0x19a/0x320 [ 88.565971][ T5981] ksys_write+0x183/0x2b0 [ 88.570421][ T5981] ? __pfx_ksys_write+0x10/0x10 [ 88.575316][ T5981] ? do_syscall_64+0x100/0x230 [ 88.580106][ T5981] ? do_syscall_64+0xb6/0x230 [ 88.584820][ T5981] do_syscall_64+0xf3/0x230 [ 88.589362][ T5981] ? clear_bhb_loop+0x35/0x90 [ 88.594053][ T5981] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 88.599985][ T5981] RIP: 0033:0x7f889057e719 [ 88.604427][ T5981] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 88.624257][ T5981] RSP: 002b:00007f889143a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 88.632690][ T5981] RAX: ffffffffffffffda RBX: 00007f8890735f80 RCX: 00007f889057e719 [ 88.640685][ T5981] RDX: 000000000000007a RSI: 0000000020000540 RDI: 0000000000000004 [ 88.648669][ T5981] RBP: 00007f889143a090 R08: 0000000000000000 R09: 0000000000000000 [ 88.656668][ T5981] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 88.664669][ T5981] R13: 0000000000000000 R14: 00007f8890735f80 R15: 00007ffd70cdf258 [ 88.672761][ T5981] [ 88.749378][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 89.152691][ T5992] MTD: Couldn't look up './file1': -15 [ 89.233404][ T5974] kvm: emulating exchange as write [ 89.503434][ T6001] 9pnet: Could not find request transport: fd0x0000000000000003 [ 89.596084][ T29] audit: type=1326 audit(1731006540.024:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6003 comm="syz.1.24" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f889057e719 code=0x0 [ 90.761713][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 90.965956][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 91.140768][ T6010] trusted_key: encrypted_key: insufficient parameters specified [ 91.465001][ T6019] FAULT_INJECTION: forcing a failure. [ 91.465001][ T6019] name failslab, interval 1, probability 0, space 0, times 0 [ 91.551203][ T6019] CPU: 0 UID: 0 PID: 6019 Comm: syz.4.25 Not tainted 6.12.0-rc6-syzkaller-00110-gff7afaeca1a1 #0 [ 91.561878][ T6019] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 91.572067][ T6019] Call Trace: [ 91.575390][ T6019] [ 91.578364][ T6019] dump_stack_lvl+0x241/0x360 [ 91.583106][ T6019] ? __pfx_dump_stack_lvl+0x10/0x10 [ 91.588362][ T6019] ? __pfx__printk+0x10/0x10 [ 91.593004][ T6019] ? kmem_cache_alloc_node_noprof+0x49/0x320 [ 91.599033][ T6019] ? __pfx___might_resched+0x10/0x10 [ 91.604376][ T6019] should_fail_ex+0x3b0/0x4e0 [ 91.609120][ T6019] should_failslab+0xac/0x100 [ 91.613861][ T6019] ? __alloc_skb+0x1c3/0x440 [ 91.618509][ T6019] kmem_cache_alloc_node_noprof+0x71/0x320 [ 91.624362][ T6019] __alloc_skb+0x1c3/0x440 [ 91.628833][ T6019] ? __pfx___alloc_skb+0x10/0x10 [ 91.633791][ T6019] ? netlink_autobind+0xd6/0x2f0 [ 91.638753][ T6019] ? netlink_autobind+0x2b0/0x2f0 [ 91.643798][ T6019] netlink_sendmsg+0x638/0xcb0 [ 91.648588][ T6019] ? __pfx_netlink_sendmsg+0x10/0x10 [ 91.653899][ T6019] ? __pfx_netlink_sendmsg+0x10/0x10 [ 91.659205][ T6019] __sock_sendmsg+0x221/0x270 [ 91.663904][ T6019] ____sys_sendmsg+0x52a/0x7e0 [ 91.668698][ T6019] ? __pfx_____sys_sendmsg+0x10/0x10 [ 91.674019][ T6019] __sys_sendmsg+0x292/0x380 [ 91.678631][ T6019] ? __pfx___sys_sendmsg+0x10/0x10 [ 91.683776][ T6019] ? __pfx_vfs_write+0x10/0x10 [ 91.688586][ T6019] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 91.694941][ T6019] ? do_syscall_64+0x100/0x230 [ 91.699725][ T6019] ? do_syscall_64+0xb6/0x230 [ 91.704421][ T6019] do_syscall_64+0xf3/0x230 [ 91.708974][ T6019] ? clear_bhb_loop+0x35/0x90 [ 91.713678][ T6019] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 91.719605][ T6019] RIP: 0033:0x7f1d4bb7e719 [ 91.724253][ T6019] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 91.743875][ T6019] RSP: 002b:00007f1d4c93d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 91.752420][ T6019] RAX: ffffffffffffffda RBX: 00007f1d4bd36130 RCX: 00007f1d4bb7e719 [ 91.760408][ T6019] RDX: 0000000000000000 RSI: 0000000020000200 RDI: 0000000000000006 [ 91.768420][ T6019] RBP: 00007f1d4c93d090 R08: 0000000000000000 R09: 0000000000000000 [ 91.776506][ T6019] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 91.784488][ T6019] R13: 0000000000000000 R14: 00007f1d4bd36130 R15: 00007ffd5927d648 [ 91.792488][ T6019] [ 91.927809][ T5885] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 92.077924][ T5834] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 92.085674][ T5885] usb 1-1: Using ep0 maxpacket: 16 [ 92.097878][ T5885] usb 1-1: config 0 has an invalid interface number: 1 but max is 0 [ 92.106745][ T5885] usb 1-1: config 0 has no interface number 0 [ 92.116920][ T5885] usb 1-1: New USB device found, idVendor=04fc, idProduct=1528, bcdDevice=6d.5d [ 92.126659][ T5885] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 92.135353][ T5885] usb 1-1: Product: syz [ 92.140137][ T5885] usb 1-1: Manufacturer: syz [ 92.146246][ T5885] usb 1-1: SerialNumber: syz [ 92.162110][ T5885] usb 1-1: config 0 descriptor?? [ 92.175847][ T5885] gspca_main: spca1528-2.14.0 probing 04fc:1528 [ 92.237979][ T5834] usb 2-1: Using ep0 maxpacket: 16 [ 92.253158][ T5834] usb 2-1: config 0 has an invalid interface number: 1 but max is 0 [ 92.296114][ T5834] usb 2-1: config 0 has no interface number 0 [ 92.309802][ T5834] usb 2-1: New USB device found, idVendor=04fc, idProduct=1528, bcdDevice=6d.5d [ 92.337836][ T5834] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 92.346159][ T5834] usb 2-1: Product: syz [ 92.351709][ T5834] usb 2-1: Manufacturer: syz [ 92.383818][ T5834] usb 2-1: SerialNumber: syz [ 92.430021][ T5834] usb 2-1: config 0 descriptor?? [ 92.450848][ T5834] gspca_main: spca1528-2.14.0 probing 04fc:1528 [ 93.217651][ T6037] netlink: 12 bytes leftover after parsing attributes in process `syz.4.32'. [ 93.419224][ T5885] gspca_spca1528: reg_w err -71 [ 93.425068][ T5885] spca1528 1-1:0.1: probe with driver spca1528 failed with error -71 [ 93.452770][ T5885] usb 1-1: USB disconnect, device number 2 [ 93.697984][ T5915] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 93.794867][ T5834] gspca_spca1528: reg_w err -71 [ 93.801418][ T5834] spca1528 2-1:0.1: probe with driver spca1528 failed with error -71 [ 93.816235][ T5834] usb 2-1: USB disconnect, device number 4 [ 93.941382][ T5915] usb 5-1: config 0 has an invalid interface number: 255 but max is 0 [ 93.950146][ T5915] usb 5-1: config 0 has no interface number 0 [ 93.956419][ T5915] usb 5-1: config 0 interface 255 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 93.967632][ T5915] usb 5-1: config 0 interface 255 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0 [ 93.980471][ T5915] usb 5-1: New USB device found, idVendor=10cf, idProduct=8065, bcdDevice=91.79 [ 93.990224][ T5915] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 94.001076][ T5915] usb 5-1: Product: syz [ 94.005308][ T5915] usb 5-1: Manufacturer: syz [ 94.010233][ T5915] usb 5-1: SerialNumber: syz [ 94.017183][ T5915] usb 5-1: config 0 descriptor?? [ 94.061299][ T5915] vmk80xx 5-1:0.255: driver 'vmk80xx' failed to auto-configure device. [ 94.073791][ T5915] vmk80xx 5-1:0.255: probe with driver vmk80xx failed with error -22 [ 94.131072][ T6048] 9pnet: Could not find request transport: fd0x0000000000000003 [ 94.172425][ T6052] overlayfs: failed to resolve './file0': -2 [ 94.442115][ T6040] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 94.486704][ T6040] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 94.878806][ T6059] netlink: 32 bytes leftover after parsing attributes in process `syz.2.40'. [ 95.052618][ T6060] 9pnet_fd: Insufficient options for proto=fd [ 95.251289][ T6040] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 95.318422][ T6040] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 95.342589][ T6064] FAULT_INJECTION: forcing a failure. [ 95.342589][ T6064] name failslab, interval 1, probability 0, space 0, times 0 [ 95.414172][ T6064] CPU: 0 UID: 0 PID: 6064 Comm: syz.2.41 Not tainted 6.12.0-rc6-syzkaller-00110-gff7afaeca1a1 #0 [ 95.424749][ T6064] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 95.434824][ T6064] Call Trace: [ 95.438138][ T6064] [ 95.441079][ T6064] dump_stack_lvl+0x241/0x360 [ 95.445785][ T6064] ? __pfx_dump_stack_lvl+0x10/0x10 [ 95.450999][ T6064] ? __pfx__printk+0x10/0x10 [ 95.455602][ T6064] ? kmem_cache_alloc_node_noprof+0x49/0x320 [ 95.461597][ T6064] ? __pfx___might_resched+0x10/0x10 [ 95.466903][ T6064] should_fail_ex+0x3b0/0x4e0 [ 95.471607][ T6064] should_failslab+0xac/0x100 [ 95.476325][ T6064] ? __alloc_skb+0x1c3/0x440 [ 95.480934][ T6064] kmem_cache_alloc_node_noprof+0x71/0x320 [ 95.486763][ T6064] __alloc_skb+0x1c3/0x440 [ 95.491262][ T6064] ? __pfx___alloc_skb+0x10/0x10 [ 95.496216][ T6064] ? netlink_autobind+0xd6/0x2f0 [ 95.501165][ T6064] ? netlink_autobind+0x2b0/0x2f0 [ 95.506225][ T6064] netlink_sendmsg+0x638/0xcb0 [ 95.511011][ T6064] ? __pfx_netlink_sendmsg+0x10/0x10 [ 95.516319][ T6064] ? __pfx_netlink_sendmsg+0x10/0x10 [ 95.521618][ T6064] __sock_sendmsg+0x221/0x270 [ 95.526307][ T6064] ____sys_sendmsg+0x52a/0x7e0 [ 95.531090][ T6064] ? __pfx_____sys_sendmsg+0x10/0x10 [ 95.536409][ T6064] __sys_sendmmsg+0x3ab/0x730 [ 95.541108][ T6064] ? __pfx___sys_sendmmsg+0x10/0x10 [ 95.546352][ T6064] ? __pfx_lock_release+0x10/0x10 [ 95.551397][ T6064] ? kstrtouint_from_user+0x128/0x190 [ 95.556802][ T6064] ? __pfx_rcu_read_lock_any_held+0x10/0x10 [ 95.562710][ T6064] ? ksys_write+0x229/0x2b0 [ 95.567227][ T6064] ? __pfx_lock_release+0x10/0x10 [ 95.572281][ T6064] ? vfs_write+0x730/0xd30 [ 95.576721][ T6064] ? __mutex_unlock_slowpath+0x21d/0x750 [ 95.582384][ T6064] ? __fget_files+0x3f3/0x470 [ 95.587095][ T6064] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 95.593104][ T6064] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 95.599457][ T6064] ? do_syscall_64+0x100/0x230 [ 95.604241][ T6064] __x64_sys_sendmmsg+0xa0/0xb0 [ 95.609118][ T6064] do_syscall_64+0xf3/0x230 [ 95.613637][ T6064] ? clear_bhb_loop+0x35/0x90 [ 95.618329][ T6064] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 95.624236][ T6064] RIP: 0033:0x7f4d4c37e719 [ 95.628660][ T6064] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 95.648274][ T6064] RSP: 002b:00007f4d4d249038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 95.656701][ T6064] RAX: ffffffffffffffda RBX: 00007f4d4c535f80 RCX: 00007f4d4c37e719 [ 95.664685][ T6064] RDX: 040000000000009f RSI: 00000000200002c0 RDI: 0000000000000003 [ 95.672664][ T6064] RBP: 00007f4d4d249090 R08: 0000000000000000 R09: 0000000000000000 [ 95.680651][ T6064] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 95.688637][ T6064] R13: 0000000000000000 R14: 00007f4d4c535f80 R15: 00007ffd9ae15478 [ 95.696635][ T6064] [ 95.789487][ T6068] netlink: 12 bytes leftover after parsing attributes in process `syz.3.43'. [ 96.042912][ T6081] 9pnet: Could not find request transport: fd0x0000000000000003 [ 96.129789][ T6084] netlink: 'syz.0.49': attribute type 11 has an invalid length. [ 96.341294][ T5916] usb 5-1: USB disconnect, device number 2 [ 96.410629][ T6089] capability: warning: `syz.0.49' uses deprecated v2 capabilities in a way that may be insecure [ 96.430776][ T6089] program syz.0.49 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 97.260989][ T5834] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 97.478096][ T5834] usb 3-1: Using ep0 maxpacket: 32 [ 97.498427][ T5834] usb 3-1: config 0 has an invalid interface number: 67 but max is 0 [ 97.506731][ T5834] usb 3-1: config 0 has no interface number 0 [ 97.529534][ T5834] usb 3-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57 [ 97.609530][ T5834] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 97.681353][ T5834] usb 3-1: Product: syz [ 97.691643][ T5834] usb 3-1: Manufacturer: syz [ 97.697881][ T5834] usb 3-1: SerialNumber: syz [ 97.990303][ T6096] overlayfs: failed to resolve './file0': -2 [ 98.019913][ T5834] usb 3-1: config 0 descriptor?? [ 98.051521][ T5834] smsc95xx v2.0.0 [ 98.057265][ T6093] netlink: 12 bytes leftover after parsing attributes in process `syz.3.50'. [ 98.545683][ T5887] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 98.686354][ T6077] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 98.895722][ T6077] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 99.371468][ T6113] netlink: 12 bytes leftover after parsing attributes in process `syz.4.58'. [ 99.380639][ T5887] usb 2-1: Using ep0 maxpacket: 16 [ 99.419773][ T5887] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 99.477251][ T5887] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 99.535422][ T5887] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2e22, bcdDevice= 0.00 [ 99.672232][ T6117] FAULT_INJECTION: forcing a failure. [ 99.672232][ T6117] name failslab, interval 1, probability 0, space 0, times 0 [ 99.904543][ T6117] CPU: 0 UID: 0 PID: 6117 Comm: syz.4.59 Not tainted 6.12.0-rc6-syzkaller-00110-gff7afaeca1a1 #0 [ 99.915124][ T6117] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 99.925216][ T6117] Call Trace: [ 99.928548][ T6117] [ 99.931504][ T6117] dump_stack_lvl+0x241/0x360 [ 99.936226][ T6117] ? __pfx_dump_stack_lvl+0x10/0x10 [ 99.941460][ T6117] ? __pfx__printk+0x10/0x10 [ 99.946084][ T6117] ? __kmalloc_node_noprof+0xb7/0x440 [ 99.951499][ T6117] ? __pfx___might_resched+0x10/0x10 [ 99.956830][ T6117] should_fail_ex+0x3b0/0x4e0 [ 99.961547][ T6117] should_failslab+0xac/0x100 [ 99.966271][ T6117] __kmalloc_node_noprof+0xdf/0x440 [ 99.971524][ T6117] ? vmemdup_user+0x42/0x1c0 [ 99.976171][ T6117] vmemdup_user+0x42/0x1c0 [ 99.980636][ T6117] map_lookup_and_delete_elem+0x3c1/0x9d0 [ 99.986406][ T6117] ? __might_fault+0xc6/0x120 [ 99.991133][ T6117] __sys_bpf+0x5be/0x810 [ 99.995414][ T6117] ? __pfx___sys_bpf+0x10/0x10 [ 100.000226][ T6117] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 100.006336][ T6117] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 100.012711][ T6117] ? do_syscall_64+0x100/0x230 [ 100.017520][ T6117] __x64_sys_bpf+0x7c/0x90 [ 100.021972][ T6117] do_syscall_64+0xf3/0x230 [ 100.026516][ T6117] ? clear_bhb_loop+0x35/0x90 [ 100.031249][ T6117] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 100.037217][ T6117] RIP: 0033:0x7f1d4bb7e719 [ 100.041675][ T6117] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 100.061665][ T6117] RSP: 002b:00007f1d4c97f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 100.070122][ T6117] RAX: ffffffffffffffda RBX: 00007f1d4bd35f80 RCX: 00007f1d4bb7e719 [ 100.078210][ T6117] RDX: 0000000000000020 RSI: 0000000020000640 RDI: 0000000000000015 [ 100.086223][ T6117] RBP: 00007f1d4c97f090 R08: 0000000000000000 R09: 0000000000000000 [ 100.094228][ T6117] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 100.102228][ T6117] R13: 0000000000000000 R14: 00007f1d4bd35f80 R15: 00007ffd5927d648 [ 100.110249][ T6117] [ 100.116985][ T5834] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32 [ 100.129269][ T5834] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD [ 100.138616][ T5887] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 100.150887][ T5887] usb 2-1: config 0 descriptor?? [ 100.321112][ T6121] 9pnet_fd: Insufficient options for proto=fd [ 100.577921][ T5916] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 100.682044][ T5834] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000104: -71 [ 100.712291][ T5834] smsc95xx 3-1:0.67: probe with driver smsc95xx failed with error -71 [ 100.772685][ T6129] FAULT_INJECTION: forcing a failure. [ 100.772685][ T6129] name failslab, interval 1, probability 0, space 0, times 0 [ 100.785488][ T6129] CPU: 1 UID: 0 PID: 6129 Comm: syz.3.62 Not tainted 6.12.0-rc6-syzkaller-00110-gff7afaeca1a1 #0 [ 100.796074][ T6129] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 100.806340][ T6129] Call Trace: [ 100.809651][ T6129] [ 100.812610][ T6129] dump_stack_lvl+0x241/0x360 [ 100.817328][ T6129] ? __pfx_dump_stack_lvl+0x10/0x10 [ 100.822565][ T6129] ? __pfx__printk+0x10/0x10 [ 100.827194][ T6129] ? fs_reclaim_acquire+0x93/0x130 [ 100.832353][ T6129] ? __pfx___might_resched+0x10/0x10 [ 100.837679][ T6129] should_fail_ex+0x3b0/0x4e0 [ 100.842397][ T6129] ? tomoyo_encode+0x26f/0x540 [ 100.847201][ T6129] should_failslab+0xac/0x100 [ 100.851919][ T6129] ? tomoyo_encode+0x26f/0x540 [ 100.856716][ T6129] __kmalloc_noprof+0xd8/0x400 [ 100.861523][ T6129] tomoyo_encode+0x26f/0x540 [ 100.866165][ T6129] tomoyo_realpath_from_path+0x59e/0x5e0 [ 100.871852][ T6129] tomoyo_path_number_perm+0x23a/0x880 [ 100.877356][ T6129] ? tomoyo_path_number_perm+0x208/0x880 [ 100.883028][ T6129] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 100.889084][ T6129] ? __fget_files+0x29/0x470 [ 100.893716][ T6129] ? __fget_files+0x3f3/0x470 [ 100.898447][ T6129] security_file_ioctl+0xc6/0x2a0 [ 100.903511][ T6129] __se_sys_ioctl+0x47/0x170 [ 100.908149][ T6129] do_syscall_64+0xf3/0x230 [ 100.912692][ T6129] ? clear_bhb_loop+0x35/0x90 [ 100.917405][ T6129] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 100.923326][ T6129] RIP: 0033:0x7f76f257e719 [ 100.927772][ T6129] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 100.947409][ T6129] RSP: 002b:00007f76f09b4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 100.955864][ T6129] RAX: ffffffffffffffda RBX: 00007f76f2736130 RCX: 00007f76f257e719 [ 100.963864][ T6129] RDX: 0000000020000180 RSI: 00000000c01864b0 RDI: 0000000000000009 [ 100.971861][ T6129] RBP: 00007f76f09b4090 R08: 0000000000000000 R09: 0000000000000000 [ 100.979859][ T6129] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 100.987857][ T6129] R13: 0000000000000000 R14: 00007f76f2736130 R15: 00007fffb59b67a8 [ 100.995891][ T6129] [ 100.999009][ C1] vkms_vblank_simulate: vblank timer overrun [ 101.006134][ T6129] ERROR: Out of memory at tomoyo_realpath_from_path. [ 101.262375][ T5834] usb 3-1: USB disconnect, device number 2 [ 101.390490][ T5916] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 101.402690][ T5916] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 101.415508][ T5916] usb 5-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00 [ 101.455044][ T5916] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 101.502658][ T5916] usb 5-1: config 0 descriptor?? [ 101.587934][ T5887] usb 2-1: USB disconnect, device number 5 [ 102.448592][ T5916] hid (null): bogus close delimiter [ 104.224182][ T6155] netlink: 12 bytes leftover after parsing attributes in process `syz.0.69'. [ 104.252004][ T6157] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 104.284487][ T5916] usb 5-1: string descriptor 0 read error: -71 [ 104.307956][ T5916] uclogic 0003:256C:006D.0001: failed retrieving string descriptor #200: -71 [ 104.319092][ T5916] uclogic 0003:256C:006D.0001: failed retrieving pen parameters: -71 [ 104.327958][ T5916] uclogic 0003:256C:006D.0001: failed probing pen v2 parameters: -71 [ 104.336333][ T5916] uclogic 0003:256C:006D.0001: failed probing parameters: -71 [ 104.344134][ T5916] uclogic 0003:256C:006D.0001: probe with driver uclogic failed with error -71 [ 104.364377][ T5916] usb 5-1: USB disconnect, device number 3 [ 104.438135][ T9] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 104.701636][ T6163] 9pnet_fd: Insufficient options for proto=fd [ 104.746613][ T6169] program syz.3.71 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 104.927903][ T5887] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 105.180156][ T5834] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 105.277962][ T5887] usb 1-1: Using ep0 maxpacket: 16 [ 105.286645][ T5887] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 105.315098][ T5887] usb 1-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 105.351727][ T5887] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2e22, bcdDevice= 0.00 [ 105.378747][ T5834] usb 2-1: Using ep0 maxpacket: 32 [ 105.402755][ T5834] usb 2-1: config 251 has an invalid interface number: 19 but max is 1 [ 105.421888][ T5887] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 105.440723][ T5834] usb 2-1: config 251 has an invalid interface number: 217 but max is 1 [ 105.459962][ T5887] usb 1-1: config 0 descriptor?? [ 105.668995][ T9] usb 3-1: too many configurations: 65, using maximum allowed: 8 [ 105.682464][ T9] usb 3-1: config 0 has no interfaces? [ 105.701531][ T5834] usb 2-1: config 251 has no interface number 0 [ 105.708012][ T5834] usb 2-1: config 251 has no interface number 1 [ 105.715289][ T5834] usb 2-1: config 251 interface 19 has no altsetting 0 [ 105.722426][ T5834] usb 2-1: config 251 interface 217 has no altsetting 0 [ 105.732549][ T5834] usb 2-1: New USB device found, idVendor=12d1, idProduct=c4a9, bcdDevice=bd.40 [ 105.741888][ T5834] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 105.751531][ T5834] usb 2-1: Product: syz [ 105.755738][ T5834] usb 2-1: Manufacturer: syz [ 106.518229][ T5834] usb 2-1: SerialNumber: syz [ 106.662173][ T9] usb 3-1: config 0 has no interfaces? [ 106.787393][ T9] usb 3-1: unable to read config index 2 descriptor/start: -71 [ 106.795086][ T9] usb 3-1: can't read configurations, error -71 [ 107.130047][ T29] audit: type=1326 audit(1731006557.574:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6184 comm="syz.2.78" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4d4c37e719 code=0x0 [ 107.198452][ T6190] netlink: 36 bytes leftover after parsing attributes in process `syz.3.81'. [ 108.912607][ T5882] usb 1-1: USB disconnect, device number 3 [ 108.928701][ T5834] option 2-1:251.19: GSM modem (1-port) converter detected [ 108.959202][ T6198] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 108.971255][ T5834] usb 2-1: Found UVC 252.03 device syz (12d1:c4a9) [ 108.987887][ T5834] usb 2-1: No valid video chain found. [ 109.063242][ T6201] FAULT_INJECTION: forcing a failure. [ 109.063242][ T6201] name failslab, interval 1, probability 0, space 0, times 0 [ 109.076523][ T6201] CPU: 1 UID: 0 PID: 6201 Comm: syz.1.85 Not tainted 6.12.0-rc6-syzkaller-00110-gff7afaeca1a1 #0 [ 109.087076][ T6201] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 109.097177][ T6201] Call Trace: [ 109.100493][ T6201] [ 109.103549][ T6201] dump_stack_lvl+0x241/0x360 [ 109.108284][ T6201] ? __pfx_dump_stack_lvl+0x10/0x10 [ 109.113542][ T6201] ? __pfx__printk+0x10/0x10 [ 109.118179][ T6201] ? kmem_cache_alloc_node_noprof+0x49/0x320 [ 109.124208][ T6201] ? __pfx___might_resched+0x10/0x10 [ 109.129556][ T6201] should_fail_ex+0x3b0/0x4e0 [ 109.134297][ T6201] should_failslab+0xac/0x100 [ 109.138753][ T6203] netlink: 12 bytes leftover after parsing attributes in process `syz.2.83'. [ 109.139012][ T6201] ? __alloc_skb+0x1c3/0x440 [ 109.152414][ T6201] kmem_cache_alloc_node_noprof+0x71/0x320 [ 109.157295][ T6205] netlink: 4 bytes leftover after parsing attributes in process `syz.3.84'. [ 109.158260][ T6201] __alloc_skb+0x1c3/0x440 [ 109.158297][ T6201] ? __pfx___alloc_skb+0x10/0x10 [ 109.158326][ T6201] ? netlink_autobind+0xd6/0x2f0 [ 109.158360][ T6201] ? netlink_autobind+0x2b0/0x2f0 [ 109.158392][ T6201] netlink_sendmsg+0x638/0xcb0 [ 109.158431][ T6201] ? __pfx_netlink_sendmsg+0x10/0x10 [ 109.158472][ T6201] ? __pfx_netlink_sendmsg+0x10/0x10 [ 109.158497][ T6201] __sock_sendmsg+0x221/0x270 [ 109.158521][ T6201] ____sys_sendmsg+0x52a/0x7e0 [ 109.158559][ T6201] ? __pfx_____sys_sendmsg+0x10/0x10 [ 109.185716][ T6205] bridge_slave_1: left allmulticast mode [ 109.186560][ T6201] __sys_sendmsg+0x292/0x380 [ 109.203983][ T6205] bridge_slave_1: left promiscuous mode [ 109.206570][ T6201] ? __pfx___sys_sendmsg+0x10/0x10 [ 109.206620][ T6201] ? __pfx_vfs_write+0x10/0x10 [ 109.219347][ T6207] 9pnet_fd: Insufficient options for proto=fd [ 109.223444][ T6201] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 109.223490][ T6201] ? do_syscall_64+0x100/0x230 [ 109.237210][ T6205] bridge0: port 2(bridge_slave_1) entered disabled state [ 109.238725][ T6201] ? do_syscall_64+0xb6/0x230 [ 109.238765][ T6201] do_syscall_64+0xf3/0x230 [ 109.238793][ T6201] ? clear_bhb_loop+0x35/0x90 [ 109.238823][ T6201] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 109.238849][ T6201] RIP: 0033:0x7f889057e719 [ 109.270957][ T6208] FAULT_INJECTION: forcing a failure. [ 109.270957][ T6208] name failslab, interval 1, probability 0, space 0, times 0 [ 109.272612][ T6201] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 109.272639][ T6201] RSP: 002b:00007f889143a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 109.332983][ T6201] RAX: ffffffffffffffda RBX: 00007f8890735f80 RCX: 00007f889057e719 [ 109.341006][ T6201] RDX: 0000000020000810 RSI: 00000000200002c0 RDI: 0000000000000004 [ 109.349023][ T6201] RBP: 00007f889143a090 R08: 0000000000000000 R09: 0000000000000000 [ 109.357040][ T6201] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 109.365058][ T6201] R13: 0000000000000000 R14: 00007f8890735f80 R15: 00007ffd70cdf258 [ 109.373084][ T6201] [ 109.379292][ T5834] usb 2-1: USB disconnect, device number 6 [ 109.386896][ T5834] option 2-1:251.19: device disconnected [ 109.403897][ T6208] CPU: 0 UID: 0 PID: 6208 Comm: syz.4.82 Not tainted 6.12.0-rc6-syzkaller-00110-gff7afaeca1a1 #0 [ 109.414475][ T6208] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 109.424573][ T6208] Call Trace: [ 109.427893][ T6208] [ 109.430860][ T6208] dump_stack_lvl+0x241/0x360 [ 109.435555][ T6208] ? __pfx_dump_stack_lvl+0x10/0x10 [ 109.440775][ T6208] ? __pfx__printk+0x10/0x10 [ 109.445403][ T6208] ? kmem_cache_alloc_node_noprof+0x49/0x320 [ 109.451510][ T6208] ? __pfx___might_resched+0x10/0x10 [ 109.456857][ T6208] should_fail_ex+0x3b0/0x4e0 [ 109.461631][ T6208] should_failslab+0xac/0x100 [ 109.466362][ T6208] ? __alloc_skb+0x1c3/0x440 [ 109.471007][ T6208] kmem_cache_alloc_node_noprof+0x71/0x320 [ 109.476871][ T6208] __alloc_skb+0x1c3/0x440 [ 109.481344][ T6208] ? __pfx___alloc_skb+0x10/0x10 [ 109.486333][ T6208] ? netlink_autobind+0xd6/0x2f0 [ 109.491323][ T6208] ? netlink_autobind+0x2b0/0x2f0 [ 109.496403][ T6208] netlink_sendmsg+0x638/0xcb0 [ 109.501231][ T6208] ? __pfx_netlink_sendmsg+0x10/0x10 [ 109.506580][ T6208] ? __pfx_netlink_sendmsg+0x10/0x10 [ 109.511915][ T6208] __sock_sendmsg+0x221/0x270 [ 109.516642][ T6208] ____sys_sendmsg+0x52a/0x7e0 [ 109.521470][ T6208] ? __pfx_____sys_sendmsg+0x10/0x10 [ 109.526825][ T6208] __sys_sendmsg+0x292/0x380 [ 109.531473][ T6208] ? __pfx___sys_sendmsg+0x10/0x10 [ 109.536646][ T6208] ? __pfx_vfs_write+0x10/0x10 [ 109.541475][ T6208] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 109.547941][ T6208] ? do_syscall_64+0x100/0x230 [ 109.552757][ T6208] ? do_syscall_64+0xb6/0x230 [ 109.557461][ T6208] do_syscall_64+0xf3/0x230 [ 109.561987][ T6208] ? clear_bhb_loop+0x35/0x90 [ 109.566687][ T6208] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 109.572601][ T6208] RIP: 0033:0x7f1d4bb7e719 [ 109.577205][ T6208] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 109.596824][ T6208] RSP: 002b:00007f1d4c95e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 109.605262][ T6208] RAX: ffffffffffffffda RBX: 00007f1d4bd36058 RCX: 00007f1d4bb7e719 [ 109.613256][ T6208] RDX: 0000000000000000 RSI: 00000000200003c0 RDI: 0000000000000005 [ 109.621330][ T6208] RBP: 00007f1d4c95e090 R08: 0000000000000000 R09: 0000000000000000 [ 109.629315][ T6208] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 109.637559][ T6208] R13: 0000000000000000 R14: 00007f1d4bd36058 R15: 00007ffd5927d648 [ 109.645555][ T6208] [ 109.662761][ T6205] bridge_slave_0: left allmulticast mode [ 109.669375][ T6205] bridge_slave_0: left promiscuous mode [ 109.675335][ T6205] bridge0: port 1(bridge_slave_0) entered disabled state [ 109.863337][ T6211] Bluetooth: MGMT ver 1.23 [ 110.453101][ T6216] netdevsim netdevsim2 netdevsim0: entered promiscuous mode [ 110.496725][ T6216] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 110.512827][ T5916] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 111.084322][ T5916] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 111.157974][ T5916] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 111.167981][ T5916] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2cf6, bcdDevice= 0.00 [ 111.177159][ T5916] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 111.234543][ T5916] usb 2-1: config 0 descriptor?? [ 111.653364][ T6242] 9pnet_fd: Insufficient options for proto=fd [ 111.708060][ T5915] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 111.717472][ T5916] pyra 0003:1E7D:2CF6.0002: hidraw0: USB HID v0.00 Device [HID 1e7d:2cf6] on usb-dummy_hcd.1-1/input0 [ 111.808546][ T6244] netdevsim netdevsim3 netdevsim0: entered promiscuous mode [ 111.819344][ T6244] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 111.927800][ T5915] usb 5-1: Using ep0 maxpacket: 16 [ 111.950160][ T5840] Bluetooth: hci0: Opcode 0x0c1a failed: -110 [ 111.958200][ T5840] Bluetooth: hci0: command 0x0c1a tx timeout [ 111.958454][ T5915] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 111.998484][ T5915] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2 [ 112.056369][ T5915] usb 5-1: New USB device found, idVendor=1e7d, idProduct=2e22, bcdDevice= 0.00 [ 112.069521][ T6249] FAULT_INJECTION: forcing a failure. [ 112.069521][ T6249] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 112.084242][ T5915] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 112.098151][ T5834] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 112.134719][ T6249] CPU: 0 UID: 0 PID: 6249 Comm: syz.3.100 Not tainted 6.12.0-rc6-syzkaller-00110-gff7afaeca1a1 #0 [ 112.145392][ T6249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 112.155486][ T6249] Call Trace: [ 112.158796][ T6249] [ 112.161755][ T6249] dump_stack_lvl+0x241/0x360 [ 112.166490][ T6249] ? __pfx_dump_stack_lvl+0x10/0x10 [ 112.171736][ T6249] ? __pfx__printk+0x10/0x10 [ 112.176367][ T6249] ? snprintf+0xda/0x120 [ 112.180664][ T6249] should_fail_ex+0x3b0/0x4e0 [ 112.185387][ T6249] _copy_to_user+0x31/0xb0 [ 112.189838][ T6249] simple_read_from_buffer+0xca/0x150 [ 112.195261][ T6249] proc_fail_nth_read+0x1e9/0x250 [ 112.200331][ T6249] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 112.205931][ T6249] ? rw_verify_area+0x55e/0x6f0 [ 112.210819][ T6249] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 112.216412][ T6249] vfs_read+0x1fc/0xb70 [ 112.220614][ T6249] ? __pfx_vfs_read+0x10/0x10 [ 112.225327][ T6249] ? __sys_bpf+0x325/0x810 [ 112.229785][ T6249] ? __pfx___sys_bpf+0x10/0x10 [ 112.234602][ T6249] ? fdget_pos+0x265/0x320 [ 112.239071][ T6249] ksys_read+0x183/0x2b0 [ 112.243358][ T6249] ? __pfx_ksys_read+0x10/0x10 [ 112.248159][ T6249] ? do_syscall_64+0x100/0x230 [ 112.252967][ T6249] ? do_syscall_64+0xb6/0x230 [ 112.257681][ T6249] do_syscall_64+0xf3/0x230 [ 112.262222][ T6249] ? clear_bhb_loop+0x35/0x90 [ 112.266945][ T6249] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 112.272883][ T6249] RIP: 0033:0x7f76f257d15c [ 112.277327][ T6249] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48 [ 112.296974][ T6249] RSP: 002b:00007f76f09f6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 112.305412][ T6249] RAX: ffffffffffffffda RBX: 00007f76f2735f80 RCX: 00007f76f257d15c [ 112.313397][ T6249] RDX: 000000000000000f RSI: 00007f76f09f60a0 RDI: 0000000000000005 [ 112.321378][ T6249] RBP: 00007f76f09f6090 R08: 0000000000000000 R09: 0000000000000000 [ 112.329357][ T6249] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 112.337338][ T6249] R13: 0000000000000000 R14: 00007f76f2735f80 R15: 00007fffb59b67a8 [ 112.345335][ T6249] [ 112.361157][ T5915] usb 5-1: config 0 descriptor?? [ 112.376706][ T5915] usbhid 5-1:0.0: couldn't find an input interrupt endpoint [ 112.377951][ T5834] usb 1-1: Using ep0 maxpacket: 8 [ 112.427647][ T5834] usb 1-1: New USB device found, idVendor=0ccd, idProduct=0069, bcdDevice= 0.55 [ 112.436983][ T5834] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 112.455800][ T5834] usb 1-1: config 0 descriptor?? [ 112.512555][ T5834] usb 1-1: dvb_usb_v2: usb_bulk_msg() failed=-22 [ 112.526338][ T5834] dvb_usb_af9015 1-1:0.0: probe with driver dvb_usb_af9015 failed with error -22 [ 112.673499][ T6256] process 'syz.3.101' launched './file1' with NULL argv: empty string added [ 112.741675][ T5915] usb 1-1: USB disconnect, device number 4 [ 112.830098][ T5916] pyra 0003:1E7D:2CF6.0002: couldn't init struct pyra_device [ 112.838364][ T5916] pyra 0003:1E7D:2CF6.0002: couldn't install mouse [ 112.870626][ T5916] pyra 0003:1E7D:2CF6.0002: probe with driver pyra failed with error -71 [ 112.928179][ T5916] usb 2-1: USB disconnect, device number 7 [ 112.939950][ C1] hrtimer: interrupt took 31293389 ns [ 114.770549][ T5915] usb 5-1: USB disconnect, device number 4 [ 133.073281][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.085650][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 247.007654][ C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 247.014746][ C0] rcu: 1-...!: (2 ticks this GP) idle=400c/1/0x4000000000000000 softirq=14106/14106 fqs=0 [ 247.025542][ C0] rcu: Tasks blocked on level-0 rcu_node (CPUs 0-1): P4167/1:b..l [ 247.033535][ C0] rcu: (detected by 0, t=10502 jiffies, g=10753, q=1689 ncpus=2) [ 247.041394][ C0] Sending NMI from CPU 0 to CPUs 1: [ 247.041437][ C1] NMI backtrace for cpu 1 [ 247.041459][ C1] CPU: 1 UID: 0 PID: 5819 Comm: syz-executor Not tainted 6.12.0-rc6-syzkaller-00110-gff7afaeca1a1 #0 [ 247.041479][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 247.041496][ C1] RIP: 0010:kasan_check_range+0x86/0x290 [ 247.041547][ C1] Code: 00 fc ff df 4f 8d 3c 31 4c 89 fd 4c 29 dd 48 83 fd 10 7f 29 48 85 ed 0f 84 3e 01 00 00 4c 89 cd 48 f7 d5 48 01 dd 41 80 3b 00 <0f> 85 c9 01 00 00 49 ff c3 48 ff c5 75 ee e9 1e 01 00 00 45 89 dc [ 247.041561][ C1] RSP: 0018:ffffc90000a18b10 EFLAGS: 00000046 [ 247.041576][ C1] RAX: 0000000000000001 RBX: 1ffffffff34be6de RCX: ffffffff8171b4b8 [ 247.041589][ C1] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffffff9a5f36f0 [ 247.041600][ C1] RBP: ffffffffffffffff R08: ffffffff9a5f36f3 R09: 1ffffffff34be6de [ 247.041613][ C1] R10: dffffc0000000000 R11: fffffbfff34be6de R12: dffffc0000000000 [ 247.041626][ C1] R13: 1ffff92000143174 R14: dffffc0000000001 R15: fffffbfff34be6df [ 247.041639][ C1] FS: 00005555612eb500(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000 [ 247.041654][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 247.041666][ C1] CR2: 00007f003b843e1c CR3: 00000000349fe000 CR4: 00000000003526f0 [ 247.041681][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 247.041691][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 247.041701][ C1] Call Trace: [ 247.041710][ C1] [ 247.041718][ C1] ? nmi_cpu_backtrace+0x3c2/0x4d0 [ 247.041744][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 247.041771][ C1] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 247.041795][ C1] ? nmi_handle+0x2a/0x5a0 [ 247.041819][ C1] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 247.041842][ C1] ? nmi_handle+0x14f/0x5a0 [ 247.041859][ C1] ? nmi_handle+0x2a/0x5a0 [ 247.041877][ C1] ? kasan_check_range+0x86/0x290 [ 247.041902][ C1] ? default_do_nmi+0x63/0x160 [ 247.041929][ C1] ? exc_nmi+0x123/0x1f0 [ 247.041953][ C1] ? end_repeat_nmi+0xf/0x53 [ 247.041976][ C1] ? do_raw_spin_unlock+0x58/0x8b0 [ 247.041999][ C1] ? kasan_check_range+0x86/0x290 [ 247.042025][ C1] ? kasan_check_range+0x86/0x290 [ 247.042051][ C1] ? kasan_check_range+0x86/0x290 [ 247.042076][ C1] [ 247.042082][ C1] [ 247.042089][ C1] do_raw_spin_unlock+0x58/0x8b0 [ 247.042111][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 247.042135][ C1] _raw_spin_unlock_irqrestore+0x81/0x140 [ 247.042153][ C1] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 247.042175][ C1] debug_object_deactivate+0x2d5/0x390 [ 247.042196][ C1] ? __pfx_debug_object_deactivate+0x10/0x10 [ 247.042215][ C1] ? timerqueue_add+0x260/0x290 [ 247.042238][ C1] ? __pfx__raw_spin_lock_irq+0x10/0x10 [ 247.042257][ C1] debug_deactivate+0x1b/0x220 [ 247.042276][ C1] __hrtimer_run_queues+0x305/0xd50 [ 247.042293][ C1] ? ktime_get_update_offsets_now+0x3c/0x250 [ 247.042323][ C1] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 247.042344][ C1] hrtimer_interrupt+0x396/0x990 [ 247.042371][ C1] __sysvec_apic_timer_interrupt+0x110/0x420 [ 247.042390][ C1] sysvec_apic_timer_interrupt+0xa1/0xc0 [ 247.042410][ C1] [ 247.042415][ C1] [ 247.042421][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 247.042441][ C1] RIP: 0010:__unwind_start+0x55e/0x740 [ 247.042456][ C1] Code: 80 3c 14 00 74 12 4c 89 ef e8 0e f9 b9 00 48 ba 00 00 00 00 00 fc ff df 48 3b 5c 24 10 77 3f 49 8b 45 00 48 3b 44 24 10 76 34 <48> 39 5c 24 08 76 2d 48 39 44 24 08 77 26 48 8b 44 24 20 80 3c 10 [ 247.042469][ C1] RSP: 0018:ffffc90003f0f7a0 EFLAGS: 00000202 [ 247.042484][ C1] RAX: ffffc90003f10000 RBX: ffffc90003f08000 RCX: 0000000000000001 [ 247.042496][ C1] RDX: dffffc0000000000 RSI: ffffc90003f10000 RDI: ffffc90003f0f7a0 [ 247.042508][ C1] RBP: 1ffff920007e1f01 R08: ffffc90003f0f801 R09: 0000000000000000 [ 247.042520][ C1] R10: ffffc90003f0f800 R11: fffff520007e1f0c R12: 1ffff920007e1f02 [ 247.042533][ C1] R13: ffffc90003f0f810 R14: ffffc90003f0f800 R15: ffffc90003f0f808 [ 247.042555][ C1] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 247.042577][ C1] arch_stack_walk+0xe5/0x150 [ 247.042597][ C1] ? __unwind_start+0xf8/0x740 [ 247.042614][ C1] stack_trace_save+0x118/0x1d0 [ 247.042635][ C1] ? __pfx_stack_trace_save+0x10/0x10 [ 247.042660][ C1] save_stack+0xfb/0x1f0 [ 247.042684][ C1] ? __pfx_save_stack+0x10/0x10 [ 247.042713][ C1] ? page_ext_get+0x20/0x2a0 [ 247.042739][ C1] __reset_page_owner+0x76/0x430 [ 247.042766][ C1] free_unref_page+0xcd0/0xf00 [ 247.042791][ C1] __slab_free+0x31b/0x3d0 [ 247.042816][ C1] ? __phys_addr+0xba/0x170 [ 247.042833][ C1] qlist_free_all+0x9a/0x140 [ 247.042858][ C1] kasan_quarantine_reduce+0x14f/0x170 [ 247.042884][ C1] __kasan_slab_alloc+0x23/0x80 [ 247.042908][ C1] ? alloc_pipe_info+0x1ff/0x4d0 [ 247.042932][ C1] __kmalloc_noprof+0x1a6/0x400 [ 247.042952][ C1] alloc_pipe_info+0x1ff/0x4d0 [ 247.042978][ C1] create_pipe_files+0x87/0x700 [ 247.043002][ C1] ? handle_softirqs+0x7ac/0x980 [ 247.043027][ C1] __do_pipe_flags+0x48/0x2d0 [ 247.043052][ C1] do_pipe2+0xd4/0x310 [ 247.043069][ C1] ? __pfx_do_pipe2+0x10/0x10 [ 247.043083][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 247.043109][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 247.043140][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 247.043164][ C1] ? __irq_exit_rcu+0x100/0x1c0 [ 247.043207][ C1] __x64_sys_pipe2+0x5a/0x70 [ 247.043232][ C1] do_syscall_64+0xf3/0x230 [ 247.043254][ C1] ? clear_bhb_loop+0x35/0x90 [ 247.043275][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 247.043294][ C1] RIP: 0033:0x7f003d97d469 [ 247.043316][ C1] Code: c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 31 f6 b8 25 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 07 c3 66 0f 1f 44 00 00 48 c7 c2 a8 ff ff ff [ 247.043330][ C1] RSP: 002b:00007ffc2d92ef88 EFLAGS: 00000246 ORIG_RAX: 0000000000000125 [ 247.043347][ C1] RAX: ffffffffffffffda RBX: 00005555612ffaf0 RCX: 00007f003d97d469 [ 247.043360][ C1] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 00007ffc2d92ef98 [ 247.043371][ C1] RBP: 00007ffc2d92f560 R08: 0000000000000007 R09: 0000555561302c40 [ 247.043382][ C1] R10: ba233592f55bc4c5 R11: 0000000000000246 R12: 00007ffc2d92f3b0 [ 247.043394][ C1] R13: 0000555561302990 R14: 00007ffc2d92f0d0 R15: 0000555561305130 [ 247.043414][ C1] [ 247.043437][ C0] task:kworker/u8:6 state:R running task stack:17432 pid:4167 tgid:4167 ppid:2 flags:0x00004000 [ 247.677066][ C0] Workqueue: bat_events batadv_nc_worker [ 247.682739][ C0] Call Trace: [ 247.686040][ C0] [ 247.689003][ C0] __schedule+0x17fa/0x4bd0 [ 247.693574][ C0] ? __pfx___schedule+0x10/0x10 [ 247.698454][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 247.704484][ C0] ? preempt_schedule_irq+0xf0/0x1c0 [ 247.709805][ C0] preempt_schedule_irq+0xfb/0x1c0 [ 247.714947][ C0] ? __pfx_preempt_schedule_irq+0x10/0x10 [ 247.720893][ C0] irqentry_exit+0x5e/0x90 [ 247.725343][ C0] asm_common_interrupt+0x26/0x40 [ 247.730409][ C0] RIP: 0010:lock_acquire+0xdc/0x550 [ 247.735646][ C0] Code: 08 0f 83 f4 02 00 00 89 c3 48 89 d8 48 c1 e8 06 48 8d 3c c5 68 dc 1b 90 be 08 00 00 00 e8 dc 36 8b 00 48 0f a3 1d 5c 94 ab 0e <73> 16 e8 3d 7f 0a 00 84 c0 75 0d 80 3d de 56 95 0e 00 0f 84 f9 02 [ 247.755278][ C0] RSP: 0018:ffffc9000d4579e0 EFLAGS: 00000257 [ 247.761384][ C0] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffff81704804 [ 247.769389][ C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff901bdc68 [ 247.777386][ C0] RBP: ffffc9000d457b40 R08: ffffffff901bdc6f R09: 1ffffffff2037b8d [ 247.785388][ C0] R10: dffffc0000000000 R11: fffffbfff2037b8e R12: 1ffff92001a8af44 [ 247.793387][ C0] R13: dffffc0000000000 R14: 0000000000000000 R15: dffffc0000000000 [ 247.801399][ C0] ? lock_acquire+0xd4/0x550 [ 247.806047][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 247.811116][ C0] ? batadv_nc_worker+0xcb/0x610 [ 247.816084][ C0] ? __pfx_lock_release+0x10/0x10 [ 247.821164][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 247.827197][ C0] batadv_nc_worker+0xec/0x610 [ 247.831998][ C0] ? batadv_nc_worker+0xcb/0x610 [ 247.837052][ C0] ? batadv_nc_worker+0xcb/0x610 [ 247.842108][ C0] ? process_scheduled_works+0x976/0x1850 [ 247.847868][ C0] process_scheduled_works+0xa63/0x1850 [ 247.853489][ C0] ? __pfx_process_scheduled_works+0x10/0x10 [ 247.859518][ C0] ? assign_work+0x364/0x3d0 [ 247.864191][ C0] worker_thread+0x870/0xd30 [ 247.868847][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 247.874788][ C0] ? __kthread_parkme+0x169/0x1d0 [ 247.879860][ C0] ? __pfx_worker_thread+0x10/0x10 [ 247.885007][ C0] kthread+0x2f0/0x390 [ 247.889190][ C0] ? __pfx_worker_thread+0x10/0x10 [ 247.894340][ C0] ? __pfx_kthread+0x10/0x10 [ 247.898958][ C0] ret_from_fork+0x4b/0x80 [ 247.903410][ C0] ? __pfx_kthread+0x10/0x10 [ 247.908036][ C0] ret_from_fork_asm+0x1a/0x30 [ 247.912854][ C0] [ 247.915911][ C0] rcu: rcu_preempt kthread timer wakeup didn't happen for 10501 jiffies! g10753 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 [ 247.928431][ C0] rcu: Possible timer handling issue on cpu=1 timer-softirq=4600 [ 247.936252][ C0] rcu: rcu_preempt kthread starved for 10502 jiffies! g10753 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 ->cpu=1 [ 247.947645][ C0] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 247.957633][ C0] rcu: RCU grace-period kthread stack dump: [ 247.963554][ C0] task:rcu_preempt state:I stack:25920 pid:17 tgid:17 ppid:2 flags:0x00004000 [ 247.973862][ C0] Call Trace: [ 247.977184][ C0] [ 247.980145][ C0] __schedule+0x17fa/0x4bd0 [ 247.984703][ C0] ? __pfx___schedule+0x10/0x10 [ 247.989596][ C0] ? __pfx_lock_release+0x10/0x10 [ 247.994748][ C0] ? __asan_memset+0x23/0x50 [ 247.999379][ C0] ? __pfx_lockdep_init_map_type+0x10/0x10 [ 248.005223][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 248.011608][ C0] ? schedule+0x90/0x320 [ 248.015878][ C0] schedule+0x14b/0x320 [ 248.020064][ C0] schedule_timeout+0x1be/0x310 [ 248.024959][ C0] ? __pfx_schedule_timeout+0x10/0x10 [ 248.030369][ C0] ? __pfx_process_timeout+0x10/0x10 [ 248.035707][ C0] ? prepare_to_swait_event+0x330/0x350 [ 248.041310][ C0] rcu_gp_fqs_loop+0x2df/0x1330 [ 248.046185][ C0] ? lockdep_hardirqs_on+0x99/0x150 [ 248.051416][ C0] ? rcu_gp_init+0x1256/0x1630 [ 248.056584][ C0] ? __pfx_rcu_gp_init+0x10/0x10 [ 248.061565][ C0] ? __pfx_rcu_watching_snap_save+0x10/0x10 [ 248.067579][ C0] ? __pfx_rcu_gp_fqs_loop+0x10/0x10 [ 248.072893][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 248.078822][ C0] ? finish_swait+0xd4/0x1e0 [ 248.083451][ C0] rcu_gp_kthread+0xa7/0x3b0 [ 248.088116][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 248.093346][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 248.099288][ C0] ? __kthread_parkme+0x169/0x1d0 [ 248.104361][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 248.109585][ C0] kthread+0x2f0/0x390 [ 248.113686][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 248.118916][ C0] ? __pfx_kthread+0x10/0x10 [ 248.123535][ C0] ret_from_fork+0x4b/0x80 [ 248.128008][ C0] ? __pfx_kthread+0x10/0x10 [ 248.132644][ C0] ret_from_fork_asm+0x1a/0x30 [ 248.137478][ C0]