last executing test programs: 12.983132422s ago: executing program 0 (id=2123): ioctl$SNDRV_PCM_IOCTL_DRAIN(0xffffffffffffffff, 0x4144, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) socket$inet_udp(0x2, 0x2, 0x0) getpgrp(0x0) syz_emit_vhci(&(0x7f0000000200)=ANY=[@ANYBLOB="04180400d501087ebb6ac79b7f58262ccf5f07d20369f1cae2ee2919c2c31436e57e1f4755741c587fde557b681f8b0bfc3a6b52f60808e92e387717ab6827f4b1bd02503fcd1ab7031282d06e233aaff93e1038ba266d00ced73e1f392ce24d3ba4b38e109b1f3341451811cbb5f1c6c16537f60ad0d389bb62fe129af7613a7d3deada9af81dcc9c287213da99"], 0x7) ioctl$CEC_ADAP_S_LOG_ADDRS(0xffffffffffffffff, 0xc05c6104, 0x0) socket$nl_route(0x10, 0x3, 0x0) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) socket$kcm(0x2, 0xa, 0x2) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0xa, 0x11, 0xffffffffffffffff, 0x0) ftruncate(0xffffffffffffffff, 0x51a9497) r1 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) bind$netrom(r1, &(0x7f0000000000)={{0x6, @rose}, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @netrom, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @default]}, 0x48) r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0) ioctl$sock_proto_private(r2, 0x89e7, &(0x7f00000007c0)="c886bb08c2") 11.318141489s ago: executing program 0 (id=2134): syz_open_dev$sndctrl(&(0x7f0000000000), 0xfffffffe, 0x10401) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) gettid() mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x5d032, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x801) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)) ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x5}) r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) r2 = socket$unix(0x1, 0x1, 0x0) r3 = dup2(r2, r1) close_range(r3, 0xffffffffffffffff, 0x0) io_uring_setup(0x428, &(0x7f0000000180)) r4 = memfd_secret(0x0) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000940)=ANY=[@ANYBLOB="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"/773], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000340)={r5, r4, 0x2f, 0x4608, @void}, 0x10) r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo/3\x00') read$eventfd(r6, &(0x7f0000000080), 0x51) ioctl$UFFDIO_CONTINUE(r0, 0xc020aa08, &(0x7f0000000080)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}}) r7 = userfaultfd(0x1) ioctl$UFFDIO_API(r7, 0xc018aa3f, &(0x7f0000000040)) r8 = fcntl$dupfd(r7, 0x0, r7) ioctl$UFFDIO_CONTINUE(r8, 0xc020aa08, &(0x7f00000000c0)={{&(0x7f0000800000/0x800000)=nil, 0x800000}}) openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) r9 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) preadv(r9, &(0x7f0000000580)=[{&(0x7f0000000640)=""/102396, 0xfffffd6e}, {&(0x7f0000019740)=""/242}], 0x2, 0x0, 0x0) getsockopt$SO_TIMESTAMPING(r9, 0x1, 0x25, &(0x7f00000000c0), &(0x7f0000000100)=0x4) r10 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2) ioctl$vim2m_VIDIOC_S_FMT(r10, 0xc0d05605, &(0x7f0000000140)={0x3, @pix_mp={0x0, 0x0, 0x30385056}}) r11 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r11, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e020030000b02d25a806f8c6394f90524fc602f1a04000a740100053582c137153e370248018000f01700d1", 0x2d}], 0x1, 0x0, 0x0, 0x4000}, 0x0) 11.136754602s ago: executing program 0 (id=2135): r0 = socket$netlink(0x10, 0x3, 0x4) writev(r0, &(0x7f0000000340)=[{&(0x7f0000000700)="480000001500190d09004beafd0d8c560a84c76080ffe00300000000000080a2bc5603ca00030f7f8900000020000001ff0000000309ff5bffff00c7e5de5e000000000000000000", 0x48}], 0x1) 11.035787184s ago: executing program 0 (id=2136): r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000000)={r0, r1, 0x12}, 0x10) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/am_droprate\x00', 0x2, 0x0) sendfile(r2, r2, 0x0, 0x8) 11.034748914s ago: executing program 0 (id=2138): unshare(0x20000400) socket$inet6_sctp(0xa, 0x5, 0x84) (async) r0 = socket$inet6_sctp(0xa, 0x5, 0x84) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) getsockopt$sock_cred(r0, 0x1, 0x11, 0x0, &(0x7f0000000080)) mkdir(&(0x7f0000000400)='./file1\x00', 0x0) (async) mkdir(&(0x7f0000000400)='./file1\x00', 0x0) mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0]) mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000000)='autofs\x00', 0x0, &(0x7f0000000400)) chdir(&(0x7f0000000080)='./file1\x00') (async) chdir(&(0x7f0000000080)='./file1\x00') r1 = inotify_init1(0x0) fcntl$setown(r1, 0x8, 0xffffffffffffffff) fcntl$getownex(r1, 0x10, &(0x7f0000000380)={0x0, 0x0}) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000040)=@filename='\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x24901a, 0x0) setpgid(0x0, r2) (async) setpgid(0x0, r2) open(&(0x7f00000001c0)='./file0\x00', 0x80000, 0x80) (async) r3 = open(&(0x7f00000001c0)='./file0\x00', 0x80000, 0x80) chdir(&(0x7f0000000140)='./file0\x00') r4 = syz_open_dev$video(&(0x7f0000000040), 0xa7, 0x0) r5 = syz_open_dev$tty1(0xc, 0x4, 0x2) ioctl$KDSETLED(r5, 0x4b32, 0xa) (async) ioctl$KDSETLED(r5, 0x4b32, 0xa) ioctl$VIDIOC_OVERLAY(r4, 0x4004560e, &(0x7f00000000c0)) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r3, 0x9362, 0x0) lremovexattr(0x0, 0x0) (async) lremovexattr(0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x3, 0x5, &(0x7f0000000200)=@framed={{0x18, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, [@btf_id={0x18, 0x6, 0x3, 0x0, 0x3}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x3, 0x5, &(0x7f0000000200)=@framed={{0x18, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, [@btf_id={0x18, 0x6, 0x3, 0x0, 0x3}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) open(&(0x7f0000000100)='./file1\x00', 0xa0002, 0x55) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)}, &(0x7f0000000180)=0xc) socket$netlink(0x10, 0x3, 0x4) (async) r6 = socket$netlink(0x10, 0x3, 0x4) writev(r6, &(0x7f0000000000)=[{&(0x7f0000000140)="480000001400190d09004beafd0d8c560a84476080ffe00600000000590000a2bc5603ca00000f7f89000000200000000101ff0000000309ff5bffff00c7e5ed5e00000000000000", 0x40b}], 0x1) unshare(0x68020080) 10.848016223s ago: executing program 0 (id=2140): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x1ff, 0x0) r1 = memfd_create(0x0, 0x0) write(r1, &(0x7f00000000c0), 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1, 0x11, r1, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0xc2c45513, &(0x7f0000000040)={{0x2, 0x0, 0x0, 0x0, 'syz1\x00'}, 0x0, [0x2, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000]}) 6.184695309s ago: executing program 2 (id=2162): r0 = syz_open_dev$cec(&(0x7f0000000480), 0x0, 0x2a00) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x11, 0x3, &(0x7f00000001c0)=ANY=[@ANYBLOB="180000000000000000000000000000009500000000000000a958c059996f4d4efa6eddad05001ac6a432a079b3afec9d5194954ece27726397dbfe87efc6bcc6c305c7a1386589292967e367543007f3f531b61c3d1835d598c8317a3692fe6fab61b67e0787bd19e87288eaee19c3c6e44a686646062b9f3452b5cb53eb9a696b8e7b742c0c1b0bd118a4435f9986e8b25dfd422d578440f130c788a0bc68ef71edbf36d353b06ff68590"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000000)={0x0, 0x5, &(0x7f00000003c0)=ANY=[], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r1 = syz_open_dev$media(0x0, 0x8, 0x0) close_range(r1, 0xffffffffffffffff, 0x2) (async) close_range(r1, 0xffffffffffffffff, 0x2) socket$kcm(0x10, 0x2, 0x0) (async) r2 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r2, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000300)="d80000001c0081064e81f782db44b9040a1d08040e00000000680aa1180002000600142603600e1208000f0000810401a8001605200001400200000803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6689ed930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf43951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e", 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x20000041) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f0000000140)='bridge0\x00', 0x10) (async) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f0000000140)='bridge0\x00', 0x10) write(0xffffffffffffffff, &(0x7f0000000280)="fc00000018000703ab092500090007000afbff00000000020000369321000100f9e553b40005d00000000000000398996c92773411419da79bb94b46fe000000bc00050000036c6c256f1a272f2e117c22ebc205214000000000008934d07302ad031720edd5bbc91a3e2e80772c05defd5a32e280fc83cc6487f8f70c9ddefefe082038f49d3ef3d92c83170e5bba4a463ae4f5566f91cf190201ded815b2ccd243f295ed94e0ad916d0e0000bc7c3f2eeb57d43dd16b17e583df150c", 0xbd) socket$inet_udplite(0x2, 0x2, 0x88) fsync(0xffffffffffffffff) ioctl$CEC_DQEVENT(r0, 0xc0386106, &(0x7f0000000400)={0x0, 0x0, 0x0, @raw}) r3 = syz_open_dev$ndb(&(0x7f0000000040), 0x0, 0x0) sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000680)=ANY=[@ANYBLOB="6800000002060000000000000000000002000000050001000700000038000780060004404e2300000c00028008000140ac1e0001"], 0x68}, 0x1, 0x0, 0x0, 0x400}, 0x4000000) (async) sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000680)=ANY=[@ANYBLOB="6800000002060000000000000000000002000000050001000700000038000780060004404e2300000c00028008000140ac1e0001"], 0x68}, 0x1, 0x0, 0x0, 0x400}, 0x4000000) pipe(&(0x7f0000000100)={0xffffffffffffffff}) mq_getsetattr(r4, &(0x7f0000000180)={0x91ef, 0x5, 0x2}, 0x0) (async) mq_getsetattr(r4, &(0x7f0000000180)={0x91ef, 0x5, 0x2}, 0x0) ioctl$BLKTRACESETUP(r3, 0xc0401273, &(0x7f0000000080)={'\x00', 0x0, 0x40, 0x1}) (async) ioctl$BLKTRACESETUP(r3, 0xc0401273, &(0x7f0000000080)={'\x00', 0x0, 0x40, 0x1}) ioctl$BLKTRACESTART(r3, 0x1276, 0x0) (async) ioctl$BLKTRACESTART(r3, 0x1276, 0x0) openat$pfkey(0xffffff9c, &(0x7f0000000000), 0xd00, 0x0) (async) r5 = openat$pfkey(0xffffff9c, &(0x7f0000000000), 0xd00, 0x0) ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82) r6 = socket$packet(0x11, 0x2, 0x300) r7 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r7, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14}, [@NFT_MSG_NEWRULE={0x64, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x38, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @quota={{0xa}, @val={0x10, 0x2, 0x0, 0x1, [@NFTA_QUOTA_BYTES={0xc}]}}}, {0x14, 0x1, 0x0, 0x1, @hash={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x8c}}, 0x0) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) socket$nl_route(0x10, 0x3, 0x0) (async) r9 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r9, &(0x7f0000000300)={0x0, 0x6000, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="b400000010000904000000000000000000002200", @ANYRES32=0x0, @ANYBLOB="fffffffed9526cfd8400128009000100766c616e000000007400028006000100000600000c000200367da1650e000000280003800c00010001800000002000000c000100a1000000c84200000c0001000800000008000000340004800c00010006000000ff0300000c00010004000000080000000c00010004000000020000000c000100050000000300000008000500", @ANYRES32=r8, @ANYBLOB='\b\x00\n\x00', @ANYRESOCT], 0xb4}}, 0x0) 6.005203151s ago: executing program 2 (id=2163): r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x40241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) r1 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast}) write$tun(r0, &(0x7f0000000580)={@val={0x0, 0x800}, @val={0x3, 0x0, 0x0, 0x0, 0x14}, @ipv4=@icmp={{0x6, 0x4, 0x0, 0x0, 0x34, 0x66, 0x0, 0x0, 0x1, 0x0, @private=0xa010100, @local, {[@timestamp_addr={0x44, 0x4, 0xfa, 0x1, 0x6}]}}, @dest_unreach={0x4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x16, 0x0, 0x0, 0x0, 0x21, 0x0, @local, @loopback}}}}, 0x42) 5.759335221s ago: executing program 2 (id=2165): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x17, 0x3, 0x0, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sysctl, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000000)={r0, r1, 0x12}, 0x10) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/am_droprate\x00', 0x2, 0x0) sendfile(r2, r2, 0x0, 0x8) 5.683712012s ago: executing program 2 (id=2167): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0f00000004000000080000000800f6e5d6dc", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/14], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000002000000000000000000000018110000", @ANYRES32=r0], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket(0x10, 0x3, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r5) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) openat$ptp0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x4000000400000bce) r7 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) pread64(0xffffffffffffffff, &(0x7f0000001880)=""/4096, 0x1000, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x13, &(0x7f00000002c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x7}, {}, {}, [@initr0={0x18, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x4}, @alu={0x4, 0x1, 0xb, 0x7, 0x7, 0x4, 0x10}, @exit], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000240)='syzkaller\x00', 0x5, 0xee, &(0x7f0000000380)=""/238, 0x41100, 0x7, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000480)={0x8, 0x1}, 0x8, 0x10, &(0x7f00000004c0)={0x0, 0xc, 0x83, 0x3}, 0x10, 0x0, 0x0, 0x1, &(0x7f0000000500)=[r0, r1], &(0x7f0000000540)=[{0x2, 0x5, 0x0, 0x1}], 0x10, 0x2, @void, @value}, 0x94) read$msr(r7, &(0x7f0000019680)=""/102392, 0x18ff8) r8 = socket$unix(0x1, 0x2, 0x0) bind$unix(r8, &(0x7f0000000100)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000040)=[{0x0}], 0x1) setsockopt$SO_TIMESTAMP(r8, 0x1, 0x23, &(0x7f0000000080)=0x6, 0x26) recvmmsg(r8, &(0x7f0000005100)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000050c0)}, 0x10001}], 0x1, 0x2, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x1, {0x0, 0x0, 0x0, r6, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000740)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0xfffffffe, {0x0, 0x0, 0x0, r6, {}, {}, {0xd}}, [@filter_kind_options=@f_basic={{0x5}, {0x24, 0x2, [@TCA_BASIC_EMATCHES={0x20, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xffff}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1, 0x0, 0x0, {{0x0, 0x2, 0x8}, {0x0, 0x0, 0x0, "1a114e9e03773b192126"}}}]}]}]}}]}, 0x54}}, 0x0) r9 = syz_open_dev$media(&(0x7f0000000000), 0x3, 0x0) ioctl$MEDIA_IOC_SETUP_LINK(r9, 0xc0347c03, &(0x7f0000001040)) r10 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r10, 0x0, 0x0) sendmsg$IPSET_CMD_SAVE(r10, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x1c, 0x8, 0x6, 0x201, 0x0, 0x0, {0x1, 0x0, 0xa}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x40040c4) 4.219497128s ago: executing program 2 (id=2170): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000002004000b7080000000000007b8af8ff00000000b7080000000200007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000000000000b70500000800000085000000a50000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8, 0x4}, 0x8, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000340)=[{0x0, 0x1, 0xa, 0xb}, {0x5, 0x5, 0x5, 0x9}], 0x10, 0x37, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) syz_clone(0x800c000, &(0x7f0000001480)="627807434619734911420e123cb6f44fb54d82f86f3720b1d5ecd9651a9fcb2a1c358b9cd99a9da0b00953486764e0c7d13faa0d43ad3164e14aa9d4eafc2ae3", 0x40, 0x0, 0x0, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) r3 = socket(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=@newqdisc={0x34, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r5, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_codel={{0xa}, {0x4}}]}, 0x34}}, 0xf1) 3.502680815s ago: executing program 1 (id=2175): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x17, 0x3, 0x0, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sysctl, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000000)={r0, r1, 0x12}, 0x10) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/am_droprate\x00', 0x2, 0x0) sendfile(r2, r2, 0x0, 0x8) 3.439282384s ago: executing program 1 (id=2176): syz_emit_ethernet(0x52, &(0x7f00000007c0)={@local, @random="89ab9b4c72ca", @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "7927f3", 0x1c, 0x2c, 0x0, @remote, @local, {[@routing={0x0, 0x0, 0x0, 0x8}], {{0x0, 0x400, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0) syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffffffffffffff86dd6060626000102c00fe8000000000002000000000000000bbfe8000000000000000000000000000aa11000001"], 0x0) 3.373708908s ago: executing program 1 (id=2177): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002531702500000000690000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000040)='percpu_alloc_percpu\x00', r0}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0a0000000800000042000000400000000000000098fc91fac0349ab2453664aa02b4cefe4d5ca07f5cfdf3d705ed2a2a1368da5246e14941d7d9ce3e69d247b56a992903f3b16234e7574260662c9c4c89e0164e01899ad3305cac3707e1cece2c5e127977082d009715a06c8161353922a7e9ad3fc68e484c606143a1377a9624c2d3bacfae2c29c0932e5323b4e9d2561e85c4fd16160defce4638a916adf43afe45d61e3888fd166f25075600ba2c7f1f3d4e3c107d51447aa8d475078199995eb853c6e96d25cd27ec1eabda0763fb2789c7d92a9e53926d", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48) 3.310984029s ago: executing program 1 (id=2178): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0f00000004000000080000000800f6e5d6dc", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/14], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000002000000000000000000000018110000", @ANYRES32=r0], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket(0x10, 0x3, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r5) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) openat$ptp0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x4000000400000bce) r7 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) pread64(0xffffffffffffffff, &(0x7f0000001880)=""/4096, 0x1000, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x13, &(0x7f00000002c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x7}, {}, {}, [@initr0={0x18, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x4}, @alu={0x4, 0x1, 0xb, 0x7, 0x7, 0x4, 0x10}, @exit], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000240)='syzkaller\x00', 0x5, 0xee, &(0x7f0000000380)=""/238, 0x41100, 0x7, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000480)={0x8, 0x1}, 0x8, 0x10, &(0x7f00000004c0)={0x0, 0xc, 0x83, 0x3}, 0x10, 0x0, 0x0, 0x1, &(0x7f0000000500)=[r0, r1], &(0x7f0000000540)=[{0x2, 0x5, 0x0, 0x1}], 0x10, 0x2, @void, @value}, 0x94) read$msr(r7, &(0x7f0000019680)=""/102392, 0x18ff8) r8 = socket$unix(0x1, 0x2, 0x0) bind$unix(r8, &(0x7f0000000100)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) writev(0xffffffffffffffff, &(0x7f0000000040)=[{0x0}], 0x1) setsockopt$SO_TIMESTAMP(r8, 0x1, 0x23, &(0x7f0000000080)=0x6, 0x26) recvmmsg(r8, &(0x7f0000005100)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000050c0)}, 0x10001}], 0x1, 0x2, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x1, {0x0, 0x0, 0x0, r6, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000740)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0xfffffffe, {0x0, 0x0, 0x0, r6, {}, {}, {0xd}}, [@filter_kind_options=@f_basic={{0x5}, {0x24, 0x2, [@TCA_BASIC_EMATCHES={0x20, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xffff}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1, 0x0, 0x0, {{0x0, 0x2, 0x8}, {0x0, 0x0, 0x0, "1a114e9e03773b192126"}}}]}]}]}}]}, 0x54}}, 0x0) r9 = syz_open_dev$media(&(0x7f0000000000), 0x3, 0x0) ioctl$MEDIA_IOC_SETUP_LINK(r9, 0xc0347c03, &(0x7f0000001040)) r10 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r10, 0x0, 0x0) sendmsg$IPSET_CMD_SAVE(r10, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x1c, 0x8, 0x6, 0x201, 0x0, 0x0, {0x1, 0x0, 0xa}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x40040c4) 3.224743707s ago: executing program 2 (id=2179): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000940)=[{{&(0x7f0000000000)={0x2, 0x0, @multicast2=0xe0000001}, 0x10, 0x0, 0x0, &(0x7f0000000540)}}], 0x1, 0x4008010) mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000002c0), 0x2200800, 0x0) chdir(&(0x7f0000000100)='./file0\x00') r0 = open(&(0x7f0000000000)='./bus\x00', 0x105c42, 0x5) bpf$ENABLE_STATS(0x20, 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0) bpf$MAP_LOOKUP_ELEM(0x5, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1b00000008000000000000000080000000000000", @ANYRES32, @ANYBLOB="001f0000000000000000000000519185289e262d5eb3fb92c95ca204973cf6cf59e1a2651d0e2df61694b9b5bb7ce563697c52c45fbfd7ccdc406f0a4600000000120000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e0000000400000004000000ff00000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000200000000000000"], 0x48) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'macvlan1\x00'}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000001d00070c00000000000000000700", @ANYBLOB="0c0002000a0002009b"], 0x28}}, 0x0) ioctl$EVIOCSMASK(0xffffffffffffffff, 0x40104593, &(0x7f0000000000)={0x17, 0x0, 0x0}) r3 = open(&(0x7f0000000240)='./bus\x00', 0xb00, 0x8) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) dup3(r4, r3, 0x0) getsockopt$IP_VS_SO_GET_SERVICES(r3, 0x0, 0x22, &(0x7f0000001100)=""/4131, &(0x7f0000000080)=0x1023) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_GET_PROG_INFO(0xa, 0x0, 0x0) r5 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r5, 0xc04064a0, &(0x7f00000003c0)={0x0, &(0x7f0000000000)=[0x0], &(0x7f0000000340)=[0x0], 0x0, 0x0, 0x1, 0x1}) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r5, 0xc01864c6, &(0x7f0000000100)={&(0x7f0000000080)=[r7, r6], 0x2}) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r5, 0xc01864c6, &(0x7f0000000040)={&(0x7f0000000640)=[r7, r6], 0x2}) write$binfmt_script(r0, 0x0, 0xffffff3c) chdir(&(0x7f0000000140)='./file0\x00') 1.760743062s ago: executing program 3 (id=2182): openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff) sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) r1 = add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f00000000c0)={'fscrypt:', @desc1}, &(0x7f00000001c0)={0x0, "28d7b07d54891881fe02c1203fe49696b9f26f2da4149683f065714f8a61d1f32c9d064bbd27b2aa57459cff33a3a9831ac46b8829b48fff3d63520d260804d0"}, 0x48, 0xfffffffffffffffd) keyctl$setperm(0x5, r1, 0x0) keyctl$revoke(0x6, 0x0) lsetxattr$system_posix_acl(0x0, 0x0, 0x0, 0x5c, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000000000000000000100"/28], 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280), &(0x7f0000000900)="8c85ff9fbb89ead882486b624a831ae210cd60e31dec21153558cb019dfd87da879fca91485a2832bf4536a170e8c643348555cdee358af0945bb47c8d9c0414ef6eeea465330b054a5d2f05714504dfbd63be6632a21106f63b1686d1a8d1f1fee83ef81eed580434821e652c38b693aa4b44191734c4a5229d0ddf687bea7cbbd0401458443ba109bf6709504c080e5972a52ae8bf94c8d2", 0x37db, r2}, 0x38) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000700)={r2}, 0x4) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x1f, 0x10, &(0x7f0000000880)=@framed={{}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r2}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3a, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) preadv(r3, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) socket(0x40000000002, 0x3, 0x2) setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r4 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x402, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x38011, r4, 0x0) madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17) 1.759889247s ago: executing program 1 (id=2183): ioctl$SNDRV_PCM_IOCTL_DRAIN(0xffffffffffffffff, 0x4144, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) socket$inet_udp(0x2, 0x2, 0x0) getpgrp(0x0) syz_emit_vhci(&(0x7f0000000200)=ANY=[@ANYBLOB="04180400d501087ebb6ac79b7f58262ccf5f07d20369f1cae2ee2919c2c31436e57e1f4755741c587fde557b681f8b0bfc3a6b52f60808e92e387717ab6827f4b1bd02503fcd1ab7031282d06e233aaff93e1038ba266d00ced73e1f392ce24d3ba4b38e109b1f3341451811cbb5f1c6c16537f60ad0d389bb62fe129af7613a7d3deada9af81dcc9c287213da99"], 0x7) ioctl$CEC_ADAP_S_LOG_ADDRS(0xffffffffffffffff, 0xc05c6104, 0x0) socket$nl_route(0x10, 0x3, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x2, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800"/24], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) socket$kcm(0x2, 0xa, 0x2) write$tun(0xffffffffffffffff, &(0x7f0000000440)={@val, @void, @eth={@broadcast, @remote, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x452c, 0x0, 0x0, 0x0, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, {0x0, 0x6558, 0x18, 0x0, @wg=@data={0x4, 0x0, 0xffffdd86}}}}}}}, 0xfdef) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0xa, 0x11, 0xffffffffffffffff, 0x0) bind$netrom(0xffffffffffffffff, &(0x7f0000000000)={{0x6, @rose}, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @netrom, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @default]}, 0x48) r1 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) connect$netrom(r1, &(0x7f0000000000)={{0x6, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}}, [@default, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @default, @bcast]}, 0x48) r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0) ioctl$sock_proto_private(r2, 0x89e7, &(0x7f00000007c0)="c886bb08c2") r3 = syz_open_dev$tty1(0xc, 0x4, 0x1) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0) write$binfmt_script(r4, &(0x7f0000000140)={'#! ', './file0', [{0x20, '{)@(-}'}, {0x20, '#! '}]}, 0x16) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r4, 0x0) write$binfmt_misc(r4, &(0x7f0000000000)="e0b9cfada3f4e66ab8fcb1b39f3151561c00b0f659abf04d78584ba7224ed331f7313d999f27ccce3415dcede3c5fa999143e2ad00fbbe2318f01841665b4df0467221ea3ca7cbdf0ce735ee80c34f5687ff7e35f0c7e332a3929861a413a3", 0x5f) ioctl$KDFONTOP_GET(r3, 0x4b66, &(0x7f0000000100)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0}) 1.183011178s ago: executing program 3 (id=2184): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x17, 0x3, &(0x7f0000000b00)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sysctl, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000000)={r0, r1, 0x12}, 0x10) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/am_droprate\x00', 0x2, 0x0) sendfile(r2, r2, 0x0, 0x8) 1.130056409s ago: executing program 3 (id=2185): r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000540)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_NEW_KEY(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000400)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010800000000000000000b00000008000300", @ANYRES32=r2, @ANYBLOB="0a0006000802110000000000380050800800030006ac0f0011000100cabee339084eeef109002471f40000000800070000000700050002"], 0x60}}, 0x0) 1.065395926s ago: executing program 3 (id=2186): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007ed, &(0x7f0000008400)={0x2, 0x4e23, @loopback}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000c80)='dctcp\x00', 0x6) r1 = socket$kcm(0x10, 0x2, 0x4) sendmsg$kcm(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000840)="89000000120081ae08060cdc039efffe7f030005000000000001ffca1b1f0000000024c00e72f750375ed08a56331dbf9ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00150c00014003080c00bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0) 969.757919ms ago: executing program 3 (id=2187): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x200000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4048aecb, &(0x7f0000000380)=ANY=[@ANYBLOB="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"]) openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) socket$igmp(0x2, 0x3, 0x2) openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r3 = socket$inet_mptcp(0x2, 0x1, 0x106) mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f00000000c0)='sockfs\x00', 0x0, 0x0) openat$kvm(0xffffff9c, &(0x7f0000000180), 0x200080, 0x0) r4 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r5 = dup(r4) ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1) bpf$ENABLE_STATS(0x20, 0x0, 0x0) r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x569002, 0x0) r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) close(r6) socketpair$unix(0x1, 0x1, 0x0, 0x0) ioctl$SIOCSIFHWADDR(r3, 0x8914, 0x0) r8 = openat$tun(0xffffffffffffff9c, 0x0, 0x1c1842, 0x0) ioctl$TUNSETIFF(r8, 0x400454ca, 0x0) r9 = socket$vsock_stream(0x28, 0x1, 0x0) bind$vsock_stream(r9, &(0x7f0000000440), 0x10) listen(r9, 0x0) r10 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r5, &(0x7f0000000100)={0x28, 0x0, 0x2710, @local}, 0x10) writev(r10, &(0x7f00000002c0)=[{&(0x7f0000000080)='?', 0x1}], 0x1) accept4$unix(r9, 0x0, 0x0, 0x0) 305.384969ms ago: executing program 1 (id=2188): ioctl$SNDRV_PCM_IOCTL_DRAIN(0xffffffffffffffff, 0x4144, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) socket$inet_udp(0x2, 0x2, 0x0) getpgrp(0x0) syz_emit_vhci(&(0x7f0000000200)=ANY=[@ANYBLOB="04180400d501087ebb6ac79b7f58262ccf5f07d20369f1cae2ee2919c2c31436e57e1f4755741c587fde557b681f8b0bfc3a6b52f60808e92e387717ab6827f4b1bd02503fcd1ab7031282d06e233aaff93e1038ba266d00ced73e1f392ce24d3ba4b38e109b1f3341451811cbb5f1c6c16537f60ad0d389bb62fe129af7613a7d3deada9af81dcc9c287213da99"], 0x7) ioctl$CEC_ADAP_S_LOG_ADDRS(0xffffffffffffffff, 0xc05c6104, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x2, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800"/24], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) socket$kcm(0x2, 0xa, 0x2) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0xa, 0x11, 0xffffffffffffffff, 0x0) ftruncate(0xffffffffffffffff, 0x51a9497) r1 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) bind$netrom(r1, &(0x7f0000000000)={{0x6, @rose}, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @netrom, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @default]}, 0x48) r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0) ioctl$sock_proto_private(r2, 0x89e7, &(0x7f00000007c0)="c886bb08c2") 0s ago: executing program 3 (id=2190): r0 = getpid() r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe55, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002140)={&(0x7f0000000180)='tlb_flush\x00', r1}, 0x10) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) r2 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101804bc9555e1affd5020000000900010001797a300000000008000240000000032c000000030a01"], 0x7c}}, 0x0) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r3, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a010400000000000000000100000008000240000000020900010073797a3000000000140000001100"], 0x50}}, 0x0) sendmsg$NFT_BATCH(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)={{0x14, 0x10, 0x9000, 0x6}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x605, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x1}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x64}}, 0x0) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) r5 = socket$inet6(0xa, 0x4, 0x92f4) bind$inet6(r5, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) recvmmsg(r5, &(0x7f0000000340)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)=""/9, 0x9}}], 0x1, 0x0, 0x0) setsockopt$inet6_int(r5, 0x29, 0x31, &(0x7f0000000040)=0xd, 0x4) sendto$inet6(r5, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c) sendmsg$NFT_MSG_GETSETELEM(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000002180)={0x25e4, 0xd, 0xa, 0x801, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x25c4, 0x3, 0x0, 0x1, [{0x1054, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY_END={0x48, 0xa, 0x0, 0x1, [@NFTA_DATA_VALUE={0x43, 0x1, "60ebe82bab645c7215779406629c5848646e97b3ed87e40c4edd0c23a4a8ca421f2bd4d5a13e80160f1b276c446f35420ab1e1e2f9ef6203b8d4c8c669eb74"}]}, @NFTA_SET_ELEM_KEY_END={0x1008, 0xa, 0x0, 0x1, [@NFTA_DATA_VALUE={0x1004, 0x1, "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"}]}]}, {0x14a8, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0x5}, @NFTA_SET_ELEM_KEY={0xbc, 0x1, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x14, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}]}, @NFTA_DATA_VALUE={0xa1, 0x1, "1a74dc9a9c39cb416f891a43f7561898968bd299da5060185ea5d37b9d6c6df74c5177a31960b8ce3852dd1c2355a777649e3866ad76d28c9c5e1656bd6928d7b05c27a5df6342dfcbea19f039c70913b49a5c38ef460000fec70235e17366d0396e0a7c2ffe7c0a509bfc650a5def8f8e010b2d69a4213a2e332de32a6c5da30c2f21c97c5d1417d1e9d6bc4fd1e98237ba0a76a238dba1e167715e72"}]}, @NFTA_SET_ELEM_EXPR={0x10, 0x7, 0x0, 0x1, @range={{0xa}, @void}}, @NFTA_SET_ELEM_EXPR={0x10, 0x7, 0x0, 0x1, @last={{0x9}, @void}}, @NFTA_SET_ELEM_FLAGS={0x8}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz2\x00'}, @NFTA_SET_ELEM_EXPRESSIONS={0x13a8, 0xb, 0x0, 0x1, [{0x12c8, 0x1, 0x0, 0x1, @immediate={{0xe}, @val={0x12b4, 0x2, 0x0, 0x1, [@NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0xf}, @NFTA_IMMEDIATE_DATA={0x1168, 0x2, 0x0, 0x1, [@NFTA_DATA_VALUE={0x1004, 0x1, "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"}, @NFTA_DATA_VERDICT={0xc, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}]}, @NFTA_DATA_VERDICT={0x14, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}]}, @NFTA_DATA_VALUE={0x1e, 0x1, "e62c07eb88a74ac699ac06dc5accb828bec912641ce95e0e570b"}, @NFTA_DATA_VERDICT={0x44, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0x2}, @NFTA_VERDICT_CODE={0x8}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}]}, @NFTA_DATA_VALUE={0xda, 0x1, "cb0bfec09d8156779233f2876281303ad974ea91e322df6f9abac5ba9ea974e2d412ef92674240ff098c1e82cc1d16fac8a2848501cc0ec6ccbe9f6ad04559608b4bf2c1ab5be412172f2d575138260d1b26e0933a4c0fe3c36e7da83990dab12c8f94dea9e9371a5ee4e71ace43cb9a72ee55742e13f5a3cceff113d9a1f9ad83aaef8e14f7af279744ed597ebc810bb837ca67a67916444f02375b274d1af4b3781d91645847866e5ba72594630a586a143d6882fbc7d96cc6f315808839fa491bb5116afbf0537670dc8be8c98eb9ee6c6c853636"}]}, @NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_IMMEDIATE_DATA={0x120, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x14, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0x19dfb433ef04935f}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}]}, @NFTA_DATA_VALUE={0x66, 0x1, "fdefdf61548e085c998fd6ebeeb8bb8b63763d6ac6466fa07607f02bb148f69c4cf88190e38f2af9ffd2daa1ef947129459852518d777a471253023768ef5310bf4fe8cf03968a3484ffef364919ea84c77539848c505a36c511156d9c7ccfa52c00"}, @NFTA_DATA_VALUE={0xa0, 0x1, "6554c298e1c6234fbe447969671adebbae7b78f09b080b6a8d8182369e73854191c5d59c7b3c8878e3152c5dfc7417d27bea9f499b4bd3fe44e0964f6a33eef2ec16c64339d0d7c60dec90ad73288fb49ad2082d788b0be094dd7b8941db04d945ec52fb6d503f959cad99449cdc014e2112ec981095736693e64b8cbf8bc693e5a5da101cbcea2136932bbc06568518048ac87ab5c7b369a5ed9b02"}]}, @NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0x12}, @NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0x2}]}}}, {0x48, 0x1, 0x0, 0x1, @dup_ipv4={{0x8}, @val={0x3c, 0x2, 0x0, 0x1, [@NFTA_DUP_SREG_DEV={0x8, 0x2, 0x1, 0x0, 0x17}, @NFTA_DUP_SREG_DEV={0x8, 0x2, 0x1, 0x0, 0x10}, @NFTA_DUP_SREG_ADDR={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_DUP_SREG_ADDR={0x8, 0x1, 0x1, 0x0, 0xc}, @NFTA_DUP_SREG_ADDR={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_DUP_SREG_DEV={0x8, 0x2, 0x1, 0x0, 0x15}, @NFTA_DUP_SREG_DEV={0x8}]}}}, {0x58, 0x1, 0x0, 0x1, @synproxy={{0xd}, @val={0x44, 0x2, 0x0, 0x1, [@NFTA_SYNPROXY_WSCALE={0x5, 0x2, 0x2}, @NFTA_SYNPROXY_WSCALE={0x5, 0x2, 0x5d}, @NFTA_SYNPROXY_MSS={0x6, 0x1, 0x1, 0x0, 0x3}, @NFTA_SYNPROXY_MSS={0x6, 0x1, 0x1, 0x0, 0x8}, @NFTA_SYNPROXY_FLAGS={0x8, 0x3, 0x1, 0x0, 0x10}, @NFTA_SYNPROXY_WSCALE={0x5, 0x2, 0x5}, @NFTA_SYNPROXY_WSCALE={0x5, 0x2, 0xce}, @NFTA_SYNPROXY_WSCALE={0x5, 0x2, 0x6}]}}}, {0x3c, 0x1, 0x0, 0x1, @masq={{0x9}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_MASQ_REG_PROTO_MAX={0x8, 0x3, 0x1, 0x0, 0x17}, @NFTA_MASQ_REG_PROTO_MIN={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_MASQ_REG_PROTO_MAX={0x8, 0x3, 0x1, 0x0, 0xd}, @NFTA_MASQ_FLAGS={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_MASQ_REG_PROTO_MIN={0x8, 0x2, 0x1, 0x0, 0x1e}]}}}]}]}, {0xc4, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_USERDATA={0xbe, 0x6, 0x1, 0x0, "0ade4eebee574bd229ff33533dd2ee15996e0f0a82b0a98f58121d96c1cb8e2f208a3dda31912d86567cf7efd39a11bc6ff15f8f7d389bd9090517cc0c26abe364750c63a1b8acc55134d75fa27b79e7624341470bef2cb1cd08078bf2ed64e47d67549156c02b4956f6bc1435a9a75b5677dd10cfc6aa6516f2a603d3419474fee5edf4622e947869574cbb4458f9513f8edcad256ad5430bc72dc8aaf4e484ccfa9e4b4698c90d35731b81979ad38fc568bbfbe430c8ad1b28"}]}]}]}, 0x25e4}}, 0x0) r6 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/wireless\x00') preadv(r6, &(0x7f0000000100)=[{&(0x7f0000000280)=""/254, 0xfe}], 0x1, 0x1fc, 0x0) bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r2, 0xf, 0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40) bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x0, 0x400, 0x0, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) unshare(0x62040200) unshare(0x62040200) r7 = socket$igmp(0x2, 0x3, 0x2) setsockopt$EBT_SO_SET_ENTRIES(r7, 0x0, 0x80, &(0x7f0000000000)=@broute={'broute\x00', 0x70, 0x0, 0x90, [0x0, 0x0, 0x0, 0x7000000, 0x20001300, 0x20001330], 0x0, 0x0, &(0x7f0000001300)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0x7fffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}]}, 0xe0) r8 = socket$igmp(0x2, 0x3, 0x2) getsockopt$EBT_SO_GET_ENTRIES(r8, 0x0, 0x81, &(0x7f0000005400)={'filter\x00', 0x0, 0x0, 0x0, [], 0x0, 0x0, 0x0}, &(0x7f0000005480)=0x78) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={0xffffffffffffffff, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) kernel console output (not intermixed with test programs): ve_1) entered disabled state [ 336.733781][T10283] bond0: (slave bond_slave_0): Releasing backup interface [ 336.750891][T10283] bond0: (slave bond_slave_1): Releasing backup interface [ 336.789127][T10283] team0: Port device team_slave_0 removed [ 336.800134][T10283] team0: Port device team_slave_1 removed [ 336.802810][T10283] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 336.807643][T10283] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 336.810164][T10283] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 336.894579][T10288] netlink: 'syz.3.1483': attribute type 10 has an invalid length. [ 336.897839][T10288] syz_tun: entered promiscuous mode [ 336.907885][T10288] bond0: (slave syz_tun): Enslaving as an active interface with an up link [ 337.026172][T10292] overlayfs: failed to resolve './file1': -2 [ 338.110375][ T5354] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 338.114532][ T5354] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 338.125560][ T5354] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 338.132633][ T5354] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 338.134920][ T5354] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 338.147622][ T5354] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 338.306353][T10307] chnl_net:caif_netlink_parms(): no params data found [ 338.508211][ T5354] Bluetooth: hci7: unexpected event 0x18 length: 4 < 23 [ 338.540191][ T6437] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 338.565561][T10323] __nla_validate_parse: 6 callbacks suppressed [ 338.565573][T10323] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1492'. [ 338.578832][T10307] bridge0: port 1(bridge_slave_0) entered blocking state [ 338.580997][T10307] bridge0: port 1(bridge_slave_0) entered disabled state [ 338.582925][T10307] bridge_slave_0: entered allmulticast mode [ 338.591433][T10307] bridge_slave_0: entered promiscuous mode [ 338.597003][T10307] bridge0: port 2(bridge_slave_1) entered blocking state [ 338.599504][T10307] bridge0: port 2(bridge_slave_1) entered disabled state [ 338.605198][T10307] bridge_slave_1: entered allmulticast mode [ 338.607252][T10307] bridge_slave_1: entered promiscuous mode [ 338.674431][ T6437] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 338.692290][T10307] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 338.696178][T10307] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 338.741209][T10307] team0: Port device team_slave_0 added [ 338.747759][T10307] team0: Port device team_slave_1 added [ 338.827478][ T6437] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 338.833269][T10307] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 338.835149][T10307] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 338.854263][T10307] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 338.879078][T10307] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 338.881278][T10307] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 338.887818][T10307] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 339.010034][ T6437] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 339.050054][T10307] hsr_slave_0: entered promiscuous mode [ 339.085513][T10307] hsr_slave_1: entered promiscuous mode [ 339.090004][T10307] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 339.092070][T10307] Cannot create hsr debugfs directory [ 339.261362][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.263396][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.265415][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.267396][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.269394][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.271399][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.275382][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.277440][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.279532][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.281734][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.283780][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.285858][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.287992][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.289999][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.291982][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.294004][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.296030][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.299848][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.303683][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.306286][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.442786][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.444895][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.446927][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.448870][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.450803][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.452739][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.454657][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.456616][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.462432][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.465684][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.468334][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.470852][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.473383][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.475953][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.478579][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.481067][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.483562][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.486079][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.488621][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.491188][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.493699][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.496181][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.498614][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.501136][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.503606][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.506120][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.508742][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.510776][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.512755][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.514682][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.516619][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.518702][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.520684][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.522685][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.524639][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.526575][ T1447] hid-generic 0001:0000:0000.0012: unknown main item tag 0x0 [ 339.529609][ T1447] hid-generic 0001:0000:0000.0012: hidraw0: HID v0.00 Device [syz0] on syz1 [ 339.805355][ T6437] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 339.823391][ T6437] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 339.834867][ T6437] bond0 (unregistering): Released all slaves [ 340.003298][T10358] netlink: 'syz.1.1502': attribute type 10 has an invalid length. [ 340.019645][T10358] bridge0: port 2(bridge_slave_1) entered disabled state [ 340.022214][T10358] bridge0: port 1(bridge_slave_0) entered disabled state [ 340.046895][T10358] bridge0: port 2(bridge_slave_1) entered blocking state [ 340.048866][T10358] bridge0: port 2(bridge_slave_1) entered forwarding state [ 340.051114][T10358] bridge0: port 1(bridge_slave_0) entered blocking state [ 340.053125][T10358] bridge0: port 1(bridge_slave_0) entered forwarding state [ 340.078613][T10358] bridge0: entered promiscuous mode [ 340.080447][T10358] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 340.092009][T10361] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1502'. [ 340.095370][T10361] bridge_slave_1: left allmulticast mode [ 340.097183][T10361] bridge_slave_1: left promiscuous mode [ 340.099643][T10361] bridge0: port 2(bridge_slave_1) entered disabled state [ 340.107252][T10361] bridge_slave_0: left allmulticast mode [ 340.113961][T10361] bridge_slave_0: left promiscuous mode [ 340.115871][T10361] bridge0: port 1(bridge_slave_0) entered disabled state [ 340.143923][T10361] bond0: (slave bridge0): Releasing backup interface [ 340.323279][ T5354] Bluetooth: hci1: command tx timeout [ 340.546816][ T6437] hsr_slave_0: left promiscuous mode [ 340.553008][ T6437] hsr_slave_1: left promiscuous mode [ 340.557784][ T6437] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 340.563850][ T6437] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 340.567208][ T6437] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 340.569715][ T6437] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 340.602710][ T6437] veth1_macvtap: left promiscuous mode [ 340.604205][ T6437] veth0_macvtap: left promiscuous mode [ 340.605674][ T6437] veth1_vlan: left promiscuous mode [ 340.607081][ T6437] veth0_vlan: left promiscuous mode [ 341.070594][ T5354] Bluetooth: hci0: unexpected event 0x18 length: 4 < 23 [ 341.522117][ T6437] team0 (unregistering): Port device team_slave_1 removed [ 341.623294][ T6437] team0 (unregistering): Port device team_slave_0 removed [ 342.301567][T10307] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 342.338325][T10383] bond0: (slave syz_tun): Releasing backup interface [ 342.350309][T10307] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 342.356262][T10307] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 342.364536][T10307] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 342.417506][T10307] 8021q: adding VLAN 0 to HW filter on device bond0 [ 342.428143][T10307] 8021q: adding VLAN 0 to HW filter on device team0 [ 342.435440][ T1147] bridge0: port 1(bridge_slave_0) entered blocking state [ 342.437351][ T1147] bridge0: port 1(bridge_slave_0) entered forwarding state [ 342.450712][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 342.452689][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 342.549858][ T5354] Bluetooth: hci1: command tx timeout [ 342.642217][T10307] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 342.692341][T10398] netlink: 'syz.0.1513': attribute type 4 has an invalid length. [ 342.707468][T10307] veth0_vlan: entered promiscuous mode [ 342.707947][T10398] netlink: 128124 bytes leftover after parsing attributes in process `syz.0.1513'. [ 342.742989][T10307] veth1_vlan: entered promiscuous mode [ 342.780924][T10307] veth0_macvtap: entered promiscuous mode [ 342.831446][T10307] veth1_macvtap: entered promiscuous mode [ 342.887727][T10307] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 342.891156][T10307] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 342.894462][T10307] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 342.903572][T10307] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 342.906350][T10307] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 342.909606][T10307] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 342.923568][T10307] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 342.925885][T10307] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 342.928147][T10307] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 342.930423][T10307] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 343.047631][T10396] ebtables: wrong size: *len 120, entries_size 144, replsz 144 [ 343.101200][ T6437] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 343.106703][ T6437] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 343.122017][ T6437] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 343.124071][ T6437] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 343.166236][T10410] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1488'. [ 344.771342][ T5354] Bluetooth: hci1: command tx timeout [ 345.048969][ T5354] Bluetooth: hci7: unexpected event 0x18 length: 4 < 23 [ 345.127981][T10458] SET target dimension over the limit! [ 345.200681][ T73] usb 5-1: new high-speed USB device number 12 using dummy_hcd [ 345.208824][ T5354] Bluetooth: hci1: unexpected event 0x18 length: 4 < 23 [ 345.361760][ T73] usb 5-1: config 252 has an invalid interface number: 254 but max is 0 [ 345.363959][ T73] usb 5-1: config 252 has no interface number 0 [ 345.365597][ T73] usb 5-1: config 252 interface 254 has no altsetting 0 [ 345.369809][ T73] usb 5-1: New USB device found, idVendor=057c, idProduct=2200, bcdDevice=46.29 [ 345.372496][ T73] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 345.374742][ T73] usb 5-1: Product: syz [ 345.375849][ T73] usb 5-1: Manufacturer: syz [ 345.377078][ T73] usb 5-1: SerialNumber: syz [ 345.381327][ T73] bfusb 5-1:252.254: probe with driver bfusb failed with error -5 [ 345.601173][T10453] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 345.609618][T10453] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 345.615581][T10453] nlmon0: entered promiscuous mode [ 345.617095][T10453] vlan4: entered promiscuous mode [ 345.618471][T10453] vlan4: entered allmulticast mode [ 345.619805][T10453] nlmon0: entered allmulticast mode [ 345.622776][T10453] nlmon0: left allmulticast mode [ 345.624143][T10453] nlmon0: left promiscuous mode [ 345.711562][ T73] usb 5-1: USB disconnect, device number 12 [ 345.890444][T10463] netlink: 'syz.1.1534': attribute type 4 has an invalid length. [ 345.892539][T10463] netlink: 128124 bytes leftover after parsing attributes in process `syz.1.1534'. [ 345.937431][T10465] sg_write: data in/out 92/70 bytes for SCSI command 0x0-- guessing data in; [ 345.937431][T10465] program syz.1.1535 not setting count and/or reply_len properly [ 346.140897][T10478] tipc: Started in network mode [ 346.142256][T10478] tipc: Node identity 7f000001, cluster identity 4711 [ 346.144691][T10478] tipc: Enabled bearer , priority 10 [ 346.146570][T10477] tipc: Enabling of bearer rejected, already enabled [ 346.314492][T10487] netlink: 'syz.3.1543': attribute type 4 has an invalid length. [ 346.316586][T10487] netlink: 128124 bytes leftover after parsing attributes in process `syz.3.1543'. [ 346.337909][T10490] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22 [ 346.340183][T10490] netdevsim netdevsim0: Direct firmware load for . failed with error -22 [ 346.342390][T10490] netdevsim netdevsim0: Falling back to sysfs fallback for: . [ 346.560459][ T39] kauditd_printk_skb: 30 callbacks suppressed [ 346.560471][ T39] audit: type=1804 audit(1728141642.402:253): pid=10493 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1544" name="/newroot/197/bus/bus" dev="overlay" ino=1071 res=1 errno=0 [ 346.854496][T10495] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1545'. [ 346.997059][ T5354] Bluetooth: hci1: command tx timeout [ 347.210774][ T25] tipc: Node number set to 2130706433 [ 347.262819][T10519] batadv0: entered allmulticast mode [ 347.432287][T10525] netlink: 'syz.0.1554': attribute type 4 has an invalid length. [ 347.435729][T10525] netlink: 128124 bytes leftover after parsing attributes in process `syz.0.1554'. [ 347.456438][T10526] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1552'. [ 347.512635][T10528] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1555'. [ 347.695116][T10530] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1555'. [ 348.003591][ T5354] Bluetooth: hci0: unexpected event 0x18 length: 4 < 23 [ 349.038811][T10548] sctp: [Deprecated]: syz.2.1561 (pid 10548) Use of int in maxseg socket option. [ 349.038811][T10548] Use struct sctp_assoc_value instead [ 349.565640][T10562] netlink: 'syz.0.1565': attribute type 10 has an invalid length. [ 350.288970][T10580] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1571'. [ 350.438706][T10584] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1571'. [ 351.186050][ T5349] Bluetooth: hci1: command 0x0405 tx timeout [ 352.430234][T10593] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1574'. [ 352.453713][ T5354] Bluetooth: hci1: unexpected cc 0x2007 length: 100 > 2 [ 352.456722][ T5354] Bluetooth: hci1: unexpected event for opcode 0x2007 [ 352.460851][T10593] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6) [ 352.462709][T10593] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 352.467379][T10593] vhci_hcd vhci_hcd.0: Device attached [ 352.524076][T10600] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1573'. [ 352.650736][T10596] Bluetooth: hci7: Opcode 0x0c1a failed: -4 [ 352.652980][T10596] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 352.654565][T10596] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 352.668077][T10596] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 352.676532][T10596] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 352.686472][T10596] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 352.701392][T10596] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 352.746702][T10606] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1575'. [ 352.752034][T10597] vhci_hcd: connection closed [ 352.770092][ T1147] vhci_hcd: stop threads [ 352.774619][ T1147] vhci_hcd: release socket [ 352.776911][ T1147] vhci_hcd: disconnect device [ 352.815433][ T5404] usb 18-1: enqueue for inactive port 0 [ 353.057653][T10610] input: syz1 as /devices/virtual/input/input26 [ 353.089584][T10610] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1576'. [ 353.227900][T10616] input: syz1 as /devices/virtual/input/input27 [ 353.252658][T10616] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1578'. [ 353.346521][ T5404] usb usb18-port1: attempt power cycle [ 353.636282][T10626] IPv6: addrconf: prefix option has invalid lifetime [ 353.661207][T10626] can0: slcan on ttyS3. [ 353.764402][T10628] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1582'. [ 353.983681][T10631] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1582'. [ 354.288177][T10624] can0 (unregistered): slcan off ttyS3. [ 354.533135][ T5404] usb usb18-port1: unable to enumerate USB device [ 354.693006][ T5349] Bluetooth: hci7: command 0x0c1a tx timeout [ 354.863673][ T5352] Bluetooth: hci0: command 0x0405 tx timeout [ 354.865350][ T5349] Bluetooth: hci1: command 0x0405 tx timeout [ 355.473797][T10644] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1588'. [ 355.476577][T10644] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1588'. [ 355.514353][T10646] netlink: 'syz.0.1589': attribute type 9 has an invalid length. [ 355.526824][T10646] netlink: 134660 bytes leftover after parsing attributes in process `syz.0.1589'. [ 356.648566][T10662] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 357.023362][ T2007] usb 5-1: new high-speed USB device number 13 using dummy_hcd [ 357.087400][ T5354] Bluetooth: hci1: command 0x0405 tx timeout [ 357.088633][ T5349] Bluetooth: hci0: command 0x0405 tx timeout [ 357.196591][ T2007] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 357.200617][ T2007] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 357.204574][ T2007] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 357.211713][ T2007] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 357.219956][ T2007] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 357.223251][ T2007] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 357.229665][ T2007] usb 5-1: Manufacturer: syz [ 357.232361][ T2007] usb 5-1: config 0 descriptor?? [ 357.863673][ T5354] Bluetooth: hci2: sending frame failed (-49) [ 357.866573][ T5349] Bluetooth: hci2: Opcode 0x1003 failed: -49 [ 357.927471][T10685] __nla_validate_parse: 4 callbacks suppressed [ 357.927532][T10685] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1601'. [ 358.067419][T10687] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1601'. [ 359.039657][ T5354] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 359.044438][ T5354] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 359.046940][ T5354] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 359.049527][ T5354] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 359.051651][ T5354] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 359.054055][ T5354] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 359.184272][ T6411] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 359.187669][ T6411] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 359.310989][ T5354] Bluetooth: hci1: command 0x0405 tx timeout [ 359.314213][ T5349] Bluetooth: hci0: command 0x0405 tx timeout [ 359.316683][ T6411] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 359.319419][ T6411] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 359.414217][ T6411] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 359.423536][ T6411] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 359.452806][T10689] chnl_net:caif_netlink_parms(): no params data found [ 359.614751][ T6411] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 359.617865][ T6411] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 359.708068][T10689] bridge0: port 1(bridge_slave_0) entered blocking state [ 359.710242][T10689] bridge0: port 1(bridge_slave_0) entered disabled state [ 359.712394][T10689] bridge_slave_0: entered allmulticast mode [ 359.718978][T10689] bridge_slave_0: entered promiscuous mode [ 359.728870][T10689] bridge0: port 2(bridge_slave_1) entered blocking state [ 359.730815][T10689] bridge0: port 2(bridge_slave_1) entered disabled state [ 359.732753][T10689] bridge_slave_1: entered allmulticast mode [ 359.735502][T10689] bridge_slave_1: entered promiscuous mode [ 359.818205][T10689] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 359.838961][T10689] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 360.017339][ T2007] usbhid 5-1:0.0: can't add hid device: -71 [ 360.019569][ T2007] usbhid 5-1:0.0: probe with driver usbhid failed with error -71 [ 360.025858][ T2007] usb 5-1: USB disconnect, device number 13 [ 360.602224][ T6411] bond0 (unregistering): Released all slaves [ 360.635155][T10689] team0: Port device team_slave_0 added [ 360.648308][T10698] macvlan2: entered promiscuous mode [ 360.649958][T10698] bond0: entered promiscuous mode [ 360.651405][T10698] team0: entered promiscuous mode [ 360.654462][T10698] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 360.703885][T10705] bond0: (slave bond_slave_0): Releasing backup interface [ 360.712236][T10705] bond_slave_0: left promiscuous mode [ 360.733963][T10705] bond0: (slave bond_slave_1): Releasing backup interface [ 360.739467][T10705] bond_slave_1: left promiscuous mode [ 360.775030][T10705] team0: Port device team_slave_0 removed [ 360.788208][T10705] team0: Port device team_slave_1 removed [ 360.790910][T10705] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 360.793353][T10705] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 360.798588][T10705] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 360.801181][T10705] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 360.854909][T10689] team0: Port device team_slave_1 added [ 361.040334][T10689] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 361.054241][T10689] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 361.063077][T10689] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 361.172860][T10689] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 361.175450][T10689] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 361.188222][T10689] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 361.260692][T10689] hsr_slave_0: entered promiscuous mode [ 361.267915][T10689] hsr_slave_1: entered promiscuous mode [ 361.282121][ T5354] Bluetooth: hci4: command tx timeout [ 361.535651][ T5354] Bluetooth: hci1: command 0x0405 tx timeout [ 362.145396][T10689] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 362.148757][T10689] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 362.163835][T10689] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 362.184802][T10689] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 362.293849][T10689] 8021q: adding VLAN 0 to HW filter on device bond0 [ 362.318014][T10689] 8021q: adding VLAN 0 to HW filter on device team0 [ 362.358660][ T1147] bridge0: port 1(bridge_slave_0) entered blocking state [ 362.360620][ T1147] bridge0: port 1(bridge_slave_0) entered forwarding state [ 362.369711][ T1147] bridge0: port 2(bridge_slave_1) entered blocking state [ 362.371593][ T1147] bridge0: port 2(bridge_slave_1) entered forwarding state [ 362.479665][ T6411] hsr_slave_0: left promiscuous mode [ 362.539482][ T6411] hsr_slave_1: left promiscuous mode [ 362.605267][ T6411] veth1_macvtap: left promiscuous mode [ 362.607208][ T6411] veth0_macvtap: left promiscuous mode [ 362.609268][ T6411] veth1_vlan: left promiscuous mode [ 362.611073][ T6411] veth0_vlan: left promiscuous mode [ 362.887176][T10739] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1613'. [ 363.501669][ T5354] Bluetooth: hci4: command tx timeout [ 365.529367][T10748] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1619'. [ 365.727159][ T5354] Bluetooth: hci4: command tx timeout [ 365.918718][T10729] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1613'. [ 365.970600][T10752] netlink: 104 bytes leftover after parsing attributes in process `syz.0.1620'. [ 365.985149][T10752] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5) [ 365.986854][T10752] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 365.997573][T10752] vhci_hcd vhci_hcd.0: Device attached [ 366.021379][T10689] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 366.041969][T10689] veth0_vlan: entered promiscuous mode [ 366.053593][T10689] veth1_vlan: entered promiscuous mode [ 366.055661][T10755] vhci_hcd: connection closed [ 366.057167][ T6426] vhci_hcd: stop threads [ 366.059447][ T6426] vhci_hcd: release socket [ 366.060586][ T6426] vhci_hcd: disconnect device [ 366.073503][T10689] veth0_macvtap: entered promiscuous mode [ 366.077958][T10689] veth1_macvtap: entered promiscuous mode [ 366.097045][T10689] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 366.099779][T10689] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 366.103899][T10689] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 366.107886][T10689] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 366.113502][T10689] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 366.126501][T10689] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 366.131013][T10689] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 366.134436][T10689] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 366.136557][T10689] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 366.138720][T10689] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 366.206839][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 366.210370][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 366.239041][ T1098] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 366.241816][ T1098] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 366.277703][T10772] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1602'. [ 366.286449][T10772] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1602'. [ 366.333502][T10777] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1627'. [ 366.537868][ T58] usb 6-1: new high-speed USB device number 19 using dummy_hcd [ 366.549646][T10786] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1631'. [ 366.589937][T10788] FAULT_INJECTION: forcing a failure. [ 366.589937][T10788] name failslab, interval 1, probability 0, space 0, times 0 [ 366.593474][T10788] CPU: 0 UID: 0 PID: 10788 Comm: syz.2.1632 Not tainted 6.12.0-rc1-syzkaller-00306-g27cc6fdf7201 #0 [ 366.596275][T10788] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 366.599082][T10788] Call Trace: [ 366.599977][T10788] [ 366.600781][T10788] dump_stack_lvl+0x16c/0x1f0 [ 366.602027][T10788] should_fail_ex+0x497/0x5b0 [ 366.603273][T10788] should_failslab+0xc2/0x120 [ 366.604525][T10788] __kmalloc_noprof+0xcb/0x410 [ 366.605788][T10788] io_cqring_event_overflow+0xcb/0x6f0 [ 366.607235][T10788] __io_submit_flush_completions+0xf10/0x20e0 [ 366.608851][T10788] io_submit_sqes+0xa73/0x2530 [ 366.610122][T10788] __do_sys_io_uring_enter+0xc0f/0x1170 [ 366.611574][T10788] ? __fget_files+0x244/0x3f0 [ 366.612821][T10788] ? __pfx___do_sys_io_uring_enter+0x10/0x10 [ 366.614397][T10788] ? fput+0x30/0x390 [ 366.615432][T10788] ? ksys_write+0x1ad/0x260 [ 366.616635][T10788] ? __pfx_ksys_write+0x10/0x10 [ 366.617916][T10788] __do_fast_syscall_32+0x73/0x120 [ 366.619263][T10788] do_fast_syscall_32+0x32/0x80 [ 366.620554][T10788] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 366.622206][T10788] RIP: 0023:0xf73be579 [ 366.623283][T10788] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 366.628290][T10788] RSP: 002b:00000000f56a656c EFLAGS: 00000296 ORIG_RAX: 00000000000001aa [ 366.630460][T10788] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000050 [ 366.632546][T10788] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000000 [ 366.634606][T10788] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 366.636685][T10788] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 366.638757][T10788] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 366.640844][T10788] [ 366.692043][T10791] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1631'. [ 366.698327][ T58] usb 6-1: Using ep0 maxpacket: 32 [ 366.700974][ T58] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11 [ 366.707337][ T58] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024 [ 366.713168][T10793] netlink: 80 bytes leftover after parsing attributes in process `syz.2.1633'. [ 366.745740][ T58] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 366.755519][ T58] usb 6-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22 [ 366.757924][ T58] usb 6-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131 [ 366.760250][ T58] usb 6-1: Product: syz [ 366.761371][ T58] usb 6-1: Manufacturer: syz [ 366.764527][ T58] usb 6-1: SerialNumber: syz [ 366.768924][T10768] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 366.777540][ T58] input: appletouch as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:1.0/input/input28 [ 366.794248][ C1] appletouch 6-1:1.0: atp_complete: usb_submit_urb failed with result -1 [ 367.070613][T10768] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1624'. [ 367.108305][ T8600] usb 6-1: USB disconnect, device number 19 [ 367.129082][ T8600] appletouch 6-1:1.0: input: appletouch disconnected [ 367.949095][ T5354] Bluetooth: hci4: command tx timeout [ 368.780271][T10821] x_tables: (null)_tables: TRACE target: only valid in raw table, not syz0 [ 369.696503][T10850] dccp_close: ABORT with 32 bytes unread [ 371.108440][T10870] __nla_validate_parse: 8 callbacks suppressed [ 371.108512][T10870] netlink: 4088 bytes leftover after parsing attributes in process `syz.3.1660'. [ 371.112602][T10870] openvswitch: netlink: Actions may not be safe on all matching packets [ 371.241817][ T5354] Bluetooth: hci4: unexpected event 0x18 length: 4 < 23 [ 371.469092][T10885] mac80211_hwsim hwsim1 wlan1: entered allmulticast mode [ 371.498960][T10887] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1664'. [ 371.520605][T10889] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1666'. [ 371.857297][T10909] netlink: 'syz.0.1670': attribute type 10 has an invalid length. [ 372.323871][ T5404] usb 5-1: new high-speed USB device number 14 using dummy_hcd [ 372.506149][ T5404] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 372.509250][ T5404] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11 [ 372.512160][ T5404] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 372.515889][ T5404] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 372.519384][ T5404] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 372.521892][ T5404] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 372.526884][ T5404] usb 5-1: config 0 descriptor?? [ 372.530172][T10917] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 372.851290][T10926] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1675'. [ 372.969063][ T5404] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0 [ 372.971068][ T5404] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0 [ 372.973038][ T5404] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0 [ 372.979149][ T5404] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0 [ 372.981395][ T5404] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0 [ 372.983499][ T5404] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0 [ 372.986508][ T5404] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0 [ 372.988778][ T5404] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0 [ 372.991007][ T5404] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0 [ 372.993081][ T5404] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0 [ 372.995540][ T5404] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0 [ 372.997692][ T5404] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0 [ 372.999911][ T5404] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0 [ 373.002112][ T5404] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0 [ 373.004026][ T5404] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0 [ 373.012052][ T5404] plantronics 0003:047F:FFFF.0013: No inputs registered, leaving [ 373.031840][ T5404] plantronics 0003:047F:FFFF.0013: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0 [ 373.323154][T10917] usb 5-1: language id specifier not provided by device, defaulting to English [ 373.537876][T10930] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 373.549835][T10930] overlayfs: missing 'lowerdir' [ 373.695798][ T39] audit: type=1326 audit(1728141667.779:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10931 comm="syz.1.1677" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x0 [ 374.399872][ T39] audit: type=1800 audit(1728141668.443:255): pid=10942 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1679" name="bus" dev="overlay" ino=586 res=0 errno=0 [ 375.022984][T10949] FAULT_INJECTION: forcing a failure. [ 375.022984][T10949] name failslab, interval 1, probability 0, space 0, times 0 [ 375.026623][T10949] CPU: 1 UID: 0 PID: 10949 Comm: syz.0.1681 Not tainted 6.12.0-rc1-syzkaller-00306-g27cc6fdf7201 #0 [ 375.029369][T10949] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 375.032183][T10949] Call Trace: [ 375.033053][T10949] [ 375.033833][T10949] dump_stack_lvl+0x16c/0x1f0 [ 375.035065][T10949] should_fail_ex+0x497/0x5b0 [ 375.036319][T10949] ? trace_kmalloc+0x2d/0xe0 [ 375.037631][T10949] should_failslab+0xc2/0x120 [ 375.038946][T10949] kmem_cache_alloc_node_noprof+0x71/0x310 [ 375.040556][T10949] ? __alloc_skb+0x2b3/0x380 [ 375.041764][T10949] __alloc_skb+0x2b3/0x380 [ 375.042922][T10949] ? __pfx___alloc_skb+0x10/0x10 [ 375.044217][T10949] ? skb_csum_hwoffload_help+0x140/0x190 [ 375.045668][T10949] ? get_random_u32+0x3fd/0x7e0 [ 375.046925][T10949] ? skb_zerocopy_clone+0x2c9/0x670 [ 375.048283][T10949] ? trace_lock_acquire+0x14a/0x1d0 [ 375.049634][T10949] skb_segment+0x9cd/0x4020 [ 375.050851][T10949] ? get_random_u32+0x586/0x7e0 [ 375.052163][T10949] ? __pfx_skb_segment+0x10/0x10 [ 375.053449][T10949] ? ip6_find_1stfragopt+0x163/0x2c0 [ 375.054902][T10949] udp6_ufo_fragment+0x9e5/0xcd0 [ 375.056646][T10949] ? __pfx_udp6_ufo_fragment+0x10/0x10 [ 375.058550][T10949] ? __pfx___lock_acquire+0x10/0x10 [ 375.059941][T10949] ipv6_gso_segment+0x7b2/0x1c70 [ 375.061286][T10949] ? __pfx_ipv6_gso_segment+0x10/0x10 [ 375.062689][T10949] ? lock_acquire+0x2f/0xb0 [ 375.063850][T10949] ? skb_mac_gso_segment+0x1a7/0x650 [ 375.065275][T10949] skb_mac_gso_segment+0x2a6/0x650 [ 375.066616][T10949] ? __pfx_ipv6_gso_segment+0x10/0x10 [ 375.068021][T10949] ? __pfx_skb_mac_gso_segment+0x10/0x10 [ 375.069461][T10949] nsh_gso_segment+0x488/0xb50 [ 375.070667][T10949] skb_mac_gso_segment+0x2a6/0x650 [ 375.072136][T10949] ? __pfx_nsh_gso_segment+0x10/0x10 [ 375.073445][T10949] ? __pfx_skb_mac_gso_segment+0x10/0x10 [ 375.075016][T10949] __skb_gso_segment+0x333/0x710 [ 375.076306][T10949] ? netif_skb_features+0x3b0/0xd50 [ 375.077574][T10949] validate_xmit_skb+0x3a7/0xec0 [ 375.078845][T10949] validate_xmit_skb_list+0xc1/0x130 [ 375.080186][T10949] sch_direct_xmit+0x3f3/0xc30 [ 375.081629][T10949] ? lock_acquire.part.0+0x1/0x380 [ 375.083212][T10949] ? rcu_is_watching+0x12/0xc0 [ 375.084906][T10949] ? __pfx_sch_direct_xmit+0x10/0x10 [ 375.086739][T10949] ? __dev_queue_xmit+0x1148/0x4350 [ 375.088294][T10949] ? lock_acquire+0x2f/0xb0 [ 375.089599][T10949] ? __dev_queue_xmit+0x1148/0x4350 [ 375.091043][T10949] __dev_queue_xmit+0x136a/0x4350 [ 375.092811][T10949] ? __might_fault+0xe3/0x190 [ 375.094212][T10949] ? __might_fault+0xe3/0x190 [ 375.095441][T10949] ? __pfx___dev_queue_xmit+0x10/0x10 [ 375.097156][T10949] ? skb_copy_bits+0x5b3/0x870 [ 375.098825][T10949] ? __pskb_pull_tail+0xa78/0x1740 [ 375.100484][T10949] ? skb_partial_csum_set+0x202/0x3a0 [ 375.101961][T10949] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 375.103797][T10949] ? virtio_net_hdr_to_skb.constprop.0+0x7fc/0x1410 [ 375.105552][T10949] ? __pfx_virtio_net_hdr_to_skb.constprop.0+0x10/0x10 [ 375.107696][T10949] packet_xmit+0x23e/0x360 [ 375.109259][T10949] packet_sendmsg+0x2681/0x54c0 [ 375.110833][T10949] ? find_held_lock+0x2d/0x110 [ 375.112126][T10949] ? __pfx___might_resched+0x10/0x10 [ 375.113670][T10949] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 375.115673][T10949] ? aa_sk_perm+0x2f5/0xb20 [ 375.117274][T10949] ? __pfx_packet_sendmsg+0x10/0x10 [ 375.118677][T10949] ? __pfx_aa_sk_perm+0x10/0x10 [ 375.119980][T10949] ? __import_iovec+0x1fd/0x6e0 [ 375.121332][T10949] ____sys_sendmsg+0x9ae/0xb40 [ 375.122945][T10949] ? __pfx_____sys_sendmsg+0x10/0x10 [ 375.124527][T10949] ? get_compat_msghdr+0x11b/0x170 [ 375.126076][T10949] ? __pfx___lock_acquire+0x10/0x10 [ 375.127902][T10949] ___sys_sendmsg+0x135/0x1e0 [ 375.129556][T10949] ? __pfx____sys_sendmsg+0x10/0x10 [ 375.131387][T10949] ? lock_acquire+0x2f/0xb0 [ 375.132933][T10949] ? __fget_files+0x40/0x3f0 [ 375.134396][T10949] ? fdget+0x176/0x210 [ 375.135788][T10949] __sys_sendmsg+0x117/0x1f0 [ 375.137382][T10949] ? __pfx___sys_sendmsg+0x10/0x10 [ 375.138812][T10949] ? __fget_files+0x244/0x3f0 [ 375.140092][T10949] __do_fast_syscall_32+0x73/0x120 [ 375.141436][T10949] do_fast_syscall_32+0x32/0x80 [ 375.142707][T10949] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 375.144373][T10949] RIP: 0023:0xf7fa3579 [ 375.145443][T10949] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 375.150409][T10949] RSP: 002b:00000000f572656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 375.152590][T10949] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 375.154640][T10949] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 375.156770][T10949] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 375.158865][T10949] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 375.160945][T10949] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 375.162981][T10949] [ 375.498021][ T73] usb 5-1: USB disconnect, device number 14 [ 375.646724][ T39] audit: type=1326 audit(1728141669.603:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10956 comm="syz.1.1684" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7fc00000 [ 375.646788][ T6411] wlan1: Trigger new scan to find an IBSS to join [ 376.303571][T10974] input: syz1 as /devices/virtual/input/input29 [ 376.353649][T10974] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1688'. [ 377.031239][T10983] netlink: 'syz.1.1692': attribute type 4 has an invalid length. [ 377.091184][T10984] fuse: Bad value for 'fd' [ 377.388059][T10990] 9pnet_fd: Insufficient options for proto=fd [ 377.403344][T10990] vivid-000: disconnect [ 377.503628][T10989] vivid-000: reconnect [ 378.127167][ T5349] Bluetooth: hci0: unexpected event 0x18 length: 4 < 23 [ 378.396239][ T5349] Bluetooth: hci4: command 0x0405 tx timeout [ 378.738909][T11009] netlink: 'syz.1.1699': attribute type 4 has an invalid length. [ 378.741787][T11009] netlink: 128124 bytes leftover after parsing attributes in process `syz.1.1699'. [ 378.868674][ T39] audit: type=1326 audit(1728141672.624:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11012 comm="syz.1.1701" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000 [ 378.874467][ T39] audit: type=1326 audit(1728141672.624:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11012 comm="syz.1.1701" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000 [ 378.886201][ T39] audit: type=1326 audit(1728141672.624:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11012 comm="syz.1.1701" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7fd2579 code=0x7ffc0000 [ 378.892140][ T39] audit: type=1326 audit(1728141672.624:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11012 comm="syz.1.1701" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000 [ 378.899329][ T39] audit: type=1326 audit(1728141672.624:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11012 comm="syz.1.1701" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000 [ 378.905892][ T39] audit: type=1326 audit(1728141672.634:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11012 comm="syz.1.1701" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fd2579 code=0x7ffc0000 [ 378.917197][ T39] audit: type=1326 audit(1728141672.634:263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11012 comm="syz.1.1701" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000 [ 378.950144][T11015] sp0: Synchronizing with TNC [ 379.068318][T11018] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1703'. [ 379.071265][T11018] netlink: 'syz.1.1703': attribute type 5 has an invalid length. [ 379.073773][T11018] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1703'. [ 379.537899][ T5354] Bluetooth: hci4: unexpected event 0x18 length: 4 < 23 [ 379.773419][T11029] netlink: 'syz.0.1709': attribute type 4 has an invalid length. [ 379.775449][T11029] netlink: 128124 bytes leftover after parsing attributes in process `syz.0.1709'. [ 379.885502][T11032] capability: warning: `syz.0.1710' uses 32-bit capabilities (legacy support in use) [ 380.581574][T11044] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1716'. [ 380.691402][ T5349] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 380.699311][ T5349] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 380.703752][ T5349] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 380.722327][ T5349] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 380.726028][ T5349] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 380.728741][ T5349] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 380.738238][T11048] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1716'. [ 380.839427][T11046] chnl_net:caif_netlink_parms(): no params data found [ 380.994864][ T6411] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 381.019728][T11046] bridge0: port 1(bridge_slave_0) entered blocking state [ 381.022186][T11046] bridge0: port 1(bridge_slave_0) entered disabled state [ 381.025157][T11046] bridge_slave_0: entered allmulticast mode [ 381.027560][T11046] bridge_slave_0: entered promiscuous mode [ 381.031318][T11055] syzkaller1: entered promiscuous mode [ 381.032803][T11055] syzkaller1: entered allmulticast mode [ 381.035352][ T1147] wlan1: Trigger new scan to find an IBSS to join [ 381.040596][T11046] bridge0: port 2(bridge_slave_1) entered blocking state [ 381.043230][T11046] bridge0: port 2(bridge_slave_1) entered disabled state [ 381.045330][T11046] bridge_slave_1: entered allmulticast mode [ 381.047311][T11046] bridge_slave_1: entered promiscuous mode [ 381.094464][ T6411] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 381.134035][T11046] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 381.139273][T11046] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 381.176389][T11058] netlink: 'syz.1.1718': attribute type 4 has an invalid length. [ 381.185768][T11058] netlink: 128124 bytes leftover after parsing attributes in process `syz.1.1718'. [ 381.200259][ T6411] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 381.211352][T11046] team0: Port device team_slave_0 added [ 381.218797][T11046] team0: Port device team_slave_1 added [ 381.252649][T11046] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 381.254824][T11046] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 381.263664][T11046] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 381.288680][ T6411] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 381.295455][T11046] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 381.297285][T11046] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 381.306346][T11046] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 381.369910][T11046] hsr_slave_0: entered promiscuous mode [ 381.373893][T11046] hsr_slave_1: entered promiscuous mode [ 381.377768][T11046] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 381.383195][T11046] Cannot create hsr debugfs directory [ 381.475176][ T5354] Bluetooth: hci0: unexpected event 0x18 length: 4 < 23 [ 381.515904][ T6411] bridge_slave_1: left allmulticast mode [ 381.517446][ T6411] bridge_slave_1: left promiscuous mode [ 381.518991][ T6411] bridge0: port 2(bridge_slave_1) entered disabled state [ 381.532887][ T6411] bridge_slave_0: left allmulticast mode [ 381.534449][ T6411] bridge_slave_0: left promiscuous mode [ 381.535976][ T6411] bridge0: port 1(bridge_slave_0) entered disabled state [ 381.725758][T11072] ebtables: wrong size: *len 120, entries_size 144, replsz 144 [ 382.029515][ T1098] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 382.036920][ T6411] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 382.043479][ T6411] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 382.047331][ T6411] bond0 (unregistering): Released all slaves [ 382.526501][ T6411] hsr_slave_0: left promiscuous mode [ 382.528648][ T6411] hsr_slave_1: left promiscuous mode [ 382.542334][ T6411] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 382.544329][ T6411] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 382.546782][ T6411] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 382.548629][ T6411] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 382.580705][ T6411] veth1_macvtap: left promiscuous mode [ 382.582782][ T6411] veth0_macvtap: left promiscuous mode [ 382.588628][ T6411] veth1_vlan: left promiscuous mode [ 382.591549][ T6411] veth0_vlan: left promiscuous mode [ 382.831527][ T1375] ieee802154 phy0 wpan0: encryption failed: -22 [ 382.834291][ T1375] ieee802154 phy1 wpan1: encryption failed: -22 [ 382.920371][ T5354] Bluetooth: hci1: command tx timeout [ 383.427069][ T6411] team0 (unregistering): Port device team_slave_1 removed [ 383.586212][ T6411] team0 (unregistering): Port device team_slave_0 removed [ 384.373327][T11074] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 384.381246][T11074] batadv_slave_0: entered promiscuous mode [ 384.405649][T11082] macvlan3: entered promiscuous mode [ 384.407140][T11082] 8021q: adding VLAN 0 to HW filter on device macvlan3 [ 384.469219][T11084] netlink: 'syz.3.1728': attribute type 4 has an invalid length. [ 384.471800][T11084] netlink: 128124 bytes leftover after parsing attributes in process `syz.3.1728'. [ 384.487326][ T39] kauditd_printk_skb: 34 callbacks suppressed [ 384.487337][ T39] audit: type=1326 audit(1728141677.872:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11085 comm="syz.1.1729" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x0 [ 384.534740][T11046] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 384.558578][T11046] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 384.563872][T11046] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 384.568402][T11046] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 384.605846][T11046] 8021q: adding VLAN 0 to HW filter on device bond0 [ 384.620102][T11046] 8021q: adding VLAN 0 to HW filter on device team0 [ 384.624085][ T1098] bridge0: port 1(bridge_slave_0) entered blocking state [ 384.626547][ T1098] bridge0: port 1(bridge_slave_0) entered forwarding state [ 384.647404][ T6426] bridge0: port 2(bridge_slave_1) entered blocking state [ 384.649933][ T6426] bridge0: port 2(bridge_slave_1) entered forwarding state [ 384.758479][T11096] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1731'. [ 384.764723][T11046] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 384.794945][T11046] veth0_vlan: entered promiscuous mode [ 384.803492][T11046] veth1_vlan: entered promiscuous mode [ 384.824967][T11046] veth0_macvtap: entered promiscuous mode [ 384.830733][T11046] veth1_macvtap: entered promiscuous mode [ 384.845739][T11046] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 384.852174][T11046] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 384.855007][T11046] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 384.858467][T11046] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 384.866612][T11046] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 384.868961][T11046] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 384.871258][T11046] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 384.874599][T11046] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 384.899822][T11101] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1731'. [ 384.927103][ T1098] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 384.929181][ T1098] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 384.945933][ T1147] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 384.948541][ T1147] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 385.149820][T11107] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1734'. [ 385.150213][ T5354] Bluetooth: hci1: command tx timeout [ 386.638767][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.640771][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.642772][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.645079][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.647096][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.649176][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.651197][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.653234][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.656185][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.658914][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.660941][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.663200][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.665789][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.667796][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.669860][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.671847][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.674839][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.678219][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.680465][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.690377][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.692300][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.694759][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.698114][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.700324][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.702380][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.704430][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.706401][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.708418][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.710423][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.712486][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.714937][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.718467][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.720680][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.723066][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.725386][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.727202][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.729100][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.730933][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.732894][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.736055][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.738779][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.740740][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.742657][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.744791][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.746853][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.748839][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.750858][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.752794][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.755737][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.758473][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.760738][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.762686][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.764801][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.766715][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.768684][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.770712][ T8600] hid-generic 0001:0000:0000.0014: unknown main item tag 0x0 [ 386.794989][ T8600] hid-generic 0001:0000:0000.0014: hidraw0: HID v0.00 Device [syz0] on syz1 [ 386.841316][T11143] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 387.164709][ T5354] Bluetooth: hci4: unexpected event 0x18 length: 4 < 23 [ 387.374465][ T5354] Bluetooth: hci1: command tx timeout [ 387.688687][T11161] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1753'. [ 387.855779][T11166] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1753'. [ 389.003122][T11182] syzkaller1: entered promiscuous mode [ 389.004949][T11182] syzkaller1: entered allmulticast mode [ 389.426752][T11190] sg_write: data in/out 92/70 bytes for SCSI command 0x0-- guessing data in; [ 389.426752][T11190] program syz.2.1764 not setting count and/or reply_len properly [ 389.583900][ T5354] Bluetooth: hci1: unexpected event 0x18 length: 4 < 23 [ 389.587176][ T5354] Bluetooth: hci1: command tx timeout [ 390.009487][ T5354] Bluetooth: hci0: unexpected event 0x18 length: 4 < 23 [ 390.123345][T11207] netlink: 'syz.3.1771': attribute type 25 has an invalid length. [ 390.317721][T11213] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1774'. [ 390.732867][T11230] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1776'. [ 390.889270][T11232] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1776'. [ 391.186232][T11236] FAULT_INJECTION: forcing a failure. [ 391.186232][T11236] name failslab, interval 1, probability 0, space 0, times 0 [ 391.189573][T11236] CPU: 0 UID: 0 PID: 11236 Comm: syz.2.1778 Not tainted 6.12.0-rc1-syzkaller-00306-g27cc6fdf7201 #0 [ 391.192370][T11236] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 391.195124][T11236] Call Trace: [ 391.196012][T11236] [ 391.196796][T11236] dump_stack_lvl+0x16c/0x1f0 [ 391.198036][T11236] should_fail_ex+0x497/0x5b0 [ 391.199274][T11236] should_failslab+0xc2/0x120 [ 391.200526][T11236] __kmalloc_noprof+0xcb/0x410 [ 391.201819][T11236] io_cqring_event_overflow+0xcb/0x6f0 [ 391.203246][T11236] __io_submit_flush_completions+0xf10/0x20e0 [ 391.204848][T11236] ? io_provide_buffers_prep+0x357/0x400 [ 391.206308][T11236] io_submit_sqes+0xa73/0x2530 [ 391.207535][T11236] __do_sys_io_uring_enter+0xc0f/0x1170 [ 391.208970][T11236] ? __fget_files+0x244/0x3f0 [ 391.210217][T11236] ? __pfx___do_sys_io_uring_enter+0x10/0x10 [ 391.211738][T11236] ? fput+0x30/0x390 [ 391.212863][T11236] ? ksys_write+0x1ad/0x260 [ 391.214080][T11236] ? __pfx_ksys_write+0x10/0x10 [ 391.215359][T11236] __do_fast_syscall_32+0x73/0x120 [ 391.216711][T11236] do_fast_syscall_32+0x32/0x80 [ 391.217966][T11236] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 391.219522][T11236] RIP: 0023:0xf740e579 [ 391.220539][T11236] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 391.225191][T11236] RSP: 002b:00000000f56f656c EFLAGS: 00000296 ORIG_RAX: 00000000000001aa [ 391.227247][T11236] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000050 [ 391.229273][T11236] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000000 [ 391.231318][T11236] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 391.233373][T11236] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 391.235400][T11236] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 391.237447][T11236] [ 391.802331][ T5354] Bluetooth: hci1: unexpected event 0x18 length: 4 < 23 [ 392.074172][T11261] 9pnet_virtio: no channels available for device syz [ 392.199831][T11267] x_tables: (null)_tables: TRACE target: only valid in raw table, not syz0 [ 393.195979][ T5354] Bluetooth: hci4: unexpected event 0x18 length: 4 < 23 [ 393.248412][T11289] dccp_close: ABORT with 32 bytes unread [ 393.378701][T11296] netlink: 196 bytes leftover after parsing attributes in process `syz.2.1797'. [ 393.381098][T11296] netlink: 196 bytes leftover after parsing attributes in process `syz.2.1797'. [ 393.444784][T11298] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1798'. [ 393.682805][T11301] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1798'. [ 406.188579][T11316] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1805'. [ 406.245153][T11325] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1808'. [ 406.255963][ T5354] Bluetooth: hci1: unexpected event 0x18 length: 4 < 23 [ 406.349869][T11329] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1808'. [ 406.356501][ T5354] Bluetooth: hci0: unexpected event 0x18 length: 4 < 23 [ 407.503713][T11337] input: syz1 as /devices/virtual/input/input30 [ 407.545159][T11337] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1812'. [ 408.762018][T11363] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1818'. [ 408.851405][T11364] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1818'. [ 409.599605][ T5349] Bluetooth: hci1: command 0x0405 tx timeout [ 409.641104][T11369] Bluetooth: MGMT ver 1.23 [ 410.271823][T11366] Bluetooth: hci0: Opcode 0x0c03 failed: -4 [ 410.501053][T11380] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1823'. [ 410.748665][T11389] netlink: 'syz.2.1827': attribute type 4 has an invalid length. [ 410.840912][T11390] fuse: Bad value for 'fd' [ 411.371992][T11392] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1828'. [ 411.405323][ T39] audit: type=1326 audit(2000000021.214:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11393 comm="syz.2.1829" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf740e579 code=0x7ffc0000 [ 411.411223][ T39] audit: type=1326 audit(2000000021.233:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11393 comm="syz.2.1829" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf740e579 code=0x7ffc0000 [ 411.416929][ T39] audit: type=1326 audit(2000000021.233:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11393 comm="syz.2.1829" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf740e579 code=0x7ffc0000 [ 411.422424][ T39] audit: type=1326 audit(2000000021.233:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11393 comm="syz.2.1829" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf740e579 code=0x7ffc0000 [ 411.428354][ T39] audit: type=1326 audit(2000000021.233:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11393 comm="syz.2.1829" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf740e579 code=0x7ffc0000 [ 411.433882][ T39] audit: type=1326 audit(2000000021.242:304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11393 comm="syz.2.1829" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf740e579 code=0x7ffc0000 [ 411.441199][ T39] audit: type=1326 audit(2000000021.242:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11393 comm="syz.2.1829" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf740e579 code=0x7ffc0000 [ 411.447685][ T39] audit: type=1326 audit(2000000021.242:306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11393 comm="syz.2.1829" exe="/syz-executor" sig=0 arch=40000003 syscall=366 compat=1 ip=0xf740e579 code=0x7ffc0000 [ 411.453532][ T39] audit: type=1326 audit(2000000021.242:307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11393 comm="syz.2.1829" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf740e579 code=0x7ffc0000 [ 411.459980][ T39] audit: type=1326 audit(2000000021.242:308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11393 comm="syz.2.1829" exe="/syz-executor" sig=0 arch=40000003 syscall=365 compat=1 ip=0xf740e579 code=0x7ffc0000 [ 411.472550][T11395] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1828'. [ 412.008449][T11406] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1834'. [ 412.010816][T11406] netlink: 'syz.1.1834': attribute type 5 has an invalid length. [ 412.012836][T11406] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1834'. [ 412.481656][T11419] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 412.579803][T11421] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 413.639004][T11430] netlink: 'syz.0.1842': attribute type 2 has an invalid length. [ 413.738000][T11437] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1846'. [ 413.886526][T11439] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1846'. [ 414.260820][ T5404] usb 7-1: new high-speed USB device number 12 using dummy_hcd [ 414.432005][ T5404] usb 7-1: Using ep0 maxpacket: 32 [ 414.440080][ T5404] usb 7-1: config index 0 descriptor too short (expected 29220, got 36) [ 414.443475][ T5404] usb 7-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 414.446771][ T5404] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 414.450430][ T5404] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 414.454434][ T5404] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 414.458202][ T5404] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 414.462359][ T5404] usb 7-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 414.465068][ T5404] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 414.469269][ T5404] usb 7-1: config 0 descriptor?? [ 414.693010][ T5404] usblp 7-1:0.0: usblp0: USB Bidirectional printer dev 12 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 414.702005][ T5404] usb 7-1: USB disconnect, device number 12 [ 414.714918][ T5404] usblp0: removed [ 415.169494][ T5404] usb 7-1: new high-speed USB device number 13 using dummy_hcd [ 415.331534][ T5404] usb 7-1: Using ep0 maxpacket: 32 [ 415.348761][ T5404] usb 7-1: config index 0 descriptor too short (expected 29220, got 36) [ 415.351170][ T5404] usb 7-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 415.355395][ T5404] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 415.357993][ T5404] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 415.360599][ T5404] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 415.365304][ T5404] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 415.368641][ T5404] usb 7-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 415.371093][ T5404] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 415.375317][ T5404] usb 7-1: config 0 descriptor?? [ 415.596244][ T5404] usblp 7-1:0.0: usblp0: USB Bidirectional printer dev 13 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 415.815097][ T5404] usb 7-1: USB disconnect, device number 13 [ 415.818826][ T5404] usblp0: removed [ 416.405162][T11457] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 416.414206][T11457] batadv_slave_0: entered promiscuous mode [ 416.687197][T11467] netlink: 'syz.0.1859': attribute type 9 has an invalid length. [ 416.689552][T11467] netlink: 134660 bytes leftover after parsing attributes in process `syz.0.1859'. [ 416.705965][T11469] netlink: 'syz.2.1858': attribute type 9 has an invalid length. [ 416.708004][T11469] netlink: 134660 bytes leftover after parsing attributes in process `syz.2.1858'. [ 416.752358][T11471] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1860'. [ 416.759819][T11473] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1861'. [ 416.913977][T11476] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1860'. [ 417.129127][ T5349] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 417.132339][ T5349] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 417.136424][ T5349] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 417.156550][ T5349] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 417.178736][ T5349] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 417.187041][ T5349] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 417.241720][T11479] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1863'. [ 417.367573][ T6411] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 417.391033][T11480] chnl_net:caif_netlink_parms(): no params data found [ 417.392722][T11486] overlayfs: missing 'lowerdir' [ 417.502524][ T6411] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 417.561584][T11480] bridge0: port 1(bridge_slave_0) entered blocking state [ 417.566262][T11480] bridge0: port 1(bridge_slave_0) entered disabled state [ 417.568267][T11480] bridge_slave_0: entered allmulticast mode [ 417.570373][T11480] bridge_slave_0: entered promiscuous mode [ 417.574012][T11480] bridge0: port 2(bridge_slave_1) entered blocking state [ 417.575964][T11480] bridge0: port 2(bridge_slave_1) entered disabled state [ 417.577874][T11480] bridge_slave_1: entered allmulticast mode [ 417.579933][T11480] bridge_slave_1: entered promiscuous mode [ 417.621570][ T6411] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 417.697968][T11480] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 417.704532][T11480] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 417.795274][ T6411] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 417.821457][T11480] team0: Port device team_slave_0 added [ 417.824730][T11480] team0: Port device team_slave_1 added [ 417.868509][T11480] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 417.870360][T11480] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 417.895513][T11480] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 417.901631][T11480] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 417.914382][T11480] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 417.925194][T11480] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 417.948330][ T5349] block nbd2: Receive control failed (result -32) [ 417.962201][T11482] block nbd2: shutting down sockets [ 417.999244][T11480] hsr_slave_0: entered promiscuous mode [ 418.014076][T11480] hsr_slave_1: entered promiscuous mode [ 418.016240][T11480] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 418.018217][T11480] Cannot create hsr debugfs directory [ 418.067367][ T6411] bridge_slave_1: left allmulticast mode [ 418.068892][ T6411] bridge_slave_1: left promiscuous mode [ 418.070449][ T6411] bridge0: port 2(bridge_slave_1) entered disabled state [ 418.076680][ T6411] bridge_slave_0: left allmulticast mode [ 418.078959][ T6411] bridge_slave_0: left promiscuous mode [ 418.080818][ T6411] bridge0: port 1(bridge_slave_0) entered disabled state [ 418.625620][ T6411] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 418.635232][ T6411] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 418.641049][ T6411] bond0 (unregistering): Released all slaves [ 418.841488][ T5349] Bluetooth: hci1: unexpected event 0x18 length: 4 < 23 [ 419.108391][ T6411] hsr_slave_0: left promiscuous mode [ 419.112377][ T6411] hsr_slave_1: left promiscuous mode [ 419.114987][ T6411] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 419.117889][ T6411] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 419.120277][ T6411] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 419.172974][ T6411] veth1_macvtap: left promiscuous mode [ 419.174776][ T6411] veth0_macvtap: left promiscuous mode [ 419.176778][ T6411] veth1_vlan: left promiscuous mode [ 419.179058][ T6411] veth0_vlan: left promiscuous mode [ 419.349977][ T5349] Bluetooth: hci2: command tx timeout [ 420.713065][ T6411] team0 (unregistering): Port device team_slave_1 removed [ 420.819293][ T6411] team0 (unregistering): Port device team_slave_0 removed [ 421.583849][ T5349] Bluetooth: hci2: command tx timeout [ 421.968644][ T58] usb 7-1: new high-speed USB device number 14 using dummy_hcd [ 421.994127][T11480] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 422.028338][T11480] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 422.029806][T11480] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 422.040952][T11480] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 422.097745][T11480] 8021q: adding VLAN 0 to HW filter on device bond0 [ 422.113302][T11480] 8021q: adding VLAN 0 to HW filter on device team0 [ 422.115696][ T6426] bridge0: port 1(bridge_slave_0) entered blocking state [ 422.121132][ T6426] bridge0: port 1(bridge_slave_0) entered forwarding state [ 422.125326][ T1147] bridge0: port 2(bridge_slave_1) entered blocking state [ 422.125355][ T1147] bridge0: port 2(bridge_slave_1) entered forwarding state [ 422.152318][ T58] usb 7-1: Using ep0 maxpacket: 8 [ 422.164110][ T58] usb 7-1: config 1 interface 0 altsetting 64 bulk endpoint 0x82 has invalid maxpacket 1023 [ 422.166736][ T58] usb 7-1: config 1 interface 0 altsetting 64 bulk endpoint 0x3 has invalid maxpacket 8 [ 422.169240][ T58] usb 7-1: config 1 interface 0 has no altsetting 0 [ 422.173288][ T58] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 422.175677][ T58] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 422.177805][ T58] usb 7-1: Product: Ѓ [ 422.178883][ T58] usb 7-1: Manufacturer: င [ 422.180107][ T58] usb 7-1: SerialNumber: 沃ᨹ鎾緢㾦Ⓓê³æ¶»î´Žè‚®ì‚´ì»‘åšãŒ±î‚²è‰¿ì‹¨æ¡£æ½˜ì…舶᫩ï·ïž¨éŒè»ˆëš·ë·Œå‘¨ëˆ™ì‡–餅촽ٺṑ媜핂臕⓯튞亟è”ㅠ攗䢪࠿㳅禕å±âª°ïžë’—玊꯼└ਵ鳾䬕㓒í„⠆䷟剱ὅ詳æµëˆŒì¬°ãŸâ™²ã³´ï‘紟ꅑ뀮â§ä”ƒç“ꠔ➤밄湟볉隶∾ç¾ï»©á’±è‚•æ¯½á¯˜ã¼°è ¾Îšî„Ÿë‘žç·¸î¼„媩୮飴 [ 422.202347][T11518] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 422.217022][T11518] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 422.274537][T11480] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 422.299225][T11480] veth0_vlan: entered promiscuous mode [ 422.305076][T11480] veth1_vlan: entered promiscuous mode [ 422.318623][T11480] veth0_macvtap: entered promiscuous mode [ 422.322934][T11480] veth1_macvtap: entered promiscuous mode [ 422.330455][T11480] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 422.336394][T11480] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 422.339436][T11480] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 422.343109][T11480] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 422.348348][T11480] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 422.350642][T11480] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 422.353171][T11480] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 422.356553][T11480] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 422.404763][ T1147] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 422.410080][ T1147] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 422.411987][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 422.414122][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 422.437639][ T58] cdc_ether 7-1:1.0: probe with driver cdc_ether failed with error -71 [ 422.451734][ T58] usb 7-1: USB disconnect, device number 14 [ 422.469187][T11542] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 422.535672][T11547] netlink: 'syz.3.1880': attribute type 10 has an invalid length. [ 422.618128][T11547] 8021q: adding VLAN 0 to HW filter on device team0 [ 422.624192][T11547] bond0: (slave team0): Enslaving as an active interface with an up link [ 423.807484][ T5349] Bluetooth: hci2: command tx timeout [ 424.029090][T11579] FAULT_INJECTION: forcing a failure. [ 424.029090][T11579] name failslab, interval 1, probability 0, space 0, times 0 [ 424.033765][T11579] CPU: 3 UID: 0 PID: 11579 Comm: syz.3.1891 Not tainted 6.12.0-rc1-syzkaller-00306-g27cc6fdf7201 #0 [ 424.036550][T11579] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 424.039355][T11579] Call Trace: [ 424.040295][T11579] [ 424.041120][T11579] dump_stack_lvl+0x16c/0x1f0 [ 424.042410][T11579] should_fail_ex+0x497/0x5b0 [ 424.043709][T11579] ? fs_reclaim_acquire+0xae/0x160 [ 424.045083][T11579] should_failslab+0xc2/0x120 [ 424.046315][T11579] __kmalloc_noprof+0xcb/0x410 [ 424.047563][T11579] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 424.049026][T11579] tomoyo_realpath_from_path+0xbf/0x710 [ 424.050465][T11579] ? tomoyo_path_number_perm+0x232/0x5b0 [ 424.051959][T11579] tomoyo_path_number_perm+0x245/0x5b0 [ 424.053387][T11579] ? tomoyo_path_number_perm+0x232/0x5b0 [ 424.054851][T11579] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 424.056419][T11579] ? trace_lock_acquire+0x14a/0x1d0 [ 424.057780][T11579] ? lock_acquire+0x2f/0xb0 [ 424.058966][T11579] ? __fget_files+0x40/0x3f0 [ 424.060190][T11579] ? __fget_files+0x244/0x3f0 [ 424.061418][T11579] security_file_ioctl_compat+0x9b/0x240 [ 424.062879][T11579] __do_compat_sys_ioctl+0x52/0x2b0 [ 424.064241][T11579] __do_fast_syscall_32+0x73/0x120 [ 424.065577][T11579] do_fast_syscall_32+0x32/0x80 [ 424.066847][T11579] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 424.068495][T11579] RIP: 0023:0xf7f05579 [ 424.069569][T11579] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 424.074454][T11579] RSP: 002b:00000000f568656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 424.076603][T11579] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000005411 [ 424.078638][T11579] RDX: 0000000020000600 RSI: 0000000000000000 RDI: 0000000000000000 [ 424.080703][T11579] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 424.082757][T11579] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 424.084813][T11579] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 424.086851][T11579] [ 424.092825][T11579] ERROR: Out of memory at tomoyo_realpath_from_path. [ 426.020401][ T5349] Bluetooth: hci2: command tx timeout [ 427.832367][T11587] autofs: Bad value for 'fd' [ 427.846250][T11591] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1895'. [ 427.848559][T11570] /dev/sr0: Can't open blockdev [ 427.982683][T11597] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1895'. [ 428.069115][T11599] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1898'. [ 428.147543][T11603] netlink: 'syz.1.1900': attribute type 10 has an invalid length. [ 428.156376][T11603] 8021q: adding VLAN 0 to HW filter on device team0 [ 428.163351][T11603] team0: entered promiscuous mode [ 428.166811][T11603] bond0: (slave team0): Enslaving as an active interface with an up link [ 428.537148][T11607] input: syz1 as /devices/virtual/input/input31 [ 430.364119][T11628] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1907'. [ 430.368790][T11628] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1907'. [ 430.382911][T11621] /dev/sr0: Can't open blockdev [ 430.434040][T11630] can0: slcan on ttyprintk. [ 430.445703][T11630] netlink: 'syz.2.1908': attribute type 4 has an invalid length. [ 430.464335][T11630] netlink: 'syz.2.1908': attribute type 4 has an invalid length. [ 430.568964][ T5354] Bluetooth: hci2: command 0x0405 tx timeout [ 430.574076][T11629] can0 (unregistered): slcan off ttyprintk. [ 431.232950][T11634] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1910'. [ 431.376556][T11637] overlayfs: unescaped trailing colons in lowerdir mount option. [ 431.478462][T11637] tmpfs: Bad value for 'mpol' [ 431.665043][ T5349] Bluetooth: hci1: command 0x0405 tx timeout [ 431.668681][T11614] Bluetooth: hci1: Opcode 0x0c1a failed: -110 [ 432.464539][T11614] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 432.469732][T11614] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 432.479760][T11614] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 432.481702][T11614] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 432.484802][T11614] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 432.768452][T11643] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1913'. [ 432.787849][ T980] usb 7-1: new high-speed USB device number 15 using dummy_hcd [ 432.951788][ T980] usb 7-1: config 252 has an invalid interface number: 254 but max is 0 [ 432.954006][ T980] usb 7-1: config 252 has no interface number 0 [ 432.955841][ T980] usb 7-1: config 252 interface 254 has no altsetting 0 [ 432.984393][ T980] usb 7-1: New USB device found, idVendor=057c, idProduct=2200, bcdDevice=46.29 [ 432.986763][ T980] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 432.988843][ T980] usb 7-1: Product: syz [ 432.989951][ T980] usb 7-1: Manufacturer: syz [ 432.991789][ T980] usb 7-1: SerialNumber: syz [ 433.020987][ T980] bfusb 7-1:252.254: probe with driver bfusb failed with error -5 [ 433.022834][T11647] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1913'. [ 433.255463][T11632] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 433.261897][T11632] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 433.298067][T11632] nlmon0: entered promiscuous mode [ 433.311819][T11632] vlan2: entered promiscuous mode [ 433.313270][T11632] vlan2: entered allmulticast mode [ 433.314621][T11632] nlmon0: entered allmulticast mode [ 433.317831][T11632] nlmon0: left allmulticast mode [ 433.319225][T11632] nlmon0: left promiscuous mode [ 433.642177][ T2007] usb 7-1: USB disconnect, device number 15 [ 433.888663][ T5349] Bluetooth: hci1: command 0x0405 tx timeout [ 434.134924][ T1147] bond0 (unregistering): Released all slaves [ 434.404645][ T5349] Bluetooth: hci1: unexpected event 0x18 length: 4 < 23 [ 434.556496][ T1147] hsr_slave_0: left promiscuous mode [ 434.563110][ T1147] hsr_slave_1: left promiscuous mode [ 434.653460][ T1147] veth1_macvtap: left promiscuous mode [ 434.654951][ T1147] veth0_macvtap: left promiscuous mode [ 434.658354][ T5349] Bluetooth: hci2: command 0x0405 tx timeout [ 435.366734][T11661] IPv6: addrconf: prefix option has invalid lifetime [ 435.824757][T11661] slcan: can't register candev [ 435.868637][T11661] Falling back ldisc for ttyS3. [ 436.133669][ T5349] Bluetooth: hci1: command 0x0405 tx timeout [ 436.895856][ T5349] Bluetooth: hci2: command 0x0405 tx timeout [ 439.116389][ T5349] Bluetooth: hci2: command 0x0405 tx timeout [ 439.155917][T11667] /dev/sr0: Can't open blockdev [ 439.603484][ T5349] Bluetooth: hci2: unexpected event 0x18 length: 4 < 23 [ 443.308784][T11693] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1929'. [ 443.573935][T11696] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1929'. [ 444.544711][T11707] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 445.065706][T11709] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1934'. [ 445.460774][T11721] FAULT_INJECTION: forcing a failure. [ 445.460774][T11721] name failslab, interval 1, probability 0, space 0, times 0 [ 445.464059][T11721] CPU: 0 UID: 0 PID: 11721 Comm: syz.2.1939 Not tainted 6.12.0-rc1-syzkaller-00306-g27cc6fdf7201 #0 [ 445.466848][T11721] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 445.469632][T11721] Call Trace: [ 445.470518][T11721] [ 445.471467][T11721] dump_stack_lvl+0x16c/0x1f0 [ 445.473196][T11721] should_fail_ex+0x497/0x5b0 [ 445.474559][T11721] should_failslab+0xc2/0x120 [ 445.475922][T11721] __kmalloc_noprof+0xcb/0x410 [ 445.477161][T11721] io_cqring_event_overflow+0xcb/0x6f0 [ 445.478682][T11721] __io_submit_flush_completions+0xf10/0x20e0 [ 445.480295][T11721] ? io_provide_buffers_prep+0x357/0x400 [ 445.482088][T11721] io_submit_sqes+0xa73/0x2530 [ 445.483810][T11721] __do_sys_io_uring_enter+0xc0f/0x1170 [ 445.485756][T11721] ? __fget_files+0x244/0x3f0 [ 445.487517][T11721] ? __pfx___do_sys_io_uring_enter+0x10/0x10 [ 445.489561][T11721] ? fput+0x30/0x390 [ 445.491010][T11721] ? ksys_write+0x1ad/0x260 [ 445.492355][T11721] ? __pfx_ksys_write+0x10/0x10 [ 445.493612][T11721] __do_fast_syscall_32+0x73/0x120 [ 445.494993][T11721] do_fast_syscall_32+0x32/0x80 [ 445.496344][T11721] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 445.498041][T11721] RIP: 0023:0xf740e579 [ 445.499139][T11721] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 445.504145][T11721] RSP: 002b:00000000f56f656c EFLAGS: 00000296 ORIG_RAX: 00000000000001aa [ 445.506304][T11721] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000050 [ 445.508410][T11721] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000000 [ 445.510746][T11721] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 445.513104][T11721] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 445.515240][T11721] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 445.517312][T11721] [ 445.696164][T11735] syzkaller1: entered promiscuous mode [ 445.697652][T11735] syzkaller1: entered allmulticast mode [ 446.838506][T11745] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1947'. [ 447.033438][T11750] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1947'. [ 447.461481][T11753] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1948'. [ 448.536867][T11758] fuse: Unknown parameter 'féó0x0000000000000004' [ 448.569530][ T1375] ieee802154 phy0 wpan0: encryption failed: -22 [ 448.571221][ T1375] ieee802154 phy1 wpan1: encryption failed: -22 [ 448.616544][T11760] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 448.656565][T11762] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1952'. [ 449.295673][T11768] /dev/sr0: Can't open blockdev [ 449.413489][T11770] /dev/sr0: Can't open blockdev [ 449.485343][T11779] netlink: 'syz.3.1956': attribute type 6 has an invalid length. [ 449.489718][T11779] netlink: 'syz.3.1956': attribute type 8 has an invalid length. [ 449.817646][T11786] /dev/sr0: Can't open blockdev [ 449.841726][T11792] FAULT_INJECTION: forcing a failure. [ 449.841726][T11792] name failslab, interval 1, probability 0, space 0, times 0 [ 449.845207][T11792] CPU: 0 UID: 0 PID: 11792 Comm: syz.3.1960 Not tainted 6.12.0-rc1-syzkaller-00306-g27cc6fdf7201 #0 [ 449.848214][T11792] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 449.850899][T11792] Call Trace: [ 449.851772][T11792] [ 449.852561][T11792] dump_stack_lvl+0x16c/0x1f0 [ 449.853778][T11792] should_fail_ex+0x497/0x5b0 [ 449.854996][T11792] ? fs_reclaim_acquire+0xae/0x160 [ 449.856349][T11792] should_failslab+0xc2/0x120 [ 449.857590][T11792] __kmalloc_noprof+0xcb/0x410 [ 449.858844][T11792] ? rcu_is_watching+0x12/0xc0 [ 449.860104][T11792] tomoyo_encode2+0x100/0x3e0 [ 449.861312][T11792] tomoyo_realpath_from_path+0x1a7/0x710 [ 449.862749][T11792] ? tomoyo_path_number_perm+0x232/0x5b0 [ 449.864222][T11792] tomoyo_path_number_perm+0x245/0x5b0 [ 449.865659][T11792] ? tomoyo_path_number_perm+0x232/0x5b0 [ 449.867125][T11792] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 449.868769][T11792] ? trace_lock_acquire+0x14a/0x1d0 [ 449.870149][T11792] ? lock_acquire+0x2f/0xb0 [ 449.871424][T11792] ? __fget_files+0x40/0x3f0 [ 449.872684][T11792] ? __fget_files+0x244/0x3f0 [ 449.873965][T11792] security_file_ioctl_compat+0x9b/0x240 [ 449.875507][T11792] __do_compat_sys_ioctl+0x52/0x2b0 [ 449.876926][T11792] __do_fast_syscall_32+0x73/0x120 [ 449.878314][T11792] do_fast_syscall_32+0x32/0x80 [ 449.879655][T11792] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 449.881367][T11792] RIP: 0023:0xf7f05579 [ 449.882505][T11792] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 449.887631][T11792] RSP: 002b:00000000f568656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 449.889795][T11792] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000005411 [ 449.891875][T11792] RDX: 0000000020000600 RSI: 0000000000000000 RDI: 0000000000000000 [ 449.893965][T11792] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 449.896032][T11792] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 449.898085][T11792] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 449.900131][T11792] [ 449.903394][T11792] ERROR: Out of memory at tomoyo_realpath_from_path. [ 449.947873][T11789] /dev/sr0: Can't open blockdev [ 450.448426][ T58] usb 6-1: new high-speed USB device number 20 using dummy_hcd [ 450.559425][T11816] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1970'. [ 450.643174][ T58] usb 6-1: config 252 has an invalid interface number: 254 but max is 0 [ 450.646204][ T58] usb 6-1: config 252 has no interface number 0 [ 450.648536][ T58] usb 6-1: config 252 interface 254 has no altsetting 0 [ 450.657626][ T58] usb 6-1: New USB device found, idVendor=057c, idProduct=2200, bcdDevice=46.29 [ 450.660845][ T58] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 450.668431][ T58] usb 6-1: Product: syz [ 450.683774][ T58] usb 6-1: Manufacturer: syz [ 450.685608][ T58] usb 6-1: SerialNumber: syz [ 450.691974][ T58] bfusb 6-1:252.254: probe with driver bfusb failed with error -5 [ 450.710502][T11820] netlink: 'syz.3.1971': attribute type 10 has an invalid length. [ 450.758913][T11821] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1970'. [ 450.912177][T11809] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 450.914849][T11809] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 450.933905][T11809] nlmon0: entered promiscuous mode [ 450.935652][T11809] vlan3: entered promiscuous mode [ 450.937322][T11809] vlan3: entered allmulticast mode [ 450.938677][T11809] nlmon0: entered allmulticast mode [ 450.971441][T11809] nlmon0: left allmulticast mode [ 450.974878][T11809] nlmon0: left promiscuous mode [ 451.062744][ T58] usb 6-1: USB disconnect, device number 20 [ 451.225866][T11834] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1976'. [ 451.230109][T11834] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1976'. [ 451.697664][T11841] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1978'. [ 451.771940][T11845] tmpfs: Bad value for 'mpol' [ 451.774407][T11846] tmpfs: Bad value for 'mpol' [ 452.002630][T11851] /dev/sr0: Can't open blockdev [ 452.086151][T11854] /dev/sr0: Can't open blockdev [ 452.316594][ T5349] Bluetooth: hci2: unexpected event 0x18 length: 4 < 23 [ 453.081273][T11863] netlink: 196 bytes leftover after parsing attributes in process `syz.2.1985'. [ 453.084423][T11863] netlink: 196 bytes leftover after parsing attributes in process `syz.2.1985'. [ 453.199204][T11865] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1986'. [ 453.712959][T11875] FAULT_INJECTION: forcing a failure. [ 453.712959][T11875] name failslab, interval 1, probability 0, space 0, times 0 [ 453.717295][T11875] CPU: 2 UID: 0 PID: 11875 Comm: syz.0.1989 Not tainted 6.12.0-rc1-syzkaller-00306-g27cc6fdf7201 #0 [ 453.720940][T11875] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 453.724724][T11875] Call Trace: [ 453.725898][T11875] [ 453.726959][T11875] dump_stack_lvl+0x16c/0x1f0 [ 453.728689][T11875] should_fail_ex+0x497/0x5b0 [ 453.730416][T11875] ? trace_kmalloc+0x2d/0xe0 [ 453.732168][T11875] should_failslab+0xc2/0x120 [ 453.733884][T11875] kmem_cache_alloc_node_noprof+0x71/0x310 [ 453.735962][T11875] ? __alloc_skb+0x2b3/0x380 [ 453.737554][T11875] __alloc_skb+0x2b3/0x380 [ 453.739075][T11875] ? __pfx___alloc_skb+0x10/0x10 [ 453.740783][T11875] ? skb_csum_hwoffload_help+0x140/0x190 [ 453.742850][T11875] ? get_random_u32+0x3fd/0x7e0 [ 453.744550][T11875] ? skb_zerocopy_clone+0x2c9/0x670 [ 453.746395][T11875] ? trace_lock_acquire+0x14a/0x1d0 [ 453.748292][T11875] skb_segment+0x9cd/0x4020 [ 453.749889][T11875] ? get_random_u32+0x586/0x7e0 [ 453.751622][T11875] ? __pfx_skb_segment+0x10/0x10 [ 453.753306][T11875] ? ip6_find_1stfragopt+0x163/0x2c0 [ 453.755075][T11875] udp6_ufo_fragment+0x9e5/0xcd0 [ 453.756758][T11875] ? __pfx_udp6_ufo_fragment+0x10/0x10 [ 453.758646][T11875] ? __pfx___lock_acquire+0x10/0x10 [ 453.760456][T11875] ipv6_gso_segment+0x7b2/0x1c70 [ 453.762115][T11875] ? __pfx_ipv6_gso_segment+0x10/0x10 [ 453.763968][T11875] ? lock_acquire+0x2f/0xb0 [ 453.765572][T11875] ? skb_mac_gso_segment+0x1a7/0x650 [ 453.767383][T11875] skb_mac_gso_segment+0x2a6/0x650 [ 453.769142][T11875] ? __pfx_ipv6_gso_segment+0x10/0x10 [ 453.770993][T11875] ? __pfx_skb_mac_gso_segment+0x10/0x10 [ 453.772981][T11875] nsh_gso_segment+0x488/0xb50 [ 453.774837][T11875] skb_mac_gso_segment+0x2a6/0x650 [ 453.776744][T11875] ? __pfx_nsh_gso_segment+0x10/0x10 [ 453.778611][T11875] ? __pfx_skb_mac_gso_segment+0x10/0x10 [ 453.780532][T11875] __skb_gso_segment+0x333/0x710 [ 453.782229][T11875] ? netif_skb_features+0x3b0/0xd50 [ 453.784023][T11875] validate_xmit_skb+0x3a7/0xec0 [ 453.785785][T11875] validate_xmit_skb_list+0xc1/0x130 [ 453.787650][T11875] sch_direct_xmit+0x3f3/0xc30 [ 453.789343][T11875] ? lock_acquire.part.0+0x1/0x380 [ 453.791152][T11875] ? rcu_is_watching+0x12/0xc0 [ 453.792766][T11875] ? __pfx_sch_direct_xmit+0x10/0x10 [ 453.794515][T11875] ? __dev_queue_xmit+0x1148/0x4350 [ 453.796319][T11875] ? lock_acquire+0x2f/0xb0 [ 453.797928][T11875] ? __dev_queue_xmit+0x1148/0x4350 [ 453.799787][T11875] __dev_queue_xmit+0x136a/0x4350 [ 453.801584][T11875] ? __might_fault+0xe3/0x190 [ 453.803206][T11875] ? __might_fault+0xe3/0x190 [ 453.804819][T11875] ? __pfx___dev_queue_xmit+0x10/0x10 [ 453.806646][T11875] ? skb_copy_bits+0x5b3/0x870 [ 453.808318][T11875] ? __pskb_pull_tail+0xa78/0x1740 [ 453.810033][T11875] ? skb_partial_csum_set+0x202/0x3a0 [ 453.811876][T11875] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 453.813909][T11875] ? virtio_net_hdr_to_skb.constprop.0+0x7fc/0x1410 [ 453.816162][T11875] ? __pfx_virtio_net_hdr_to_skb.constprop.0+0x10/0x10 [ 453.818476][T11875] packet_xmit+0x23e/0x360 [ 453.820027][T11875] packet_sendmsg+0x2681/0x54c0 [ 453.821714][T11875] ? find_held_lock+0x2d/0x110 [ 453.823365][T11875] ? __pfx___might_resched+0x10/0x10 [ 453.825178][T11875] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 453.827201][T11875] ? aa_sk_perm+0x2f5/0xb20 [ 453.828783][T11875] ? __pfx_packet_sendmsg+0x10/0x10 [ 453.830634][T11875] ? __pfx_aa_sk_perm+0x10/0x10 [ 453.832386][T11875] ? __import_iovec+0x1fd/0x6e0 [ 453.834083][T11875] ____sys_sendmsg+0x9ae/0xb40 [ 453.835733][T11875] ? __pfx_____sys_sendmsg+0x10/0x10 [ 453.837543][T11875] ? get_compat_msghdr+0x11b/0x170 [ 453.839277][T11875] ? __pfx___lock_acquire+0x10/0x10 [ 453.841035][T11875] ___sys_sendmsg+0x135/0x1e0 [ 453.842641][T11875] ? __pfx____sys_sendmsg+0x10/0x10 [ 453.844451][T11875] ? lock_acquire+0x2f/0xb0 [ 453.846005][T11875] ? __fget_files+0x40/0x3f0 [ 453.847606][T11875] ? fdget+0x176/0x210 [ 453.849019][T11875] __sys_sendmsg+0x117/0x1f0 [ 453.850622][T11875] ? __pfx___sys_sendmsg+0x10/0x10 [ 453.852403][T11875] ? __fget_files+0x244/0x3f0 [ 453.854035][T11875] __do_fast_syscall_32+0x73/0x120 [ 453.855810][T11875] do_fast_syscall_32+0x32/0x80 [ 453.857488][T11875] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 453.859661][T11875] RIP: 0023:0xf7fa3579 [ 453.861063][T11875] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 453.867569][T11875] RSP: 002b:00000000f572656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 453.870398][T11875] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 453.873110][T11875] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 453.875808][T11875] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 453.878497][T11875] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 453.881272][T11875] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 453.883986][T11875] [ 454.532082][T11880] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1991'. [ 456.844273][T11915] openvswitch: netlink: Key type 16156 is out of range max 32 [ 457.260866][ T5349] Bluetooth: hci2: unexpected event 0x18 length: 4 < 23 [ 459.175821][T11958] batadv0: entered allmulticast mode [ 459.365585][T11962] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2014'. [ 459.562612][T11970] wireguard0: entered promiscuous mode [ 459.564047][T11970] wireguard0: entered allmulticast mode [ 459.648702][ T5349] Bluetooth: hci1: unexpected event 0x18 length: 4 < 23 [ 460.232208][ T5349] Bluetooth: hci2: unexpected event 0x18 length: 4 < 23 [ 460.463058][T11982] macvlan3: entered promiscuous mode [ 460.470159][T11982] 8021q: adding VLAN 0 to HW filter on device macvlan3 [ 460.645266][T11990] netlink: 'syz.0.2026': attribute type 9 has an invalid length. [ 460.650346][T11990] netlink: 134660 bytes leftover after parsing attributes in process `syz.0.2026'. [ 461.120043][T12002] /dev/sr0: Can't open blockdev [ 461.269360][T12009] /dev/sr0: Can't open blockdev [ 461.395845][T12029] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2041'. [ 461.591606][T12037] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 461.595837][T12037] batadv_slave_0: entered promiscuous mode [ 461.944433][T12048] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2048'. [ 462.159296][T12052] /dev/sr0: Can't open blockdev [ 462.319060][T12057] /dev/sr0: Can't open blockdev [ 462.667440][ T39] kauditd_printk_skb: 69 callbacks suppressed [ 462.667452][ T39] audit: type=1326 audit(2000000069.172:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12075 comm="syz.2.2059" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf740e579 code=0x0 [ 462.699471][T12077] IPVS: Unknown mcast interface: vcan0 [ 463.311090][ T58] hid-generic 0000:0000:0000.0015: unknown main item tag 0x7 [ 463.313733][ T58] hid-generic 0000:0000:0000.0015: item fetching failed at offset 19/32 [ 463.316902][ T58] hid-generic 0000:0000:0000.0015: probe with driver hid-generic failed with error -22 [ 463.557926][T12087] /dev/sr0: Can't open blockdev [ 463.587133][ T8600] usb 6-1: new high-speed USB device number 21 using dummy_hcd [ 463.683376][T12089] /dev/sr0: Can't open blockdev [ 463.761906][ T8600] usb 6-1: config 0 has no interfaces? [ 463.763409][ T8600] usb 6-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00 [ 463.765770][ T8600] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 463.775540][ T8600] usb 6-1: config 0 descriptor?? [ 464.049102][ T5349] Bluetooth: hci1: unexpected event 0x18 length: 4 < 23 [ 464.157181][ T2007] usb 6-1: USB disconnect, device number 21 [ 464.168143][T12115] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2072'. [ 464.188082][T12115] team1: Mode changed to "activebackup" [ 464.498398][T12119] /dev/sr0: Can't open blockdev [ 464.671884][T12121] /dev/sr0: Can't open blockdev [ 464.836047][T12130] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2076'. [ 464.840280][T12130] netdevsim netdevsim3 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0 [ 464.842609][T12130] netdevsim netdevsim3 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0 [ 464.845002][T12130] netdevsim netdevsim3 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0 [ 464.847305][T12130] netdevsim netdevsim3 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0 [ 464.850099][T12130] geneve2: entered allmulticast mode [ 465.020361][T12133] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2078'. [ 465.751004][T12147] FAULT_INJECTION: forcing a failure. [ 465.751004][T12147] name failslab, interval 1, probability 0, space 0, times 0 [ 465.754450][T12147] CPU: 1 UID: 0 PID: 12147 Comm: syz.1.2083 Not tainted 6.12.0-rc1-syzkaller-00306-g27cc6fdf7201 #0 [ 465.757281][T12147] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 465.760086][T12147] Call Trace: [ 465.760975][T12147] [ 465.761763][T12147] dump_stack_lvl+0x16c/0x1f0 [ 465.763015][T12147] should_fail_ex+0x497/0x5b0 [ 465.764268][T12147] ? fs_reclaim_acquire+0xae/0x160 [ 465.765627][T12147] should_failslab+0xc2/0x120 [ 465.766876][T12147] kmem_cache_alloc_node_noprof+0x71/0x310 [ 465.768416][T12147] ? __alloc_skb+0x2b3/0x380 [ 465.769637][T12147] __alloc_skb+0x2b3/0x380 [ 465.770816][T12147] ? __pfx___alloc_skb+0x10/0x10 [ 465.772147][T12147] ? lock_acquire+0x2f/0xb0 [ 465.773354][T12147] netlink_alloc_large_skb+0x69/0x130 [ 465.774769][T12147] netlink_sendmsg+0x689/0xd70 [ 465.776046][T12147] ? __pfx_netlink_sendmsg+0x10/0x10 [ 465.777438][T12147] ? lock_acquire+0x2f/0xb0 [ 465.778651][T12147] ____sys_sendmsg+0x9ae/0xb40 [ 465.779972][T12147] ? __pfx_____sys_sendmsg+0x10/0x10 [ 465.781367][T12147] ? get_compat_msghdr+0x11b/0x170 [ 465.782717][T12147] ? __pfx___lock_acquire+0x10/0x10 [ 465.784100][T12147] ___sys_sendmsg+0x135/0x1e0 [ 465.785357][T12147] ? __pfx____sys_sendmsg+0x10/0x10 [ 465.786731][T12147] ? lock_acquire+0x2f/0xb0 [ 465.787942][T12147] ? __fget_files+0x40/0x3f0 [ 465.789173][T12147] ? fdget+0x176/0x210 [ 465.790254][T12147] __sys_sendmsg+0x117/0x1f0 [ 465.791500][T12147] ? __pfx___sys_sendmsg+0x10/0x10 [ 465.792849][T12147] ? __fget_files+0x244/0x3f0 [ 465.794100][T12147] __do_fast_syscall_32+0x73/0x120 [ 465.795463][T12147] do_fast_syscall_32+0x32/0x80 [ 465.796757][T12147] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 465.798441][T12147] RIP: 0023:0xf7fd2579 [ 465.799544][T12147] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 465.804575][T12147] RSP: 002b:00000000f575656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 465.806749][T12147] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200006c0 [ 465.808824][T12147] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 465.810879][T12147] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 465.812973][T12147] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 465.815053][T12147] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 465.817143][T12147] [ 466.061041][ T5349] Bluetooth: hci2: unexpected event 0x18 length: 4 < 23 [ 466.176742][T12160] /dev/sr0: Can't open blockdev [ 466.261646][T12166] /dev/sr0: Can't open blockdev [ 466.378488][ T39] audit: type=1326 audit(2000000072.643:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12168 comm="syz.0.2090" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa3579 code=0x7ffc0000 [ 466.400714][ T39] audit: type=1326 audit(2000000072.671:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12168 comm="syz.0.2090" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa3579 code=0x7ffc0000 [ 466.409515][ T39] audit: type=1326 audit(2000000072.671:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12168 comm="syz.0.2090" exe="/syz-executor" sig=0 arch=40000003 syscall=39 compat=1 ip=0xf7fa3579 code=0x7ffc0000 [ 466.415023][ T39] audit: type=1326 audit(2000000072.671:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12168 comm="syz.0.2090" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa3579 code=0x7ffc0000 [ 466.436057][ T39] audit: type=1326 audit(2000000072.671:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12168 comm="syz.0.2090" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa3579 code=0x7ffc0000 [ 466.448556][ T39] audit: type=1326 audit(2000000072.671:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12168 comm="syz.0.2090" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7fa3579 code=0x7ffc0000 [ 466.461670][ T39] audit: type=1326 audit(2000000072.671:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12168 comm="syz.0.2090" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa3579 code=0x7ffc0000 [ 466.468900][ T39] audit: type=1326 audit(2000000072.671:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12168 comm="syz.0.2090" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa3579 code=0x7ffc0000 [ 466.476620][ T39] audit: type=1326 audit(2000000072.671:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12168 comm="syz.0.2090" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf7fa3579 code=0x7ffc0000 [ 466.704291][T12178] dccp_close: ABORT with 32 bytes unread [ 467.298034][T12191] /dev/sr0: Can't open blockdev [ 467.299548][T12197] affs: No valid root block on device nullb0 [ 467.393704][T12193] /dev/sr0: Can't open blockdev [ 467.501013][T12207] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2105'. [ 467.619167][T12211] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2105'. [ 467.653031][ T5349] Bluetooth: hci2: unexpected event 0x18 length: 4 < 23 [ 469.179551][T12230] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 469.439105][T12232] /dev/sr0: Can't open blockdev [ 469.576819][T12234] /dev/sr0: Can't open blockdev [ 469.579627][T12237] sg_write: data in/out 92/70 bytes for SCSI command 0x0-- guessing data in; [ 469.579627][T12237] program syz.3.2115 not setting count and/or reply_len properly [ 469.605931][T12239] x_tables: ip6_tables: mh match: only valid for protocol 135 [ 469.674182][T12250] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2119'. [ 469.731878][T12260] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2124'. [ 469.820087][T12263] x_tables: (null)_tables: TRACE target: only valid in raw table, not syz0 [ 469.864755][T12265] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2124'. [ 469.994077][ T8600] usb 8-1: new low-speed USB device number 10 using dummy_hcd [ 470.058823][T12271] netlink: 96 bytes leftover after parsing attributes in process `syz.2.2128'. [ 470.163092][ T8600] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 470.165758][ T8600] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 470.168134][ T8600] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 26984, setting to 8 [ 470.170958][ T8600] usb 8-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00 [ 470.173925][ T8600] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 470.179228][T12254] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 470.181812][ T8600] hub 8-1:1.0: bad descriptor, ignoring hub [ 470.184505][ T8600] hub 8-1:1.0: probe with driver hub failed with error -5 [ 470.187054][ T8600] cdc_wdm 8-1:1.0: skipping garbage [ 470.188554][ T8600] cdc_wdm 8-1:1.0: skipping garbage [ 470.192659][ T8600] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device [ 470.194956][ T8600] cdc_wdm 8-1:1.0: Unknown control protocol [ 470.396632][ T5349] Bluetooth: hci1: unexpected event 0x18 length: 4 < 23 [ 470.504116][ T58] usb 8-1: USB disconnect, device number 10 [ 471.375222][T12282] /dev/sr0: Can't open blockdev [ 471.488986][T12284] /dev/sr0: Can't open blockdev [ 471.597705][T12293] FAULT_INJECTION: forcing a failure. [ 471.597705][T12293] name failslab, interval 1, probability 0, space 0, times 0 [ 471.600966][T12293] CPU: 2 UID: 0 PID: 12293 Comm: syz.3.2137 Not tainted 6.12.0-rc1-syzkaller-00306-g27cc6fdf7201 #0 [ 471.603715][T12293] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 471.606481][T12293] Call Trace: [ 471.607368][T12293] [ 471.608143][T12293] dump_stack_lvl+0x16c/0x1f0 [ 471.609382][T12293] should_fail_ex+0x497/0x5b0 [ 471.610619][T12293] should_failslab+0xc2/0x120 [ 471.611875][T12293] __kmalloc_noprof+0xcb/0x410 [ 471.613128][T12293] io_cqring_event_overflow+0xcb/0x6f0 [ 471.614550][T12293] __io_submit_flush_completions+0xf10/0x20e0 [ 471.616138][T12293] ? io_provide_buffers_prep+0x357/0x400 [ 471.617831][T12293] io_submit_sqes+0xa73/0x2530 [ 471.619095][T12293] __do_sys_io_uring_enter+0xc0f/0x1170 [ 471.620555][T12293] ? __fget_files+0x244/0x3f0 [ 471.621787][T12293] ? __pfx___do_sys_io_uring_enter+0x10/0x10 [ 471.623361][T12293] ? fput+0x30/0x390 [ 471.624393][T12293] ? ksys_write+0x1ad/0x260 [ 471.625582][T12293] ? __pfx_ksys_write+0x10/0x10 [ 471.626856][T12293] __do_fast_syscall_32+0x73/0x120 [ 471.628201][T12293] do_fast_syscall_32+0x32/0x80 [ 471.629479][T12293] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 471.631130][T12293] RIP: 0023:0xf7f05579 [ 471.632212][T12293] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 471.637207][T12293] RSP: 002b:00000000f568656c EFLAGS: 00000296 ORIG_RAX: 00000000000001aa [ 471.639369][T12293] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000050 [ 471.641442][T12293] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000000 [ 471.643507][T12293] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 471.645559][T12293] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 471.647639][T12293] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 471.649691][T12293] [ 472.802925][ T5349] Bluetooth: hci1: unexpected event 0x18 length: 4 < 23 [ 473.292869][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.296331][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.298333][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.300318][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.302304][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.304317][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.306386][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.308364][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.310341][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.312341][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.314330][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.316463][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.318513][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.320490][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.322468][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.324440][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.326505][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.328505][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.330477][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.332487][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.334457][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.336472][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.338552][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.340765][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.342826][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.344809][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.346801][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.351829][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.353885][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.355887][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.357929][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.360351][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.362396][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.364402][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.366575][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.368584][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.370625][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.372709][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.374775][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.376819][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.378800][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.380873][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.382961][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.384963][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.386958][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.388929][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.391067][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.393131][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.395235][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.397245][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.399259][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.401328][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.403326][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.405333][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.407333][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.409392][ T8600] hid-generic 0001:0000:0000.0016: unknown main item tag 0x0 [ 473.428317][ T8600] hid-generic 0001:0000:0000.0016: hidraw0: HID v0.00 Device [syz0] on syz1 [ 474.075271][T12321] /dev/sr0: Can't open blockdev [ 474.097072][T12327] tmpfs: Bad value for 'mpol' [ 474.224897][T12325] /dev/sr0: Can't open blockdev [ 474.364575][T12334] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2151'. [ 474.432616][ T5349] Bluetooth: hci1: unexpected event 0x18 length: 4 < 23 [ 474.533327][T12337] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2151'. [ 475.198568][ T11] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge) [ 475.274366][ T5349] Bluetooth: hci2: unexpected event 0x18 length: 4 < 23 [ 476.045378][T12361] /dev/sr0: Can't open blockdev [ 476.129774][T12364] /dev/sr0: Can't open blockdev [ 476.509828][T12371] vlan2: entered allmulticast mode [ 476.511524][T12371] mac80211_hwsim hwsim66 wlan1: entered allmulticast mode [ 476.523569][T12371] mac80211_hwsim hwsim66 wlan1: left allmulticast mode [ 476.669311][T12374] syzkaller1: entered promiscuous mode [ 476.671584][T12374] syzkaller1: entered allmulticast mode [ 477.026675][T12383] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2167'. [ 477.153830][T12387] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2167'. [ 478.406953][T12398] /dev/sr0: Can't open blockdev [ 478.659488][T12400] /dev/sr0: Can't open blockdev [ 478.840860][T12410] loop0: detected capacity change from 0 to 7 [ 478.851299][T12410] Dev loop0: unable to read RDB block 7 [ 478.852814][T12410] loop0: unable to read partition table [ 478.862085][T12410] loop0: partition table beyond EOD, truncated [ 478.863781][T12410] loop_reread_partitions: partition scan of loop0 (þ被xüŸÑø éÚ¬§½dƤ´à–ƒÝ¡¯¨â·û [ 478.863781][T12410] ) failed (rc=-5) [ 479.036710][ T5349] Bluetooth: hci2: unexpected event 0x18 length: 4 < 23 [ 479.363548][T12423] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2178'. [ 479.426271][ T39] kauditd_printk_skb: 9 callbacks suppressed [ 479.426326][ T39] audit: type=1800 audit(2000000084.850:397): pid=12425 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.2179" name="bus" dev="9p" ino=35922787 res=0 errno=0 [ 479.435875][T12425] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2179'. [ 479.452657][ T39] audit: type=1804 audit(2000000084.859:398): pid=12425 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.2179" name="/newroot/126/file0/bus" dev="9p" ino=35922787 res=1 errno=0 [ 479.499689][T12427] netfs: Couldn't get user pages (rc=-14) [ 479.543510][T12428] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2178'. [ 480.565321][T12430] /dev/sr0: Can't open blockdev [ 480.716790][T12432] /dev/sr0: Can't open blockdev [ 482.708962][ T5354] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 482.715680][ T5354] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 482.718694][ T5354] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 482.721561][ T5354] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 482.726943][ T5354] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 482.729035][ T5354] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 482.868306][T12457] chnl_net:caif_netlink_parms(): no params data found [ 483.007746][T12457] bridge0: port 1(bridge_slave_0) entered blocking state [ 483.009867][T12457] bridge0: port 1(bridge_slave_0) entered disabled state [ 483.013982][T12457] bridge_slave_0: entered allmulticast mode [ 483.101115][T12469] ebtables: wrong size: *len 120, entries_size 144, replsz 144 [ 483.104127][T12457] bridge_slave_0: entered promiscuous mode [ 483.141453][T12457] bridge0: port 2(bridge_slave_1) entered blocking state [ 483.143381][T12457] bridge0: port 2(bridge_slave_1) entered disabled state [ 483.145292][T12457] bridge_slave_1: entered allmulticast mode [ 483.147290][T12457] bridge_slave_1: entered promiscuous mode [ 483.234218][ T6426] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 483.243594][ T6426] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 483.281283][T12457] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 483.292654][T12457] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 483.537959][ T6426] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 483.540680][ T6426] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 483.570346][T12457] team0: Port device team_slave_0 added [ 483.583749][T12457] team0: Port device team_slave_1 added [ 483.635371][T12457] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 483.637268][T12457] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 483.657904][T12457] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 483.684421][ T6426] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 483.687605][ T6426] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 483.698085][T12457] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 483.700000][T12457] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 483.717523][T12457] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 483.783603][T12457] hsr_slave_0: entered promiscuous mode [ 483.792699][T12457] hsr_slave_1: entered promiscuous mode [ 483.842230][ T6426] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 483.844881][ C0] BUG: TASK stack guard page was hit at ffffc90002b3ffb8 (stack is ffffc90002b40000..ffffc90002b48000) [ 483.844918][ C0] Oops: stack guard page: 0000 [#1] PREEMPT SMP KASAN NOPTI [ 483.844928][ C0] CPU: 0 UID: 0 PID: 12425 Comm: syz.2.2179 Not tainted 6.12.0-rc1-syzkaller-00306-g27cc6fdf7201 #0 [ 483.844937][ C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 483.844942][ C0] RIP: 0010:mark_lock+0x25/0xc60 [ 483.844958][ C0] Code: 90 90 90 90 90 55 48 89 e5 41 57 41 56 41 89 d6 48 ba 00 00 00 00 00 fc ff df 41 55 41 54 53 48 83 e4 f0 48 81 ec 10 01 00 00 <48> c7 44 24 30 b3 8a b5 41 48 8d 44 24 30 48 c7 44 24 38 38 51 57 [ 483.844966][ C0] RSP: 0018:ffffc90002b3ffc0 EFLAGS: 00010086 [ 483.844974][ C0] RAX: 0000000000000000 RBX: 0000000000000001 RCX: 0000000000000003 [ 483.844979][ C0] RDX: dffffc0000000000 RSI: ffff888021edaf98 RDI: ffff888021eda440 [ 483.844984][ C0] RBP: ffffc90002b40100 R08: 0000000000000000 R09: 0000000000000006 [ 483.844989][ C0] R10: ffffffff9698ad37 R11: 0000000000000002 R12: dffffc0000000000 [ 483.844994][ C0] R13: ffff888021edaf98 R14: 0000000000000008 R15: ffff888021eda440 [ 483.844999][ C0] FS: 0000000000000000(0000) GS:ffff88802b400000(0063) knlGS:00000000f56f6b40 [ 483.845019][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 483.845026][ C0] CR2: ffffc90002b3ffb8 CR3: 000000005f61e000 CR4: 0000000000352ef0 [ 483.845031][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 483.845036][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 483.845040][ C0] Call Trace: [ 483.845043][ C0] <#DF> [ 483.845046][ C0] ? die+0x31/0x80 [ 483.845056][ C0] ? handle_stack_overflow+0xa4/0xe0 [ 483.845068][ C0] ? get_stack_info_noinstr+0x18/0x120 [ 483.845082][ C0] ? exc_double_fault+0x120/0x1b0 [ 483.845093][ C0] ? asm_exc_double_fault+0x23/0x30 [ 483.845119][ C0] ? mark_lock+0x25/0xc60 [ 483.845131][ C0] [ 483.845134][ C0] [ 483.845138][ C0] ? unwind_next_frame+0xe5d/0x20c0 [ 483.845146][ C0] ? arch_stack_walk+0x74/0x100 [ 483.845156][ C0] ? unwind_next_frame+0xe5d/0x20c0 [ 483.845163][ C0] ? netfs_retry_reads+0x153a/0x1d00 [ 483.845175][ C0] __lock_acquire+0x906/0x3ce0 [ 483.845188][ C0] ? __pfx___lock_acquire+0x10/0x10 [ 483.845199][ C0] ? stack_trace_save+0x95/0xd0 [ 483.845208][ C0] ? __pfx_stack_trace_save+0x10/0x10 [ 483.845217][ C0] lock_acquire.part.0+0x11b/0x380 [ 483.845229][ C0] ? page_ext_get+0x34/0x310 [ 483.845239][ C0] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 483.845250][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.845259][ C0] ? trace_lock_acquire+0x14a/0x1d0 [ 483.845268][ C0] ? __slab_alloc.constprop.0+0x56/0xb0 [ 483.845278][ C0] ? kmem_cache_alloc_noprof+0x2ae/0x2f0 [ 483.845288][ C0] ? page_ext_get+0x34/0x310 [ 483.845297][ C0] ? lock_acquire+0x2f/0xb0 [ 483.845307][ C0] ? page_ext_get+0x34/0x310 [ 483.845317][ C0] page_ext_get+0x3a/0x310 [ 483.845325][ C0] ? page_ext_get+0x34/0x310 [ 483.845334][ C0] __set_page_owner+0x9a/0x790 [ 483.845344][ C0] ? trace_lock_acquire+0x14a/0x1d0 [ 483.845353][ C0] ? __pfx___set_page_owner+0x10/0x10 [ 483.845362][ C0] ? bad_range+0x264/0x440 [ 483.845371][ C0] ? lockdep_hardirqs_on+0x7c/0x110 [ 483.845381][ C0] post_alloc_hook+0x2d1/0x350 [ 483.845391][ C0] get_page_from_freelist+0x101e/0x3070 [ 483.845404][ C0] ? __pfx_get_page_from_freelist+0x10/0x10 [ 483.845415][ C0] ? should_fail_alloc_page+0xee/0x130 [ 483.845427][ C0] ? prepare_alloc_pages.constprop.0+0x16f/0x560 [ 483.845436][ C0] ? __pfx_mark_lock+0x10/0x10 [ 483.845447][ C0] __alloc_pages_noprof+0x223/0x25c0 [ 483.845458][ C0] ? hlock_class+0x4e/0x130 [ 483.845467][ C0] ? hlock_class+0x4e/0x130 [ 483.845475][ C0] ? mark_lock+0xb5/0xc60 [ 483.845485][ C0] ? hlock_class+0x4e/0x130 [ 483.845493][ C0] ? __lock_acquire+0x163e/0x3ce0 [ 483.845504][ C0] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 483.845515][ C0] ? hlock_class+0x4e/0x130 [ 483.845523][ C0] ? __lock_acquire+0x163e/0x3ce0 [ 483.845535][ C0] ? hlock_class+0x4e/0x130 [ 483.845543][ C0] ? mark_lock+0xb5/0xc60 [ 483.845553][ C0] ? __pfx___lock_acquire+0x10/0x10 [ 483.845563][ C0] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 483.845575][ C0] ? policy_nodemask+0xea/0x4e0 [ 483.845587][ C0] alloc_pages_mpol_noprof+0x2c9/0x610 [ 483.845600][ C0] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 483.845612][ C0] ? __pfx_lock_release+0x10/0x10 [ 483.845623][ C0] new_slab+0x2ba/0x3f0 [ 483.845632][ C0] ___slab_alloc+0xd1d/0x16f0 [ 483.845641][ C0] ? p9_tag_alloc+0x9c/0x870 [ 483.845651][ C0] ? p9_tag_alloc+0x9c/0x870 [ 483.845657][ C0] ? __slab_alloc.constprop.0+0x56/0xb0 [ 483.845666][ C0] __slab_alloc.constprop.0+0x56/0xb0 [ 483.845676][ C0] kmem_cache_alloc_noprof+0x2ae/0x2f0 [ 483.845686][ C0] ? p9_tag_alloc+0x9c/0x870 [ 483.845693][ C0] p9_tag_alloc+0x9c/0x870 [ 483.845700][ C0] ? __pfx_p9_tag_alloc+0x10/0x10 [ 483.845707][ C0] ? unwind_next_frame+0xe5d/0x20c0 [ 483.845715][ C0] ? netfs_retry_reads+0x155e/0x1d00 [ 483.845726][ C0] p9_client_prepare_req+0x19f/0x4d0 [ 483.845734][ C0] ? __pfx_p9_client_prepare_req+0x10/0x10 [ 483.845743][ C0] p9_client_zc_rpc.constprop.0+0x105/0x880 [ 483.845751][ C0] ? __lock_acquire+0xbdd/0x3ce0 [ 483.845762][ C0] ? __pfx_p9_client_zc_rpc.constprop.0+0x10/0x10 [ 483.845771][ C0] ? __call_rcu_common.constprop.0+0x99/0x7a0 [ 483.845783][ C0] ? kmem_cache_free+0x31d/0x4b0 [ 483.845793][ C0] ? p9_req_put+0x1c6/0x250 [ 483.845804][ C0] ? p9_client_read_once+0x3bd/0x820 [ 483.845812][ C0] ? p9_client_read+0x13f/0x1b0 [ 483.845820][ C0] ? v9fs_issue_read+0x115/0x310 [ 483.845829][ C0] ? netfs_retry_reads+0x153a/0x1d00 [ 483.845839][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 483.845848][ C0] ? netfs_retry_reads+0x155e/0x1d00 [ 483.845862][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 483.845871][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 483.845882][ C0] ? __pfx_p9_virtio_zc_request+0x10/0x10 [ 483.845892][ C0] p9_client_read_once+0x443/0x820 [ 483.845901][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.845909][ C0] ? netfs_retry_reads+0x155e/0x1d00 [ 483.845919][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 483.845928][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 483.845938][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 483.845947][ C0] ? netfs_retry_reads+0x155e/0x1d00 [ 483.845957][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 483.845967][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 483.845976][ C0] ? netfs_retry_reads+0x155e/0x1d00 [ 483.845986][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 483.845995][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 483.846006][ C0] p9_client_read+0x13f/0x1b0 [ 483.846014][ C0] v9fs_issue_read+0x115/0x310 [ 483.846023][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.846031][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.846041][ C0] netfs_retry_reads+0x153a/0x1d00 [ 483.846052][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.846061][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.846069][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.846080][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 483.846090][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.846098][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.846108][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.846117][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.846126][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.846135][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.846143][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.846153][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.846163][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.846175][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.846183][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.846192][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.846202][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 483.846212][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.846220][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.846229][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.846239][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.846247][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.846257][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.846265][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.846275][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.846285][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.846296][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.846305][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.846314][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.846324][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 483.846335][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.846343][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.846352][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.846362][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.846371][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.846380][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.846389][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.846398][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.846409][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.846420][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.846428][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.846437][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.846447][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 483.846457][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.846465][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.846475][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.846484][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.846493][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.846502][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.846511][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.846521][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.846531][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.846542][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.846551][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.846559][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.846570][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 483.846580][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.846588][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.846598][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.846607][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.846615][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.846625][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.846634][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.846644][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.846654][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.846665][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.846674][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.846682][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.846692][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 483.846702][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.846710][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.846720][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.846729][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.846738][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.846747][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.846756][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.846766][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.846776][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.846787][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.846796][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.846804][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.846814][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 483.846825][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.846833][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.846843][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.846855][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.846864][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.846873][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.846882][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.846892][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.846902][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.846913][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.846921][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.846930][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.846940][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 483.846950][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.846958][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.846968][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.846977][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.846986][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.846995][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.847004][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.847013][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.847038][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.847051][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.847059][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.847068][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.847078][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 483.847088][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.847096][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.847106][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.847115][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.847124][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.847133][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.847142][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.847152][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.847162][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.847173][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.847182][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.847190][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.847200][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 483.847211][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.847218][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.847228][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.847238][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.847246][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.847255][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.847264][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.847274][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.847284][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.847295][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.847304][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.847312][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.847322][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 483.847333][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.847341][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.847350][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.847360][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.847368][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.847378][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.847386][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.847396][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.847406][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.847417][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.847426][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.847434][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.847444][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 483.847454][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.847462][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.847472][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.847481][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.847490][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.847499][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.847508][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.847517][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.847528][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.847538][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.847547][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.847555][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.847565][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 483.847576][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.847584][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.847593][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.847603][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.847611][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.847621][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.847629][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.847639][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.847649][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.847660][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.847669][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.847678][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.847688][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 483.847698][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.847706][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.847716][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.847725][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.847734][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.847743][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.847752][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.847761][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.847772][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.847782][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.847791][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.847799][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.847809][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 483.847820][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.847828][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.847837][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.847847][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.847858][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.847868][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.847876][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.847886][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.847896][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.847907][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.847915][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.847924][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.847934][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 483.847944][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.847952][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.847961][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.847971][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.847979][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.847988][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.847997][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.848007][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.848017][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.848028][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.848037][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.848046][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.848056][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 483.848066][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.848074][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.848084][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.848093][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.848102][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.848111][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.848120][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.848130][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.848140][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.848151][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.848160][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.848168][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.848178][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 483.848188][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.848196][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.848205][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.848215][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.848224][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.848234][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.848242][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.848252][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.848262][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.848273][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.848282][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.848290][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.848300][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 483.848311][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.848319][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.848328][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.848338][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.848346][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.848356][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.848364][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.848374][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.848384][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.848395][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.848404][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.848412][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.848422][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 483.848432][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.848440][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.848450][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.848459][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.848468][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.848477][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.848485][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.848495][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.848505][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.848516][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.848525][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.848534][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.848544][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 483.848554][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.848563][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.848573][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.848582][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.848591][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.848600][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.848609][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.848618][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.848628][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.848639][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.848648][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.848656][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.848666][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 483.848676][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.848684][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.848694][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.848703][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.848712][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.848721][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.848730][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.848740][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.848750][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.848761][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.848770][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.848778][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.848789][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 483.848799][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.848807][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.848817][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.848826][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.848835][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.848844][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.848856][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.848866][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.848876][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.848887][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.848896][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.848904][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.848914][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 483.848924][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.848932][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.848942][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.848951][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.848960][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.848970][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.848978][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.848988][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.848998][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.849009][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.849018][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.849026][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.849036][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 483.849047][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.849055][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.849064][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.849074][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.849082][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.849092][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.849100][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.849110][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.849120][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.849131][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.849140][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.849149][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.849158][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 483.849169][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.849177][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.849186][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.849196][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.849204][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.849214][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.849222][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.849232][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.849242][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.849253][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.849262][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.849270][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.849280][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 483.849291][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.849298][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.849308][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.849318][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.849326][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.849335][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.849344][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.849354][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.849364][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.849375][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.849384][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.849392][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.849403][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 483.849413][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.849421][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.849430][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.849440][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.849448][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.849458][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.849466][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.849476][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.849486][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.849497][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.849506][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.849514][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.849524][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 483.849535][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.849543][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.849552][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.849562][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.849570][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.849579][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.849588][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.849598][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.849608][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.849619][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.849628][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.849637][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.849647][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 483.849657][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.849665][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.849675][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.849684][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.849693][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.849703][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.849711][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.849721][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.849731][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.849742][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.849751][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.849759][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.849769][ C0] ? v9fs_file_read_iter+0xbf/0x100 [ 483.849779][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.849787][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.849796][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.849806][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.849815][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.849824][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.849833][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.849843][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.849855][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.849867][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.849875][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.849884][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.849894][ C0] ? integrity_kernel_read+0x7f/0xb0 [ 483.849906][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.849914][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.849924][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.849933][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.849942][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.849951][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.849959][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.849969][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.849979][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.849990][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.849999][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.850007][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.850018][ C0] ? process_measurement+0x1271/0x2370 [ 483.850030][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.850038][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.850047][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.850057][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.850066][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.850075][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.850083][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.850093][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.850103][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.850114][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.850123][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.850131][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.850141][ C0] ? security_file_post_open+0x8e/0x210 [ 483.850152][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.850160][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.850170][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.850180][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.850189][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.850199][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.850207][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.850218][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.850228][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.850239][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.850248][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.850256][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.850267][ C0] ? __ia32_compat_sys_open+0x147/0x1e0 [ 483.850279][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.850287][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.850297][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.850307][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.850316][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.850325][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.850334][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.850344][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.850354][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.850365][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.850374][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.850383][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.850395][ C0] ? do_fast_syscall_32+0x32/0x80 [ 483.850407][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.850415][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.850425][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.850435][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.850443][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.850453][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.850462][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.850472][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.850482][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.850931][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.850940][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.850948][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.850960][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.850968][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.850978][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.850988][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.850997][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.851006][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.851015][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.851039][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.851052][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.851063][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.851072][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.851080][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.851091][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.851099][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.851109][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.851119][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.851127][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.851137][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.851146][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.851156][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.851166][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.851178][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.851187][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.851195][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.851207][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.851215][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.851225][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.851235][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.851243][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.851253][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.851262][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.851272][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.851282][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.851293][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.851302][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.851311][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.851322][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.851330][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.851340][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.851349][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.851358][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.851367][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.851376][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.851386][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.851397][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.851408][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.851417][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.851426][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.851437][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.851444][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.851454][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.851464][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.851473][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.851482][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.851491][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.851501][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.851511][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.851522][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.851531][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.851540][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.851551][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.851559][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.851569][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.851578][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.851587][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.851597][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.851605][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.851616][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.851626][ C0] netfs_retry_reads+0x155e/0x1d00 [ 483.851637][ C0] ? p9_client_read_once+0x3c7/0x820 [ 483.851646][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 483.851654][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 483.851666][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.851674][ C0] ? trace_netfs_sreq_ref+0x1a5/0x230 [ 483.851684][ C0] ? netfs_put_subrequest+0x112/0x4c0 [ 483.851694][ C0] ? rcu_is_watching+0x12/0xc0 [ 483.851702][ C0] netfs_rreq_assess+0x5d3/0x870 [ 483.851712][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 483.851720][ C0] ? __pfx___might_resched+0x10/0x10 [ 483.851729][ C0] netfs_rreq_terminated+0xe5/0x110 [ 483.851739][ C0] netfs_unbuffered_read_iter_locked+0x12f6/0x19b0 [ 483.851752][ C0] netfs_unbuffered_read_iter+0xc5/0x100 [ 483.851762][ C0] v9fs_file_read_iter+0xbf/0x100 [ 483.851771][ C0] __kernel_read+0x3f1/0xb50 [ 483.851779][ C0] ? __pfx___kernel_read+0x10/0x10 [ 483.851788][ C0] ? irq_fpu_usable+0x21/0xb0 [ 483.851798][ C0] ? kernel_fpu_begin_mask+0x168/0x270 [ 483.851808][ C0] integrity_kernel_read+0x7f/0xb0 [ 483.851819][ C0] ? __pfx_integrity_kernel_read+0x10/0x10 [ 483.851830][ C0] ? _sha256_update+0x93/0x220 [ 483.851839][ C0] ? __pfx_sha256_ni_transform+0x10/0x10 [ 483.851848][ C0] ima_calc_file_hash_tfm+0x2c9/0x3e0 [ 483.851862][ C0] ? __pfx_ima_calc_file_hash_tfm+0x10/0x10 [ 483.851875][ C0] ? v9fs_vfs_getattr_dotl+0x2a7/0x430 [ 483.851884][ C0] ? ima_alloc_tfm+0x21d/0x2d0 [ 483.851892][ C0] ? v9fs_vfs_getattr_dotl+0x2ae/0x430 [ 483.851901][ C0] ima_calc_file_hash+0x1ba/0x490 [ 483.851909][ C0] ima_collect_measurement+0x8a7/0xa10 [ 483.851918][ C0] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 483.851928][ C0] ? __pfx_ima_collect_measurement+0x10/0x10 [ 483.851939][ C0] ? v9fs_fid_lookup+0xe9/0xec0 [ 483.851949][ C0] ? trace_contention_end+0xea/0x140 [ 483.851962][ C0] ? vfs_getxattr_alloc+0xf1/0x340 [ 483.851975][ C0] ? ima_get_hash_algo+0x27d/0x410 [ 483.851986][ C0] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 483.851998][ C0] ? process_measurement+0x1271/0x2370 [ 483.852009][ C0] process_measurement+0x1271/0x2370 [ 483.852022][ C0] ? __pfx_process_measurement+0x10/0x10 [ 483.852034][ C0] ? find_held_lock+0x2d/0x110 [ 483.852043][ C0] ? v9fs_open_fid_add+0x102/0x190 [ 483.852053][ C0] ? __pfx_lock_release+0x10/0x10 [ 483.852064][ C0] ? do_raw_spin_lock+0x12d/0x2c0 [ 483.852075][ C0] ? __pfx_v9fs_file_open+0x10/0x10 [ 483.852084][ C0] ? bpf_lsm_file_open+0x9/0x10 [ 483.852095][ C0] ? inode_to_bdi+0x9e/0x160 [ 483.852106][ C0] ima_file_check+0xc1/0x110 [ 483.852113][ C0] ? __pfx_ima_file_check+0x10/0x10 [ 483.852120][ C0] ? inode_permission+0xdd/0x5f0 [ 483.852133][ C0] security_file_post_open+0x8e/0x210 [ 483.852144][ C0] path_openat+0x1419/0x2d60 [ 483.852154][ C0] ? __pfx_path_openat+0x10/0x10 [ 483.852163][ C0] ? __pfx___lock_acquire+0x10/0x10 [ 483.852174][ C0] do_filp_open+0x1dc/0x430 [ 483.852182][ C0] ? __pfx_do_filp_open+0x10/0x10 [ 483.852193][ C0] ? _raw_spin_unlock+0x28/0x50 [ 483.852201][ C0] ? alloc_fd+0x2d7/0x6c0 [ 483.852210][ C0] do_sys_openat2+0x17a/0x1e0 [ 483.852220][ C0] ? __pfx_do_sys_openat2+0x10/0x10 [ 483.852232][ C0] __ia32_compat_sys_open+0x147/0x1e0 [ 483.852243][ C0] ? __pfx___ia32_compat_sys_open+0x10/0x10 [ 483.852256][ C0] __do_fast_syscall_32+0x73/0x120 [ 483.852266][ C0] do_fast_syscall_32+0x32/0x80 [ 483.852276][ C0] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 483.852287][ C0] RIP: 0023:0xf740e579 [ 483.852295][ C0] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 483.852303][ C0] RSP: 002b:00000000f56f656c EFLAGS: 00000296 ORIG_RAX: 0000000000000005 [ 483.852311][ C0] RAX: ffffffffffffffda RBX: 0000000020000240 RCX: 0000000000000b00 [ 483.852316][ C0] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 0000000000000000 [ 483.852321][ C0] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 483.852326][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 483.852330][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 483.852337][ C0] [ 483.852340][ C0] Modules linked in: [ 483.852346][ C0] ---[ end trace 0000000000000000 ]--- [ 483.852350][ C0] RIP: 0010:mark_lock+0x25/0xc60 [ 483.852362][ C0] Code: 90 90 90 90 90 55 48 89 e5 41 57 41 56 41 89 d6 48 ba 00 00 00 00 00 fc ff df 41 55 41 54 53 48 83 e4 f0 48 81 ec 10 01 00 00 <48> c7 44 24 30 b3 8a b5 41 48 8d 44 24 30 48 c7 44 24 38 38 51 57 [ 483.852369][ C0] RSP: 0018:ffffc90002b3ffc0 EFLAGS: 00010086 [ 483.852375][ C0] RAX: 0000000000000000 RBX: 0000000000000001 RCX: 0000000000000003 [ 483.852379][ C0] RDX: dffffc0000000000 RSI: ffff888021edaf98 RDI: ffff888021eda440 [ 483.852384][ C0] RBP: ffffc90002b40100 R08: 0000000000000000 R09: 0000000000000006 [ 483.852389][ C0] R10: ffffffff9698ad37 R11: 0000000000000002 R12: dffffc0000000000 [ 483.852394][ C0] R13: ffff888021edaf98 R14: 0000000000000008 R15: ffff888021eda440 [ 483.852399][ C0] FS: 0000000000000000(0000) GS:ffff88802b400000(0063) knlGS:00000000f56f6b40 [ 483.852417][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 483.852425][ C0] CR2: ffffc90002b3ffb8 CR3: 000000005f61e000 CR4: 0000000000352ef0 [ 483.852430][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 483.852434][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 483.852440][ C0] Kernel panic - not syncing: Fatal exception in interrupt [ 483.854782][ C0] Kernel Offset: disabled VM DIAGNOSIS: 15:23:02 Registers: info registers vcpu 0 CPU#0 RAX=0000000080110001 RBX=ffffffff8d6e752b RCX=ffffffff8b0427b9 RDX=ffff888021eda440 RSI=ffffffff8b042bff RDI=0000000000000009 RBP=ffffffff8d6e752c RSP=fffffe000000c900 R8 =0000000000000001 R9 =0000000000000030 R10=0000000000000073 R11=00000000000136cf R12=fffffe000000ca00 R13=ffffffff8d6e752b R14=0000000000000073 R15=0000000000000073 RIP=ffffffff8b042c23 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802b400000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=ffffc90002b3ffb8 CR3=000000005f61e000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 c67178f2bef9a3f7 c67178f2bef9a3f7 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 019f32f6a6180fe1 1f99ca52eb96ce8e ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 e4f6eaf221dcd6c0 199ed1cbe272d089 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 e272d089199ed1cb eb96ce8e1f99ca52 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0c0d0e0f08090a0b 0405060700010203 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4defeb9129852a75 0651fe81c46515bd ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2882b7718d426dff f35bfacfedbb025f ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ad1b6d90a6da7c64 b8d6e0748977744f ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000030 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff85034e45 RDI=ffffffff9a63a220 RBP=ffffffff9a63a1e0 RSP=ffffc90007a16d30 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=7973203a6d6d6f43 R12=0000000000000000 R13=0000000000000030 R14=ffffffff85034de0 R15=0000000000000000 RIP=ffffffff85034e6f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b500000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000020031000 CR3=0000000056396000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=dffffc0000000000 RBX=0000000000038128 RCX=ffffffff81945016 RDX=1ffffffff1b03572 RSI=ffffffff8bb120a0 RDI=ffffffff8d81ab90 RBP=0000000000000002 RSP=ffffc900288779d0 R8 =0000000000000000 R9 =fffffbfff20399d1 R10=ffffffff901cce8f R11=00000000000a2001 R12=000000000003dbcc R13=0000000000000200 R14=0000000000000040 R15=ffff88801d692178 RIP=ffffffff8172f891 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007fc3fc4b5280 ffffffff 00c00000 GS =0000 ffff88802b600000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00000000566e099c CR3=000000002a874000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000004 Opmask01=0000000000000000 Opmask02=00000000fffffdff Opmask03=8200002022100080 Opmask04=00000000ffffffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000564ccfd66af0 0000564ccfd6ba80 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000564ccfd66af0 0000564ccfd6ba80 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7373737373737373 7373737373737373 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000ff0000 ff00000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffff0000 ffffff00000000ff ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffff0000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffff0000 ffffff00000000ff ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffff0000 ffffffffffffffff ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 3d29f6fc00246300 7373253ad86a664a ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7373737373737142 7373737373737373 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 73202c297325286b 636f6c66206f7420 656c62616e55006e 6f69746974726170 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 302c393230302c38 3230302c37323030 2c36323030003831 3d5145534b534944 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0d11040f0d0d1105 0f0d0d110a0f0d0d 110b0f0d0d00050c 005145534b534944 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000003f1 0000000000000000 31706f6f6c2f6b63 6f6c622f6c617574 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 3039393533333538 0000000000000021 0000000000000031 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 0000000000000000 00000000047dd700 307761726469682f ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3a263b383a3a263a 383a3a26493b3a3a 26483b3a3a264b3b 3a0a00307f617930 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692054524f50202c 2064696c61696d20 0070253a20252054 524f504d49005452 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692020520050202c 2025204f504d4900 0061253a20252000 2527204d49005452 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=00000000000000ff RBX=ffff88802b721020 RCX=000000000000080f RDX=0000000000000000 RSI=00000000000000ff RDI=000000000000000f RBP=0000000000000003 RSP=ffffc900005f0fc8 R8 =0000000000000001 R9 =fffffbfff20399cc R10=ffffffff901cce63 R11=ffffc900005f0ff8 R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff813bb0f8 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b700000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000000c3639a5 CR3=0000000056b1c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=00000000e08e000c DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000007000000000 0000000200000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000