last executing test programs: 2m41.449645882s ago: executing program 3: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0) ioctl$SNDCTL_DSP_CHANNELS(r1, 0xc0045006, &(0x7f0000000100)) r2 = socket$inet6_sctp(0xa, 0x1, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x4e20, @local}]}, &(0x7f0000000100)=0x10) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f0000000180)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x0, 0x989, 0x0, 0x10}, 0x9c) sendmmsg$inet6(r2, &(0x7f0000003f00)=[{{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000140)="a2", 0x1}], 0x1}}], 0x1, 0x4000005) 2m40.93565881s ago: executing program 3: gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)={0x14, 0x24, 0x9, 0x0, 0x0, {0x6}}, 0x14}}, 0x0) 2m7.537316895s ago: executing program 3: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000000c0)='./bus\x00', 0xe, &(0x7f0000000640)={[{@jqfmt_vfsv0}, {@user_xattr}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@errors_continue}, {@noacl}, {@sysvgroups}]}, 0x3, 0x44b, &(0x7f00000001c0)="$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") bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0x6, [@var={0x4, 0x0, 0x0, 0xe, 0x4}, @func_proto={0x0, 0x0, 0x0, 0xd, 0x4}, @typedef={0x0, 0x0, 0x0, 0x4}, @volatile={0x0, 0x0, 0x0, 0xa}]}, {0x0, [0x0, 0x0, 0x0, 0x61]}}, 0x0, 0x52}, 0x20) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./bus\x00', 0x200000, &(0x7f0000002880)={[{@user_xattr}, {@nombcache}, {@journal_dev={'journal_dev', 0x3d, 0x1}}, {@usrjquota}, {@barrier}, {@lazytime}, {@init_itable_val={'init_itable', 0x3d, 0x5}}, {@jqfmt_vfsold}, {@grpjquota}]}, 0xfe, 0x577, &(0x7f00000014c0)="$eJzs3UtrXFUcAPD/nTz61KZQi7qQQBdWaidN4qOCSF2KFgO6r0NyG0omnZKZlCYWbBd2040UQcSCuPEzdFn8An6KghaKlKALN5E7uZNOm5vXdNrEzu8Htz3nPnLumXPPmXPmzHAC6FnD2T+liNci4rsk4lDbsf7IDw6vnLf08OpktiWxvPzFX0kk+b7W+Un+/4E88mpE/PZtxInS2nTrC4szlWo1ncvjI43ZSyP1hcWTF2Yr0+l0enFsfPz0u+NjH7z/Xtfy+tbEPz9+fveT0zePLf2wJw7fSuJMHMyPtefjKVxrjwzHcP6aDMSZJ04c7UJiu0my0zdAR/ryej4QWRtwKPryWg+8+L6JiGWgRyXqP/SoVj+gNbbv0jj4f+PBxysDoLX571/5bCT2NsdG+5eSx0ZG2Xh3qAvpZ2nc+fP2rWyL7n0OAbCpa9cj4lR//9r2L8nbv86d2sI5T6ah/YPn527W/3m7qP9TWu3/REH/50BB3e3E5vW/dL/gsqRbn1Jn/b8PC/u/q5NWQ30R8UpEvNTs8w0k5y9U06xtezkijsfAniy+0XzO6aV7y+sda+//ZVuWfqsvmN/H/f49j18zVWlUnibP7R5cj3i9sP+brJZ/UlD+2aszscU0jqa331jvWEH+7wxOT9x6qkxtw/IvEW8Wlv+jGa1k4/nJkebzMNJ6Ktb6+8bR39dLf/Pyf7ay8t+/cf6Hkvb52vr20/h577/pesc6ff4Hky+b4cF835VKozE3GjGYfLZ2/9ija1vx1vlZ/o8f27j9K3r+921j/HfjyI2vOs//s5Xlf2pb5b/9wL1Pv/5pvfS3Vv7vNEPH8z1baf82vq9fz1Y+6vRpBgAAAAAAgN2rFBEHIymVV8OlUrm88v2OI7G/VK3VGyfO1+YvTkXzt7JDMVBqzXQfavs+xGg+H9qKjz0RH4+IwxHxfd++Zrw8WatO7XTmAQAAAAAAAAAAAAAAAAAAYJc4sM7v/zN/9BVeMvh87xB4ptoWNihYqh94kW26mFI3VnoCdqXtL6bWreXXgJ3WUW3e1/37AJ4/7+bQowZ2+gaAneT9H3qX+g+9S/2H3qX+AwAAAAAAAAAAAAAAAAAAAAAAAAAAQFdNnD2bbctLD69OZvGpywvzM7XLJ6fS+kx5dn6yPFmbu1SertWmq2l5sja72d+r1mqXRsdi/spII603RuoLi+dma/MXG+cuzFam03Op1YYAAAAAAAAAAAAAAAAAAABgrfrC4kylWk3nBAQ6CvTvjtsQaAvc7ELt3uGGCQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADa/BcAAP//NhQyuA==") bind$inet6(0xffffffffffffffff, 0x0, 0x0) listen(0xffffffffffffffff, 0x0) r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b60affff800080008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000400000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) getpid() sched_setaffinity(0x0, 0x0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket(0x400000000010, 0x0, 0x0) open(0x0, 0x0, 0x0) r3 = getpid() process_vm_readv(r3, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0) mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./bus\x00', 0x0, 0x1000, 0x0) open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) getdents64(r4, 0x0, 0x0) lsetxattr$system_posix_acl(&(0x7f00000001c0)='.\x00', &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000800)={{}, {}, [], {0x2}, [], {0x2}, {0x2}}, 0x24, 0x0) 32.752944217s ago: executing program 3: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000000c0)='./bus\x00', 0xe, &(0x7f0000000640)={[{@jqfmt_vfsv0}, {@user_xattr}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@errors_continue}, {@noacl}, {@sysvgroups}]}, 0x3, 0x44b, &(0x7f00000001c0)="$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") bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0x6, [@var={0x4, 0x0, 0x0, 0xe, 0x4}, @func_proto={0x0, 0x0, 0x0, 0xd, 0x4}, @typedef={0x0, 0x0, 0x0, 0x4}, @volatile={0x0, 0x0, 0x0, 0xa}]}, {0x0, [0x0, 0x0, 0x0, 0x61]}}, 0x0, 0x52}, 0x20) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./bus\x00', 0x200000, &(0x7f0000002880)={[{@user_xattr}, {@nombcache}, {@journal_dev={'journal_dev', 0x3d, 0x1}}, {@usrjquota}, {@barrier}, {@lazytime}, {@init_itable_val={'init_itable', 0x3d, 0x5}}, {@jqfmt_vfsold}, {@grpjquota}]}, 0xfe, 0x577, &(0x7f00000014c0)="$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") bind$inet6(0xffffffffffffffff, 0x0, 0x0) listen(0xffffffffffffffff, 0x0) r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b60affff800080008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000400000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) getpid() sched_setaffinity(0x0, 0x0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket(0x400000000010, 0x0, 0x0) open(0x0, 0x0, 0x0) r3 = getpid() process_vm_readv(r3, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0) mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./bus\x00', 0x0, 0x1000, 0x0) open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) getdents64(r4, 0x0, 0x0) lsetxattr$system_posix_acl(&(0x7f00000001c0)='.\x00', &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000800)={{}, {}, [], {0x2}, [], {0x2}, {0x2}}, 0x24, 0x0) 29.278890745s ago: executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = dup(r2) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@textreal={0x8, 0x0}], 0x1, 0x18, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$EVIOCGMASK(r0, 0x80104592, &(0x7f0000000300)={0x0, 0xffffffffffffff36, &(0x7f0000000200)="952bb3e006ae9a4c3a"}) 26.398406225s ago: executing program 3: r0 = syz_open_dev$radio(&(0x7f00000002c0), 0x3, 0x2) ioctl$VIDIOC_S_MODULATOR(r0, 0x40445637, &(0x7f0000001040)={0x0, "404e0c14955032d39c652cee53d58df40564f3fddbfd070bafc167a793c2ac1b"}) 3.762914851s ago: executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="2c0000003b0007010000000000000000027c000004000000140001"], 0x2c}}, 0x0) 3.621012658s ago: executing program 4: socket$inet6(0xa, 0x0, 0x0) openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) write$cgroup_devices(r0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0700a3fcf070d1ff"], 0xffdd) 3.004223099s ago: executing program 4: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x3, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @mcast2}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0xfe}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @private1}}]}, 0x70}, 0x1, 0x7}, 0x0) 2.849995475s ago: executing program 4: pipe(&(0x7f0000001380)={0xffffffffffffffff}) ioctl$IOC_WATCH_QUEUE_SET_FILTER(r0, 0x5761, 0x0) 2.668747669s ago: executing program 4: inotify_init1(0x0) flistxattr(0xffffffffffffffff, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) getpid() sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r2 = add_key$fscrypt_v1(&(0x7f00000000c0), &(0x7f0000000100)={'fscrypt:', @desc3}, &(0x7f0000000240)={0x0, "204d25b5a40d3e18c2f88aae6a7ca15c53be361b9c69f53009df14d73fd0deafad693b4028917de332a0b38365b30a646f61db7285b8e34d4075bd4e2fee1c8f", 0x2e}, 0x48, 0xfffffffffffffff8) add_key$keyring(0x0, 0x0, 0x0, 0x0, r2) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/netlink\x00') ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(0xffffffffffffffff, 0x40605346, 0x0) pselect6(0x40, &(0x7f0000000000)={0xfc}, 0x0, 0x0, 0x0, 0x0) r4 = socket$kcm(0x2, 0x200000000000001, 0x106) sendmsg$inet(r4, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x0, @dev}, 0x10, 0x0}, 0x30044041) ioctl$KVM_CAP_EXIT_HYPERCALL(r3, 0x4068aea3, 0x0) r5 = socket$kcm(0x2, 0x200000000000001, 0x106) pipe(&(0x7f0000001340)={0xffffffffffffffff}) r7 = socket$inet_udp(0x2, 0x2, 0x0) socket$nl_route(0x10, 0x3, 0x0) splice(r6, 0x0, r7, 0x0, 0x100000004, 0x0) sendmsg$kcm(r5, &(0x7f0000001900)={0x0, 0x0, 0x0}, 0x20040000) sendmsg$inet(r5, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x0, @dev}, 0x10, 0x0}, 0x30044041) socket$kcm(0x10, 0x2, 0x10) 2.080823623s ago: executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18) r1 = accept4(r0, 0x0, 0x0, 0x0) sendmmsg$alg(r1, &(0x7f0000001c40)=[{0x0, 0x0, 0x0}], 0x1, 0x0) sendmsg$unix(r1, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000640)=[@rights={{0x10}}], 0x10}, 0x0) 1.868773666s ago: executing program 1: pipe(&(0x7f0000001380)={0xffffffffffffffff}) ioctl$IOC_WATCH_QUEUE_SET_FILTER(r0, 0x5761, 0x0) 1.688417048s ago: executing program 1: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) pipe(&(0x7f0000000580)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a010100000100000000000200fffc0900010073797a30"], 0x1e4}}, 0x0) write$binfmt_misc(r2, 0x0, 0xfffffecc) splice(r1, 0x0, r3, 0x0, 0x7fff, 0x0) 1.493635379s ago: executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fd7000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_NESTED_STATE(r2, 0x4080aebf, &(0x7f0000003680)={{0x0, 0x0, 0x80}, "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", "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"}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000040)="660f3881ae000000c483b17e35e661c286000f08c4a2ed8c03f30f09f30fc7b5c5a40000410f01cbc4c2f9341cd50d0000000f7973d50f08", 0x38}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 1.149745466s ago: executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f00000003c0)='./file1\x00', 0x105042, 0x0) write$FUSE_DIRENTPLUS(r0, &(0x7f0000000600)=ANY=[], 0x4000) syz_io_uring_setup(0x1868, &(0x7f00000003c0), &(0x7f00000000c0)=0x0, &(0x7f0000000240)) syz_io_uring_submit(r1, 0x0, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xfffffffffffffe54}) io_uring_enter(0xffffffffffffffff, 0x184c, 0x0, 0x0, 0x0, 0x0) 1.127322335s ago: executing program 1: r0 = syz_open_dev$video(&(0x7f0000000000), 0x101, 0x0) ioctl$VIDIOC_LOG_STATUS(r0, 0x5646, 0x0) 900.069717ms ago: executing program 0: r0 = socket$netlink(0x10, 0x3, 0x10) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010300000ae6f72087a003"], 0x3c}}, 0x0) syz_open_dev$vim2m(&(0x7f00000006c0), 0x0, 0x2) r1 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_group_source_req(r1, 0x0, 0x2b, &(0x7f00000004c0)={0x0, {{0x2, 0x0, @multicast2}}, {{0x2, 0x0, @empty}}}, 0x108) syz_genetlink_get_family_id$SEG6(&(0x7f0000000300), r0) 801.672611ms ago: executing program 2: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x8002}, 0x8) getsockopt$bt_hci(r0, 0x84, 0x7f, &(0x7f0000000080)=""/4057, &(0x7f0000000000)=0xfd9) 712.633023ms ago: executing program 2: prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0)) msync(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0) 626.653086ms ago: executing program 0: r0 = openat$uinput(0xffffffffffffff9c, 0x0, 0x2, 0x0) write$uinput_user_dev(r0, &(0x7f0000000a80)={'syz1\x00'}, 0x45c) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x1) ioctl$UI_DEV_CREATE(r0, 0x5501) write$uinput_user_dev(r0, &(0x7f0000000180)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [], [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001]}, 0x45c) 612.224154ms ago: executing program 4: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) pipe(&(0x7f0000000580)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a010100000100000000000200fffc0900010073797a30"], 0x1e4}}, 0x0) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc) splice(0xffffffffffffffff, 0x0, r2, 0x0, 0x7fff, 0x0) 538.84735ms ago: executing program 2: write(0xffffffffffffffff, &(0x7f0000000140)='/', 0x1) sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000001000), 0xfec) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x100000c, 0x11, 0xffffffffffffffff, 0x0) setitimer(0x0, &(0x7f0000000100)={{0x0, 0xea60}, {0x0, 0xea60}}, 0x0) 522.949078ms ago: executing program 0: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) r1 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, 0x0, 0x0) getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0x19, &(0x7f0000000100)=@assoc_value={r2}, 0x8) 403.285141ms ago: executing program 2: r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000001380)=0xa0000) ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000040)={@hyper}) ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r0, 0x7a4, 0x0) 340.875461ms ago: executing program 0: prctl$PR_GET_TID_ADDRESS(0x1d, &(0x7f0000000000)) 232.561886ms ago: executing program 2: socket$inet6_udplite(0xa, 0x2, 0x88) r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f00000000c0)={0xfffd, 0x3}, 0x4) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000280)) setresuid(0x0, 0x0, 0x0) ioprio_set$pid(0x1, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000040)='veth1_virt_wifi\x00', 0x10) r2 = dup(r1) r3 = epoll_create(0x8002) r4 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r4, &(0x7f0000000040)) r5 = openat$apparmor_thread_current(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) write$apparmor_current(r5, &(0x7f00000004c0)=ANY=[@ANYBLOB], 0x278) r6 = socket$alg(0x26, 0x5, 0x0) r7 = getpid() fcntl$lock(r6, 0x24, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, r7}) sched_setscheduler(0x0, 0x3, 0x0) io_uring_setup(0x30d3, &(0x7f0000000000)) sendmsg$tipc(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, 0x0}, 0x0) sendmsg$inet(r2, &(0x7f0000000780)={&(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f0000000000)="be39", 0xffeb}], 0x1, &(0x7f0000000c80)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @private}}}], 0xf}, 0x0) 117.066763ms ago: executing program 0: r0 = memfd_create(&(0x7f0000000140)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\x1b\x00m\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\xea7\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xa7I\v\x86EZ\x96\xd5\x14OD\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\xd9w\\\xf8\xce\xb0j\x9d\'\x93\xef\x1d\xa0H\xcd\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00', 0x3) fcntl$addseals(r0, 0x409, 0x7) r1 = openat$udambuf(0xffffffffffffff9c, &(0x7f00000000c0), 0x2) ioctl$UDMABUF_CREATE(r1, 0x40187542, &(0x7f0000000300)={r0, 0x0, 0xfffffffffffff000, 0x10000}) 68.873195ms ago: executing program 1: r0 = socket$unix(0x1, 0x2, 0x0) setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000240), 0x4) 0s ago: executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f00000003c0)='./file1\x00', 0x105042, 0x0) write$FUSE_DIRENTPLUS(r0, &(0x7f0000000600)=ANY=[], 0x4000) syz_io_uring_setup(0x1868, &(0x7f00000003c0), &(0x7f00000000c0)=0x0, &(0x7f0000000240)) syz_io_uring_submit(r1, 0x0, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xfffffffffffffe54}) io_uring_enter(0xffffffffffffffff, 0x184c, 0x0, 0x0, 0x0, 0x0) kernel console output (not intermixed with test programs): ond EOD, truncated [ 344.958437][ T7501] loop2: p144 size 520093696 extends beyond EOD, truncated [ 344.967112][ T7501] loop2: p145 size 108986237 extends beyond EOD, truncated [ 344.975688][ T7501] loop2: p146 size 520093696 extends beyond EOD, truncated [ 344.984800][ T7501] loop2: p147 size 108986237 extends beyond EOD, truncated [ 344.993859][ T7501] loop2: p148 size 520093696 extends beyond EOD, truncated [ 345.003551][ T7501] loop2: p149 size 108986237 extends beyond EOD, truncated [ 345.012722][ T7501] loop2: p150 size 520093696 extends beyond EOD, truncated [ 345.021875][ T7501] loop2: p151 size 108986237 extends beyond EOD, truncated [ 345.034628][ T7501] loop2: p152 size 520093696 extends beyond EOD, truncated [ 345.044786][ T7501] loop2: p153 size 108986237 extends beyond EOD, truncated [ 345.053698][ T7501] loop2: p154 size 520093696 extends beyond EOD, truncated [ 345.062819][ T7501] loop2: p155 size 108986237 extends beyond EOD, truncated [ 345.072201][ T7501] loop2: p156 size 520093696 extends beyond EOD, truncated [ 345.086880][ T7501] loop2: p157 size 108986237 extends beyond EOD, truncated [ 345.095747][ T7501] loop2: p158 size 520093696 extends beyond EOD, truncated [ 345.104952][ T7501] loop2: p159 size 108986237 extends beyond EOD, truncated [ 345.113718][ T7501] loop2: p160 size 520093696 extends beyond EOD, truncated [ 345.123590][ T7501] loop2: p161 size 108986237 extends beyond EOD, truncated [ 345.137931][ T7501] loop2: p162 size 520093696 extends beyond EOD, truncated [ 345.153571][ T7501] loop2: p163 size 108986237 extends beyond EOD, truncated [ 345.164534][ T7501] loop2: p164 size 520093696 extends beyond EOD, truncated [ 345.177479][ T7501] loop2: p165 size 108986237 extends beyond EOD, truncated [ 345.188800][ T7501] loop2: p166 size 520093696 extends beyond EOD, truncated [ 345.197615][ T7501] loop2: p167 size 108986237 extends beyond EOD, truncated [ 345.206287][ T7501] loop2: p168 size 520093696 extends beyond EOD, truncated [ 345.215064][ T7501] loop2: p169 size 108986237 extends beyond EOD, truncated [ 345.222696][ T5114] Bluetooth: hci6: command 0x0406 tx timeout [ 345.240525][ T7501] loop2: p170 size 520093696 extends beyond EOD, truncated [ 345.249892][ T7501] loop2: p171 size 108986237 extends beyond EOD, truncated [ 345.262625][ T7501] loop2: p172 size 520093696 extends beyond EOD, truncated [ 345.275673][ T7501] loop2: p173 size 108986237 extends beyond EOD, truncated [ 345.285765][ T7501] loop2: p174 size 520093696 extends beyond EOD, truncated [ 345.294592][ T7501] loop2: p175 size 108986237 extends beyond EOD, truncated [ 345.306009][ T7501] loop2: p176 size 520093696 extends beyond EOD, truncated [ 345.315309][ T7501] loop2: p177 size 108986237 extends beyond EOD, truncated [ 345.324624][ T7501] loop2: p178 size 520093696 extends beyond EOD, truncated [ 345.333492][ T7501] loop2: p179 size 108986237 extends beyond EOD, truncated [ 345.343238][ T7501] loop2: p180 size 520093696 extends beyond EOD, truncated [ 345.352233][ T7501] loop2: p181 size 108986237 extends beyond EOD, truncated [ 345.361159][ T7501] loop2: p182 size 520093696 extends beyond EOD, truncated [ 345.369901][ T7501] loop2: p183 size 108986237 extends beyond EOD, truncated [ 345.378684][ T7501] loop2: p184 size 520093696 extends beyond EOD, truncated [ 345.394932][ T7501] loop2: p185 size 108986237 extends beyond EOD, truncated [ 345.403856][ T7501] loop2: p186 size 520093696 extends beyond EOD, truncated [ 345.413889][ T7501] loop2: p187 size 108986237 extends beyond EOD, truncated [ 345.425427][ T7501] loop2: p188 size 520093696 extends beyond EOD, truncated [ 345.434339][ T7501] loop2: p189 size 108986237 extends beyond EOD, truncated [ 345.447134][ T7501] loop2: p190 size 520093696 extends beyond EOD, truncated [ 345.455719][ T7501] loop2: p191 size 108986237 extends beyond EOD, truncated [ 345.464552][ T7501] loop2: p192 size 520093696 extends beyond EOD, truncated [ 345.475132][ T7501] loop2: p193 size 108986237 extends beyond EOD, truncated [ 345.483871][ T7501] loop2: p194 size 520093696 extends beyond EOD, truncated [ 345.502123][ T7501] loop2: p195 size 108986237 extends beyond EOD, truncated [ 345.514080][ T7501] loop2: p196 size 520093696 extends beyond EOD, truncated [ 345.524100][ T7501] loop2: p197 size 108986237 extends beyond EOD, truncated [ 345.533215][ T2918] team0 (unregistering): Port device team_slave_1 removed [ 345.537432][ T7501] loop2: p198 size 520093696 extends beyond EOD, truncated [ 345.550676][ T7501] loop2: p199 size 108986237 extends beyond EOD, truncated [ 345.560598][ T7501] loop2: p200 size 520093696 extends beyond EOD, truncated [ 345.569210][ T7501] loop2: p201 size 108986237 extends beyond EOD, truncated [ 345.580886][ T7501] loop2: p202 size 520093696 extends beyond EOD, truncated [ 345.595867][ T7501] loop2: p203 size 108986237 extends beyond EOD, truncated [ 345.604578][ T7501] loop2: p204 size 520093696 extends beyond EOD, truncated [ 345.615171][ T7501] loop2: p205 size 108986237 extends beyond EOD, truncated [ 345.616990][ T2918] team0 (unregistering): Port device team_slave_0 removed [ 345.631605][ T7501] loop2: p206 size 520093696 extends beyond EOD, truncated [ 345.647401][ T7501] loop2: p207 size 108986237 extends beyond EOD, truncated [ 345.656028][ T7501] loop2: p208 size 520093696 extends beyond EOD, truncated [ 345.664768][ T7501] loop2: p209 size 108986237 extends beyond EOD, truncated [ 345.673523][ T7501] loop2: p210 size 520093696 extends beyond EOD, truncated [ 345.682762][ T7501] loop2: p211 size 108986237 extends beyond EOD, truncated [ 345.691584][ T7501] loop2: p212 size 520093696 extends beyond EOD, truncated [ 345.700809][ T7501] loop2: p213 size 108986237 extends beyond EOD, truncated [ 345.709439][ T7501] loop2: p214 size 520093696 extends beyond EOD, truncated [ 345.718273][ T7501] loop2: p215 size 108986237 extends beyond EOD, truncated [ 345.727306][ T7501] loop2: p216 size 520093696 extends beyond EOD, truncated [ 345.738839][ T7501] loop2: p217 size 108986237 extends beyond EOD, truncated [ 345.750182][ T7501] loop2: p218 size 520093696 extends beyond EOD, truncated [ 345.762501][ T7501] loop2: p219 size 108986237 extends beyond EOD, truncated [ 345.772376][ T7501] loop2: p220 size 520093696 extends beyond EOD, truncated [ 345.782946][ T7501] loop2: p221 size 108986237 extends beyond EOD, truncated [ 345.792332][ T7501] loop2: p222 size 520093696 extends beyond EOD, truncated [ 345.805263][ T7501] loop2: p223 size 108986237 extends beyond EOD, truncated [ 345.814418][ T7501] loop2: p224 size 520093696 extends beyond EOD, truncated [ 345.823587][ T7501] loop2: p225 size 108986237 extends beyond EOD, truncated [ 345.840168][ T7501] loop2: p226 size 520093696 extends beyond EOD, truncated [ 345.850105][ T7501] loop2: p227 size 108986237 extends beyond EOD, truncated [ 345.859876][ T7501] loop2: p228 size 520093696 extends beyond EOD, truncated [ 345.868682][ T7501] loop2: p229 size 108986237 extends beyond EOD, truncated [ 345.877564][ T7501] loop2: p230 size 520093696 extends beyond EOD, truncated [ 345.886240][ T7501] loop2: p231 size 108986237 extends beyond EOD, truncated [ 345.895015][ T7501] loop2: p232 size 520093696 extends beyond EOD, truncated [ 345.903892][ T7501] loop2: p233 size 108986237 extends beyond EOD, truncated [ 345.912620][ T7501] loop2: p234 size 520093696 extends beyond EOD, truncated [ 345.921282][ T7501] loop2: p235 size 108986237 extends beyond EOD, truncated [ 345.930046][ T7501] loop2: p236 size 520093696 extends beyond EOD, truncated [ 345.939045][ T7501] loop2: p237 size 108986237 extends beyond EOD, truncated [ 345.953036][ T7501] loop2: p238 size 520093696 extends beyond EOD, truncated [ 345.961819][ T7501] loop2: p239 size 108986237 extends beyond EOD, truncated [ 345.970509][ T7501] loop2: p240 size 520093696 extends beyond EOD, truncated [ 345.979576][ T7501] loop2: p241 size 108986237 extends beyond EOD, truncated [ 345.988260][ T7501] loop2: p242 size 520093696 extends beyond EOD, truncated [ 346.006569][ T7501] loop2: p243 size 108986237 extends beyond EOD, truncated [ 346.018598][ T7501] loop2: p244 size 520093696 extends beyond EOD, truncated [ 346.027810][ T7501] loop2: p245 size 108986237 extends beyond EOD, truncated [ 346.037238][ T7501] loop2: p246 size 520093696 extends beyond EOD, truncated [ 346.047823][ T7501] loop2: p247 size 108986237 extends beyond EOD, truncated [ 346.058792][ T7501] loop2: p248 size 520093696 extends beyond EOD, truncated [ 346.067523][ T7501] loop2: p249 size 108986237 extends beyond EOD, truncated [ 346.077536][ T7501] loop2: p250 size 520093696 extends beyond EOD, truncated [ 346.086206][ T7501] loop2: p251 size 108986237 extends beyond EOD, truncated [ 346.094901][ T7501] loop2: p252 size 520093696 extends beyond EOD, truncated [ 346.104493][ T7501] loop2: p253 size 108986237 extends beyond EOD, truncated [ 346.113222][ T7501] loop2: p254 size 520093696 extends beyond EOD, truncated [ 346.131236][ T7501] loop2: p255 size 108986237 extends beyond EOD, truncated [ 346.338178][ T5125] Bluetooth: hci7: command tx timeout [ 346.520670][ T7257] veth0_vlan: entered promiscuous mode [ 346.540741][ T7441] chnl_net:caif_netlink_parms(): no params data found [ 346.560601][ T7236] veth1_macvtap: entered promiscuous mode [ 346.806153][ T4547] loop2: p1 p2 p3 p4 < p5 p6 p7 p8 p9 p10 p11 p12 p13 p14 p15 p16 p17 p18 p19 p20 p21 p22 p23 p24 p25 p26 p27 p28 p29 p30 p31 p32 p33 p34 p35 p36 p37 p38 p39 p40 p41 p42 p43 p44 p45 p46 p47 p48 p49 p50 p51 p52 p53 p54 p55 p56 p57 p58 p59 p60 p61 p62 p63 p64 p65 p66 p67 p68 p69 p70 p71 p72 p73 p74 p75 p76 p77 p78 p79 p80 p81 p82 p83 p84 p85 p86 p87 p88 p89 p90 p91 p92 p93 p94 p95 p96 p97 p98 p99 p100 p101 p102 p103 p104 p105 p106 p107 p108 p109 p110 p111 p112 p113 p114 p115 p116 p117 p118 p119 p120 p121 p122 p123 p124 p125 p126 p127 p128 p129 p130 p131 p132 p133 p134 p135 p136 p137 p138 p139 p140 p141 p142 p143 p144 p145 p146 p147 p148 p149 p150 p151 p152 p153 p154 p155 p156 p157 p158 p159 p160 p161 p162 p163 p164 p165 p166 p167 p168 p169 p170 p171 p172 p173 p174 p175 p176 p177 p178 p179 p180 p181 p182 p183 p184 p185 p186 p187 p188 p189 p190 p191 p192 p193 p194 p195 p196 p197 p198 p199 p200 p201 p202 p203 p204 p205 p206 p207 p208 p209 p210 p211 p212 p213 p214 p215 p216 p217 p218 p219 p220 p221 p222 p223 p224 [ 346.806417][ T4547] loop2: p1 size 108986237 extends beyond EOD, truncated [ 346.925156][ T4547] loop2: p2 size 520093696 extends beyond EOD, truncated [ 346.933905][ T4547] loop2: p3 size 131072 extends beyond EOD, truncated [ 346.945446][ T4547] loop2: p5 size 108986237 extends beyond EOD, truncated [ 346.954083][ T7257] veth1_vlan: entered promiscuous mode [ 346.954371][ T4547] loop2: p6 size 520093696 extends beyond EOD, truncated [ 346.997143][ T4547] loop2: p7 size 108986237 extends beyond EOD, truncated [ 347.008208][ T4547] loop2: p8 size 520093696 extends beyond EOD, truncated [ 347.020504][ T4547] loop2: p9 size 108986237 extends beyond EOD, truncated [ 347.066314][ T4547] loop2: p10 size 520093696 extends beyond EOD, truncated [ 347.096286][ T4547] loop2: p11 size 108986237 extends beyond EOD, truncated [ 347.110054][ T7441] bridge0: port 1(bridge_slave_0) entered blocking state [ 347.126295][ T4547] loop2: p12 size 520093696 extends beyond EOD, truncated [ 347.138752][ T7441] bridge0: port 1(bridge_slave_0) entered disabled state [ 347.156230][ T4547] loop2: p13 size 108986237 extends beyond EOD, truncated [ 347.165457][ T7441] bridge_slave_0: entered allmulticast mode [ 347.172310][ T4547] loop2: p14 size 520093696 extends beyond EOD, truncated [ 347.197477][ T7441] bridge_slave_0: entered promiscuous mode [ 347.206428][ T4547] loop2: p15 size 108986237 extends beyond EOD, truncated [ 347.220491][ T4547] loop2: p16 size 520093696 extends beyond EOD, truncated [ 347.242891][ T4547] loop2: p17 size 108986237 extends beyond EOD, truncated [ 347.300392][ T4547] loop2: p18 size 520093696 extends beyond EOD, truncated [ 347.308215][ T7441] bridge0: port 2(bridge_slave_1) entered blocking state [ 347.315442][ T7441] bridge0: port 2(bridge_slave_1) entered disabled state [ 347.324541][ T7441] bridge_slave_1: entered allmulticast mode [ 347.334202][ T7441] bridge_slave_1: entered promiscuous mode [ 347.342835][ T4547] loop2: p19 size 108986237 extends beyond EOD, truncated [ 347.353520][ T4547] loop2: p20 size 520093696 extends beyond EOD, truncated [ 347.364611][ T4547] loop2: p21 size 108986237 extends beyond EOD, truncated [ 347.377721][ T7236] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 347.392500][ T4547] loop2: p22 size 520093696 extends beyond EOD, truncated [ 347.414692][ T4547] loop2: p23 size 108986237 extends beyond EOD, truncated [ 347.415919][ T7236] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 347.423376][ T4547] loop2: p24 size 520093696 extends beyond EOD, truncated [ 347.443520][ T7236] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 347.451332][ T4547] loop2: p25 size 108986237 extends beyond EOD, truncated [ 347.456562][ T7236] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 347.472455][ T4547] loop2: p26 size 520093696 extends beyond EOD, truncated [ 347.482724][ T4547] loop2: p27 size 108986237 extends beyond EOD, truncated [ 347.482816][ T7236] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 347.492768][ T4547] loop2: p28 size 520093696 extends beyond EOD, truncated [ 347.512066][ T4547] loop2: p29 size 108986237 extends beyond EOD, truncated [ 347.514669][ T7236] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 347.521359][ T4547] loop2: p30 size 520093696 extends beyond EOD, truncated [ 347.538193][ T4547] loop2: p31 size 108986237 extends beyond EOD, truncated [ 347.539521][ T7236] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 347.547154][ T4547] loop2: p32 size 520093696 extends beyond EOD, truncated [ 347.565177][ T4547] loop2: p33 size 108986237 extends beyond EOD, truncated [ 347.565889][ T7236] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 347.574562][ T4547] loop2: p34 size 520093696 extends beyond EOD, truncated [ 347.595146][ T4547] loop2: p35 size 108986237 extends beyond EOD, truncated [ 347.598604][ T7236] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 347.604579][ T4547] loop2: p36 size 520093696 extends beyond EOD, truncated [ 347.622433][ T4547] loop2: p37 size 108986237 extends beyond EOD, truncated [ 347.624610][ T7236] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 347.631486][ T4547] loop2: p38 size 520093696 extends beyond EOD, [ 347.640137][ T7236] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 347.650962][ T4547] truncated [ 347.657455][ T7236] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 347.666099][ T4547] loop2: p39 size 108986237 extends beyond EOD, truncated [ 347.673963][ T7236] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 347.687752][ T4547] loop2: p40 size 520093696 extends beyond EOD, truncated [ 347.697112][ T4547] loop2: p41 size 108986237 extends beyond EOD, truncated [ 347.705535][ T4547] loop2: p42 size 520093696 extends beyond EOD, truncated [ 347.716197][ T4547] loop2: p43 size 108986237 extends beyond EOD, truncated [ 347.724828][ T4547] loop2: p44 size 520093696 extends beyond EOD, truncated [ 347.733595][ T4547] loop2: p45 size 108986237 extends beyond EOD, truncated [ 347.743184][ T4547] loop2: p46 size 520093696 extends beyond EOD, truncated [ 347.752649][ T4547] loop2: p47 size 108986237 extends beyond EOD, truncated [ 347.762504][ T4547] loop2: p48 size 520093696 extends beyond EOD, truncated [ 347.772946][ T4547] loop2: p49 size 108986237 extends beyond EOD, truncated [ 347.790366][ T4547] loop2: p50 size 520093696 extends beyond EOD, truncated [ 347.802027][ T4547] loop2: p51 size 108986237 extends beyond EOD, truncated [ 347.810968][ T4547] loop2: p52 size 520093696 extends beyond EOD, truncated [ 347.820740][ T4547] loop2: p53 size 108986237 extends beyond EOD, truncated [ 347.822202][ T7236] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 347.829522][ T4547] loop2: p54 size 520093696 extends beyond EOD, truncated [ 347.848027][ T4547] loop2: p55 size 108986237 extends beyond EOD, truncated [ 347.848695][ T7236] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 347.856897][ T4547] loop2: p56 size 520093696 extends beyond EOD, truncated [ 347.874460][ T4547] loop2: p57 size 108986237 extends beyond EOD, truncated [ 347.875575][ T7236] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 347.883301][ T4547] loop2: p58 size 520093696 extends beyond EOD, truncated [ 347.902846][ T4547] loop2: p59 size 108986237 extends beyond EOD, truncated [ 347.908881][ T7236] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 347.912076][ T4547] loop2: p60 size 520093696 extends beyond EOD, truncated [ 347.927247][ T7236] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 347.927270][ T7236] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 347.927286][ T7236] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 347.927301][ T7236] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 347.927315][ T7236] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 347.927328][ T7236] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 347.927343][ T7236] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 347.951339][ T4547] loop2: p61 size 108986237 extends beyond EOD, [ 347.978015][ T7236] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 347.979748][ T4547] truncated [ 347.992410][ T7236] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 348.013851][ T4547] loop2: p62 size 520093696 extends beyond EOD, truncated [ 348.034370][ T7441] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 348.041434][ T4547] loop2: p63 size 108986237 extends beyond EOD, truncated [ 348.052292][ T7441] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 348.067359][ T4547] loop2: p64 size 520093696 extends beyond EOD, truncated [ 348.077023][ T4547] loop2: p65 size 108986237 extends beyond EOD, truncated [ 348.087216][ T4547] loop2: p66 size 520093696 extends beyond EOD, truncated [ 348.097340][ T4547] loop2: p67 size 108986237 extends beyond EOD, truncated [ 348.107905][ T4547] loop2: p68 size 520093696 extends beyond EOD, truncated [ 348.116839][ T4547] loop2: p69 size 108986237 extends beyond EOD, truncated [ 348.136001][ T4547] loop2: p70 size 520093696 extends beyond EOD, truncated [ 348.145658][ T4547] loop2: p71 size 108986237 extends beyond EOD, truncated [ 348.165234][ T4547] loop2: p72 size 520093696 extends beyond EOD, truncated [ 348.173876][ T7236] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 348.184689][ T7236] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 348.186674][ T4547] loop2: p73 size 108986237 extends beyond EOD, truncated [ 348.201297][ T7236] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 348.212221][ T7236] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 348.215113][ T4547] loop2: p74 size 520093696 extends beyond EOD, truncated [ 348.239429][ T4547] loop2: p75 size 108986237 extends beyond EOD, truncated [ 348.247649][ T7441] team0: Port device team_slave_0 added [ 348.248097][ T4547] loop2: p76 size 520093696 extends beyond EOD, truncated [ 348.265988][ T4547] loop2: p77 size 108986237 extends beyond EOD, truncated [ 348.274571][ T4547] loop2: p78 size 520093696 extends beyond EOD, truncated [ 348.285238][ T7441] team0: Port device team_slave_1 added [ 348.291624][ T4547] loop2: p79 size 108986237 extends beyond EOD, truncated [ 348.301260][ T4547] loop2: p80 size 520093696 extends beyond EOD, truncated [ 348.323855][ T4547] loop2: p81 size 108986237 extends beyond EOD, truncated [ 348.336557][ T4547] loop2: p82 size 520093696 extends beyond EOD, truncated [ 348.345065][ T4547] loop2: p83 size 108986237 extends beyond EOD, truncated [ 348.358826][ T4547] loop2: p84 size 520093696 extends beyond EOD, truncated [ 348.368033][ T4547] loop2: p85 size 108986237 extends beyond EOD, truncated [ 348.377068][ T4547] loop2: p86 size 520093696 extends beyond EOD, truncated [ 348.385600][ T4547] loop2: p87 size 108986237 extends beyond EOD, truncated [ 348.395324][ T4547] loop2: p88 size 520093696 extends beyond EOD, truncated [ 348.397404][ T7441] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 348.404875][ T4547] loop2: p89 size 108986237 extends beyond EOD, [ 348.413780][ T7441] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 348.420313][ T5125] Bluetooth: hci7: command tx timeout [ 348.452286][ T4547] truncated [ 348.455218][ T7441] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 348.457613][ T4547] loop2: p90 size 520093696 extends beyond EOD, truncated [ 348.475546][ T4547] loop2: p91 size 108986237 extends beyond EOD, truncated [ 348.487363][ T4547] loop2: p92 size 520093696 extends beyond EOD, truncated [ 348.497052][ T4547] loop2: p93 size 108986237 extends beyond EOD, truncated [ 348.506091][ T4547] loop2: p94 size 520093696 extends beyond EOD, truncated [ 348.515573][ T7441] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 348.527521][ T4547] loop2: p95 size 108986237 extends beyond EOD, truncated [ 348.533192][ T7441] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 348.546838][ T4547] loop2: p96 size 520093696 extends beyond EOD, [ 348.565867][ T7441] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 348.575343][ T4547] truncated [ 348.588516][ T4547] loop2: p97 size 108986237 extends beyond EOD, truncated [ 348.606387][ T4547] loop2: p98 size 520093696 extends beyond EOD, truncated [ 348.628681][ T4547] loop2: p99 size 108986237 extends beyond EOD, truncated [ 348.649222][ T4547] loop2: p100 size 520093696 extends beyond EOD, truncated [ 348.674417][ T4547] loop2: p101 size 108986237 extends beyond EOD, truncated [ 348.700608][ T4547] loop2: p102 size 520093696 extends beyond EOD, truncated [ 348.710840][ T7257] veth0_macvtap: entered promiscuous mode [ 348.721018][ T4547] loop2: p103 size 108986237 extends beyond EOD, truncated [ 348.735539][ T7257] veth1_macvtap: entered promiscuous mode [ 348.741948][ T4547] loop2: p104 size 520093696 extends beyond EOD, truncated [ 348.755467][ T4547] loop2: p105 size 108986237 extends beyond EOD, truncated [ 348.764754][ T4547] loop2: p106 size 520093696 extends beyond EOD, truncated [ 348.776579][ T4547] loop2: p107 size 108986237 extends beyond EOD, truncated [ 348.813448][ T4547] loop2: p108 size 520093696 extends beyond EOD, truncated [ 348.829360][ T4547] loop2: p109 size 108986237 extends beyond EOD, truncated [ 348.844316][ T7441] hsr_slave_0: entered promiscuous mode [ 348.851355][ T4547] loop2: p110 size 520093696 extends beyond EOD, truncated [ 348.859846][ T7441] hsr_slave_1: entered promiscuous mode [ 348.868073][ T4547] loop2: p111 size 108986237 extends beyond EOD, truncated [ 348.876470][ T7441] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 348.884058][ T7441] Cannot create hsr debugfs directory [ 348.891378][ T4547] loop2: p112 size 520093696 extends beyond EOD, truncated [ 348.907069][ T4547] loop2: p113 size 108986237 extends beyond EOD, truncated [ 348.915681][ T4547] loop2: p114 size 520093696 extends beyond EOD, truncated [ 348.938920][ T1095] bridge_slave_1: left allmulticast mode [ 348.944619][ T1095] bridge_slave_1: left promiscuous mode [ 348.952145][ T4547] loop2: p115 size 108986237 extends beyond EOD, truncated [ 348.960005][ T1095] bridge0: port 2(bridge_slave_1) entered disabled state [ 348.969932][ T4547] loop2: p116 size 520093696 extends beyond EOD, truncated [ 348.979901][ T4547] loop2: p117 size 108986237 extends beyond EOD, truncated [ 348.990001][ T4547] loop2: p118 size 520093696 extends beyond EOD, truncated [ 348.998325][ T1095] bridge_slave_0: left allmulticast mode [ 349.004003][ T1095] bridge_slave_0: left promiscuous mode [ 349.012436][ T1095] bridge0: port 1(bridge_slave_0) entered disabled state [ 349.020801][ T4547] loop2: p119 size 108986237 extends beyond EOD, truncated [ 349.041013][ T4547] loop2: p120 size 520093696 extends beyond EOD, truncated [ 349.064657][ T4547] loop2: p121 size 108986237 extends beyond EOD, truncated [ 349.087900][ T4547] loop2: p122 size 520093696 extends beyond EOD, truncated [ 349.106852][ T4547] loop2: p123 size 108986237 extends beyond EOD, truncated [ 349.126455][ T4547] loop2: p124 size 520093696 extends beyond EOD, truncated [ 349.149006][ T4547] loop2: p125 size 108986237 extends beyond EOD, truncated [ 349.160869][ T4547] loop2: p126 size 520093696 extends beyond EOD, truncated [ 349.171682][ T4547] loop2: p127 size 108986237 extends beyond EOD, truncated [ 349.180658][ T4547] loop2: p128 size 520093696 extends beyond EOD, truncated [ 349.189922][ T4547] loop2: p129 size 108986237 extends beyond EOD, truncated [ 349.198630][ T4547] loop2: p130 size 520093696 extends beyond EOD, truncated [ 349.207307][ T4547] loop2: p131 size 108986237 extends beyond EOD, truncated [ 349.216725][ T4547] loop2: p132 size 520093696 extends beyond EOD, truncated [ 349.225386][ T4547] loop2: p133 size 108986237 extends beyond EOD, truncated [ 349.236074][ T4547] loop2: p134 size 520093696 extends beyond EOD, truncated [ 349.244994][ T4547] loop2: p135 size 108986237 extends beyond EOD, truncated [ 349.254231][ T4547] loop2: p136 size 520093696 extends beyond EOD, truncated [ 349.268609][ T4547] loop2: p137 size 108986237 extends beyond EOD, truncated [ 349.278322][ T4547] loop2: p138 size 520093696 extends beyond EOD, truncated [ 349.287000][ T4547] loop2: p139 size 108986237 extends beyond EOD, truncated [ 349.295669][ T4547] loop2: p140 size 520093696 extends beyond EOD, truncated [ 349.312317][ T4547] loop2: p141 size 108986237 extends beyond EOD, truncated [ 349.320979][ T4547] loop2: p142 size 520093696 extends beyond EOD, truncated [ 349.332418][ T4547] loop2: p143 size 108986237 extends beyond EOD, truncated [ 349.341232][ T4547] loop2: p144 size 520093696 extends beyond EOD, truncated [ 349.350291][ T4547] loop2: p145 size 108986237 extends beyond EOD, truncated [ 349.360171][ T4547] loop2: p146 size 520093696 extends beyond EOD, truncated [ 349.368935][ T4547] loop2: p147 size 108986237 extends beyond EOD, truncated [ 349.380241][ T4547] loop2: p148 size 520093696 extends beyond EOD, truncated [ 349.390398][ T4547] loop2: p149 size 108986237 extends beyond EOD, truncated [ 349.399204][ T4547] loop2: p150 size 520093696 extends beyond EOD, truncated [ 349.408029][ T4547] loop2: p151 size 108986237 extends beyond EOD, truncated [ 349.416679][ T4547] loop2: p152 size 520093696 extends beyond EOD, truncated [ 349.425206][ T4547] loop2: p153 size 108986237 extends beyond EOD, truncated [ 349.435122][ T4547] loop2: p154 size 520093696 extends beyond EOD, truncated [ 349.443896][ T4547] loop2: p155 size 108986237 extends beyond EOD, truncated [ 349.452765][ T4547] loop2: p156 size 520093696 extends beyond EOD, truncated [ 349.461384][ T4547] loop2: p157 size 108986237 extends beyond EOD, truncated [ 349.480079][ T4547] loop2: p158 size 520093696 extends beyond EOD, truncated [ 349.491699][ T4547] loop2: p159 size 108986237 extends beyond EOD, truncated [ 349.501840][ T4547] loop2: p160 size 520093696 extends beyond EOD, truncated [ 349.510348][ T4547] loop2: p161 size 108986237 extends beyond EOD, truncated [ 349.526272][ T4547] loop2: p162 size 520093696 extends beyond EOD, truncated [ 349.537773][ T4547] loop2: p163 size 108986237 extends beyond EOD, truncated [ 349.546428][ T4547] loop2: p164 size 520093696 extends beyond EOD, truncated [ 349.555282][ T4547] loop2: p165 size 108986237 extends beyond EOD, truncated [ 349.564212][ T4547] loop2: p166 size 520093696 extends beyond EOD, truncated [ 349.572888][ T4547] loop2: p167 size 108986237 extends beyond EOD, truncated [ 349.581731][ T4547] loop2: p168 size 520093696 extends beyond EOD, truncated [ 349.591156][ T4547] loop2: p169 size 108986237 extends beyond EOD, truncated [ 349.602855][ T4547] loop2: p170 size 520093696 extends beyond EOD, truncated [ 349.611686][ T4547] loop2: p171 size 108986237 extends beyond EOD, truncated [ 349.621872][ T4547] loop2: p172 size 520093696 extends beyond EOD, truncated [ 349.630657][ T4547] loop2: p173 size 108986237 extends beyond EOD, truncated [ 349.641724][ T4547] loop2: p174 size 520093696 extends beyond EOD, truncated [ 349.650907][ T4547] loop2: p175 size 108986237 extends beyond EOD, truncated [ 349.659674][ T4547] loop2: p176 size 520093696 extends beyond EOD, truncated [ 349.668392][ T4547] loop2: p177 size 108986237 extends beyond EOD, truncated [ 349.677514][ T4547] loop2: p178 size 520093696 extends beyond EOD, truncated [ 349.686607][ T4547] loop2: p179 size 108986237 extends beyond EOD, truncated [ 349.695339][ T4547] loop2: p180 size 520093696 extends beyond EOD, truncated [ 349.704452][ T4547] loop2: p181 size 108986237 extends beyond EOD, truncated [ 349.716300][ T4547] loop2: p182 size 520093696 extends beyond EOD, truncated [ 349.724954][ T4547] loop2: p183 size 108986237 extends beyond EOD, truncated [ 349.734749][ T4547] loop2: p184 size 520093696 extends beyond EOD, truncated [ 349.743480][ T1095] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 349.744935][ T4547] loop2: p185 size 108986237 extends beyond EOD, truncated [ 349.761308][ T4547] loop2: p186 size 520093696 extends beyond EOD, truncated [ 349.769918][ T4547] loop2: p187 size 108986237 extends beyond EOD, truncated [ 349.777885][ T1095] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 349.778689][ T4547] loop2: p188 size 520093696 extends beyond EOD, truncated [ 349.795346][ T4547] loop2: p189 size 108986237 extends beyond EOD, truncated [ 349.804013][ T4547] loop2: p190 size 520093696 extends beyond EOD, truncated [ 349.805391][ T1095] bond0 (unregistering): Released all slaves [ 349.812656][ T4547] loop2: p191 size 108986237 extends beyond EOD, truncated [ 349.829634][ T4547] loop2: p192 size 520093696 extends beyond EOD, truncated [ 349.839109][ T4547] loop2: p193 size 108986237 extends beyond EOD, truncated [ 349.857297][ T4547] loop2: p194 size 520093696 extends beyond EOD, truncated [ 349.881386][ T4547] loop2: p195 size 108986237 extends beyond EOD, truncated [ 349.906891][ T4547] loop2: p196 size 520093696 extends beyond EOD, truncated [ 349.915714][ T4547] loop2: p197 size 108986237 extends beyond EOD, truncated [ 349.925102][ T4547] loop2: p198 size 520093696 extends beyond EOD, truncated [ 349.937111][ T4547] loop2: p199 size 108986237 extends beyond EOD, truncated [ 349.952590][ T4547] loop2: p200 size 520093696 extends beyond EOD, truncated [ 349.972128][ T4547] loop2: p201 size 108986237 extends beyond EOD, truncated [ 349.990589][ T4547] loop2: p202 size 520093696 extends beyond EOD, truncated [ 350.003555][ T4547] loop2: p203 size 108986237 extends beyond EOD, truncated [ 350.013289][ T4547] loop2: p204 size 520093696 extends beyond EOD, truncated [ 350.032039][ T4547] loop2: p205 size 108986237 extends beyond EOD, truncated [ 350.044692][ T4547] loop2: p206 size 520093696 extends beyond EOD, truncated [ 350.055515][ T4547] loop2: p207 size 108986237 extends beyond EOD, truncated [ 350.064416][ T4547] loop2: p208 size 520093696 extends beyond EOD, truncated [ 350.073139][ T4547] loop2: p209 size 108986237 extends beyond EOD, truncated [ 350.082165][ T4547] loop2: p210 size 520093696 extends beyond EOD, truncated [ 350.096169][ T4547] loop2: p211 size 108986237 extends beyond EOD, truncated [ 350.104833][ T4547] loop2: p212 size 520093696 extends beyond EOD, truncated [ 350.114281][ T4547] loop2: p213 size 108986237 extends beyond EOD, truncated [ 350.133252][ T4547] loop2: p214 size 520093696 extends beyond EOD, truncated [ 350.143004][ T4547] loop2: p215 size 108986237 extends beyond EOD, truncated [ 350.154182][ T4547] loop2: p216 size 520093696 extends beyond EOD, truncated [ 350.163504][ T4547] loop2: p217 size 108986237 extends beyond EOD, truncated [ 350.181856][ T4547] loop2: p218 size 520093696 extends beyond EOD, truncated [ 350.190675][ T4547] loop2: p219 size 108986237 extends beyond EOD, truncated [ 350.199446][ T4547] loop2: p220 size 520093696 extends beyond EOD, truncated [ 350.208145][ T4547] loop2: p221 size 108986237 extends beyond EOD, truncated [ 350.216869][ T4547] loop2: p222 size 520093696 extends beyond EOD, truncated [ 350.230549][ T4547] loop2: p223 size 108986237 extends beyond EOD, truncated [ 350.239900][ T4547] loop2: p224 size 520093696 extends beyond EOD, truncated [ 350.248446][ T2421] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 350.261509][ T4547] loop2: p225 size 108986237 extends beyond EOD, truncated [ 350.269673][ T2421] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 350.280136][ T4547] loop2: p226 size 520093696 extends beyond EOD, truncated [ 350.292356][ T4547] loop2: p227 size 108986237 extends beyond EOD, truncated [ 350.304518][ T4547] loop2: p228 size 520093696 extends beyond EOD, truncated [ 350.313663][ T4547] loop2: p229 size 108986237 extends beyond EOD, truncated [ 350.322472][ T4547] loop2: p230 size 520093696 extends beyond EOD, truncated [ 350.332057][ T4547] loop2: p231 size 108986237 extends beyond EOD, truncated [ 350.341481][ T4547] loop2: p232 size 520093696 extends beyond EOD, truncated [ 350.350214][ T4547] loop2: p233 size 108986237 extends beyond EOD, truncated [ 350.361814][ T4547] loop2: p234 size 520093696 extends beyond EOD, truncated [ 350.369922][ T7257] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 350.373832][ T4547] loop2: p235 size 108986237 extends beyond EOD, truncated [ 350.387374][ T7257] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 350.399858][ T4547] loop2: p236 size 520093696 extends beyond EOD, truncated [ 350.408791][ T7257] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 350.409541][ T4547] loop2: p237 size 108986237 extends beyond EOD, truncated [ 350.425836][ T7257] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 350.428630][ T4547] loop2: p238 size 520093696 extends beyond EOD, truncated [ 350.445684][ T4547] loop2: p239 size 108986237 extends beyond EOD, truncated [ 350.445842][ T7257] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 350.458099][ T4547] loop2: p240 size 520093696 extends beyond EOD, truncated [ 350.472361][ T4547] loop2: p241 size 108986237 extends beyond EOD, truncated [ 350.474178][ T7257] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 350.484937][ T4547] loop2: p242 size 520093696 extends beyond EOD, truncated [ 350.495610][ T7257] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 350.498831][ T4547] loop2: p243 size 108986237 extends beyond EOD, truncated [ 350.517249][ T4547] loop2: p244 size 520093696 extends beyond EOD, truncated [ 350.524352][ T7257] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 350.525764][ T4547] loop2: p245 size 108986237 extends beyond EOD, [ 350.534507][ T7257] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 350.535116][ T4547] truncated [ 350.550640][ T7257] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 350.553340][ T4547] loop2: p246 size 520093696 extends beyond EOD, [ 350.554545][ T7257] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 350.566839][ T4547] truncated [ 350.582828][ T7257] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 350.590142][ T4547] loop2: p247 size 108986237 extends beyond EOD, truncated [ 350.596190][ T7257] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 350.604666][ T4547] loop2: p248 size 520093696 extends beyond EOD, truncated [ 350.622940][ T4547] loop2: p249 size 108986237 extends beyond EOD, truncated [ 350.623927][ T7257] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 350.633079][ T4547] loop2: p250 size 520093696 extends beyond EOD, truncated [ 350.650171][ T7257] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 350.662961][ T4547] loop2: p251 size 108986237 extends beyond EOD, truncated [ 350.674337][ T4547] loop2: p252 size 520093696 extends beyond EOD, truncated [ 350.682788][ T7400] 8021q: adding VLAN 0 to HW filter on device bond0 [ 350.685665][ T4547] loop2: p253 size 108986237 extends beyond EOD, [ 350.695740][ T4547] truncated [ 350.707377][ T4547] loop2: p254 size 520093696 extends beyond EOD, truncated [ 350.716577][ T4547] loop2: p255 size 108986237 extends beyond EOD, truncated [ 350.987852][ T1095] hsr_slave_0: left promiscuous mode [ 350.999672][ T1095] hsr_slave_1: left promiscuous mode [ 351.032977][ T1095] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 351.068867][ T1095] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 351.109236][ T1095] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 351.140588][ T1095] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 351.249722][ T1095] veth1_macvtap: left promiscuous mode [ 351.271513][ T1095] veth0_macvtap: left promiscuous mode [ 351.301418][ T1095] veth1_vlan: left promiscuous mode [ 351.316865][ T1095] veth0_vlan: left promiscuous mode [ 352.215714][ T7174] udevd[7174]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory [ 352.219100][ T7175] udevd[7175]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory [ 352.230340][ T6990] udevd[6990]: inotify_add_watch(7, /dev/loop2p6, 10) failed: No such file or directory [ 352.248513][ T6993] udevd[6993]: inotify_add_watch(7, /dev/loop2p5, 10) failed: No such file or directory [ 352.249011][ T7039] udevd[7039]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 352.273134][ T7021] udevd[7021]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory [ 352.295267][ T7540] udevd[7540]: inotify_add_watch(7, /dev/loop2p7, 10) failed: No such file or directory [ 352.348956][ T7541] udevd[7541]: inotify_add_watch(7, /dev/loop2p8, 10) failed: No such file or directory [ 352.372486][ T7542] udevd[7542]: inotify_add_watch(7, /dev/loop2p9, 10) failed: No such file or directory [ 352.388312][ T7543] udevd[7543]: inotify_add_watch(7, /dev/loop2p10, 10) failed: No such file or directory [ 353.603501][ T1095] team0 (unregistering): Port device team_slave_1 removed [ 353.793915][ T1095] team0 (unregistering): Port device team_slave_0 removed [ 355.929975][ T7257] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 355.987874][ T7257] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 356.003044][ T7257] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 356.045836][ T7257] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 356.055695][ T7257] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 356.077971][ T7257] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 356.103972][ T7257] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 356.114993][ T7257] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 356.135918][ T7257] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 356.155887][ T7257] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 356.165750][ T7257] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 356.187408][ T7257] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 356.214044][ T7257] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 356.248585][ T7257] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 356.260342][ T7257] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 356.274389][ T7257] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 356.283955][ T7257] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 356.367828][ T2875] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 356.377268][ T2875] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 356.421910][ T7400] 8021q: adding VLAN 0 to HW filter on device team0 [ 356.562944][ T9] bridge0: port 1(bridge_slave_0) entered blocking state [ 356.570149][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state [ 356.707270][ T7556] loop1: detected capacity change from 0 to 64 [ 356.765254][ T785] bridge0: port 2(bridge_slave_1) entered blocking state [ 356.772526][ T785] bridge0: port 2(bridge_slave_1) entered forwarding state [ 357.128406][ T7554] loop2: detected capacity change from 0 to 32768 [ 357.284285][ T7554] Dev loop2 SGI disklabel: csum bad, label corrupted [ 357.429420][ T4547] Dev loop2 SGI disklabel: csum bad, label corrupted [ 359.267778][ T64] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 359.310117][ T64] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 359.570575][ T2421] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 359.593074][ T2421] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 359.759774][ T7441] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 359.787757][ T7441] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 359.927720][ T7441] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 360.015284][ T7441] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 360.225968][ T59] usb 1-1: new full-speed USB device number 11 using dummy_hcd [ 360.443651][ T59] usb 1-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c [ 360.464923][ T7400] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 360.482521][ T59] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 360.508410][ T59] usb 1-1: config 0 descriptor?? [ 360.941464][ T7441] 8021q: adding VLAN 0 to HW filter on device bond0 [ 361.072636][ T7400] veth0_vlan: entered promiscuous mode [ 361.177614][ T7441] 8021q: adding VLAN 0 to HW filter on device team0 [ 361.246822][ T7400] veth1_vlan: entered promiscuous mode [ 361.319373][ T5165] bridge0: port 1(bridge_slave_0) entered blocking state [ 361.326610][ T5165] bridge0: port 1(bridge_slave_0) entered forwarding state [ 361.409786][ T9] bridge0: port 2(bridge_slave_1) entered blocking state [ 361.416989][ T9] bridge0: port 2(bridge_slave_1) entered forwarding state [ 361.536244][ T59] pegasus 1-1:0.0: probe with driver pegasus failed with error -71 [ 361.564960][ T59] usb 1-1: USB disconnect, device number 11 [ 361.659608][ T7400] veth0_macvtap: entered promiscuous mode [ 361.702701][ T7400] veth1_macvtap: entered promiscuous mode [ 361.818619][ T7400] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 361.836396][ T7400] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 361.849593][ T7400] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 361.862301][ T7400] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 361.872620][ T7400] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 361.884400][ T7400] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 361.894661][ T7400] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 361.905651][ T7400] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 361.918183][ T7400] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 361.930126][ T7400] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 361.961673][ T7400] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 361.990587][ T7400] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 362.012835][ T7400] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 362.029389][ T7400] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 362.041454][ T7400] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 362.090151][ T7400] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 362.121197][ T7400] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 362.175427][ T7400] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 362.216261][ T7400] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 362.244983][ T7400] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 362.275648][ T7400] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 362.298480][ T7400] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 362.310393][ T7400] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 362.320551][ T7400] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 362.332770][ T7400] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 362.361914][ T7400] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 362.416956][ T7400] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 362.442869][ T7400] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 362.460168][ T7400] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 362.478455][ T7400] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 362.604637][ T7400] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 362.637713][ T7400] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 362.674674][ T7400] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 362.695851][ T7400] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 363.084989][ T7656] loop0: detected capacity change from 0 to 2048 [ 363.129033][ T7656] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 363.176144][ T2875] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 363.183992][ T2875] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 363.411099][ T1087] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 363.425233][ T1087] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 363.441915][ T7441] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 363.611932][ T7674] loop3: detected capacity change from 0 to 512 [ 363.669460][ T7674] ext4: Unknown parameter 'noacl' [ 363.736186][ T7545] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 363.784117][ T7674] loop3: detected capacity change from 0 to 1024 [ 363.875754][ T7674] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 364.209906][ T29] audit: type=1800 audit(1718456176.151:29): pid=7692 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1962 res=0 errno=0 [ 364.288361][ T29] audit: type=1800 audit(1718456176.181:30): pid=7692 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1962 res=0 errno=0 [ 364.705457][ T7708] loop0: detected capacity change from 0 to 2048 [ 364.762992][ T7708] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 364.964389][ T7441] veth0_vlan: entered promiscuous mode [ 365.229598][ T7719] loop1: detected capacity change from 0 to 1024 [ 365.831409][ T7441] veth1_vlan: entered promiscuous mode [ 366.283830][ T7731] binder: 7730:7731 ioctl c018620c 20000100 returned -1 [ 366.365383][ T7441] veth0_macvtap: entered promiscuous mode [ 366.457376][ T7441] veth1_macvtap: entered promiscuous mode [ 366.607956][ T7441] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 366.638481][ T7441] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 366.675464][ T7441] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 366.696138][ T7441] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 366.716821][ T7441] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 366.745874][ T7441] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 366.765897][ T7441] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 366.786165][ T7441] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 366.825205][ T7441] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 366.855832][ T7441] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 366.875604][ T7441] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 366.896688][ T7441] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 366.915900][ T7441] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 366.938290][ T7441] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 366.959670][ T7441] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 366.979974][ T7441] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 367.006220][ T7441] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 367.014654][ T7400] EXT4-fs error (device loop3): ext4_readdir:260: inode #11: block 38: comm syz-executor.3: path /root/syzkaller-testdir73916960/syzkaller.QNh6Cx/0/bus/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=327680, rec_len=0, size=1024 fake=0 [ 367.042457][ T7400] EXT4-fs error (device loop3): ext4_empty_dir:3082: inode #11: block 38: comm syz-executor.3: bad entry in directory: rec_len is smaller than minimal - offset=6144, inode=327680, rec_len=0, size=1024 fake=0 [ 367.096761][ T7400] EXT4-fs error (device loop3): ext4_readdir:260: inode #11: block 38: comm syz-executor.3: path /root/syzkaller-testdir73916960/syzkaller.QNh6Cx/0/bus/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=327680, rec_len=0, size=1024 fake=0 [ 367.124488][ T7441] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 367.141355][ T7441] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 367.184844][ T7441] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 367.196160][ T7400] EXT4-fs error (device loop3): ext4_empty_dir:3082: inode #11: block 38: comm syz-executor.3: bad entry in directory: rec_len is smaller than minimal - offset=6144, inode=327680, rec_len=0, size=1024 fake=0 [ 367.212288][ T7441] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 367.228660][ T7441] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 367.239241][ T7441] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 367.266841][ T7441] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 367.268343][ T7746] loop2: detected capacity change from 0 to 2048 [ 367.279314][ T7441] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 367.329867][ T7746] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 367.346052][ T7400] EXT4-fs error (device loop3): ext4_readdir:260: inode #11: block 38: comm syz-executor.3: path /root/syzkaller-testdir73916960/syzkaller.QNh6Cx/0/bus/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=327680, rec_len=0, size=1024 fake=0 [ 367.374014][ T7441] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 367.394867][ T7441] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 367.407928][ T7441] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 367.437667][ T7441] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 367.448336][ T7400] EXT4-fs error (device loop3): ext4_empty_dir:3082: inode #11: block 38: comm syz-executor.3: bad entry in directory: rec_len is smaller than minimal - offset=6144, inode=327680, rec_len=0, size=1024 fake=0 [ 367.470409][ T7441] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 367.481182][ T7400] EXT4-fs error (device loop3): ext4_readdir:260: inode #11: block 38: comm syz-executor.3: path /root/syzkaller-testdir73916960/syzkaller.QNh6Cx/0/bus/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=327680, rec_len=0, size=1024 fake=0 [ 367.482259][ T7441] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 367.519568][ T7400] EXT4-fs error (device loop3): ext4_empty_dir:3082: inode #11: block 38: comm syz-executor.3: bad entry in directory: rec_len is smaller than minimal - offset=6144, inode=327680, rec_len=0, size=1024 fake=0 [ 367.544847][ T7441] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 367.564136][ T7400] EXT4-fs error (device loop3): ext4_readdir:260: inode #11: block 38: comm syz-executor.3: path /root/syzkaller-testdir73916960/syzkaller.QNh6Cx/0/bus/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=327680, rec_len=0, size=1024 fake=0 [ 367.578066][ T7441] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 367.600550][ T7400] EXT4-fs error (device loop3): ext4_empty_dir:3082: inode #11: block 38: comm syz-executor.3: bad entry in directory: rec_len is smaller than minimal - offset=6144, inode=327680, rec_len=0, size=1024 fake=0 [ 367.612888][ T7441] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 367.719088][ T7756] [U] ^@ [ 367.741510][ T7441] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 367.778013][ T7441] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 367.787557][ T7441] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 367.801390][ T7441] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 369.186373][ T1087] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 369.229836][ T1087] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 369.487901][ T7790] input: syz0 as /devices/virtual/input/input11 [ 369.523510][ T7789] loop2: detected capacity change from 0 to 2048 [ 369.561450][ T7789] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 369.637570][ T1087] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 369.666170][ T1087] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 369.740448][ T7400] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 369.851261][ T1087] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 369.852632][ T7797] loop4: detected capacity change from 0 to 128 [ 369.960256][ T7797] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 370.200938][ T29] audit: type=1800 audit(1718456182.141:31): pid=7807 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="file1" dev="sda1" ino=1971 res=0 errno=0 [ 370.330136][ T1087] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 371.018449][ T7807] fscrypt: Error allocating hmac(sha512): -2 [ 371.420455][ T7832] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 371.449783][ T7832] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 371.891303][ T1087] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 372.291674][ T1087] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 372.655656][ T5114] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 372.668532][ T5114] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 372.681707][ T5114] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 372.699335][ T5114] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 372.709161][ T5114] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 372.717288][ T5114] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 373.095102][ T1087] bridge_slave_1: left allmulticast mode [ 373.103468][ T1087] bridge_slave_1: left promiscuous mode [ 373.123095][ T1087] bridge0: port 2(bridge_slave_1) entered disabled state [ 373.181034][ T1087] bridge_slave_0: left allmulticast mode [ 373.196075][ T1087] bridge_slave_0: left promiscuous mode [ 373.205445][ T1087] bridge0: port 1(bridge_slave_0) entered disabled state [ 373.627751][ T7882] process 'syz-executor.0' launched './file1' with NULL argv: empty string added [ 373.990353][ T1087] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 374.003787][ T1087] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 374.020548][ T1087] bond0 (unregistering): Released all slaves [ 374.044191][ T7884] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'. [ 374.054095][ T7884] bridge_slave_1: left allmulticast mode [ 374.060039][ T7884] bridge_slave_1: left promiscuous mode [ 374.066177][ T5164] usb 5-1: new high-speed USB device number 12 using dummy_hcd [ 374.068600][ T7884] bridge0: port 2(bridge_slave_1) entered disabled state [ 374.113819][ T7884] bridge_slave_0: left allmulticast mode [ 374.131851][ T7884] bridge_slave_0: left promiscuous mode [ 374.141231][ T7884] bridge0: port 1(bridge_slave_0) entered disabled state [ 374.302797][ T5164] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 374.313759][ T5164] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 374.324080][ T5164] usb 5-1: Product: syz [ 374.328823][ T5164] usb 5-1: Manufacturer: syz [ 374.333708][ T5164] usb 5-1: SerialNumber: syz [ 374.354115][ T5164] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 374.528499][ T5167] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 374.816208][ T5125] Bluetooth: hci3: command tx timeout [ 375.415585][ T5164] usb 5-1: USB disconnect, device number 12 [ 375.618556][ T5167] ath9k_htc 5-1:1.0: ath9k_htc: Target is unresponsive [ 375.627359][ T5167] ath9k_htc: Failed to initialize the device [ 375.637204][ T5164] usb 5-1: ath9k_htc: USB layer deinitialized [ 376.076804][ T7921] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. [ 376.896125][ T5125] Bluetooth: hci3: command tx timeout [ 377.583082][ T7952] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 378.109126][ T7960] loop4: detected capacity change from 0 to 1024 [ 378.988428][ T5114] Bluetooth: hci3: command tx timeout [ 378.988881][ T1249] ieee802154 phy0 wpan0: encryption failed: -22 [ 379.000366][ T1249] ieee802154 phy1 wpan1: encryption failed: -22 [ 379.376224][ C0] DEBUG: holding rtnl_mutex for 505 jiffies. [ 379.382849][ C0] task:syz-executor.2 state:R running task stack:24632 pid:7879 tgid:7879 ppid:6752 flags:0x0000400e [ 379.394706][ C0] Call Trace: [ 379.398047][ C0] [ 379.400915][ C0] sched_show_task+0x578/0x740 [ 379.405831][ C0] ? report_rtnl_holders+0x183/0x2d0 [ 379.411151][ C0] ? __pfx__printk+0x10/0x10 [ 379.415817][ C0] ? __pfx_sched_show_task+0x10/0x10 [ 379.421146][ C0] report_rtnl_holders+0x1ba/0x2d0 [ 379.426497][ C0] ? report_rtnl_holders+0x20/0x2d0 [ 379.431739][ C0] call_timer_fn+0x18e/0x650 [ 379.436426][ C0] ? call_timer_fn+0xc0/0x650 [ 379.441145][ C0] ? __pfx_report_rtnl_holders+0x10/0x10 [ 379.446854][ C0] ? __pfx_call_timer_fn+0x10/0x10 [ 379.452011][ C0] ? __pfx_report_rtnl_holders+0x10/0x10 [ 379.457728][ C0] ? __pfx_report_rtnl_holders+0x10/0x10 [ 379.463437][ C0] ? __pfx_report_rtnl_holders+0x10/0x10 [ 379.469125][ C0] ? _raw_spin_unlock_irq+0x23/0x50 [ 379.474355][ C0] ? lockdep_hardirqs_on+0x99/0x150 [ 379.479620][ C0] ? __pfx_report_rtnl_holders+0x10/0x10 [ 379.485295][ C0] __run_timer_base+0x66a/0x8e0 [ 379.490394][ C0] ? __pfx___run_timer_base+0x10/0x10 [ 379.496115][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 379.502576][ C0] run_timer_softirq+0xb7/0x170 [ 379.507530][ C0] handle_softirqs+0x2c4/0x970 [ 379.512344][ C0] ? __irq_exit_rcu+0xf4/0x1c0 [ 379.517489][ C0] ? __pfx_handle_softirqs+0x10/0x10 [ 379.522821][ C0] ? irqtime_account_irq+0xd4/0x1e0 [ 379.528209][ C0] __irq_exit_rcu+0xf4/0x1c0 [ 379.533013][ C0] ? __pfx___irq_exit_rcu+0x10/0x10 [ 379.538288][ C0] irq_exit_rcu+0x9/0x30 [ 379.542580][ C0] sysvec_apic_timer_interrupt+0xa6/0xc0 [ 379.548390][ C0] [ 379.551530][ C0] [ 379.554487][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 379.560599][ C0] RIP: 0010:preempt_schedule_irq+0xf6/0x1c0 [ 379.566567][ C0] Code: 89 f5 49 c1 ed 03 eb 0d 48 f7 03 08 00 00 00 0f 84 8b 00 00 00 bf 01 00 00 00 e8 55 7b ce f5 e8 c0 c0 06 f6 fb bf 01 00 00 00 95 ad ff ff 43 80 7c 3d 00 00 74 08 4c 89 f7 e8 35 62 65 f6 48 [ 379.586425][ C0] RSP: 0018:ffffc900047bf760 EFLAGS: 00000286 [ 379.592617][ C0] RAX: 28b1bc0f17d45e00 RBX: 1ffff920008f7ef4 RCX: ffffffff816fafba [ 379.600756][ C0] RDX: dffffc0000000000 RSI: ffffffff8bcac1a0 RDI: 0000000000000001 [ 379.608799][ C0] RBP: ffffc900047bf810 R08: ffffffff92fcb74f R09: 1ffffffff25f96e9 [ 379.616857][ C0] R10: dffffc0000000000 R11: fffffbfff25f96ea R12: 1ffff920008f7eec [ 379.624943][ C0] R13: 1ffff920008f7ef0 R14: ffffc900047bf780 R15: dffffc0000000000 [ 379.632986][ C0] ? mark_lock+0x9a/0x360 [ 379.637460][ C0] ? __pfx_preempt_schedule_irq+0x10/0x10 [ 379.643221][ C0] irqentry_exit+0x5e/0x90 [ 379.647717][ C0] asm_sysvec_reschedule_ipi+0x1a/0x20 [ 379.653218][ C0] RIP: 0010:synchronize_rcu+0x0/0x360 [ 379.658676][ C0] Code: e1 07 80 c1 03 38 c1 0f 8c 97 fe ff ff 4c 89 f7 e8 05 b8 7f 00 e9 8a fe ff ff 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1e fa 55 48 89 e5 41 57 41 56 41 55 41 54 53 48 83 e4 e0 48 [ 379.678369][ C0] RSP: 0018:ffffc900047bf8d8 EFLAGS: 00000206 [ 379.684463][ C0] RAX: dffffc0000000000 RBX: 1ffff920008f7f24 RCX: ffffffff947c3803 [ 379.692485][ C0] RDX: 0000000000000001 RSI: ffffffff8bcace80 RDI: ffffffff8c200760 [ 379.700614][ C0] RBP: ffffc900047bf9b8 R08: ffffffff947b0907 R09: 1ffffffff28f6120 [ 379.708706][ C0] R10: dffffc0000000000 R11: fffffbfff28f6121 R12: ffffffff947aedf8 [ 379.716750][ C0] R13: 1ffff920008f7f20 R14: 0000000000000203 R15: ffffc900047bf920 [ 379.724784][ C0] lockdep_unregister_key+0x4b7/0x540 [ 379.730241][ C0] ? __pfx_lockdep_unregister_key+0x10/0x10 [ 379.736227][ C0] ? lockdep_hardirqs_on+0x99/0x150 [ 379.741472][ C0] ? __qdisc_destroy+0x150/0x410 [ 379.746608][ C0] ? kfree+0x149/0x360 [ 379.750723][ C0] ? __pfx_pfifo_fast_destroy+0x10/0x10 [ 379.756370][ C0] __qdisc_destroy+0x165/0x410 [ 379.761788][ C0] dev_shutdown+0x9b/0x440 [ 379.766315][ C0] unregister_netdevice_many_notify+0x977/0x16b0 [ 379.772724][ C0] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 379.779582][ C0] ? __asan_memset+0x23/0x50 [ 379.784237][ C0] ? skb_queue_purge_reason+0x2de/0x500 [ 379.789898][ C0] ? do_raw_spin_unlock+0x13c/0x8b0 [ 379.795135][ C0] unregister_netdevice_queue+0x303/0x370 [ 379.800976][ C0] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 379.807316][ C0] __tun_detach+0x6b6/0x1600 [ 379.812047][ C0] tun_chr_close+0x108/0x1b0 [ 379.816733][ C0] ? __pfx_tun_chr_close+0x10/0x10 [ 379.821970][ C0] __fput+0x406/0x8b0 [ 379.826051][ C0] task_work_run+0x24f/0x310 [ 379.830764][ C0] ? __pfx_task_work_run+0x10/0x10 [ 379.836180][ C0] ? syscall_exit_to_user_mode+0xa3/0x370 [ 379.841964][ C0] syscall_exit_to_user_mode+0x168/0x370 [ 379.847728][ C0] do_syscall_64+0x100/0x230 [ 379.852362][ C0] ? clear_bhb_loop+0x35/0x90 [ 379.857119][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 379.863058][ C0] RIP: 0033:0x7fae06a7cea9 [ 379.867572][ C0] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 379.887349][ C0] RSP: 002b:00007fff6812bce8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 379.895941][ C0] RAX: 0000000000000000 RBX: 00007fae06bb5980 RCX: 00007fae06a7cea9 [ 379.903968][ C0] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003 [ 379.912210][ C0] RBP: 00007fae06bb5980 R08: 000000008140e8b3 R09: 0000000b00000000 [ 379.920251][ C0] R10: 0000001b31320000 R11: 0000000000000246 R12: 000000000005b636 [ 379.928494][ C0] R13: 00007fae06bb41fc R14: 0000000000000032 R15: 00007fae06bb5980 [ 379.936561][ C0] [ 379.939608][ C0] DEBUG: waiting rtnl_mutex for 560 jiffies. [ 379.945694][ C0] task:syz-executor.3 state:D stack:24336 pid:7855 tgid:7855 ppid:7814 flags:0x00000002 [ 379.956212][ C0] Call Trace: [ 379.959511][ C0] [ 379.962476][ C0] __schedule+0x17e8/0x4a20 [ 379.967186][ C0] ? __pfx___schedule+0x10/0x10 [ 379.972077][ C0] ? __pfx_lock_release+0x10/0x10 [ 379.977197][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 379.982729][ C0] ? schedule+0x90/0x320 [ 379.987054][ C0] schedule+0x14b/0x320 [ 379.991255][ C0] schedule_preempt_disabled+0x13/0x30 [ 379.996816][ C0] __mutex_lock+0x6a4/0xd70 [ 380.001551][ C0] ? __mutex_lock+0x527/0xd70 [ 380.006299][ C0] ? __tun_chr_ioctl+0x48f/0x2400 [ 380.011458][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 380.018137][ C0] ? rtnl_lock+0xe7/0x130 [ 380.022507][ C0] __tun_chr_ioctl+0x48f/0x2400 [ 380.027460][ C0] ? __pfx___tun_chr_ioctl+0x10/0x10 [ 380.032870][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 380.039021][ C0] ? bpf_lsm_file_ioctl+0x9/0x10 [ 380.044079][ C0] ? security_file_ioctl+0x87/0xb0 [ 380.049361][ C0] ? __pfx_tun_chr_ioctl+0x10/0x10 [ 380.054511][ C0] __se_sys_ioctl+0xfc/0x170 [ 380.060432][ C0] do_syscall_64+0xf3/0x230 [ 380.060491][ C0] ? clear_bhb_loop+0x35/0x90 [ 380.060521][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 380.060555][ C0] RIP: 0033:0x7f25d787cc0b [ 380.060575][ C0] RSP: 002b:00007ffd6c0ca180 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 380.060603][ C0] RAX: ffffffffffffffda RBX: 00007f25d79b49d8 RCX: 00007f25d787cc0b [ 380.060622][ C0] RDX: 00007ffd6c0ca200 RSI: 00000000400454ca RDI: 00000000000000c8 [ 380.060640][ C0] RBP: 00007ffd6c0ca380 R08: 0000000000000000 R09: 0000000000000000 [ 380.060657][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 380.060673][ C0] R13: 00007f25d79b3f40 R14: 0000000000000003 R15: 000000000000000c [ 380.060708][ C0] [ 380.060719][ C0] DEBUG: waiting rtnl_mutex for 566 jiffies. [ 380.060734][ C0] task:syz-executor.1 state:D stack:24672 pid:7883 tgid:7883 ppid:7236 flags:0x00004002 [ 380.060776][ C0] Call Trace: [ 380.060786][ C0] [ 380.060801][ C0] __schedule+0x17e8/0x4a20 [ 380.060853][ C0] ? __pfx___schedule+0x10/0x10 [ 380.060884][ C0] ? __pfx_lock_release+0x10/0x10 [ 380.060912][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 380.060950][ C0] ? schedule+0x90/0x320 [ 380.060973][ C0] schedule+0x14b/0x320 [ 380.182785][ C0] schedule_preempt_disabled+0x13/0x30 [ 380.188341][ C0] __mutex_lock+0x6a4/0xd70 [ 380.192903][ C0] ? __mutex_lock+0x527/0xd70 [ 380.197675][ C0] ? tun_chr_close+0x3e/0x1b0 [ 380.202388][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 380.207532][ C0] ? rtnl_lock+0xe7/0x130 [ 380.212007][ C0] tun_chr_close+0x3e/0x1b0 [ 380.216601][ C0] ? __pfx_tun_chr_close+0x10/0x10 [ 380.221766][ C0] __fput+0x406/0x8b0 [ 380.225857][ C0] task_work_run+0x24f/0x310 [ 380.230837][ C0] ? __pfx_task_work_run+0x10/0x10 [ 380.236131][ C0] ? switch_task_namespaces+0xe1/0x110 [ 380.241632][ C0] do_exit+0xa27/0x28e0 [ 380.245882][ C0] ? __pfx_do_exit+0x10/0x10 [ 380.250549][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 380.256624][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 380.262995][ C0] ? _raw_spin_unlock_irq+0x23/0x50 [ 380.268378][ C0] ? lockdep_hardirqs_on+0x99/0x150 [ 380.273625][ C0] do_group_exit+0x207/0x2c0 [ 380.278411][ C0] __x64_sys_exit_group+0x3f/0x40 [ 380.283483][ C0] do_syscall_64+0xf3/0x230 [ 380.288083][ C0] ? clear_bhb_loop+0x35/0x90 [ 380.292800][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 380.298885][ C0] RIP: 0033:0x7f2f4187cea9 [ 380.303380][ C0] RSP: 002b:00007ffc791da6f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 380.312058][ C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f2f4187cea9 [ 380.320200][ C0] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000 [ 380.328452][ C0] RBP: 0000000000000001 R08: 0000001200000000 R09: 0000000000000000 [ 380.336623][ C0] R10: 0000000084ad61b6 R11: 0000000000000246 R12: 0000000000000000 [ 380.344734][ C0] R13: 0000000000000000 R14: 00007ffc791da7d0 R15: 0000000000000001 [ 380.352937][ C0] [ 380.356201][ C0] [ 380.356201][ C0] Showing all locks held in the system: [ 380.366167][ C0] 3 locks held by kworker/u8:4/64: [ 380.371744][ C0] #0: ffff88802a5ce148 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 380.383631][ C0] #1: ffffc900015f7d00 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 380.396624][ C0] #2: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_dad_work+0xd0/0x16f0 [ 380.406173][ C0] 4 locks held by kworker/u8:6/1087: [ 380.411482][ C0] #0: ffff888015ed5948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 380.422991][ C0] #1: ffffc9000455fd00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 380.433639][ C0] #2: ffffffff8f5e2c90 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0 [ 380.443278][ C0] #3: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: wiphy_unregister+0x236/0xb00 [ 380.452703][ C0] 2 locks held by kworker/u8:7/1095: [ 380.458149][ C0] #0: ffff888015089148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 380.465276][ T7994] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 380.469987][ C0] #1: ffffc9000491fd00 ((reaper_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 380.470111][ C0] 2 locks held by kworker/u8:8/2421: [ 380.470127][ C0] #0: ffff888015089148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 380.470214][ C0] #1: ffffc90009a0fd00 (connector_reaper_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 380.470287][ C0] 2 locks held by dhcpcd/4761: [ 380.523739][ C0] #0: ffff88807e844678 (nlk_cb_mutex-ROUTE){+.+.}-{3:3}, at: netlink_dump+0xcb/0xd80 [ 380.533514][ C0] #1: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_dumpit+0x1bd/0x300 [ 380.542498][ C0] 2 locks held by getty/4852: [ 380.547244][ C0] #0: ffff88802b16a0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 380.557176][ C0] #1: ffffc90002f0e2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10 [ 380.567401][ C0] 3 locks held by kworker/0:5/5166: [ 380.572609][ C0] #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 380.583766][ C0] #1: ffffc900044efd00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 380.594897][ C0] #2: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60 [ 380.603975][ C0] 2 locks held by syz-executor.3/6823: [ 380.609510][ C0] #0: ffffffff8f655cd0 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40 [ 380.617912][ C0] #1: ffffffff8e604cc8 (nfsd_mutex){+.+.}-{3:3}, at: nfsd_nl_listener_set_doit+0x12d/0x1a90 [ 380.628192][ C0] 2 locks held by syz-executor.4/6927: [ 380.633660][ C0] #0: ffffffff8f655cd0 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40 [ 380.641902][ C0] #1: ffffffff8e604cc8 (nfsd_mutex){+.+.}-{3:3}, at: nfsd_nl_listener_set_doit+0x12d/0x1a90 [ 380.652194][ C0] 1 lock held by syz-executor.3/7855: [ 380.657640][ C0] #0: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: __tun_chr_ioctl+0x48f/0x2400 [ 380.667300][ C0] 4 locks held by syz-executor.2/7879: [ 380.672787][ C0] #0: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3e/0x1b0 [ 380.681955][ C0] #1: ffffc90000007c00 (net/core/rtnetlink.c:82){+.-.}-{0:0}, at: call_timer_fn+0xc0/0x650 [ 380.692154][ C0] #2: ffffffff8e3354a0 (rcu_read_lock){....}-{1:2}, at: report_rtnl_holders+0x20/0x2d0 [ 380.702214][ C0] #3: ffffffff8e3354a0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0 [ 380.712336][ C0] 1 lock held by syz-executor.1/7883: [ 380.717796][ C0] #0: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3e/0x1b0 [ 380.726874][ C0] 3 locks held by syz-executor.0/7994: [ 380.732546][ C0] #0: ffff88807b4a5468 (&pipe->mutex){+.+.}-{3:3}, at: splice_to_socket+0xee/0x10b0 [ 380.742320][ C0] #1: ffff8880678714b8 (&nft_net->commit_mutex){+.+.}-{3:3}, at: nf_tables_valid_genid+0x32/0x100 [ 380.753105][ C0] #2: ffffffff8e33a878 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x381/0x830 [ 380.764179][ C0] [ 380.766579][ C0] ============================================= [ 380.766579][ C0] [ 381.056090][ T5114] Bluetooth: hci3: command tx timeout [ 381.771503][ T29] audit: type=1800 audit(1718456193.701:32): pid=8002 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="file1" dev="sda1" ino=1965 res=0 errno=0 [ 381.792446][ C0] DEBUG: waiting rtnl_mutex for 740 jiffies. [ 381.792472][ C0] task:kworker/u8:4 state:D stack:22584 pid:64 tgid:64 ppid:2 flags:0x00004000 [ 381.792523][ C0] Workqueue: ipv6_addrconf addrconf_dad_work [ 381.792561][ C0] Call Trace: [ 381.792571][ C0] [ 381.792585][ C0] __schedule+0x17e8/0x4a20 [ 381.792633][ C0] ? __pfx___schedule+0x10/0x10 [ 381.792664][ C0] ? __pfx_lock_release+0x10/0x10 [ 381.792694][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 381.792724][ C0] ? kthread_data+0x52/0xd0 [ 381.792747][ C0] ? schedule+0x90/0x320 [ 381.792771][ C0] ? wq_worker_sleeping+0x66/0x240 [ 381.792799][ C0] ? schedule+0x90/0x320 [ 381.792822][ C0] schedule+0x14b/0x320 [ 381.792850][ C0] schedule_preempt_disabled+0x13/0x30 [ 381.792920][ C0] __mutex_lock+0x6a4/0xd70 [ 381.792949][ C0] ? mark_lock+0x9a/0x360 [ 381.792978][ C0] ? __mutex_lock+0x527/0xd70 [ 381.793008][ C0] ? addrconf_dad_work+0xd0/0x16f0 [ 381.793040][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 381.793080][ C0] ? rtnl_lock+0xe7/0x130 [ 381.793106][ C0] addrconf_dad_work+0xd0/0x16f0 [ 381.793156][ C0] ? __pfx_addrconf_dad_work+0x10/0x10 [ 381.793189][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 381.793229][ C0] ? process_scheduled_works+0x945/0x1830 [ 381.793254][ C0] process_scheduled_works+0xa2c/0x1830 [ 381.793311][ C0] ? __pfx_process_scheduled_works+0x10/0x10 [ 381.793346][ C0] ? assign_work+0x364/0x3d0 [ 381.793377][ C0] worker_thread+0x86d/0xd50 [ 381.793414][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 381.793447][ C0] ? __kthread_parkme+0x169/0x1d0 [ 381.793477][ C0] ? __pfx_worker_thread+0x10/0x10 [ 381.793503][ C0] kthread+0x2f0/0x390 [ 381.793532][ C0] ? __pfx_worker_thread+0x10/0x10 [ 381.793558][ C0] ? __pfx_kthread+0x10/0x10 [ 381.793588][ C0] ret_from_fork+0x4b/0x80 [ 381.793615][ C0] ? __pfx_kthread+0x10/0x10 [ 381.793644][ C0] ret_from_fork_asm+0x1a/0x30 [ 381.793691][ C0] [ 381.793701][ C0] DEBUG: waiting rtnl_mutex for 740 jiffies. [ 381.793715][ C0] task:dhcpcd state:D stack:20672 pid:4761 tgid:4761 ppid:4760 flags:0x00000002 [ 381.793756][ C0] Call Trace: [ 381.793766][ C0] [ 381.793780][ C0] __schedule+0x17e8/0x4a20 [ 381.793829][ C0] ? __pfx___schedule+0x10/0x10 [ 381.793858][ C0] ? __pfx_lock_release+0x10/0x10 [ 381.793885][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 381.793961][ C0] ? schedule+0x90/0x320 [ 381.793986][ C0] schedule+0x14b/0x320 [ 381.794015][ C0] schedule_preempt_disabled+0x13/0x30 [ 381.794041][ C0] __mutex_lock+0x6a4/0xd70 [ 381.794076][ C0] ? __mutex_lock+0x527/0xd70 [ 381.794106][ C0] ? rtnl_dumpit+0x1bd/0x300 [ 381.794146][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 381.794183][ C0] ? __alloc_skb+0x28f/0x440 [ 381.794207][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 381.794242][ C0] rtnl_dumpit+0x1bd/0x300 [ 381.794270][ C0] ? __pfx_rtnl_dump_ifinfo+0x10/0x10 [ 381.794306][ C0] netlink_dump+0x645/0xd80 [ 381.794349][ C0] ? __pfx_netlink_dump+0x10/0x10 [ 381.794374][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 381.794414][ C0] ? lockdep_hardirqs_on+0x99/0x150 [ 381.794454][ C0] ? netlink_recvmsg+0x60a/0x11d0 [ 381.794481][ C0] ? kmem_cache_free+0x145/0x350 [ 381.794514][ C0] netlink_recvmsg+0x6bb/0x11d0 [ 381.794554][ C0] ? __pfx_netlink_recvmsg+0x10/0x10 [ 381.794593][ C0] ? __pfx_aa_sk_perm+0x10/0x10 [ 381.794684][ C0] ? __pfx___might_resched+0x10/0x10 [ 381.794710][ C0] ? aa_sock_msg_perm+0x91/0x160 [ 381.794738][ C0] ? bpf_lsm_socket_recvmsg+0x9/0x10 [ 381.794765][ C0] ? security_socket_recvmsg+0x90/0xb0 [ 381.794813][ C0] ? __pfx_netlink_recvmsg+0x10/0x10 [ 381.794840][ C0] sock_recvmsg+0x22f/0x280 [ 381.794873][ C0] ____sys_recvmsg+0x1db/0x470 [ 381.794908][ C0] ? __pfx_____sys_recvmsg+0x10/0x10 [ 381.794946][ C0] ? vma_end_read+0x18/0x170 [ 381.795007][ C0] __sys_recvmsg+0x2f0/0x3e0 [ 381.795040][ C0] ? __pfx___sys_recvmsg+0x10/0x10 [ 381.795080][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 381.795130][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 381.795159][ C0] ? exc_page_fault+0x590/0x8c0 [ 381.795193][ C0] ? do_syscall_64+0xb6/0x230 [ 381.795218][ C0] do_syscall_64+0xf3/0x230 [ 381.795240][ C0] ? clear_bhb_loop+0x35/0x90 [ 381.795267][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 381.795293][ C0] RIP: 0033:0x7feb31a6f91e [ 381.795313][ C0] RSP: 002b:00007ffe908eff18 EFLAGS: 00000246 ORIG_RAX: 000000000000002f [ 381.795339][ C0] RAX: ffffffffffffffda RBX: 00007ffe908f1040 RCX: 00007feb31a6f91e [ 381.795358][ C0] RDX: 0000000000000000 RSI: 00007ffe908f0f60 RDI: 0000000000000018 [ 381.795373][ C0] RBP: 00007ffe908f0fd0 R08: 0000000000000000 R09: 0000000000000000 [ 381.795389][ C0] R10: 0000000000000101 R11: 0000000000000246 R12: 0000000000000f00 [ 381.795402][ C0] R13: 00007ffe908f0f44 R14: 00007ffe908f0f60 R15: 00007ffe908f0f50 [ 381.795435][ C0] [ 381.795444][ C0] DEBUG: waiting rtnl_mutex for 739 jiffies. [ 381.795457][ C0] task:kworker/u8:6 state:D stack:20712 pid:1087 tgid:1087 ppid:2 flags:0x00004000 [ 381.795498][ C0] Workqueue: netns cleanup_net [ 381.795523][ C0] Call Trace: [ 381.795531][ C0] [ 381.795544][ C0] __schedule+0x17e8/0x4a20 [ 381.795590][ C0] ? __pfx___schedule+0x10/0x10 [ 381.795617][ C0] ? __pfx_lock_release+0x10/0x10 [ 381.795644][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 381.795672][ C0] ? kthread_data+0x52/0xd0 [ 381.795695][ C0] ? schedule+0x90/0x320 [ 381.795720][ C0] ? wq_worker_sleeping+0x66/0x240 [ 381.795749][ C0] ? schedule+0x90/0x320 [ 381.795808][ C0] schedule+0x14b/0x320 [ 381.795837][ C0] schedule_preempt_disabled+0x13/0x30 [ 381.795863][ C0] __mutex_lock+0x6a4/0xd70 [ 381.795894][ C0] ? __mutex_lock+0x527/0xd70 [ 381.795921][ C0] ? wiphy_unregister+0x236/0xb00 [ 381.795948][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 381.795972][ C0] ? __up_read+0x2c2/0x6b0 [ 381.796005][ C0] ? __pfx___up_read+0x10/0x10 [ 381.796038][ C0] ? rtnl_lock+0xe7/0x130 [ 381.796064][ C0] wiphy_unregister+0x236/0xb00 [ 381.796130][ C0] ? __pfx_skb_queue_purge_reason+0x10/0x10 [ 381.796165][ C0] ? __pfx_wiphy_unregister+0x10/0x10 [ 381.796203][ C0] ? ieee80211_unregister_hw+0x144/0x2c0 [ 381.796231][ C0] ? kfree+0x149/0x360 [ 381.796260][ C0] ieee80211_unregister_hw+0x1e2/0x2c0 [ 381.796294][ C0] mac80211_hwsim_del_radio+0x2c2/0x4c0 [ 381.796386][ C0] ? __pfx_mac80211_hwsim_del_radio+0x10/0x10 [ 381.796425][ C0] hwsim_exit_net+0x5c1/0x670 [ 381.796471][ C0] ? __pfx_hwsim_exit_net+0x10/0x10 [ 381.796501][ C0] ? __ip_vs_dev_cleanup_batch+0x239/0x260 [ 381.796535][ C0] cleanup_net+0x802/0xcc0 [ 381.796565][ C0] ? __pfx_cleanup_net+0x10/0x10 [ 381.796601][ C0] ? process_scheduled_works+0x945/0x1830 [ 381.796627][ C0] process_scheduled_works+0xa2c/0x1830 [ 381.796687][ C0] ? __pfx_process_scheduled_works+0x10/0x10 [ 381.796723][ C0] ? assign_work+0x364/0x3d0 [ 381.796755][ C0] worker_thread+0x86d/0xd50 [ 381.796794][ C0] ? __kthread_parkme+0x169/0x1d0 [ 381.796822][ C0] ? __pfx_worker_thread+0x10/0x10 [ 381.796847][ C0] kthread+0x2f0/0x390 [ 381.796870][ C0] ? __pfx_worker_thread+0x10/0x10 [ 381.796894][ C0] ? __pfx_kthread+0x10/0x10 [ 381.796923][ C0] ret_from_fork+0x4b/0x80 [ 381.796951][ C0] ? __pfx_kthread+0x10/0x10 [ 381.796979][ C0] ret_from_fork_asm+0x1a/0x30 [ 381.797023][ C0] [ 381.797033][ C0] DEBUG: holding rtnl_mutex for 747 jiffies. [ 381.797044][ C0] task:syz-executor.2 state:R running task stack:24632 pid:7879 tgid:7879 ppid:6752 flags:0x00004006 [ 381.797091][ C0] Call Trace: [ 381.797100][ C0] [ 381.797122][ C0] __schedule+0x17e8/0x4a20 [ 381.797201][ C0] ? __pfx___schedule+0x10/0x10 [ 381.797232][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 381.797261][ C0] ? kasan_save_track+0x51/0x80 [ 381.797293][ C0] ? preempt_schedule_irq+0xf0/0x1c0 [ 381.797324][ C0] preempt_schedule_irq+0xfb/0x1c0 [ 381.797351][ C0] ? __pfx_preempt_schedule_irq+0x10/0x10 [ 381.797376][ C0] ? kvm_kick_cpu+0x26/0xb0 [ 381.797409][ C0] irqentry_exit+0x5e/0x90 [ 381.797436][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 381.797459][ C0] RIP: 0010:synchronize_rcu+0x0/0x360 [ 381.797488][ C0] Code: e1 07 80 c1 03 38 c1 0f 8c 97 fe ff ff 4c 89 f7 e8 05 b8 7f 00 e9 8a fe ff ff 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1e fa 55 48 89 e5 41 57 41 56 41 55 41 54 53 48 83 e4 e0 48 [ 381.797506][ C0] RSP: 0018:ffffc900047bf8d8 EFLAGS: 00000206 [ 381.797528][ C0] RAX: dffffc0000000000 RBX: 1ffff920008f7f24 RCX: ffffffff947c3803 [ 381.797546][ C0] RDX: 0000000000000001 RSI: ffffffff8bcace80 RDI: ffffffff8c200760 [ 381.797565][ C0] RBP: ffffc900047bf9b8 R08: ffffffff947b8947 R09: 1ffffffff28f7128 [ 381.797582][ C0] R10: dffffc0000000000 R11: fffffbfff28f7129 R12: ffffffff947b6e08 [ 381.797599][ C0] R13: 1ffff920008f7f20 R14: 0000000000000a07 R15: ffffc900047bf920 [ 381.797635][ C0] lockdep_unregister_key+0x4b7/0x540 [ 381.797667][ C0] ? __pfx_lockdep_unregister_key+0x10/0x10 [ 381.797693][ C0] ? lockdep_hardirqs_on+0x99/0x150 [ 381.797729][ C0] ? __qdisc_destroy+0x150/0x410 [ 381.797759][ C0] ? kfree+0x149/0x360 [ 381.797785][ C0] ? __pfx_pfifo_fast_destroy+0x10/0x10 [ 381.797813][ C0] __qdisc_destroy+0x165/0x410 [ 381.797846][ C0] dev_shutdown+0x9b/0x440 [ 381.797880][ C0] unregister_netdevice_many_notify+0x977/0x16b0 [ 381.797926][ C0] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 381.797956][ C0] ? __asan_memset+0x23/0x50 [ 381.797985][ C0] ? skb_queue_purge_reason+0x2de/0x500 [ 381.798028][ C0] ? do_raw_spin_unlock+0x13c/0x8b0 [ 381.798056][ C0] unregister_netdevice_queue+0x303/0x370 [ 381.798087][ C0] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 381.798130][ C0] __tun_detach+0x6b6/0x1600 [ 381.798171][ C0] tun_chr_close+0x108/0x1b0 [ 381.798225][ C0] ? __pfx_tun_chr_close+0x10/0x10 [ 381.798251][ C0] __fput+0x406/0x8b0 [ 381.798293][ C0] task_work_run+0x24f/0x310 [ 381.798331][ C0] ? __pfx_task_work_run+0x10/0x10 [ 381.798365][ C0] ? syscall_exit_to_user_mode+0xa3/0x370 [ 381.798401][ C0] syscall_exit_to_user_mode+0x168/0x370 [ 381.798437][ C0] do_syscall_64+0x100/0x230 [ 381.798461][ C0] ? clear_bhb_loop+0x35/0x90 [ 381.798490][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 381.798514][ C0] RIP: 0033:0x7fae06a7cea9 [ 381.798534][ C0] RSP: 002b:00007fff6812bce8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 381.798561][ C0] RAX: 0000000000000000 RBX: 00007fae06bb5980 RCX: 00007fae06a7cea9 [ 381.798579][ C0] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003 [ 381.798595][ C0] RBP: 00007fae06bb5980 R08: 000000008140e8b3 R09: 0000000b00000000 [ 381.798613][ C0] R10: 0000001b31320000 R11: 0000000000000246 R12: 000000000005b636 [ 381.798630][ C0] R13: 00007fae06bb41fc R14: 0000000000000032 R15: 00007fae06bb5980 [ 381.798665][ C0] [ 381.798676][ C0] DEBUG: waiting rtnl_mutex for 746 jiffies. [ 381.798689][ C0] task:syz-executor.3 state:D stack:24336 pid:7855 tgid:7855 ppid:7814 flags:0x00000002 [ 381.798730][ C0] Call Trace: [ 381.798739][ C0] [ 381.798754][ C0] __schedule+0x17e8/0x4a20 [ 381.798806][ C0] ? __pfx___schedule+0x10/0x10 [ 381.798837][ C0] ? __pfx_lock_release+0x10/0x10 [ 381.798866][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 381.798907][ C0] ? schedule+0x90/0x320 [ 381.798930][ C0] schedule+0x14b/0x320 [ 381.798959][ C0] schedule_preempt_disabled+0x13/0x30 [ 381.798983][ C0] __mutex_lock+0x6a4/0xd70 [ 381.799014][ C0] ? __mutex_lock+0x527/0xd70 [ 381.799042][ C0] ? __tun_chr_ioctl+0x48f/0x2400 [ 381.799069][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 381.799117][ C0] ? rtnl_lock+0xe7/0x130 [ 381.799143][ C0] __tun_chr_ioctl+0x48f/0x2400 [ 381.799181][ C0] ? __pfx___tun_chr_ioctl+0x10/0x10 [ 381.799215][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 381.799279][ C0] ? bpf_lsm_file_ioctl+0x9/0x10 [ 381.799309][ C0] ? security_file_ioctl+0x87/0xb0 [ 381.799341][ C0] ? __pfx_tun_chr_ioctl+0x10/0x10 [ 381.799368][ C0] __se_sys_ioctl+0xfc/0x170 [ 381.799405][ C0] do_syscall_64+0xf3/0x230 [ 381.799429][ C0] ? clear_bhb_loop+0x35/0x90 [ 381.799455][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 381.799476][ C0] RIP: 0033:0x7f25d787cc0b [ 381.799496][ C0] RSP: 002b:00007ffd6c0ca180 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 381.799520][ C0] RAX: ffffffffffffffda RBX: 00007f25d79b49d8 RCX: 00007f25d787cc0b [ 381.799538][ C0] RDX: 00007ffd6c0ca200 RSI: 00000000400454ca RDI: 00000000000000c8 [ 381.799555][ C0] RBP: 00007ffd6c0ca380 R08: 0000000000000000 R09: 0000000000000000 [ 381.799569][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 381.799584][ C0] R13: 00007f25d79b3f40 R14: 0000000000000003 R15: 000000000000000c [ 381.799615][ C0] [ 381.799625][ C0] DEBUG: waiting rtnl_mutex for 740 jiffies. [ 381.799638][ C0] task:syz-executor.1 state:D stack:24672 pid:7883 tgid:7883 ppid:7236 flags:0x00004002 [ 381.799677][ C0] Call Trace: [ 381.799686][ C0] [ 381.799701][ C0] __schedule+0x17e8/0x4a20 [ 381.799750][ C0] ? __pfx___schedule+0x10/0x10 [ 381.799777][ C0] ? __pfx_lock_release+0x10/0x10 [ 381.799813][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 381.799853][ C0] ? schedule+0x90/0x320 [ 381.799878][ C0] schedule+0x14b/0x320 [ 381.799907][ C0] schedule_preempt_disabled+0x13/0x30 [ 381.799934][ C0] __mutex_lock+0x6a4/0xd70 [ 381.799965][ C0] ? __mutex_lock+0x527/0xd70 [ 381.799995][ C0] ? tun_chr_close+0x3e/0x1b0 [ 381.800022][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 381.800063][ C0] ? rtnl_lock+0xe7/0x130 [ 381.800089][ C0] tun_chr_close+0x3e/0x1b0 [ 381.800118][ C0] ? __pfx_tun_chr_close+0x10/0x10 [ 381.800143][ C0] __fput+0x406/0x8b0 [ 381.800183][ C0] task_work_run+0x24f/0x310 [ 381.800218][ C0] ? __pfx_task_work_run+0x10/0x10 [ 381.800252][ C0] ? switch_task_namespaces+0xe1/0x110 [ 381.800310][ C0] do_exit+0xa27/0x28e0 [ 381.800350][ C0] ? __pfx_do_exit+0x10/0x10 [ 381.800380][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 381.800410][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 381.800444][ C0] ? _raw_spin_unlock_irq+0x23/0x50 [ 381.800470][ C0] ? lockdep_hardirqs_on+0x99/0x150 [ 381.800504][ C0] do_group_exit+0x207/0x2c0 [ 381.800540][ C0] __x64_sys_exit_group+0x3f/0x40 [ 381.800570][ C0] do_syscall_64+0xf3/0x230 [ 381.800593][ C0] ? clear_bhb_loop+0x35/0x90 [ 381.800622][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 381.800646][ C0] RIP: 0033:0x7f2f4187cea9 [ 381.800666][ C0] RSP: 002b:00007ffc791da6f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 381.800693][ C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f2f4187cea9 [ 381.800711][ C0] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000 [ 381.800727][ C0] RBP: 0000000000000001 R08: 0000001200000000 R09: 0000000000000000 [ 381.800743][ C0] R10: 0000000084ad61b6 R11: 0000000000000246 R12: 0000000000000000 [ 381.800759][ C0] R13: 0000000000000000 R14: 00007ffc791da7d0 R15: 0000000000000001 [ 381.800794][ C0] [ 381.800803][ C0] DEBUG: waiting rtnl_mutex for 637 jiffies. [ 381.800816][ C0] task:kworker/0:5 state:D stack:24784 pid:5166 tgid:5166 ppid:2 flags:0x00004000 [ 381.800859][ C0] Workqueue: events linkwatch_event [ 381.800885][ C0] Call Trace: [ 381.800894][ C0] [ 381.800909][ C0] __schedule+0x17e8/0x4a20 [ 381.800960][ C0] ? __pfx___schedule+0x10/0x10 [ 381.800988][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 381.801015][ C0] ? __pfx_lock_release+0x10/0x10 [ 381.801044][ C0] ? kick_pool+0x45c/0x620 [ 381.801069][ C0] ? preempt_schedule_thunk+0x1a/0x30 [ 381.801089][ C0] ? schedule+0x90/0x320 [ 381.801106][ C0] schedule+0x14b/0x320 [ 381.801141][ C0] schedule_preempt_disabled+0x13/0x30 [ 381.801166][ C0] __mutex_lock+0x6a4/0xd70 [ 381.801199][ C0] ? __mutex_lock+0x527/0xd70 [ 381.801225][ C0] ? linkwatch_event+0xe/0x60 [ 381.801249][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 381.801286][ C0] ? process_scheduled_works+0x945/0x1830 [ 381.801310][ C0] ? rtnl_lock+0xe7/0x130 [ 381.801362][ C0] ? process_scheduled_works+0x945/0x1830 [ 381.801387][ C0] linkwatch_event+0xe/0x60 [ 381.801408][ C0] process_scheduled_works+0xa2c/0x1830 [ 381.801461][ C0] ? __pfx_process_scheduled_works+0x10/0x10 [ 381.801496][ C0] ? assign_work+0x364/0x3d0 [ 381.801527][ C0] worker_thread+0x86d/0xd50 [ 381.801569][ C0] ? __kthread_parkme+0x169/0x1d0 [ 381.801600][ C0] ? __pfx_worker_thread+0x10/0x10 [ 381.801626][ C0] kthread+0x2f0/0x390 [ 381.801654][ C0] ? __pfx_worker_thread+0x10/0x10 [ 381.801679][ C0] ? __pfx_kthread+0x10/0x10 [ 381.801708][ C0] ret_from_fork+0x4b/0x80 [ 381.801735][ C0] ? __pfx_kthread+0x10/0x10 [ 381.801763][ C0] ret_from_fork_asm+0x1a/0x30 [ 381.801808][ C0] [ 381.801820][ C0] [ 381.801820][ C0] Showing all locks held in the system: [ 381.801835][ C0] 5 locks held by kauditd/29: [ 381.801850][ C0] #0: ffffffff8e210d80 (console_lock){+.+.}-{0:0}, at: _printk+0xd5/0x120 [ 381.801918][ C0] #1: ffffffff8e210990 (console_srcu){....}-{0:0}, at: console_flush_all+0x147/0xf50 [ 381.801977][ C0] #2: ffffc90000007c00 (net/core/rtnetlink.c:82){+.-.}-{0:0}, at: call_timer_fn+0xc0/0x650 [ 381.802047][ C0] #3: ffffffff8e3354a0 (rcu_read_lock){....}-{1:2}, at: report_rtnl_holders+0x20/0x2d0 [ 381.802119][ C0] #4: ffffffff8e3354a0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0 [ 381.802189][ C0] 3 locks held by kworker/u8:4/64: [ 381.802203][ C0] #0: ffff88802a5ce148 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 381.802266][ C0] #1: ffffc900015f7d00 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 381.802329][ C0] #2: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_dad_work+0xd0/0x16f0 [ 381.802435][ C0] 4 locks held by kworker/u8:6/1087: [ 381.802450][ C0] #0: ffff888015ed5948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 381.802513][ C0] #1: ffffc9000455fd00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 381.802575][ C0] #2: ffffffff8f5e2c90 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0 [ 381.802635][ C0] #3: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: wiphy_unregister+0x236/0xb00 [ 381.802702][ C0] 2 locks held by kworker/u8:7/1095: [ 381.802715][ C0] #0: ffff888015089148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 381.802779][ C0] #1: ffffc9000491fd00 (connector_reaper_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 381.802856][ C0] 2 locks held by kworker/u8:11/2918: [ 381.802871][ C0] #0: ffff888015089148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 381.802934][ C0] #1: ffffc9000a60fd00 ((reaper_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 381.802997][ C0] 4 locks held by klogd/4536: [ 381.803012][ C0] 2 locks held by dhcpcd/4761: [ 381.803025][ C0] #0: ffff88807e844678 (nlk_cb_mutex-ROUTE){+.+.}-{3:3}, at: netlink_dump+0xcb/0xd80 [ 381.803090][ C0] #1: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_dumpit+0x1bd/0x300 [ 381.803165][ C0] 2 locks held by getty/4852: [ 381.803179][ C0] #0: ffff88802b16a0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 381.803241][ C0] #1: ffffc90002f0e2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10 [ 381.803305][ C0] 3 locks held by kworker/0:5/5166: [ 381.803319][ C0] #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 381.803381][ C0] #1: ffffc900044efd00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 381.803470][ C0] #2: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60 [ 381.803532][ C0] 2 locks held by syz-executor.3/6823: [ 381.803544][ C0] #0: ffffffff8f655cd0 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40 [ 381.803598][ C0] #1: ffffffff8e604cc8 (nfsd_mutex){+.+.}-{3:3}, at: nfsd_nl_listener_set_doit+0x12d/0x1a90 [ 381.803659][ C0] 2 locks held by syz-executor.4/6927: [ 381.803674][ C0] #0: ffffffff8f655cd0 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40 [ 381.803734][ C0] #1: ffffffff8e604cc8 (nfsd_mutex){+.+.}-{3:3}, at: nfsd_nl_listener_set_doit+0x12d/0x1a90 [ 381.803801][ C0] 1 lock held by syz-executor.3/7855: [ 381.803815][ C0] #0: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: __tun_chr_ioctl+0x48f/0x2400 [ 381.803878][ C0] 2 locks held by syz-executor.2/7879: [ 381.803891][ C0] #0: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3e/0x1b0 [ 381.803948][ C0] #1: ffffffff8e33a878 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x381/0x830 [ 381.804017][ C0] 1 lock held by syz-executor.1/7883: [ 381.804032][ C0] #0: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3e/0x1b0 [ 381.804093][ C0] [ 381.804100][ C0] ============================================= [ 381.804100][ C0] [ 382.146286][ T8007] input: syz0 as /devices/virtual/input/input12 [ 382.826465][ C0] DEBUG: waiting rtnl_mutex for 843 jiffies. [ 383.909236][ C0] task:kworker/u8:4 state:D stack:22584 pid:64 tgid:64 ppid:2 flags:0x00004000 [ 383.919469][ C0] Workqueue: ipv6_addrconf addrconf_dad_work [ 383.925491][ C0] Call Trace: [ 383.928844][ C0] [ 383.931879][ C0] __schedule+0x17e8/0x4a20 [ 383.936465][ C0] ? __pfx___schedule+0x10/0x10 [ 383.941522][ C0] ? __pfx_lock_release+0x10/0x10 [ 383.946618][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 383.952119][ C0] ? kthread_data+0x52/0xd0 [ 383.956689][ C0] ? schedule+0x90/0x320 [ 383.960964][ C0] ? wq_worker_sleeping+0x66/0x240 [ 383.966121][ C0] ? schedule+0x90/0x320 [ 383.970408][ C0] schedule+0x14b/0x320 [ 383.974582][ C0] schedule_preempt_disabled+0x13/0x30 [ 383.980137][ C0] __mutex_lock+0x6a4/0xd70 [ 383.984692][ C0] ? mark_lock+0x9a/0x360 [ 383.989075][ C0] ? __mutex_lock+0x527/0xd70 [ 383.993920][ C0] ? addrconf_dad_work+0xd0/0x16f0 [ 383.999087][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 384.004141][ C0] ? rtnl_lock+0xe7/0x130 [ 384.008551][ C0] addrconf_dad_work+0xd0/0x16f0 [ 384.013536][ C0] ? __pfx_addrconf_dad_work+0x10/0x10 [ 384.019082][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 384.025722][ C0] ? process_scheduled_works+0x945/0x1830 [ 384.031524][ C0] process_scheduled_works+0xa2c/0x1830 [ 384.037283][ C0] ? __pfx_process_scheduled_works+0x10/0x10 [ 384.043318][ C0] ? assign_work+0x364/0x3d0 [ 384.048050][ C0] worker_thread+0x86d/0xd50 [ 384.052669][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 384.058618][ C0] ? __kthread_parkme+0x169/0x1d0 [ 384.063695][ C0] ? __pfx_worker_thread+0x10/0x10 [ 384.068994][ C0] kthread+0x2f0/0x390 [ 384.073179][ C0] ? __pfx_worker_thread+0x10/0x10 [ 384.078342][ C0] ? __pfx_kthread+0x10/0x10 [ 384.082965][ C0] ret_from_fork+0x4b/0x80 [ 384.087428][ C0] ? __pfx_kthread+0x10/0x10 [ 384.092039][ C0] ret_from_fork_asm+0x1a/0x30 [ 384.096960][ C0] [ 384.099995][ C0] DEBUG: waiting rtnl_mutex for 971 jiffies. [ 384.106165][ C0] task:dhcpcd state:D stack:20672 pid:4761 tgid:4761 ppid:4760 flags:0x00000002 [ 384.116505][ C0] Call Trace: [ 384.119828][ C0] [ 384.122933][ C0] __schedule+0x17e8/0x4a20 [ 384.127651][ C0] ? __pfx___schedule+0x10/0x10 [ 384.132558][ C0] ? __pfx_lock_release+0x10/0x10 [ 384.137674][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 384.143182][ C0] ? schedule+0x90/0x320 [ 384.147504][ C0] schedule+0x14b/0x320 [ 384.151740][ C0] schedule_preempt_disabled+0x13/0x30 [ 384.157364][ C0] __mutex_lock+0x6a4/0xd70 [ 384.161882][ C0] ? __mutex_lock+0x527/0xd70 [ 384.166652][ C0] ? rtnl_dumpit+0x1bd/0x300 [ 384.171307][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 384.176422][ C0] ? __alloc_skb+0x28f/0x440 [ 384.181038][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 384.186114][ C0] rtnl_dumpit+0x1bd/0x300 [ 384.190555][ C0] ? __pfx_rtnl_dump_ifinfo+0x10/0x10 [ 384.196028][ C0] netlink_dump+0x645/0xd80 [ 384.200559][ C0] ? __pfx_netlink_dump+0x10/0x10 [ 384.205590][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 384.211730][ C0] ? lockdep_hardirqs_on+0x99/0x150 [ 384.217029][ C0] ? netlink_recvmsg+0x60a/0x11d0 [ 384.222068][ C0] ? kmem_cache_free+0x145/0x350 [ 384.227078][ C0] netlink_recvmsg+0x6bb/0x11d0 [ 384.231980][ C0] ? __pfx_netlink_recvmsg+0x10/0x10 [ 384.237421][ C0] ? __pfx_aa_sk_perm+0x10/0x10 [ 384.242300][ C0] ? __pfx___might_resched+0x10/0x10 [ 384.247643][ C0] ? aa_sock_msg_perm+0x91/0x160 [ 384.252608][ C0] ? bpf_lsm_socket_recvmsg+0x9/0x10 [ 384.257965][ C0] ? security_socket_recvmsg+0x90/0xb0 [ 384.263455][ C0] ? __pfx_netlink_recvmsg+0x10/0x10 [ 384.268788][ C0] sock_recvmsg+0x22f/0x280 [ 384.273334][ C0] ____sys_recvmsg+0x1db/0x470 [ 384.278152][ C0] ? __pfx_____sys_recvmsg+0x10/0x10 [ 384.283747][ C0] ? vma_end_read+0x18/0x170 [ 384.288568][ C0] __sys_recvmsg+0x2f0/0x3e0 [ 384.293377][ C0] ? __pfx___sys_recvmsg+0x10/0x10 [ 384.298563][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 384.304602][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 384.311020][ C0] ? exc_page_fault+0x590/0x8c0 [ 384.315960][ C0] ? do_syscall_64+0xb6/0x230 [ 384.320634][ C0] do_syscall_64+0xf3/0x230 [ 384.325133][ C0] ? clear_bhb_loop+0x35/0x90 [ 384.329866][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 384.335831][ C0] RIP: 0033:0x7feb31a6f91e [ 384.340263][ C0] RSP: 002b:00007ffe908eff18 EFLAGS: 00000246 ORIG_RAX: 000000000000002f [ 384.348740][ C0] RAX: ffffffffffffffda RBX: 00007ffe908f1040 RCX: 00007feb31a6f91e [ 384.356760][ C0] RDX: 0000000000000000 RSI: 00007ffe908f0f60 RDI: 0000000000000018 [ 384.364729][ C0] RBP: 00007ffe908f0fd0 R08: 0000000000000000 R09: 0000000000000000 [ 384.372764][ C0] R10: 0000000000000101 R11: 0000000000000246 R12: 0000000000000f00 [ 384.380787][ C0] R13: 00007ffe908f0f44 R14: 00007ffe908f0f60 R15: 00007ffe908f0f50 [ 384.388818][ C0] [ 384.391860][ C0] DEBUG: waiting rtnl_mutex for 999 jiffies. [ 384.397962][ C0] task:kworker/u8:6 state:D stack:20712 pid:1087 tgid:1087 ppid:2 flags:0x00004000 [ 384.408175][ C0] Workqueue: netns cleanup_net [ 384.412952][ C0] Call Trace: [ 384.416283][ C0] [ 384.419230][ C0] __schedule+0x17e8/0x4a20 [ 384.423772][ C0] ? __pfx___schedule+0x10/0x10 [ 384.428675][ C0] ? __pfx_lock_release+0x10/0x10 [ 384.433809][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 384.439321][ C0] ? kthread_data+0x52/0xd0 [ 384.443848][ C0] ? schedule+0x90/0x320 [ 384.448135][ C0] ? wq_worker_sleeping+0x66/0x240 [ 384.453292][ C0] ? schedule+0x90/0x320 [ 384.457776][ C0] schedule+0x14b/0x320 [ 384.461960][ C0] schedule_preempt_disabled+0x13/0x30 [ 384.467468][ C0] __mutex_lock+0x6a4/0xd70 [ 384.471998][ C0] ? __mutex_lock+0x527/0xd70 [ 384.476743][ C0] ? wiphy_unregister+0x236/0xb00 [ 384.481801][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 384.486873][ C0] ? __up_read+0x2c2/0x6b0 [ 384.491315][ C0] ? __pfx___up_read+0x10/0x10 [ 384.496157][ C0] ? rtnl_lock+0xe7/0x130 [ 384.500523][ C0] wiphy_unregister+0x236/0xb00 [ 384.505486][ C0] ? __pfx_skb_queue_purge_reason+0x10/0x10 [ 384.511478][ C0] ? __pfx_wiphy_unregister+0x10/0x10 [ 384.517004][ C0] ? ieee80211_unregister_hw+0x144/0x2c0 [ 384.522651][ C0] ? kfree+0x149/0x360 [ 384.526795][ C0] ieee80211_unregister_hw+0x1e2/0x2c0 [ 384.532357][ C0] mac80211_hwsim_del_radio+0x2c2/0x4c0 [ 384.537968][ C0] ? __pfx_mac80211_hwsim_del_radio+0x10/0x10 [ 384.544079][ C0] hwsim_exit_net+0x5c1/0x670 [ 384.549325][ C0] ? __pfx_hwsim_exit_net+0x10/0x10 [ 384.554561][ C0] ? __ip_vs_dev_cleanup_batch+0x239/0x260 [ 384.560482][ C0] cleanup_net+0x802/0xcc0 [ 384.564929][ C0] ? __pfx_cleanup_net+0x10/0x10 [ 384.569926][ C0] ? process_scheduled_works+0x945/0x1830 [ 384.575690][ C0] process_scheduled_works+0xa2c/0x1830 [ 384.581312][ C0] ? __pfx_process_scheduled_works+0x10/0x10 [ 384.587373][ C0] ? assign_work+0x364/0x3d0 [ 384.592081][ C0] worker_thread+0x86d/0xd50 [ 384.596733][ C0] ? __kthread_parkme+0x169/0x1d0 [ 384.601874][ C0] ? __pfx_worker_thread+0x10/0x10 [ 384.607225][ C0] kthread+0x2f0/0x390 [ 384.611335][ C0] ? __pfx_worker_thread+0x10/0x10 [ 384.616485][ C0] ? __pfx_kthread+0x10/0x10 [ 384.621152][ C0] ret_from_fork+0x4b/0x80 [ 384.625565][ C0] ? __pfx_kthread+0x10/0x10 [ 384.630194][ C0] ret_from_fork_asm+0x1a/0x30 [ 384.635003][ C0] [ 384.638079][ C0] DEBUG: holding rtnl_mutex for 1031 jiffies. [ 384.644162][ C0] task:syz-executor.2 state:D stack:24632 pid:7879 tgid:7879 ppid:6752 flags:0x00004006 [ 384.654548][ C0] Call Trace: [ 384.657905][ C0] [ 384.660865][ C0] __schedule+0x17e8/0x4a20 [ 384.665401][ C0] ? __pfx___schedule+0x10/0x10 [ 384.670303][ C0] ? __pfx_lock_release+0x10/0x10 [ 384.675377][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 384.681368][ C0] ? schedule+0x90/0x320 [ 384.685714][ C0] schedule+0x14b/0x320 [ 384.689928][ C0] synchronize_rcu_expedited+0x70a/0x830 [ 384.695597][ C0] ? __pfx_synchronize_rcu_expedited+0x10/0x10 [ 384.701970][ C0] ? __pfx_autoremove_wake_function+0x10/0x10 [ 384.708107][ C0] ? __pfx___might_resched+0x10/0x10 [ 384.713388][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 384.719443][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 384.725867][ C0] synchronize_rcu+0x11b/0x360 [ 384.730761][ C0] ? __pfx_synchronize_rcu+0x10/0x10 [ 384.736333][ C0] lockdep_unregister_key+0x4b7/0x540 [ 384.741926][ C0] ? __pfx_lockdep_unregister_key+0x10/0x10 [ 384.747881][ C0] ? lockdep_hardirqs_on+0x99/0x150 [ 384.753127][ C0] ? __qdisc_destroy+0x150/0x410 [ 384.758155][ C0] ? kfree+0x149/0x360 [ 384.762360][ C0] ? __pfx_pfifo_fast_destroy+0x10/0x10 [ 384.768613][ C0] __qdisc_destroy+0x165/0x410 [ 384.773517][ C0] dev_shutdown+0x9b/0x440 [ 384.778056][ C0] unregister_netdevice_many_notify+0x977/0x16b0 [ 384.784440][ C0] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 384.791275][ C0] ? __asan_memset+0x23/0x50 [ 384.795935][ C0] ? skb_queue_purge_reason+0x2de/0x500 [ 384.801613][ C0] ? do_raw_spin_unlock+0x13c/0x8b0 [ 384.806874][ C0] unregister_netdevice_queue+0x303/0x370 [ 384.812643][ C0] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 384.818958][ C0] __tun_detach+0x6b6/0x1600 [ 384.823707][ C0] tun_chr_close+0x108/0x1b0 [ 384.828385][ C0] ? __pfx_tun_chr_close+0x10/0x10 [ 384.833613][ C0] __fput+0x406/0x8b0 [ 384.837766][ C0] task_work_run+0x24f/0x310 [ 384.842411][ C0] ? __pfx_task_work_run+0x10/0x10 [ 384.847596][ C0] ? syscall_exit_to_user_mode+0xa3/0x370 [ 384.853403][ C0] syscall_exit_to_user_mode+0x168/0x370 [ 384.859206][ C0] do_syscall_64+0x100/0x230 [ 384.863846][ C0] ? clear_bhb_loop+0x35/0x90 [ 384.868714][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 384.874684][ C0] RIP: 0033:0x7fae06a7cea9 [ 384.879176][ C0] RSP: 002b:00007fff6812bce8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 384.887735][ C0] RAX: 0000000000000000 RBX: 00007fae06bb5980 RCX: 00007fae06a7cea9 [ 384.895718][ C0] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003 [ 384.903755][ C0] RBP: 00007fae06bb5980 R08: 000000008140e8b3 R09: 0000000b00000000 [ 384.912039][ C0] R10: 0000001b31320000 R11: 0000000000000246 R12: 000000000005b636 [ 384.920204][ C0] R13: 00007fae06bb41fc R14: 0000000000000032 R15: 00007fae06bb5980 [ 384.928256][ C0] [ 384.931273][ C0] DEBUG: waiting rtnl_mutex for 1059 jiffies. [ 384.937372][ C0] task:syz-executor.3 state:D stack:24336 pid:7855 tgid:7855 ppid:7814 flags:0x00000002 [ 384.947594][ C0] Call Trace: [ 384.950892][ C0] [ 384.953862][ C0] __schedule+0x17e8/0x4a20 [ 384.958448][ C0] ? __pfx___schedule+0x10/0x10 [ 384.963331][ C0] ? __pfx_lock_release+0x10/0x10 [ 384.968417][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 384.974008][ C0] ? schedule+0x90/0x320 [ 384.978322][ C0] schedule+0x14b/0x320 [ 384.982530][ C0] schedule_preempt_disabled+0x13/0x30 [ 384.988063][ C0] __mutex_lock+0x6a4/0xd70 [ 384.992619][ C0] ? __mutex_lock+0x527/0xd70 [ 384.997381][ C0] ? __tun_chr_ioctl+0x48f/0x2400 [ 385.002445][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 385.007540][ C0] ? rtnl_lock+0xe7/0x130 [ 385.011912][ C0] __tun_chr_ioctl+0x48f/0x2400 [ 385.016877][ C0] ? __pfx___tun_chr_ioctl+0x10/0x10 [ 385.022195][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 385.028257][ C0] ? bpf_lsm_file_ioctl+0x9/0x10 [ 385.033346][ C0] ? security_file_ioctl+0x87/0xb0 [ 385.038503][ C0] ? __pfx_tun_chr_ioctl+0x10/0x10 [ 385.043657][ C0] __se_sys_ioctl+0xfc/0x170 [ 385.048301][ C0] do_syscall_64+0xf3/0x230 [ 385.052913][ C0] ? clear_bhb_loop+0x35/0x90 [ 385.057633][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 385.063567][ C0] RIP: 0033:0x7f25d787cc0b [ 385.068635][ C0] RSP: 002b:00007ffd6c0ca180 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 385.077101][ C0] RAX: ffffffffffffffda RBX: 00007f25d79b49d8 RCX: 00007f25d787cc0b [ 385.085106][ C0] RDX: 00007ffd6c0ca200 RSI: 00000000400454ca RDI: 00000000000000c8 [ 385.093416][ C0] RBP: 00007ffd6c0ca380 R08: 0000000000000000 R09: 0000000000000000 [ 385.101447][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 385.109635][ C0] R13: 00007f25d79b3f40 R14: 0000000000000003 R15: 000000000000000c [ 385.117683][ C0] [ 385.120692][ C0] DEBUG: waiting rtnl_mutex for 1072 jiffies. [ 385.126776][ C0] task:syz-executor.1 state:D stack:24672 pid:7883 tgid:7883 ppid:7236 flags:0x00004002 [ 385.137022][ C0] Call Trace: [ 385.140327][ C0] [ 385.143293][ C0] __schedule+0x17e8/0x4a20 [ 385.147881][ C0] ? __pfx___schedule+0x10/0x10 [ 385.152902][ C0] ? __pfx_lock_release+0x10/0x10 [ 385.157984][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 385.163476][ C0] ? schedule+0x90/0x320 [ 385.167802][ C0] schedule+0x14b/0x320 [ 385.172003][ C0] schedule_preempt_disabled+0x13/0x30 [ 385.177614][ C0] __mutex_lock+0x6a4/0xd70 [ 385.182119][ C0] ? __mutex_lock+0x527/0xd70 [ 385.186838][ C0] ? tun_chr_close+0x3e/0x1b0 [ 385.191536][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 385.196613][ C0] ? rtnl_lock+0xe7/0x130 [ 385.200956][ C0] tun_chr_close+0x3e/0x1b0 [ 385.205447][ C0] ? __pfx_tun_chr_close+0x10/0x10 [ 385.210606][ C0] __fput+0x406/0x8b0 [ 385.214725][ C0] task_work_run+0x24f/0x310 [ 385.219393][ C0] ? __pfx_task_work_run+0x10/0x10 [ 385.224555][ C0] ? switch_task_namespaces+0xe1/0x110 [ 385.230071][ C0] do_exit+0xa27/0x28e0 [ 385.234371][ C0] ? __pfx_do_exit+0x10/0x10 [ 385.239038][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 385.245049][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 385.251441][ C0] ? _raw_spin_unlock_irq+0x23/0x50 [ 385.256682][ C0] ? lockdep_hardirqs_on+0x99/0x150 [ 385.261884][ C0] do_group_exit+0x207/0x2c0 [ 385.266534][ C0] __x64_sys_exit_group+0x3f/0x40 [ 385.271688][ C0] do_syscall_64+0xf3/0x230 [ 385.276265][ C0] ? clear_bhb_loop+0x35/0x90 [ 385.280963][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 385.286990][ C0] RIP: 0033:0x7f2f4187cea9 [ 385.291434][ C0] RSP: 002b:00007ffc791da6f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 385.299919][ C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f2f4187cea9 [ 385.307939][ C0] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000 [ 385.315951][ C0] RBP: 0000000000000001 R08: 0000001200000000 R09: 0000000000000000 [ 385.323941][ C0] R10: 0000000084ad61b6 R11: 0000000000000246 R12: 0000000000000000 [ 385.331957][ C0] R13: 0000000000000000 R14: 00007ffc791da7d0 R15: 0000000000000001 [ 385.340074][ C0] [ 385.343083][ C0] DEBUG: waiting rtnl_mutex for 991 jiffies. [ 385.349291][ C0] task:kworker/0:5 state:D stack:24784 pid:5166 tgid:5166 ppid:2 flags:0x00004000 [ 385.359521][ C0] Workqueue: events linkwatch_event [ 385.364737][ C0] Call Trace: [ 385.368108][ C0] [ 385.371061][ C0] __schedule+0x17e8/0x4a20 [ 385.375602][ C0] ? __pfx___schedule+0x10/0x10 [ 385.380558][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 385.386606][ C0] ? __pfx_lock_release+0x10/0x10 [ 385.391640][ C0] ? kick_pool+0x45c/0x620 [ 385.396114][ C0] ? preempt_schedule_thunk+0x1a/0x30 [ 385.401525][ C0] ? schedule+0x90/0x320 [ 385.405935][ C0] schedule+0x14b/0x320 [ 385.410129][ C0] schedule_preempt_disabled+0x13/0x30 [ 385.415585][ C0] __mutex_lock+0x6a4/0xd70 [ 385.420163][ C0] ? __mutex_lock+0x527/0xd70 [ 385.424907][ C0] ? linkwatch_event+0xe/0x60 [ 385.429641][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 385.434826][ C0] ? process_scheduled_works+0x945/0x1830 [ 385.440605][ C0] ? rtnl_lock+0xe7/0x130 [ 385.444960][ C0] ? process_scheduled_works+0x945/0x1830 [ 385.450751][ C0] linkwatch_event+0xe/0x60 [ 385.455285][ C0] process_scheduled_works+0xa2c/0x1830 [ 385.460925][ C0] ? __pfx_process_scheduled_works+0x10/0x10 [ 385.467000][ C0] ? assign_work+0x364/0x3d0 [ 385.471617][ C0] worker_thread+0x86d/0xd50 [ 385.476265][ C0] ? __kthread_parkme+0x169/0x1d0 [ 385.481314][ C0] ? __pfx_worker_thread+0x10/0x10 [ 385.486576][ C0] kthread+0x2f0/0x390 [ 385.490673][ C0] ? __pfx_worker_thread+0x10/0x10 [ 385.495855][ C0] ? __pfx_kthread+0x10/0x10 [ 385.500463][ C0] ret_from_fork+0x4b/0x80 [ 385.504957][ C0] ? __pfx_kthread+0x10/0x10 [ 385.509613][ C0] ret_from_fork_asm+0x1a/0x30 [ 385.514596][ C0] [ 385.517688][ C0] [ 385.517688][ C0] Showing all locks held in the system: [ 385.525493][ C0] 3 locks held by kworker/u8:4/64: [ 385.530748][ C0] #0: ffff88802a5ce148 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 385.542418][ C0] #1: ffffc900015f7d00 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 385.555346][ C0] #2: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_dad_work+0xd0/0x16f0 [ 385.564839][ C0] 4 locks held by kworker/u8:6/1087: [ 385.570244][ C0] #0: ffff888015ed5948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 385.581256][ C0] #1: ffffc9000455fd00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 385.591887][ C0] #2: ffffffff8f5e2c90 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0 [ 385.601329][ C0] #3: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: wiphy_unregister+0x236/0xb00 [ 385.610726][ C0] 1 lock held by acpid/4532: [ 385.615295][ C0] #0: ffffffff8e33a878 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x451/0x830 [ 385.626212][ C0] 1 lock held by klogd/4536: [ 385.630809][ C0] #0: ffff8880b953e8d8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140 [ 385.640947][ C0] 2 locks held by dhcpcd/4761: [ 385.645741][ C0] #0: ffff88807e844678 (nlk_cb_mutex-ROUTE){+.+.}-{3:3}, at: netlink_dump+0xcb/0xd80 [ 385.655511][ C0] #1: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_dumpit+0x1bd/0x300 [ 385.664633][ C0] 2 locks held by getty/4852: [ 385.669361][ C0] #0: ffff88802b16a0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 385.679164][ C0] #1: ffffc90002f0e2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10 [ 385.689884][ C0] 3 locks held by kworker/0:5/5166: [ 385.695070][ C0] #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 385.706077][ C0] #1: ffffc900044efd00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 385.717218][ C0] #2: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60 [ 385.726245][ C0] 2 locks held by syz-executor.3/6823: [ 385.731770][ C0] #0: ffffffff8f655cd0 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40 [ 385.740029][ C0] #1: ffffffff8e604cc8 (nfsd_mutex){+.+.}-{3:3}, at: nfsd_nl_listener_set_doit+0x12d/0x1a90 [ 385.750397][ C0] 2 locks held by syz-executor.4/6927: [ 385.756026][ C0] #0: ffffffff8f655cd0 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40 [ 385.764255][ C0] #1: ffffffff8e604cc8 (nfsd_mutex){+.+.}-{3:3}, at: nfsd_nl_listener_set_doit+0x12d/0x1a90 [ 385.774513][ C0] 1 lock held by syz-executor.3/7855: [ 385.779921][ C0] #0: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: __tun_chr_ioctl+0x48f/0x2400 [ 385.789287][ C0] 1 lock held by syz-executor.2/7879: [ 385.794673][ C0] #0: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3e/0x1b0 [ 385.803961][ C0] 1 lock held by syz-executor.1/7883: [ 385.809367][ C0] #0: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3e/0x1b0 [ 385.818382][ C0] 2 locks held by syz-executor.4/7995: [ 385.823950][ C0] #0: ffff88805be23808 (&sb->s_type->i_mutex_key#10){+.+.}-{3:3}, at: sock_close+0x90/0x240 [ 385.834189][ C0] #1: ffffffff8e33a878 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x451/0x830 [ 385.845144][ C0] 4 locks held by vhost-8004/8005: [ 385.850349][ C0] #0: ffff8880550c0258 (&vq->mutex){+.+.}-{3:3}, at: vhost_transport_do_send_pkt+0xad/0x1400 [ 385.860987][ C0] #1: ffffc90000007c00 (net/core/rtnetlink.c:82){+.-.}-{0:0}, at: call_timer_fn+0xc0/0x650 [ 385.871137][ C0] #2: ffffffff8e3354a0 (rcu_read_lock){....}-{1:2}, at: report_rtnl_holders+0x20/0x2d0 [ 385.880999][ C0] #3: ffffffff8e3354a0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0 [ 385.891357][ C0] 1 lock held by syz-executor.0/8007: [ 385.896803][ C0] #0: ffffffff8f0ac3a8 (input_mutex){+.+.}-{3:3}, at: __input_unregister_device+0x308/0x630 [ 385.907283][ C0] [ 385.909623][ C0] ============================================= [ 385.909623][ C0] [ 386.139906][ T8011] ERROR: device name not specified. [ 388.052880][ T8054] input: syz0 as /devices/virtual/input/input13 [ 388.129161][ T1087] hsr_slave_0: left promiscuous mode [ 388.215624][ T1087] hsr_slave_1: left promiscuous mode [ 388.249003][ T1087] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 388.285954][ T1087] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 388.324157][ T1087] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 388.351379][ T1087] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 388.439142][ T1087] veth1_macvtap: left promiscuous mode [ 388.464233][ T1087] veth0_macvtap: left promiscuous mode [ 388.478524][ T1087] veth1_vlan: left promiscuous mode [ 388.502768][ T1087] veth0_vlan: left promiscuous mode [ 389.955928][ T5165] usb 3-1: new high-speed USB device number 11 using dummy_hcd [ 390.021457][ T1087] team0 (unregistering): Port device team_slave_1 removed [ 390.146513][ T5165] usb 3-1: Using ep0 maxpacket: 32 [ 390.152611][ T1087] team0 (unregistering): Port device team_slave_0 removed [ 390.155219][ T5165] usb 3-1: config index 0 descriptor too short (expected 156, got 27) [ 390.205950][ T5165] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 255, changing to 11 [ 390.236584][ T5165] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024 [ 390.264569][ T5165] usb 3-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66 [ 390.281089][ T5165] usb 3-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172 [ 390.315924][ T5165] usb 3-1: Product: syz [ 390.320360][ T5165] usb 3-1: Manufacturer: syz [ 390.333168][ T5165] usb 3-1: SerialNumber: syz [ 390.592873][ T5165] usb 3-1: config 0 descriptor?? [ 390.603648][ T8107] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 390.619297][ T5165] ldusb 3-1:0.0: Interrupt out endpoint not found (using control endpoint instead) [ 390.646421][ T5165] ldusb 3-1:0.0: LD USB Device #0 now attached to major 180 minor 0 [ 390.752162][ T8140] openvswitch: netlink: Message has 16 unknown bytes. [ 390.913853][ T5165] usb 3-1: USB disconnect, device number 11 [ 390.939809][ T5165] ldusb 3-1:0.0: LD USB Device #0 now disconnected [ 391.567408][ T7855] chnl_net:caif_netlink_parms(): no params data found [ 392.592059][ T8175] openvswitch: netlink: Message has 16 unknown bytes. [ 392.681721][ T8165] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'. [ 392.973478][ T7855] bridge0: port 1(bridge_slave_0) entered blocking state [ 393.004435][ T7855] bridge0: port 1(bridge_slave_0) entered disabled state [ 393.021677][ T7855] bridge_slave_0: entered allmulticast mode [ 393.050451][ T7855] bridge_slave_0: entered promiscuous mode [ 393.095508][ T8197] tap0: tun_chr_ioctl cmd 2147767519 [ 393.238444][ T7855] bridge0: port 2(bridge_slave_1) entered blocking state [ 393.248821][ T7855] bridge0: port 2(bridge_slave_1) entered disabled state [ 393.276162][ T7855] bridge_slave_1: entered allmulticast mode [ 393.316451][ T7855] bridge_slave_1: entered promiscuous mode [ 393.649461][ T7855] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 393.779481][ T7855] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 394.062288][ T8255] IPVS: set_ctl: invalid protocol: 0 0.0.0.0:20000 [ 394.213780][ T7855] team0: Port device team_slave_0 added [ 394.262079][ T7855] team0: Port device team_slave_1 added [ 394.302875][ T8265] trusted_key: syz-executor.1 sent an empty control message without MSG_MORE. [ 394.702664][ T7855] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 394.735967][ T7855] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 394.819129][ T7855] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 394.940064][ T7855] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 394.990698][ T7855] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 395.034962][ T7855] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 395.213373][ T29] audit: type=1800 audit(1718456207.151:33): pid=8294 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="file1" dev="sda1" ino=1957 res=0 errno=0 [ 395.246838][ T8296] vivid-000: ================= START STATUS ================= [ 395.266177][ T8296] vivid-000: Test Pattern: 75% Colorbar [ 395.276372][ T8296] vivid-000: Fill Percentage of Frame: 100 [ 395.282284][ T8296] vivid-000: Horizontal Movement: No Movement [ 395.288598][ T8296] vivid-000: Vertical Movement: No Movement [ 395.313508][ T8296] vivid-000: OSD Text Mode: All [ 395.329541][ T7855] hsr_slave_0: entered promiscuous mode [ 395.358403][ T8296] vivid-000: Show Border: false [ 395.372003][ T8296] vivid-000: Show Square: false [ 395.377721][ T8296] vivid-000: Sensor Flipped Horizontally: false [ 395.384088][ T8296] vivid-000: Sensor Flipped Vertically: false [ 395.401680][ T7855] hsr_slave_1: entered promiscuous mode [ 395.411422][ T8296] vivid-000: Insert SAV Code in Image: false [ 395.424196][ T7855] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 395.444453][ T8296] vivid-000: Insert EAV Code in Image: false [ 395.453080][ T7855] Cannot create hsr debugfs directory [ 395.463475][ T8296] vivid-000: Insert Video Guard Band: false [ 395.478078][ T8296] vivid-000: Reduced Framerate: false [ 395.487015][ T8296] vivid-000: Enable Capture Cropping: true [ 395.527807][ T8296] vivid-000: Enable Capture Composing: true [ 395.548305][ T8296] vivid-000: Enable Capture Scaler: true [ 395.570685][ T8296] vivid-000: Timestamp Source: End of Frame [ 395.587362][ T8296] vivid-000: Colorspace: sRGB [ 395.592123][ T8296] vivid-000: Transfer Function: Default [ 395.639666][ T8296] vivid-000: Y'CbCr Encoding: Default [ 395.645196][ T8296] vivid-000: HSV Encoding: Hue 0-179 [ 395.704177][ T8296] vivid-000: Quantization: Default [ 395.719111][ T8296] vivid-000: Apply Alpha To Red Only: false [ 395.733601][ T8296] vivid-000: Standard Aspect Ratio: 4x3 [ 395.811811][ T8296] vivid-000: DV Timings Signal Mode: Current DV Timings inactive [ 395.864898][ T8296] vivid-000: DV Timings: 640x480p59 inactive [ 395.881622][ T8296] vivid-000: DV Timings Aspect Ratio: Source Width x Height [ 395.902440][ T8296] vivid-000: Maximum EDID Blocks: 2 [ 395.916009][ T8296] vivid-000: Limited RGB Range (16-235): false [ 395.934639][ T8296] vivid-000: Rx RGB Quantization Range: Automatic [ 395.959943][ T8296] vivid-000: Power Present: 0x00000001 [ 395.984426][ T8296] tpg source WxH: 640x360 (Y'CbCr) [ 396.007889][ T8296] tpg field: 1 [ 396.020814][ T8296] tpg crop: 640x360@0x0 [ 396.043757][ T8296] tpg compose: 640x360@0x0 [ 396.055150][ T8296] tpg colorspace: 8 [ 396.065959][ T8296] tpg transfer function: 0/0 [ 396.082593][ T8296] tpg Y'CbCr encoding: 0/0 [ 396.108521][ T8296] tpg quantization: 0/0 [ 396.138712][ T8296] tpg RGB range: 0/2 [ 396.151691][ T8296] vivid-000: ================== END STATUS ================== [ 396.297651][ T8333] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000001: 0000 [#1] PREEMPT SMP KASAN PTI [ 396.297676][ T8333] KASAN: null-ptr-deref in range [0x0000000000000008-0x000000000000000f] [ 396.297696][ T8333] CPU: 0 PID: 8333 Comm: syz-executor.0 Not tainted 6.10.0-rc3-next-20240611-syzkaller #0 [ 396.297714][ T8333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 396.297726][ T8333] RIP: 0010:udmabuf_create+0xa54/0x11c0 2024/06/15 12:56:48 SYZFATAL: failed to recv *flatrpc.HostMessageRaw: EOF [ 396.297826][ T8333] Code: 01 00 00 48 8b 44 24 70 42 80 3c 28 00 48 8b 5c 24 68 74 08 48 89 df e8 ba 58 ec fb 4c 8b 3b 49 8d 5f 08 48 89 d8 48 c1 e8 03 <42> 80 3c 28 00 74 08 48 89 df e8 9d 58 ec fb 48 8b 1b 48 89 de 48 [ 396.297842][ T8333] RSP: 0018:ffffc9000960fbe0 EFLAGS: 00010202 [ 396.297859][ T8333] RAX: 0000000000000001 RBX: 0000000000000008 RCX: dffffc0000000000 [ 396.297871][ T8333] RDX: ffffc9000da49000 RSI: 0000000000000bdc RDI: 0000000000000bdd [ 396.297882][ T8333] RBP: ffffc9000960fd70 R08: ffffc9000960f930 R09: 0000000000000008 [ 396.297895][ T8333] R10: dffffc0000000000 R11: fffffbfff1f5c096 R12: 0000000000000001 [ 396.297906][ T8333] R13: dffffc0000000000 R14: ffff88801cec4628 R15: 0000000000000000 [ 396.297919][ T8333] FS: 00007f5e3d9576c0(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000 [ 396.297935][ T8333] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 396.297946][ T8333] CR2: 0000001b31021000 CR3: 000000001cb3c000 CR4: 00000000003506f0 [ 396.297961][ T8333] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 396.297972][ T8333] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 396.297983][ T8333] Call Trace: [ 396.297989][ T8333] [ 396.297996][ T8333] ? __die_body+0x88/0xe0 [ 396.298022][ T8333] ? die_addr+0x108/0x140 [ 396.298045][ T8333] ? exc_general_protection+0x3dd/0x5d0 [ 396.298087][ T8333] ? asm_exc_general_protection+0x26/0x30 [ 396.298111][ T8333] ? udmabuf_create+0xa54/0x11c0 [ 396.298144][ T8333] ? __pfx_udmabuf_create+0x10/0x10 [ 396.298165][ T8333] ? __might_fault+0xc6/0x120 [ 396.298188][ T8333] udmabuf_ioctl+0x304/0x4f0 [ 396.298209][ T8333] ? __pfx_udmabuf_ioctl+0x10/0x10 [ 396.298231][ T8333] ? __fget_files+0x29/0x470 [ 396.298251][ T8333] ? __fget_files+0x3f6/0x470 [ 396.298267][ T8333] ? __fget_files+0x29/0x470 [ 396.298286][ T8333] ? bpf_lsm_file_ioctl+0x9/0x10 [ 396.298309][ T8333] ? security_file_ioctl+0x87/0xb0 [ 396.298333][ T8333] ? __pfx_udmabuf_ioctl+0x10/0x10 [ 396.298353][ T8333] __se_sys_ioctl+0xfc/0x170 [ 396.298381][ T8333] do_syscall_64+0xf3/0x230 [ 396.298397][ T8333] ? clear_bhb_loop+0x35/0x90 [ 396.298416][ T8333] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 396.298435][ T8333] RIP: 0033:0x7f5e3cc7cea9 [ 396.298450][ T8333] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 396.298463][ T8333] RSP: 002b:00007f5e3d9570c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 396.298482][ T8333] RAX: ffffffffffffffda RBX: 00007f5e3cdb3f80 RCX: 00007f5e3cc7cea9 [ 396.298496][ T8333] RDX: 0000000020000300 RSI: 0000000040187542 RDI: 0000000000000004 [ 396.298507][ T8333] RBP: 00007f5e3ccebff4 R08: 0000000000000000 R09: 0000000000000000 [ 396.298518][ T8333] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 396.298528][ T8333] R13: 000000000000000b R14: 00007f5e3cdb3f80 R15: 00007ffde1ab09a8 [ 396.298545][ T8333] [ 396.298551][ T8333] Modules linked in: [ 396.298602][ T8333] ---[ end trace 0000000000000000 ]--- [ 396.338235][ T29] audit: type=1800 audit(1718456208.271:34): pid=8337 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="file1" dev="sda1" ino=1965 res=0 errno=0 [ 396.402047][ T8333] RIP: 0010:udmabuf_create+0xa54/0x11c0 [ 396.677898][ T8333] Code: 01 00 00 48 8b 44 24 70 42 80 3c 28 00 48 8b 5c 24 68 74 08 48 89 df e8 ba 58 ec fb 4c 8b 3b 49 8d 5f 08 48 89 d8 48 c1 e8 03 <42> 80 3c 28 00 74 08 48 89 df e8 9d 58 ec fb 48 8b 1b 48 89 de 48 [ 396.699015][ T8333] RSP: 0018:ffffc9000960fbe0 EFLAGS: 00010202 [ 396.705120][ T8333] RAX: 0000000000000001 RBX: 0000000000000008 RCX: dffffc0000000000 [ 396.713161][ T8333] RDX: ffffc9000da49000 RSI: 0000000000000bdc RDI: 0000000000000bdd [ 396.721326][ T8333] RBP: ffffc9000960fd70 R08: ffffc9000960f930 R09: 0000000000000008 [ 396.729396][ T8333] R10: dffffc0000000000 R11: fffffbfff1f5c096 R12: 0000000000000001 [ 396.769205][ T8333] R13: dffffc0000000000 R14: ffff88801cec4628 R15: 0000000000000000 [ 396.795894][ T8333] FS: 00007f5e3d9576c0(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000 [ 396.804917][ T8333] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 396.857280][ T8333] CR2: 0000001b30d23000 CR3: 000000001cb3c000 CR4: 00000000003506f0 [ 396.865319][ T8333] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 396.905899][ T8333] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 396.914023][ T8333] Kernel panic - not syncing: Fatal exception [ 396.920242][ T8333] Kernel Offset: disabled [ 396.924650][ T8333] Rebooting in 86400 seconds..