last executing test programs: 3m10.676270112s ago: executing program 4 (id=2279): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000600)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0) setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000640)=@broute={'broute\x00', 0x20, 0x1, 0x170, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200006c0], 0x0, 0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="0000000000000000ff0000000000000000d17d000000000000000000000000000000000000000000ffffffff0000000000000000000000000000001200000000000000000000000000080000000000000800000000000000ffffffff00"/128]}, 0xf8) write$binfmt_script(r0, &(0x7f0000000000), 0xfea7) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000640)=@broute={'broute\x00', 0x20, 0x1, 0x170, [], 0x0, 0x0, 0x0}, 0x1e8) 3m10.490662464s ago: executing program 4 (id=2280): r0 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r1 = socket(0x40000000015, 0x5, 0x0) connect$inet(r1, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10) setsockopt$SO_RDS_TRANSPORT(r1, 0x114, 0x8, &(0x7f00000008c0)=0x2, 0x4) setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f00006dbffc), 0x4) bind$inet(r1, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57) sendmsg$xdp(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f00000003c0)="fe", 0x1}, {&(0x7f0000001240)="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", 0x480}], 0x2}, 0x0) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f00000001c0)={0x0, 0x3d, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[], 0x30}}, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r2, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 3m8.382884764s ago: executing program 4 (id=2286): r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0) syz_open_dev$sndctrl(0x0, 0x0, 0x0) unshare(0x10000) ioctl$SNDCTL_DSP_SETTRIGGER(r0, 0x40045010, &(0x7f0000000080)) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=@framed={{}, [@printk={@p, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x71}}, @call={0x85, 0x0, 0x0, 0x7d}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000500)='jbd2_handle_stats\x00', r1}, 0x10) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.throttle.io_serviced_recursive\x00', 0x26e1, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x1e, 0x4, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x600}, [@call={0x85, 0x0, 0x0, 0x19}]}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) close(0xffffffffffffffff) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0xa, 0x4, &(0x7f0000000080)=@framed={{}, [@ldst={0x3, 0x0, 0x6, 0x1}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) ioctl$SIOCSIFHWADDR(r2, 0x8924, &(0x7f0000000080)={'vlan0\x00', @broadcast}) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) r3 = socket$inet_udp(0x2, 0x2, 0x0) r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000040)=0x7) ioctl$TCGETA(r4, 0x8926, &(0x7f0000000140)) r5 = dup(r3) r6 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r6, 0x107, 0x12, &(0x7f0000000080), 0x4) dup3(r5, r6, 0x0) 2m49.771792174s ago: executing program 2 (id=2299): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000940)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-camellia-asm\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5910fae9d6dcd3292ea54c7b6ef915d564c90c200", 0x18) r1 = accept4(r0, 0x0, 0x0, 0x0) sendmmsg$alg(r1, &(0x7f00000057c0)=[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}], 0x1, 0x20000000) r2 = syz_io_uring_setup(0xd1, &(0x7f0000000480)={0x0, 0x0, 0x100, 0x0, 0x335}, &(0x7f0000000080)=0x0, &(0x7f00000001c0)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0}) io_uring_enter(r2, 0x47ba, 0x0, 0x0, 0x0, 0x0) 2m49.718354106s ago: executing program 2 (id=2300): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x10) r5 = syz_open_dev$usbfs(&(0x7f0000000080), 0x74, 0x101301) ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f0000000200)) r6 = openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000340)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0}, 0x18) syz_open_procfs(0x0, 0x0) r7 = ioctl$LOOP_CTL_GET_FREE(r6, 0x4c82) ioctl$LOOP_CTL_REMOVE(r6, 0x4c81, r7) ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f0000000040)=@usbdevfs_connect) bpf$PROG_LOAD(0x5, 0x0, 0x0) socket$igmp(0x2, 0x3, 0x2) 2m48.115634861s ago: executing program 2 (id=2301): getsockopt$MRT(0xffffffffffffffff, 0x0, 0xd0, 0x0, 0x0) msgrcv(0x0, 0x0, 0x0, 0x1, 0x2000) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x0, 0x0) syz_open_dev$sndpcmp(0x0, 0x8, 0x20400) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, 0x0) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000007c0)=0x8001) ioctl$sock_inet_SIOCGIFBRDADDR(0xffffffffffffffff, 0x8919, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000700)={'dummy0\x00'}) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, &(0x7f0000000000)=0x200, 0x4) syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301) r3 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDFONTOP_SET(r3, 0x4b72, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x1e, 0x15d, &(0x7f0000000100)="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"}) ioctl$PIO_UNIMAP(r3, 0x4b67, &(0x7f0000000580)={0x0, &(0x7f0000000540)}) msgget(0x1, 0x600) msgctl$MSG_STAT(0x0, 0xb, &(0x7f0000000080)=""/38) 2m46.632136435s ago: executing program 2 (id=2302): socket$inet6_tcp(0xa, 0x1, 0x0) socket$igmp6(0xa, 0x3, 0x2) mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0) mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1/file2\x00', 0xc000, 0x0) r0 = landlock_create_ruleset(&(0x7f00000002c0)={0x3218}, 0x8, 0x0) syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x20) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x1b, &(0x7f00000000c0)={@remote={0xfe, 0x80, '\x00', 0xffffffffffffffff}}, 0x20) bpf$MAP_CREATE(0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1) read$msr(r2, &(0x7f0000000fc0)=""/102400, 0x19000) keyctl$instantiate(0xc, 0x0, 0x0, 0x2a, 0x0) syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$IPT_SO_SET_REPLACE(r3, 0x0, 0x40, &(0x7f0000000a80)=@raw={'raw\x00', 0x8, 0x3, 0x500, 0x148, 0xa, 0x148, 0x0, 0x10, 0x468, 0x2a8, 0x2a8, 0x468, 0x2a8, 0x3, 0x0, {[{{@ip={@local, @empty, 0x0, 0x0, 'bridge0\x00', 'rose0\x00'}, 0x0, 0x120, 0x148, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'macvlan0\x00', {0x0, 0x0, 0x100, 0x1, 0xfffffffd, 0xffffffff, 0x7}}}, @common=@inet=@hashlimit1={{0x58, 'hashlimit\x00', 0x0}, {'pim6reg0\x00'}}]}, @common=@inet=@SYNPROXY={0x28}}, {{@uncond, 0x0, 0x2c0, 0x320, 0x0, {}, [@common=@inet=@hashlimit3={{0x158}, {'geneve0\x00'}}, @common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x0, 0x0, 'syz1\x00'}}]}, @common=@SET={0x60}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x560) socket$packet(0x11, 0x0, 0x300) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x8, &(0x7f0000002540)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) landlock_restrict_self(r0, 0x0) renameat2(0xffffffffffffff9c, &(0x7f0000000480)='./file0\x00', 0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0x0) syz_open_dev$I2C(&(0x7f00000028c0), 0x0, 0x0) 22.029492832s ago: executing program 1 (id=2290): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_usb_connect$printer(0x2, 0x0, 0x0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x2, [{0x60, &(0x7f0000000240)=@string={0x60, 0x3, "94e087a424856f5b5026be9facabe069e79859d9c1ac372002f5ebf68e132af5dad8e6c614fa996edae027938c7140530d7ffc0ef62811cb90e5aee9dbad9eda7ea3db021116d03bfc55262168a42dd09fb4d8e90383b83d119d11708ff8"}}, {0x22, &(0x7f0000000340)=@string={0x22, 0x3, "a8af03e62f144437ea3fa09330609122d058844222297400ac0d1b3dfb937389"}}]}) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000001200)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b4266ef66ba420066b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x49}], 0x1, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f000049c000/0x18000)=nil, &(0x7f0000000400)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000640)=0x1) ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@x86={0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 20.827216134s ago: executing program 1 (id=2308): r0 = openat$binder_debug(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$UFFDIO_UNREGISTER(0xffffffffffffffff, 0x8010aa01, 0x0) r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000fdffffff850000002d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10) mkdirat(0xffffffffffffffff, &(0x7f0000001080)='./file0\x00', 0x1d1) r3 = getpid() sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f00000010c0)=0x1d, 0x4) sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff}) connect$unix(r4, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r5 = dup(r1) write$UHID_INPUT(r5, &(0x7f0000000040)={0xc, {"a2e3ad214fc752f91b3e090987f70e06d038e7ff7fc6e5539b3264078b089b0e083860090890e0878f0f1ac6e7049b334c959b669a240d5b67f3988f7ef319520100ffe8d178708c523c921b1b5b31310d3b5d0936cd3b78070daa61d8e809ea882f5802b77f07227227b7ba67e0e78669a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae193973735b36d5b1b63dd1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5003a9aaa1b469c3090000000002335875271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1fe90a56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617601000000be70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d595a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9980000000b3309603f1d4ab966203861b5b15a841f2b575a8bd0d780231c9c99a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6c82fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce3803f465e41e610c2021d653a5520000008213b704a5000000000000008ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710a80000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4e38a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d97b9a6d6d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2bed9e53803edf1a4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034e00000000ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c478b095b68441a34cb51682a8ae4d24ad92f243941ed274549b79a7962fb385a882e8020f068bb87af8b90fd8f08876da865d258734dd73583df292892448039ef799cf0630becdbe6c4579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93ae62fccfcbb2b75a2183c46eb65ca8124e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43e4fb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e01feffffffffffff83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369d75f2e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aa01b20f7694a00f16e2d0174035a2c22656dc00880acebdbe8ddbd7072f998d8ac2dfad2ba3a50200000045a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40426db6fe2907ac0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf463661c953fcad6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d27df2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7cd419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaeecf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb84bed4b281769177c6d594f88a4facfd4c735a20307c737afae5136651b1b9bd522d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a37684f4113c48859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02dae17b118e5d6787463183b4b87c105000000302a808d7f5251440613d17ca51055f2f416a44fe180d2d50c312cca7cb14a20dc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb40100000006376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7ceec7dc808bf653639d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7348663a52190202c7af288a4510de03dab19d26285eda89156d50dd385a602000000000000007007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4908b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf6529006c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6522fb5f6ffcdd56fed88935fcb75912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae233a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a5bd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08008897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b80c1c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c98ad90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2c1cde360500000000000000b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1062dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1df0d07b3d5bd3b01faffd0addbed2881a9700af561ac8c7e36bb2fc4c40e9c766c06817bb903729a7db6ff957697c9ede7885d94ffb0759be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c1484d2f9c55f4901203a9a8a2c3e51074b41bc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000600", 0x1000}}, 0x1006) fgetxattr(0xffffffffffffffff, 0x0, 0x0, 0x0) 20.387197945s ago: executing program 3 (id=2309): r0 = socket$inet6(0xa, 0x2, 0x3a) connect$inet6(r0, &(0x7f0000000300)={0xa, 0x0, 0x5, @mcast2, 0x7ffe}, 0x1c) bind$inet6(r0, &(0x7f0000000000)={0xa, 0xfffd, 0x0, @empty}, 0x1c) r1 = syz_init_net_socket$ax25(0x3, 0x5, 0x7) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @macsec={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_MACSEC_ENCRYPT={0x5}, @IFLA_MACSEC_PROTECT={0x5, 0x8, 0xdb}]}}}]}, 0x44}, 0x1, 0x8}, 0x0) capset(&(0x7f0000000040)={0x19980330}, &(0x7f0000000080)={0x0, 0x0, 0x40000000, 0x0, 0x0, 0x1}) ioctl$SIOCAX25ADDFWD(r1, 0x89ea, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x5, &(0x7f0000000880)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a8000000850000007d00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) socket$inet_mptcp(0x2, 0x1, 0x106) socket(0x41, 0x6, 0x4) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 20.302415579s ago: executing program 0 (id=2310): bind$inet(0xffffffffffffffff, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0) sched_setaffinity(0x0, 0x0, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) r1 = syz_open_procfs(0x0, 0x0) r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) r3 = fanotify_init(0x0, 0x0) r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) fanotify_mark(r3, 0x71, 0x8000000, r4, 0x0) fanotify_mark(r3, 0x12, 0x8000001, r2, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) dup(r6) fanotify_mark(r3, 0x1, 0x1010, r1, 0x0) sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r7 = syz_open_dev$loop(&(0x7f0000000000), 0x3, 0x80) memfd_create(&(0x7f0000000040)='(,,&\x00', 0x7) r8 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001400), 0x40801, 0x0) ioctl$LOOP_CHANGE_FD(r7, 0x4c06, r8) 19.887891013s ago: executing program 1 (id=2311): bind$inet(0xffffffffffffffff, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0) sched_setaffinity(0x0, 0x0, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) r1 = syz_open_procfs(0x0, 0x0) r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) r3 = fanotify_init(0x0, 0x0) r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) fanotify_mark(r3, 0x71, 0x8000000, r4, 0x0) fanotify_mark(r3, 0x12, 0x8000001, r2, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) dup(r6) fanotify_mark(r3, 0x1, 0x1010, r1, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) syz_open_dev$loop(&(0x7f0000000000), 0x3, 0x80) memfd_create(&(0x7f0000000040)='(,,&\x00', 0x7) openat$nullb(0xffffffffffffff9c, &(0x7f0000001400), 0x40801, 0x0) 19.759832915s ago: executing program 4 (id=2295): r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0) syz_open_dev$sndctrl(0x0, 0x0, 0x0) unshare(0x10000) ioctl$SNDCTL_DSP_SETTRIGGER(r0, 0x40045010, &(0x7f0000000080)) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=@framed={{0x18, 0x0, 0x0, 0xf8}, [@printk={@p, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x71}}, @call={0x85, 0x0, 0x0, 0x7d}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000500)='jbd2_handle_stats\x00', r1}, 0x10) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.throttle.io_serviced_recursive\x00', 0x26e1, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x1e, 0x4, &(0x7f0000000040)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x19}]}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) close(0xffffffffffffffff) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0xa, 0x4, &(0x7f0000000080)=@framed={{}, [@ldst={0x3, 0x0, 0x6, 0x1}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) ioctl$SIOCSIFHWADDR(r2, 0x8924, &(0x7f0000000080)={'vlan0\x00', @broadcast}) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, 0x0) r3 = socket$inet_udp(0x2, 0x2, 0x0) r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000040)=0x7) ioctl$TCGETA(r4, 0x8926, &(0x7f0000000140)) r5 = dup(r3) r6 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r6, 0x107, 0x12, &(0x7f0000000080), 0x4) dup3(r5, r6, 0x0) 19.726118764s ago: executing program 3 (id=2312): bind$inet(0xffffffffffffffff, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0) sched_setaffinity(0x0, 0x0, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) r1 = syz_open_procfs(0x0, 0x0) r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) r3 = fanotify_init(0x0, 0x0) r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) fanotify_mark(r3, 0x71, 0x8000000, r4, 0x0) fanotify_mark(r3, 0x12, 0x8000001, r2, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = dup(r6) ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) fanotify_mark(r3, 0x1, 0x1010, r1, 0x0) sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) syz_open_dev$loop(&(0x7f0000000000), 0x3, 0x80) memfd_create(&(0x7f0000000040)='(,,&\x00', 0x7) 19.069386474s ago: executing program 1 (id=2313): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000004c0)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r3}, 0x10) r4 = syz_open_dev$usbfs(&(0x7f0000000080), 0x74, 0x101301) ioctl$USBDEVFS_IOCTL(r4, 0xc0105512, 0x0) r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000340)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0, r6}, 0x18) syz_open_procfs(0x0, 0x0) r7 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82) ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r7) ioctl$USBDEVFS_IOCTL(r4, 0xc0105512, &(0x7f0000000040)=@usbdevfs_connect) bpf$PROG_LOAD(0x5, 0x0, 0x0) socket$igmp(0x2, 0x3, 0x2) 19.007239795s ago: executing program 0 (id=2314): bind$inet(0xffffffffffffffff, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0) sched_setaffinity(0x0, 0x0, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) r1 = syz_open_procfs(0x0, 0x0) r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) r3 = fanotify_init(0x0, 0x0) r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) fanotify_mark(r3, 0x71, 0x8000000, r4, 0x0) fanotify_mark(r3, 0x12, 0x8000001, r2, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = dup(r6) ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r8 = syz_open_dev$loop(&(0x7f0000000000), 0x3, 0x80) memfd_create(&(0x7f0000000040)='(,,&\x00', 0x7) r9 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001400), 0x40801, 0x0) ioctl$LOOP_CHANGE_FD(r8, 0x4c06, r9) 18.890158815s ago: executing program 4 (id=2315): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) bpf$PROG_LOAD(0x5, &(0x7f0000002ec0)={0x0, 0x2, &(0x7f0000000280)=ANY=[@ANYBLOB="1860000000000000f306855925"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) sendmsg$nl_xfrm(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="9402000021000100fcffffff00000000ac1414aae5fffff8b49ed9825133a900fc0100000000000000000000000000000000add500200000000000801aeaaec1", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000070000400706362632874776f666973682900000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040010000dc06216ef2c68e9f6da05d886dbc3273ef99796b36698e2bd5179c3eea5474fc78c9720bfc4f90a708001f0001000000cc0111"], 0x294}}, 0x0) syz_emit_ethernet(0x52, &(0x7f00000007c0)={@broadcast, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "8a27f2", 0x1c, 0x2c, 0x0, @remote, @local, {[@routing={0x0, 0x0, 0x0, 0xf6}], {{0x8000, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a010300000000000000000100fffd0900010073797a300000000040000000030a01020000000000000000010000000900030073797a3200000000140004800800024032658aeb08000140000000010900010073797a300000000044000000060a010400000000000001040100000008000b40000000000900010073797a30000000001c000480180001800d00010073796e70726f7879000000000400028014000000110001"], 0xcc}}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20000000000000702"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) syz_emit_ethernet(0x3a, &(0x7f0000000440)={@local, @broadcast, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x6, 0x0, @empty, @empty}, {{0x0, 0x4e29, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x16, 0x1, 0x0, 0x0, {[@generic={0x2, 0x2}]}}}}}}}, 0x0) r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000300), 0xffffffffffffffff) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x12, 0x2, 0x4, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_DELETE_ELEM(0x2, &(0x7f00000003c0)={r5, &(0x7f0000000200), 0x20000000}, 0x20) r6 = syz_open_dev$usbfs(&(0x7f0000000080), 0x77, 0x101301) ioctl$USBDEVFS_CONNECTINFO(r6, 0x80045520, 0x0) msgsnd(0x0, &(0x7f0000000040)=ANY=[@ANYRESHEX, @ANYRES64], 0xe4, 0x0) sendmsg$ETHTOOL_MSG_TSINFO_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000580)={0x3c, 0x0, 0x800, 0x70bd25, 0x25dfdbff, {}, [@HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'sit0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x40000) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r5}, &(0x7f0000000040)=0x2, &(0x7f0000000180)=r3, 0x2}, 0x20) r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) pipe2$watch_queue(&(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80) r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff) sendmsg$NL80211_CMD_ABORT_SCAN(r8, &(0x7f0000000480)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x20, r9, 0x0, 0x70bd26, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x1, 0x7c}}}}, ["", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x840}, 0x91) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r10 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_tx_ring(r10, 0x107, 0xd, &(0x7f0000000100)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c) sendmmsg(r4, &(0x7f0000000640)=[{{&(0x7f0000000180)=@hci={0x1f, 0x0, 0x3}, 0x80, 0x0, 0x0, &(0x7f0000000680)=ANY=[], 0x10}}], 0x1, 0x4004) ioctl$sock_SIOCGIFINDEX_802154(r7, 0x8933, &(0x7f0000000d40)={'wpan0\x00', 0x0}) sendmsg$NL802154_CMD_NEW_SEC_LEVEL(r7, &(0x7f0000000ec0)={0x0, 0x0, &(0x7f0000000e80)={&(0x7f00000004c0)={0x48, r2, 0x1, 0xfffffffe, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r11}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r11}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r11}, @NL802154_ATTR_SEC_LEVEL={0x4}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_WPAN_DEV={0xc}]}, 0x48}, 0x1, 0x0, 0x0, 0x240008c0}, 0x4080) 17.964502976s ago: executing program 1 (id=2316): bind$inet(0xffffffffffffffff, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0) sched_setaffinity(0x0, 0x0, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) r1 = syz_open_procfs(0x0, 0x0) r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) r3 = fanotify_init(0x0, 0x0) r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) fanotify_mark(r3, 0x71, 0x8000000, r4, 0x0) fanotify_mark(r3, 0x12, 0x8000001, r2, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = dup(r6) ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) fanotify_mark(r3, 0x1, 0x1010, r1, 0x0) sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) syz_open_dev$loop(&(0x7f0000000000), 0x3, 0x80) memfd_create(&(0x7f0000000040)='(,,&\x00', 0x7) openat$nullb(0xffffffffffffff9c, &(0x7f0000001400), 0x40801, 0x0) 16.87938013s ago: executing program 0 (id=2317): bind$inet(0xffffffffffffffff, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0) sched_setaffinity(0x0, 0x0, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) r1 = syz_open_procfs(0x0, 0x0) r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) r3 = fanotify_init(0x0, 0x0) r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) fanotify_mark(r3, 0x71, 0x8000000, r4, 0x0) fanotify_mark(r3, 0x12, 0x8000001, r2, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = dup(r6) ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) fanotify_mark(r3, 0x1, 0x1010, r1, 0x0) sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) syz_open_dev$loop(&(0x7f0000000000), 0x3, 0x80) memfd_create(&(0x7f0000000040)='(,,&\x00', 0x7) openat$nullb(0xffffffffffffff9c, &(0x7f0000001400), 0x40801, 0x0) 16.836877876s ago: executing program 3 (id=2318): r0 = socket$netlink(0x10, 0x3, 0x8) setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r0, 0x10e, 0x2, &(0x7f0000000280)=0x13, 0x4) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/ip6_flowlabel\x00') lseek(r1, 0x1c, 0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @socket={{0xb}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_SOCKET_DREG={0x8, 0x2, 0x1, 0x0, 0x11}, @NFTA_SOCKET_KEY={0x8, 0x1, 0x1, 0x0, 0x3}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x7c}}, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0xc, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0xa, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r4, 0x2000002, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) socket$packet(0x11, 0x2, 0x300) socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg(r5, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00) sendmsg$tipc(r6, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0) ioctl$KVM_PRE_FAULT_MEMORY(r1, 0xc040aed5, &(0x7f00000000c0)={0x0, 0x10000}) setsockopt$sock_attach_bpf(r1, 0x1, 0x49, &(0x7f0000000540), 0x4) 10.104570481s ago: executing program 4 (id=2319): fchdir(0xffffffffffffffff) mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0) r0 = inotify_init1(0x0) fcntl$setown(r0, 0x8, 0xffffffffffffffff) fcntl$getownex(r0, 0x10, &(0x7f0000000140)={0x0, 0x0}) r2 = syz_open_procfs(r1, &(0x7f0000000600)='fd/4\x00') ioctl$FS_IOC_FIEMAP(r2, 0xc020660b, &(0x7f0000000280)=ANY=[@ANYBLOB="00000000000000000300000000020000000000000000000002", @ANYRESHEX, @ANYRESDEC=r1, @ANYRES8=r2, @ANYRES64=r2, @ANYBLOB="01ad4b4dec42cd44c9348582b50aa91c992f2a5de0cbc500a2313bf50c72cedaa4d667427ceffbe3938964357e207e7dbaa8c5e3a3d49d5ed95bb209fc86dc929e76dabffac2a3ae52d22864ed8545ca73d557bd6558aacd8a8e3ad97a0a9c3534f9f67cfea6a63b5b46a2a40a9c8efe83bd519aa6292b320703f43ce78de70a34246e71d3ec3d592d9d84f9e8363a3862845dd288c19d209f309a72d1c7fb20ab4265a98b0cca78ad40a74e8d081740f912fdb319e7c30069342b028a0b39ac811c8e1aa880b6f9d008b0", @ANYRES64=r0, @ANYRESDEC]) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000500)={&(0x7f0000000240)=ANY=[@ANYBLOB="9feb01001800000000000000080000000c00000002000000000000000000000d000000000000"], 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000001c0)={'bridge0\x00', 0x0}) sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="3800000055002f03020000000000000007000000", @ANYRES32=r6, @ANYBLOB="200001"], 0x38}}, 0x0) r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r8 = userfaultfd(0x801) mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0) remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0xf0ffffff) getsockname$packet(r2, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000400)=0x14) ioctl$UFFDIO_API(r8, 0xc018aa3f, &(0x7f0000000600)) ioctl$UFFDIO_REGISTER(r8, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x4}) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) ioctl$UFFDIO_COPY(r8, 0xc028aa03, &(0x7f0000000000)={&(0x7f0000800000/0x800000)=nil, &(0x7f0000199000/0x800000)=nil, 0x800000}) r9 = openat$ttyS3(0xffffff9c, &(0x7f0000000080), 0x400, 0x0) ioctl$TIOCSTI(r9, 0x5412, &(0x7f0000000180)=0x5) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r7, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) r10 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r10, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r10, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f00000003c0)=[@in6={0xa, 0x4e24, 0x0, @private1}]}, &(0x7f0000000180)=0x10) setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(r10, 0x84, 0x23, &(0x7f0000000440)={r11, 0x8000}, 0x8) 10.103893231s ago: executing program 1 (id=2320): bind$inet(0xffffffffffffffff, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0) sched_setaffinity(0x0, 0x0, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) r1 = syz_open_procfs(0x0, 0x0) r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) r3 = fanotify_init(0x0, 0x0) r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) fanotify_mark(r3, 0x71, 0x8000000, r4, 0x0) fanotify_mark(r3, 0x12, 0x8000001, r2, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = dup(r6) ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) fanotify_mark(r3, 0x1, 0x1010, r1, 0x0) sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) syz_open_dev$loop(&(0x7f0000000000), 0x3, 0x80) memfd_create(&(0x7f0000000040)='(,,&\x00', 0x7) openat$nullb(0xffffffffffffff9c, &(0x7f0000001400), 0x40801, 0x0) 9.983622423s ago: executing program 0 (id=2321): set_mempolicy(0x4003, &(0x7f0000000080)=0x7, 0x3) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) getpid() prlimit64(0x0, 0xe, &(0x7f00000014c0)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000280)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r3 = syz_init_net_socket$rose(0xb, 0x5, 0x0) setsockopt$rose(r3, 0x104, 0x2, &(0x7f0000000140), 0x4) r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000600), 0x8c540) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f0000000640)={0x10, 0x3, 0x1, 'queue1\x00', 0x4}) r5 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFNL_MSG_ACCT_NEW(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000540)={0x74, 0x0, 0x7, 0x401, 0x0, 0x0, {}, [@NFACCT_FILTER={0x1c, 0x7, 0x0, 0x1, [@NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x4}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x10000}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x9}]}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x7}, @NFACCT_NAME={0x9, 0x1, 'syz0\x00'}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x4}, @NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x2}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x9}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0xffffffff}]}, 0x74}, 0x1, 0x0, 0x0, 0x20000000}, 0x0) sendmsg$NFNL_MSG_ACCT_NEW(r5, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)={0x20, 0x0, 0x7, 0x101, 0x0, 0x0, {}, [@NFACCT_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x20}}, 0x0) sendmsg$NFNL_MSG_ACCT_NEW(r5, &(0x7f0000000500)={&(0x7f0000000100), 0xc, &(0x7f00000004c0)={&(0x7f0000000700)=ANY=[@ANYBLOB="4000000000070101000000000c00034000000000000000040c0002400000000d00008eaf0c0003400000000000000004f9b3f58439846cca74db60d777c3a3d4a6a3801a1483c270e759c9a8854aa210521d510dbf8df93b55518dea2f7dd305b7a08c36eea1fa24b020dc6a1ff358b489a12eac340b418365d0edc51723b286c3d734dc867203ce"], 0x40}}, 0x24000000) bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r6 = socket$nl_netfilter(0x10, 0x3, 0xc) r7 = dup(r6) sendmsg$IPSET_CMD_CREATE(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="680000000206010300000000fffff000000000000500010006000000050005000a0000000900020073797a32000000000500040000000000140007800800064000000000080013400000004011000300686173683a6970"], 0x68}}, 0x0) getresgid(0x0, &(0x7f0000000040), &(0x7f00000000c0)) 8.686771036s ago: executing program 3 (id=2322): r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = getpid() socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$unix(0x1, 0x2, 0x0) getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setresuid(0xee01, r5, 0xffffffffffffffff) sendmmsg$unix(r3, &(0x7f0000002600)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=[@cred={{0x1c, 0x1, 0x2, {r1}}}], 0x20}}], 0x1, 0x4040) setsockopt$WPAN_SECURITY(r0, 0x0, 0x1, &(0x7f0000000080)=0x3, 0x4) syz_emit_ethernet(0x69, &(0x7f00000001c0)=ANY=[@ANYBLOB="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"], 0x0) r6 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0) writev(r6, &(0x7f0000000180)=[{&(0x7f0000001740)="e5", 0x1}], 0x1) r7 = socket$inet6(0xa, 0x2, 0x0) r8 = syz_open_procfs(0x0, &(0x7f0000000100)='fdinfo/3\x00') preadv(r8, &(0x7f0000000000), 0x5a, 0x0, 0x0) ioctl$UFFDIO_API(r8, 0xc018aa3f, &(0x7f0000000140)={0xaa, 0x40}) bind$inet6(r7, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) recvmmsg(r7, &(0x7f0000000040), 0x0, 0x10000, 0x0) setsockopt$inet6_int(r7, 0x29, 0x8, &(0x7f0000000000)=0x7f, 0x4) r9 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_mreq(r9, 0x29, 0x1c, 0x0, 0x0) getsockopt$EBT_SO_GET_INFO(r8, 0x0, 0x80, &(0x7f0000000d80)={'broute\x00', 0x0, 0x0, 0x0, [0x2, 0x40, 0x8, 0x1944, 0x7, 0x2]}, &(0x7f0000000e00)=0x78) sendto$inet6(r7, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c) pwritev2(r2, &(0x7f0000000d40)=[{&(0x7f0000000bc0)="bc5eb16aec1086c2999fe1366852a323cee3f059332c2e7faf3226c789181ea98d956464b2b11d3a062a9a9fec88f7c7c2e55996850b4e3590893eabc5e538e1f36b79917357cea65869d1f3c1e58b5d1cb9f3382542bf8a49bc89c96e4b52123de7de4401f238ac19b1be09a55ab845a8726839fcd09618bcde7639cfc5a161831d8c642555ad434c811dcb518e", 0x8e}, {&(0x7f0000000040)="8ada1429d7ce2e", 0x7}, {&(0x7f0000000c80)="a8d441c9508ad7fcaceb687645941f1678822b71b62366c3ff55bb4971f7084ba0b0d677fa9491bf13c243f7d66c0bd522bbf363dfb83241dd72912c41bbb21558f4e9ca80161f225812edcfe2e02f891d2a4786ed5fbf59bc15d4d6341ea494b8275a7d44e4b143730deedc7e4668ca36cf6d297d80649442e6d9252cadfb858e058ebc235d2c0f3db2f565dbb6", 0x8e}], 0x3, 0x5a19, 0x4, 0x18) setsockopt$IP6T_SO_SET_REPLACE(r7, 0x29, 0x40, &(0x7f0000000340)=@mangle={'mangle\x00', 0x1f, 0x6, 0x7e8, 0x368, 0xf8, 0x4a8, 0x0, 0x0, 0x718, 0x718, 0x718, 0x718, 0x718, 0x6, &(0x7f00000000c0), {[{{@uncond, 0x0, 0xd0, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x1}}]}, @inet=@TOS={0x28, 'TOS\x00', 0x0, {0xc, 0x2}}}, {{@uncond, 0x0, 0x108, 0x150, 0x0, {}, [@common=@frag={{0x30}, {[0xfc6c, 0x8000], 0x7, 0x2, 0x1}}, @common=@ah={{0x30}, {[0x4d5, 0x4d4], 0xf9, 0x4, 0x2}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv6=@mcast1, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x2f, 0x16, 0xe}}}, {{@ipv6={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', [0xffffff00, 0xff000000, 0x0, 0xffffffff], [0x0, 0xff000000, 0x0, 0xffffff00], 'veth1_to_bond\x00', 'nicvf0\x00', {}, {0x101}, 0x6, 0x9, 0x2}, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x5}}, @inet=@rpfilter={{0x28}, {0x8}}]}, @unspec=@CHECKSUM={0x28}}, {{@uncond, 0x0, 0xf8, 0x140, 0x0, {}, [@common=@inet=@socket1={{0x28}}, @inet=@rpfilter={{0x28}, {0xc32f01c4407f171b}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv4=@remote, @ipv6=@ipv4={'\x00', '\xff\xff', @remote}, 0x16, 0x24, 0x4}}}, {{@uncond, 0x0, 0x228, 0x270, 0x0, {}, [@common=@rt={{0x138}, {0x2, [0x2, 0xa237], 0x4, 0x30, 0x5, [@remote, @rand_addr=' \x01\x00', @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @dev={0xfe, 0x80, '\x00', 0x41}, @private2, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @remote, @dev={0xfe, 0x80, '\x00', 0x36}, @rand_addr=' \x01\x00', @private0, @empty, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @mcast1, @loopback, @mcast1, @loopback], 0x7}}, @common=@dst={{0x48}, {0x67, 0x7, 0x1, [0x6, 0x21a, 0x8, 0xf7, 0x2, 0x3, 0x4, 0x6, 0x8, 0x9, 0xbe51, 0x200, 0x78a9, 0x81, 0x8, 0xe6], 0x9}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@private1={0xfc, 0x1, '\x00', 0x1}, @ipv6=@private2, 0x1d, 0x16, 0x9}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x848) 8.437221035s ago: executing program 3 (id=2323): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000440)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x10, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10) r4 = syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r4, 0xc1485544, &(0x7f0000000080)) openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40002, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) r5 = syz_open_dev$tty20(0xc, 0x4, 0x0) r6 = dup(r5) write$uinput_user_dev(r6, &(0x7f0000000080)={'syz0\x00', {}, 0x0, [], [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x5], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7]}, 0x45c) socket$nl_route(0x10, 0x3, 0x0) r7 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$IPT_SO_SET_REPLACE(r7, 0x0, 0x40, &(0x7f0000000000)=@mangle={'mangle\x00', 0x44, 0x6, 0x448, 0x0, 0x200, 0x0, 0x200, 0x2e8, 0x3b0, 0x3b0, 0x3b0, 0x3b0, 0x3b0, 0x6, 0x0, {[{{@ip={@multicast2, @broadcast, 0x0, 0x0, 'nicvf0\x00', 'veth0\x00'}, 0x0, 0x70, 0x98}, @TTL={0x28, 'TTL\x00', 0x0, {0x1, 0x6}}}, {{@ip={@remote, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 'vcan0\x00', 'veth0_virt_wifi\x00'}, 0x0, 0x70, 0xd0}, @common=@SET={0x60}}, {{@uncond, 0x0, 0x70, 0x98}, @TTL={0x28}}, {{@ip={@rand_addr, @dev, 0x0, 0x0, 'syzkaller0\x00', 'bond0\x00'}, 0x0, 0xc0, 0xe8, 0x0, {}, [@inet=@rpfilter={{0x28}}, @inet=@rpfilter={{0x28}}]}, @unspec=@CHECKSUM={0x28}}, {{@uncond, 0x0, 0xa0, 0xc8, 0x0, {}, [@common=@ah={{0x30}}]}, @ECN={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x4a8) socket$inet6_udp(0xa, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r8 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) preadv(r8, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) 7.266417373s ago: executing program 0 (id=2324): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = fsopen(&(0x7f0000000000)='udf\x00', 0x0) fgetxattr(r0, &(0x7f0000000180)=ANY=[], 0x0, 0x0) r1 = socket$tipc(0x1e, 0x2, 0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c00038008000140000000000800024000000000180003801400010076657468305f746f5f687372000000005c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c0003801400010076657468305f746f5f687372000000001400010076657468315f766c616e"], 0xfc}}, 0x0) landlock_create_ruleset(&(0x7f0000000080)={0x5230}, 0x10, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000040)={0x0, 0x0}) getpriority(0x2, r3) setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f00000000c0)={0x41}, 0x10) r4 = socket$tipc(0x1e, 0x2, 0x0) setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000000)={0x2041}, 0x10) r5 = socket$tipc(0x1e, 0x5, 0x0) sendmsg$tipc(r5, &(0x7f0000000240)={&(0x7f0000000280)=@nameseq={0x1e, 0x2, 0x0, {0x41, 0x4000000}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4004010}, 0x0) 1.785554805s ago: executing program 3 (id=2325): bind$inet(0xffffffffffffffff, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0) sched_setaffinity(0x0, 0x0, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) r1 = syz_open_procfs(0x0, 0x0) r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) r3 = fanotify_init(0x0, 0x0) r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) fanotify_mark(r3, 0x71, 0x8000000, r4, 0x0) fanotify_mark(r3, 0x12, 0x8000001, r2, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = dup(r6) ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) fanotify_mark(r3, 0x1, 0x1010, r1, 0x0) sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r8 = syz_open_dev$loop(&(0x7f0000000000), 0x3, 0x80) memfd_create(&(0x7f0000000040)='(,,&\x00', 0x7) ioctl$LOOP_CHANGE_FD(r8, 0x4c06, 0xffffffffffffffff) 1.10924824s ago: executing program 0 (id=2326): r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) ioctl$BTRFS_IOC_WAIT_SYNC(r0, 0x40089416, &(0x7f00000000c0)) madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil) r2 = syz_open_procfs(0x0, &(0x7f0000000240)='clear_refs\x00') r3 = socket$inet(0x2, 0x4000000000000001, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r4 = getpid() sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r5, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r7}, 0x10) socket$key(0xf, 0x3, 0x2) setsockopt$inet_tcp_int(r3, 0x6, 0x80000000000002, 0x0, 0x0) sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x240048a5}, 0x0) setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, 0x0, 0x0) r8 = socket$inet6(0xa, 0x3, 0xff) setsockopt$inet6_int(r8, 0x29, 0x16, &(0x7f0000000000), 0x4) close(r8) writev(r2, &(0x7f0000000100)=[{&(0x7f00000004c0)='4', 0x1}], 0x9) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x12, r1, 0x0) r9 = getpid() process_vm_readv(r9, &(0x7f0000008400)=[{&(0x7f0000006180)=""/152, 0x98}], 0x1, &(0x7f0000008640), 0x0, 0x0) process_vm_readv(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) 214.493985ms ago: executing program 2 (id=2303): socket$nl_generic(0x10, 0x3, 0x10) socket$inet_udp(0x2, 0x2, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = syz_io_uring_setup(0x5d71, &(0x7f0000000340)={0x0, 0x0, 0x10700}, &(0x7f0000000200), &(0x7f0000000140)=0x0) syz_io_uring_setup(0x1868, &(0x7f00000003c0), &(0x7f0000000040)=0x0, &(0x7f0000000100)) syz_io_uring_submit(r2, r1, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xfffffffffffffe54}) io_uring_enter(r0, 0x184c, 0x0, 0x0, 0x0, 0x0) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0) sendmsg$NL80211_CMD_NEW_STATION(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0xfffffc70, &(0x7f0000001040)={&(0x7f0000000000)={0x2c, 0x0, 0x100, 0x0, 0x4, {{}, {@val={0x8}, @val={0x0, 0x99, {0x5, 0x2d}}}}, [@NL80211_ATTR_STA_TX_POWER={0x0, 0x114, 0x8}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0xc0}]}, 0x2c}}, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000050000000200000000000000", @ANYRES32, @ANYBLOB="000000ddffff74078fa41736669b000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0xc, &(0x7f0000000180)=ANY=[@ANYRES8=r3, @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0) write$binfmt_script(r5, &(0x7f0000000100), 0xfecc) setsockopt$IPT_SO_SET_REPLACE(r3, 0x4000000000000, 0x40, &(0x7f0000000040)=@raw={'raw\x00', 0x4001, 0x3, 0x210, 0x180, 0x0, 0x148, 0x0, 0x148, 0x220, 0x240, 0x240, 0x220, 0x240, 0x7fffffe, 0x0, {[{{@ip={@rand_addr, @local, 0x0, 0x0, 'ip6gretap0\x00', 'veth1_to_batadv\x00'}, 0x0, 0x70, 0xd8}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'pptp\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0x70, 0xa0}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x270) 0s ago: executing program 2 (id=2328): prlimit64(0x0, 0xe, &(0x7f0000000280)={0x7, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendto$packet(0xffffffffffffffff, &(0x7f0000000180)='`', 0x1, 0x0, 0x0, 0x0) r6 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="0100000000000000000005000000180001801400020073797a5f74756e00000008000000000018000380140003801000018004000300080001"], 0x44}}, 0x0) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x44, r6, 0x7, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKMODES_OURS={0x18, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x8, 0x4, '\x00\x00\x00\x00'}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x9}, @ETHTOOL_A_BITSET_NOMASK={0x4}]}]}, 0x44}}, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d) r7 = socket(0x10, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r7, 0x89f1, &(0x7f0000000000)={'ip6gre0\x00', &(0x7f00000009c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @loopback, @private1={0xfc, 0x1, '\x00', 0x1}}}) ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r7, 0x89f3, &(0x7f0000000400)={'syztnl1\x00', 0x0}) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) epoll_create1(0x0) r8 = open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x0, 0x13, r8, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000c40)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct={0x4}]}}, &(0x7f0000000f80)=""/4115, 0x26, 0x1013, 0x1, 0x0, 0x0, @void, @value}, 0x28) socket$packet(0x11, 0x2, 0x300) kernel console output (not intermixed with test programs): ength. [ 568.404561][T12494] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.1984'. [ 568.503000][T12507] netlink: 'syz.3.1987': attribute type 9 has an invalid length. [ 568.512355][T12507] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.1987'. [ 569.226450][T12521] hub 6-0:1.0: USB hub found [ 569.232431][T12521] hub 6-0:1.0: 1 port detected [ 570.134366][T12528] hub 6-0:1.0: USB hub found [ 570.141687][T12528] hub 6-0:1.0: 1 port detected [ 570.505736][T12534] FAULT_INJECTION: forcing a failure. [ 570.505736][T12534] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 570.532089][T12534] CPU: 0 UID: 0 PID: 12534 Comm: syz.1.1994 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 570.542624][T12534] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 570.552735][T12534] Call Trace: [ 570.556131][T12534] [ 570.559078][T12534] dump_stack_lvl+0x241/0x360 [ 570.563798][T12534] ? __pfx_dump_stack_lvl+0x10/0x10 [ 570.569030][T12534] ? __pfx__printk+0x10/0x10 [ 570.573715][T12534] should_fail_ex+0x3b0/0x4e0 [ 570.578436][T12534] _copy_from_user+0x2f/0xe0 [ 570.583072][T12534] sctp_setsockopt+0xcc/0x11c0 [ 570.587879][T12534] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 570.593989][T12534] do_sock_setsockopt+0x3af/0x720 [ 570.599052][T12534] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 570.604642][T12534] ? __fget_files+0x29/0x470 [ 570.609272][T12534] ? __fget_files+0x3f3/0x470 [ 570.613991][T12534] ? __fget_files+0x29/0x470 [ 570.618717][T12534] __sys_setsockopt+0x1a2/0x250 [ 570.623616][T12534] __x64_sys_setsockopt+0xb5/0xd0 [ 570.628677][T12534] do_syscall_64+0xf3/0x230 [ 570.633216][T12534] ? clear_bhb_loop+0x35/0x90 [ 570.637962][T12534] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 570.644399][T12534] RIP: 0033:0x7fed56b7dff9 [ 570.648820][T12534] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 570.668524][T12534] RSP: 002b:00007fed57980038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 570.677020][T12534] RAX: ffffffffffffffda RBX: 00007fed56d36058 RCX: 00007fed56b7dff9 [ 570.685009][T12534] RDX: 0000000000000009 RSI: 0000000000000084 RDI: 0000000000000003 [ 570.692975][T12534] RBP: 00007fed57980090 R08: 000000000000009c R09: 0000000000000000 [ 570.700941][T12534] R10: 0000000020000300 R11: 0000000000000246 R12: 0000000000000001 [ 570.708908][T12534] R13: 0000000000000001 R14: 00007fed56d36058 R15: 00007fffd0859858 [ 570.716885][T12534] [ 571.743287][T12544] hub 6-0:1.0: USB hub found [ 571.754054][T12544] hub 6-0:1.0: 1 port detected [ 572.132509][T12548] netlink: 'syz.4.1997': attribute type 9 has an invalid length. [ 572.206266][T12548] netlink: 209836 bytes leftover after parsing attributes in process `syz.4.1997'. [ 572.998424][T12562] hub 6-0:1.0: USB hub found [ 573.004434][T12562] hub 6-0:1.0: 1 port detected [ 573.676267][ T5221] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0 [ 573.684034][ T5221] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0 [ 573.692199][ T5221] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0 [ 573.700266][ T5221] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0 [ 573.707935][ T5221] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0 [ 573.715449][ T5221] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0 [ 573.722862][ T5221] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0 [ 573.730373][ T5221] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0 [ 573.737868][ T5221] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0 [ 573.745340][ T5221] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0 [ 573.753132][ T5221] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0 [ 573.760884][ T5221] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0 [ 573.768912][ T5221] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0 [ 573.776782][ T5221] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0 [ 573.784616][ T5221] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0 [ 573.793909][ T5221] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0 [ 573.801343][ T5221] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0 [ 573.809168][ T5221] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0 [ 573.816890][ T5221] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0 [ 573.824655][ T5221] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0 [ 573.832075][ T5221] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0 [ 573.839779][ T5221] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0 [ 573.847392][ T5221] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0 [ 573.855047][ T5221] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0 [ 573.862481][ T5221] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0 [ 573.869938][ T5221] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0 [ 573.877435][ T5221] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0 [ 573.884967][ T5221] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0 [ 573.885138][T12570] FAULT_INJECTION: forcing a failure. [ 573.885138][T12570] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 573.893383][ T5221] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0 [ 573.913503][ T5221] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0 [ 573.921003][ T5221] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0 [ 573.928487][ T5221] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0 [ 573.964103][ T5221] hid-generic 0000:0000:0000.000B: hidraw0: HID v0.00 Device [syz1] on syz0 [ 574.015362][T12570] CPU: 0 UID: 0 PID: 12570 Comm: syz.4.2004 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 574.025850][T12570] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 574.035968][T12570] Call Trace: [ 574.039287][T12570] [ 574.042250][T12570] dump_stack_lvl+0x241/0x360 [ 574.046965][T12570] ? __pfx_dump_stack_lvl+0x10/0x10 [ 574.052190][T12570] ? __pfx__printk+0x10/0x10 [ 574.056830][T12570] ? __pfx_lock_release+0x10/0x10 [ 574.061897][T12570] should_fail_ex+0x3b0/0x4e0 [ 574.066624][T12570] _copy_from_iter+0x1ed/0x1d60 [ 574.071511][T12570] ? __virt_addr_valid+0x183/0x530 [ 574.076655][T12570] ? __pfx_lock_release+0x10/0x10 [ 574.081733][T12570] ? __alloc_skb+0x28f/0x440 [ 574.086350][T12570] ? __pfx__copy_from_iter+0x10/0x10 [ 574.091662][T12570] ? __virt_addr_valid+0x183/0x530 [ 574.096794][T12570] ? __virt_addr_valid+0x183/0x530 [ 574.101931][T12570] ? __virt_addr_valid+0x45f/0x530 [ 574.107076][T12570] ? __check_object_size+0x48e/0x900 [ 574.112486][T12570] netlink_sendmsg+0x73d/0xcb0 [ 574.117288][T12570] ? __pfx_netlink_sendmsg+0x10/0x10 [ 574.122610][T12570] ? __pfx_netlink_sendmsg+0x10/0x10 [ 574.128024][T12570] __sock_sendmsg+0x221/0x270 [ 574.132737][T12570] ____sys_sendmsg+0x52a/0x7e0 [ 574.137536][T12570] ? __pfx_____sys_sendmsg+0x10/0x10 [ 574.142864][T12570] __sys_sendmsg+0x292/0x380 [ 574.147484][T12570] ? __pfx___sys_sendmsg+0x10/0x10 [ 574.152630][T12570] ? __pfx_vfs_write+0x10/0x10 [ 574.157447][T12570] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 574.163805][T12570] ? do_syscall_64+0x100/0x230 [ 574.168595][T12570] ? do_syscall_64+0xb6/0x230 [ 574.173303][T12570] do_syscall_64+0xf3/0x230 [ 574.177833][T12570] ? clear_bhb_loop+0x35/0x90 [ 574.182526][T12570] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 574.188445][T12570] RIP: 0033:0x7f937917dff9 [ 574.192876][T12570] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 574.212508][T12570] RSP: 002b:00007f9379f19038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 574.220949][T12570] RAX: ffffffffffffffda RBX: 00007f9379335f80 RCX: 00007f937917dff9 [ 574.228949][T12570] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000003 [ 574.236946][T12570] RBP: 00007f9379f19090 R08: 0000000000000000 R09: 0000000000000000 [ 574.244948][T12570] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 574.252960][T12570] R13: 0000000000000000 R14: 00007f9379335f80 R15: 00007ffe50517ad8 [ 574.260972][T12570] [ 574.393846][ T8] usb 3-1: new high-speed USB device number 11 using dummy_hcd [ 574.511977][T12588] process 'syz.4.2009' launched './file0' with NULL argv: empty string added [ 575.196715][T12592] netlink: 'syz.1.2010': attribute type 9 has an invalid length. [ 575.204736][T12592] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.2010'. [ 575.274526][ T8] usb 3-1: config 0 has no interfaces? [ 575.280104][ T8] usb 3-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00 [ 575.295183][ T8] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 575.316198][ T8] usb 3-1: config 0 descriptor?? [ 575.514748][T12607] netlink: 132 bytes leftover after parsing attributes in process `syz.4.2016'. [ 575.529768][ T8] usb 3-1: USB disconnect, device number 11 [ 575.543529][T12608] netlink: 132 bytes leftover after parsing attributes in process `syz.4.2016'. [ 575.576641][T12610] netlink: 52 bytes leftover after parsing attributes in process `syz.1.2017'. [ 575.723252][T12616] FAULT_INJECTION: forcing a failure. [ 575.723252][T12616] name failslab, interval 1, probability 0, space 0, times 1 [ 575.738436][T12616] CPU: 0 UID: 0 PID: 12616 Comm: syz.1.2019 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 575.749084][T12616] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 575.759143][T12616] Call Trace: [ 575.762413][T12616] [ 575.765516][T12616] dump_stack_lvl+0x241/0x360 [ 575.770205][T12616] ? __pfx_dump_stack_lvl+0x10/0x10 [ 575.775411][T12616] ? __pfx__printk+0x10/0x10 [ 575.780004][T12616] ? __kmalloc_noprof+0xb0/0x400 [ 575.784969][T12616] ? __pfx___might_resched+0x10/0x10 [ 575.790275][T12616] should_fail_ex+0x3b0/0x4e0 [ 575.794954][T12616] ? security_prepare_creds+0x53/0x360 [ 575.800494][T12616] should_failslab+0xac/0x100 [ 575.805160][T12616] ? security_prepare_creds+0x53/0x360 [ 575.810617][T12616] __kmalloc_noprof+0xd8/0x400 [ 575.815382][T12616] ? prepare_creds+0x31/0x640 [ 575.820090][T12616] security_prepare_creds+0x53/0x360 [ 575.825385][T12616] prepare_creds+0x467/0x640 [ 575.829975][T12616] __sys_setuid+0x92/0x620 [ 575.834399][T12616] ? do_syscall_64+0xb6/0x230 [ 575.839104][T12616] do_syscall_64+0xf3/0x230 [ 575.843630][T12616] ? clear_bhb_loop+0x35/0x90 [ 575.848309][T12616] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 575.854210][T12616] RIP: 0033:0x7fed56b7dff9 [ 575.858791][T12616] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 575.878412][T12616] RSP: 002b:00007fed57980038 EFLAGS: 00000246 ORIG_RAX: 0000000000000069 [ 575.886868][T12616] RAX: ffffffffffffffda RBX: 00007fed56d36058 RCX: 00007fed56b7dff9 [ 575.894912][T12616] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000000000ff [ 575.902907][T12616] RBP: 00007fed57980090 R08: 0000000000000000 R09: 0000000000000000 [ 575.910902][T12616] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 575.918888][T12616] R13: 0000000000000000 R14: 00007fed56d36058 R15: 00007fffd0859858 [ 575.926865][T12616] [ 576.506351][T12623] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2021'. [ 576.522372][T12623] bridge1: entered promiscuous mode [ 576.528462][T12623] bridge1: entered allmulticast mode [ 576.642220][T12628] FAULT_INJECTION: forcing a failure. [ 576.642220][T12628] name failslab, interval 1, probability 0, space 0, times 0 [ 576.670137][T12628] CPU: 0 UID: 0 PID: 12628 Comm: syz.3.2023 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 576.680616][T12628] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 576.690709][T12628] Call Trace: [ 576.694046][T12628] [ 576.696998][T12628] dump_stack_lvl+0x241/0x360 [ 576.701707][T12628] ? __pfx_dump_stack_lvl+0x10/0x10 [ 576.706935][T12628] ? __pfx__printk+0x10/0x10 [ 576.711554][T12628] ? fs_reclaim_acquire+0x93/0x140 [ 576.716698][T12628] ? __pfx___might_resched+0x10/0x10 [ 576.722014][T12628] should_fail_ex+0x3b0/0x4e0 [ 576.726730][T12628] ? tomoyo_realpath_from_path+0xcf/0x5e0 [ 576.732483][T12628] should_failslab+0xac/0x100 [ 576.737185][T12628] ? tomoyo_realpath_from_path+0xcf/0x5e0 [ 576.742930][T12628] __kmalloc_noprof+0xd8/0x400 [ 576.747704][T12628] tomoyo_realpath_from_path+0xcf/0x5e0 [ 576.753261][T12628] tomoyo_path_number_perm+0x23a/0x880 [ 576.758721][T12628] ? tomoyo_path_number_perm+0x208/0x880 [ 576.764355][T12628] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 576.770358][T12628] ? __fget_files+0x29/0x470 [ 576.774952][T12628] ? __fget_files+0x3f3/0x470 [ 576.779636][T12628] security_file_ioctl+0xc6/0x2a0 [ 576.784666][T12628] __se_sys_ioctl+0x47/0x170 [ 576.789259][T12628] do_syscall_64+0xf3/0x230 [ 576.793759][T12628] ? clear_bhb_loop+0x35/0x90 [ 576.798441][T12628] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 576.804332][T12628] RIP: 0033:0x7fd57177dff9 [ 576.808741][T12628] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 576.828342][T12628] RSP: 002b:00007fd572509038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 576.836753][T12628] RAX: ffffffffffffffda RBX: 00007fd571935f80 RCX: 00007fd57177dff9 [ 576.844723][T12628] RDX: 0000000020000340 RSI: 00000000c100565c RDI: 0000000000000003 [ 576.852691][T12628] RBP: 00007fd572509090 R08: 0000000000000000 R09: 0000000000000000 [ 576.860654][T12628] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 576.868628][T12628] R13: 0000000000000000 R14: 00007fd571935f80 R15: 00007ffe018cedf8 [ 576.876611][T12628] [ 576.901062][T12628] ERROR: Out of memory at tomoyo_realpath_from_path. [ 577.019312][T12631] netlink: 'syz.2.2024': attribute type 9 has an invalid length. [ 577.027439][T12631] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.2024'. [ 577.354093][T11967] usb 4-1: new high-speed USB device number 20 using dummy_hcd [ 577.512361][T11967] usb 4-1: New USB device found, idVendor=03f0, idProduct=0307, bcdDevice= 0.01 [ 577.527949][T11967] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 577.560214][T11967] usb 4-1: Product: syz [ 577.573871][T11967] usb 4-1: Manufacturer: syz [ 577.581449][T11967] usb 4-1: SerialNumber: syz [ 577.591845][T11967] usb 4-1: config 0 descriptor?? [ 577.603169][T11967] ums-usbat 4-1:0.0: USB Mass Storage device detected [ 577.824705][ T8] usb 4-1: USB disconnect, device number 20 [ 577.895970][ T5273] usb 2-1: new high-speed USB device number 19 using dummy_hcd [ 578.053990][ T5273] usb 2-1: Using ep0 maxpacket: 16 [ 578.064811][ T5273] usb 2-1: config 3 has an invalid interface number: 160 but max is 3 [ 578.073014][ T5273] usb 2-1: config 3 has an invalid interface number: 100 but max is 3 [ 578.084016][ T5273] usb 2-1: config 3 has an invalid descriptor of length 0, skipping remainder of the config [ 578.095475][ T5273] usb 2-1: config 3 has 2 interfaces, different from the descriptor's value: 4 [ 578.104777][ T5273] usb 2-1: config 3 has no interface number 0 [ 578.111058][ T5273] usb 2-1: config 3 has no interface number 1 [ 578.134612][ T5273] usb 2-1: config 3 interface 160 altsetting 10 endpoint 0x4 has invalid maxpacket 1487, setting to 64 [ 578.150261][ T5273] usb 2-1: config 3 interface 160 altsetting 10 has an invalid descriptor for endpoint zero, skipping [ 578.162037][ T5273] usb 2-1: config 3 interface 160 altsetting 10 endpoint 0x8 has invalid maxpacket 512, setting to 64 [ 578.164013][ T5274] usb 1-1: new high-speed USB device number 13 using dummy_hcd [ 578.173334][ T5273] usb 2-1: config 3 interface 160 altsetting 10 endpoint 0x6 has an invalid bInterval 64, changing to 10 [ 578.192177][ T5273] usb 2-1: config 3 interface 160 altsetting 10 endpoint 0xA has invalid maxpacket 512, setting to 64 [ 578.209292][ T5273] usb 2-1: config 3 interface 160 altsetting 10 has a duplicate endpoint with address 0x4, skipping [ 578.221730][ T5273] usb 2-1: config 3 interface 100 altsetting 9 has a duplicate endpoint with address 0x9, skipping [ 578.232773][ T5273] usb 2-1: config 3 interface 100 altsetting 9 has a duplicate endpoint with address 0x8, skipping [ 578.247034][ T5273] usb 2-1: config 3 interface 100 altsetting 9 has a duplicate endpoint with address 0x4, skipping [ 578.258090][ T5273] usb 2-1: config 3 interface 100 altsetting 9 endpoint 0x7 has an invalid bInterval 163, changing to 7 [ 578.269318][ T5273] usb 2-1: config 3 interface 100 altsetting 9 has a duplicate endpoint with address 0x8, skipping [ 578.285465][ T5273] usb 2-1: config 3 interface 100 altsetting 9 has a duplicate endpoint with address 0x4, skipping [ 578.302388][ T5273] usb 2-1: config 3 interface 100 altsetting 9 has a duplicate endpoint with address 0x2, skipping [ 578.316519][ T5273] usb 2-1: config 3 interface 100 altsetting 9 has a duplicate endpoint with address 0xA, skipping [ 578.331243][ T5273] usb 2-1: config 3 interface 100 altsetting 9 has a duplicate endpoint with address 0xD, skipping [ 578.348591][ T5273] usb 2-1: config 3 interface 100 altsetting 9 endpoint 0x3 has invalid maxpacket 1015, setting to 64 [ 578.363541][ T5273] usb 2-1: config 3 interface 100 altsetting 9 endpoint 0xB has invalid maxpacket 1024, setting to 64 [ 578.380715][ T5273] usb 2-1: config 3 interface 100 altsetting 9 has a duplicate endpoint with address 0xA, skipping [ 578.392018][ T5273] usb 2-1: config 3 interface 100 altsetting 9 has a duplicate endpoint with address 0x9, skipping [ 578.443235][ T5273] usb 2-1: config 3 interface 160 has no altsetting 0 [ 578.452647][ T5273] usb 2-1: config 3 interface 100 has no altsetting 0 [ 578.471120][ T5273] usb 2-1: New USB device found, idVendor=0499, idProduct=1030, bcdDevice=ef.69 [ 578.477622][T12652] fuse: Bad value for 'rootmode' [ 578.480795][ T5273] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 578.504350][ T5274] usb 1-1: device descriptor read/64, error -71 [ 578.694618][T12654] hub 6-0:1.0: USB hub found [ 578.700058][T12654] hub 6-0:1.0: 1 port detected [ 578.775122][ T5274] usb 1-1: new high-speed USB device number 14 using dummy_hcd [ 578.790884][ T7336] udevd[7336]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory [ 578.944119][ T5274] usb 1-1: device descriptor read/64, error -71 [ 579.073215][ T5274] usb usb1-port1: attempt power cycle [ 579.179538][ T5273] usb 2-1: Product: ь [ 579.183674][ T5273] usb 2-1: Manufacturer: ӿ [ 579.188319][ T5273] usb 2-1: SerialNumber:   [ 579.218193][T12658] FAULT_INJECTION: forcing a failure. [ 579.218193][T12658] name failslab, interval 1, probability 0, space 0, times 0 [ 579.226599][ T29] audit: type=1326 audit(1727564792.209:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12655 comm="syz.3.2033" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd57177dff9 code=0x0 [ 579.231090][T12658] CPU: 1 UID: 0 PID: 12658 Comm: syz.2.2034 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 579.262255][T12658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 579.272398][T12658] Call Trace: [ 579.275672][T12658] [ 579.278602][T12658] dump_stack_lvl+0x241/0x360 [ 579.283277][T12658] ? __pfx_dump_stack_lvl+0x10/0x10 [ 579.288467][T12658] ? __pfx__printk+0x10/0x10 [ 579.293047][T12658] ? fs_reclaim_acquire+0x93/0x140 [ 579.298156][T12658] ? __pfx___might_resched+0x10/0x10 [ 579.303441][T12658] should_fail_ex+0x3b0/0x4e0 [ 579.308128][T12658] ? tomoyo_encode+0x26f/0x540 [ 579.312884][T12658] should_failslab+0xac/0x100 [ 579.317555][T12658] ? tomoyo_encode+0x26f/0x540 [ 579.322322][T12658] __kmalloc_noprof+0xd8/0x400 [ 579.327088][T12658] tomoyo_encode+0x26f/0x540 [ 579.331686][T12658] tomoyo_realpath_from_path+0x59e/0x5e0 [ 579.337324][T12658] tomoyo_path_number_perm+0x23a/0x880 [ 579.342782][T12658] ? tomoyo_path_number_perm+0x208/0x880 [ 579.348408][T12658] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 579.354629][T12658] ? __fget_files+0x29/0x470 [ 579.359230][T12658] ? __fget_files+0x3f3/0x470 [ 579.363918][T12658] security_file_ioctl+0xc6/0x2a0 [ 579.368970][T12658] __se_sys_ioctl+0x47/0x170 [ 579.373573][T12658] do_syscall_64+0xf3/0x230 [ 579.378077][T12658] ? clear_bhb_loop+0x35/0x90 [ 579.382756][T12658] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 579.388649][T12658] RIP: 0033:0x7f1d2db7dff9 [ 579.393058][T12658] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 579.412657][T12658] RSP: 002b:00007f1d2e97c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 579.421067][T12658] RAX: ffffffffffffffda RBX: 00007f1d2dd35f80 RCX: 00007f1d2db7dff9 [ 579.429052][T12658] RDX: 0000000020000140 RSI: 00000000c0487c04 RDI: 0000000000000003 [ 579.437022][T12658] RBP: 00007f1d2e97c090 R08: 0000000000000000 R09: 0000000000000000 [ 579.444988][T12658] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 579.452948][T12658] R13: 0000000000000000 R14: 00007f1d2dd35f80 R15: 00007ffe39ea2f38 [ 579.460922][T12658] [ 579.474754][T12658] ERROR: Out of memory at tomoyo_realpath_from_path. [ 579.496621][ T5273] usb 2-1: Quirk or no altset; falling back to MIDI 1.0 [ 579.505567][ T5273] snd-usb-audio 2-1:3.160: probe with driver snd-usb-audio failed with error -2 [ 579.521805][ T5273] usb 2-1: Quirk or no altset; falling back to MIDI 1.0 [ 579.537349][ T5274] usb 1-1: new high-speed USB device number 15 using dummy_hcd [ 579.565321][ T5274] usb 1-1: device descriptor read/8, error -71 [ 579.565457][ T5273] snd-usb-audio 2-1:3.100: probe with driver snd-usb-audio failed with error -2 [ 579.587580][T12662] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2035'. [ 579.629858][T11520] udevd[11520]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:3.100/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 579.640631][ T5273] usb 2-1: USB disconnect, device number 19 [ 579.676230][T12664] netlink: 'syz.4.2036': attribute type 9 has an invalid length. [ 579.691296][T12664] netlink: 209836 bytes leftover after parsing attributes in process `syz.4.2036'. [ 579.844031][ T5274] usb 1-1: new high-speed USB device number 16 using dummy_hcd [ 579.864694][ T5274] usb 1-1: device descriptor read/8, error -71 [ 579.989956][ T5274] usb usb1-port1: unable to enumerate USB device [ 580.226733][T12680] hub 6-0:1.0: USB hub found [ 580.233331][T12680] hub 6-0:1.0: 1 port detected [ 581.406878][T12689] fuse: Unknown parameter 'use00000000000000000000' [ 581.703100][T12700] hub 6-0:1.0: USB hub found [ 581.742961][T12700] hub 6-0:1.0: 1 port detected [ 590.424752][ C0] sched: DL replenish lagged too much [ 590.662581][T12721] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2052'. [ 590.710234][T12721] bridge2: entered promiscuous mode [ 590.731068][T12721] bridge2: entered allmulticast mode [ 590.860502][T12726] fuse: Unknown parameter 'use00000000000000000000' [ 590.883506][T12728] syz.0.2054 (12728): drop_caches: 0 [ 591.064170][T12733] tipc: Started in network mode [ 591.069256][T12733] tipc: Node identity 1, cluster identity 4711 [ 591.075949][T12733] tipc: Node number set to 1 [ 592.870121][ T8] usb 4-1: new high-speed USB device number 21 using dummy_hcd [ 593.047208][T12765] Bluetooth: MGMT ver 1.23 [ 593.112130][ T8] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 593.134375][ T8] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 593.161063][ T8] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 593.210984][ T8] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 593.233618][ T8] usb 4-1: SerialNumber: syz [ 593.264383][T12774] fuse: Unknown parameter 'use00000000000000000000' [ 593.266552][T12776] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2072'. [ 593.583600][ T8] usb 4-1: 0:2 : does not exist [ 593.588666][ T8] usb 4-1: unit 5: unexpected type 0x0b [ 593.873838][ T8] usb 4-1: USB disconnect, device number 21 [ 594.118522][T12798] tmpfs: Unknown parameter 'nosS_to+' [ 594.178295][T12719] udevd[12719]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 594.419607][T12805] FAULT_INJECTION: forcing a failure. [ 594.419607][T12805] name failslab, interval 1, probability 0, space 0, times 0 [ 594.440723][T12805] CPU: 0 UID: 0 PID: 12805 Comm: syz.1.2081 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 594.451198][T12805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 594.461284][T12805] Call Trace: [ 594.464588][T12805] [ 594.467534][T12805] dump_stack_lvl+0x241/0x360 [ 594.472243][T12805] ? __pfx_dump_stack_lvl+0x10/0x10 [ 594.477462][T12805] ? __pfx__printk+0x10/0x10 [ 594.482079][T12805] ? kmem_cache_alloc_node_noprof+0x49/0x320 [ 594.488532][T12805] ? __pfx___might_resched+0x10/0x10 [ 594.493867][T12805] should_fail_ex+0x3b0/0x4e0 [ 594.498672][T12805] should_failslab+0xac/0x100 [ 594.503377][T12805] ? __alloc_skb+0x1c3/0x440 [ 594.508080][T12805] kmem_cache_alloc_node_noprof+0x71/0x320 [ 594.513910][T12805] __alloc_skb+0x1c3/0x440 [ 594.518347][T12805] ? __pfx___alloc_skb+0x10/0x10 [ 594.523301][T12805] ? netlink_ack_tlv_len+0x6e/0x200 [ 594.528519][T12805] netlink_ack+0x13f/0xa30 [ 594.532945][T12805] ? ____sys_sendmsg+0x52a/0x7e0 [ 594.537897][T12805] ? __sys_sendmsg+0x292/0x380 [ 594.542675][T12805] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 594.548777][T12805] netlink_rcv_skb+0x262/0x430 [ 594.553568][T12805] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 594.559062][T12805] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 594.564385][T12805] ? cap_capable+0x1b4/0x250 [ 594.568238][T12810] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 594.568983][T12805] ? safesetid_security_capable+0xb2/0x1d0 [ 594.585878][T12805] ? bpf_lsm_capable+0x9/0x10 [ 594.590578][T12805] ? security_capable+0x7e/0x2d0 [ 594.595636][T12805] nfnetlink_rcv+0x297/0x2ab0 [ 594.600363][T12805] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 594.606125][T12805] ? __dev_queue_xmit+0x2da/0x3e80 [ 594.611261][T12805] ? __dev_queue_xmit+0x1764/0x3e80 [ 594.616531][T12805] ? kasan_save_track+0x51/0x80 [ 594.621424][T12805] ? do_syscall_64+0xf3/0x230 [ 594.626141][T12805] ? __pfx_nfnetlink_rcv+0x10/0x10 [ 594.631274][T12805] ? __dev_queue_xmit+0x2da/0x3e80 [ 594.636498][T12805] ? __pfx___dev_queue_xmit+0x10/0x10 [ 594.641905][T12805] ? ref_tracker_free+0x643/0x7e0 [ 594.646945][T12805] ? __asan_memcpy+0x40/0x70 [ 594.651567][T12805] ? __pfx_ref_tracker_free+0x10/0x10 [ 594.656974][T12805] ? netlink_deliver_tap+0x2e/0x1b0 [ 594.662184][T12805] ? skb_clone+0x240/0x390 [ 594.666625][T12805] ? __pfx_lock_release+0x10/0x10 [ 594.671674][T12805] ? __netlink_deliver_tap+0x77e/0x7c0 [ 594.677163][T12805] ? netlink_deliver_tap+0x2e/0x1b0 [ 594.682403][T12805] netlink_unicast+0x7f6/0x990 [ 594.687215][T12805] ? __pfx_netlink_unicast+0x10/0x10 [ 594.692530][T12805] ? __virt_addr_valid+0x183/0x530 [ 594.697428][T12806] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2080'. [ 594.697651][T12805] ? __check_object_size+0x48e/0x900 [ 594.712159][T12805] netlink_sendmsg+0x8e4/0xcb0 [ 594.716965][T12805] ? __pfx_netlink_sendmsg+0x10/0x10 [ 594.722289][T12805] ? __pfx_netlink_sendmsg+0x10/0x10 [ 594.727594][T12805] __sock_sendmsg+0x221/0x270 [ 594.732310][T12805] ____sys_sendmsg+0x52a/0x7e0 [ 594.737110][T12805] ? __pfx_____sys_sendmsg+0x10/0x10 [ 594.742418][T12805] __sys_sendmsg+0x292/0x380 [ 594.747028][T12805] ? __pfx___sys_sendmsg+0x10/0x10 [ 594.752183][T12805] ? __pfx_vfs_write+0x10/0x10 [ 594.756997][T12805] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 594.763361][T12805] ? do_syscall_64+0x100/0x230 [ 594.768159][T12805] ? do_syscall_64+0xb6/0x230 [ 594.772835][T12805] do_syscall_64+0xf3/0x230 [ 594.777333][T12805] ? clear_bhb_loop+0x35/0x90 [ 594.782014][T12805] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 594.787936][T12805] RIP: 0033:0x7fed56b7dff9 [ 594.792376][T12805] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 594.812270][T12805] RSP: 002b:00007fed579a1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 594.820716][T12805] RAX: ffffffffffffffda RBX: 00007fed56d35f80 RCX: 00007fed56b7dff9 [ 594.828717][T12805] RDX: 0000000004044094 RSI: 00000000200000c0 RDI: 0000000000000003 [ 594.836731][T12805] RBP: 00007fed579a1090 R08: 0000000000000000 R09: 0000000000000000 [ 594.844706][T12805] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 594.852703][T12805] R13: 0000000000000000 R14: 00007fed56d35f80 R15: 00007fffd0859858 [ 594.860718][T12805] [ 594.920712][T12817] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2085'. [ 594.984640][T12821] netlink: 'syz.4.2084': attribute type 9 has an invalid length. [ 595.019715][T12821] netlink: 209836 bytes leftover after parsing attributes in process `syz.4.2084'. [ 595.081181][T12826] netlink: 'syz.4.2084': attribute type 9 has an invalid length. [ 595.298416][T12826] netlink: 209836 bytes leftover after parsing attributes in process `syz.4.2084'. [ 595.642258][ T8] libceph: connect (1)[c::]:6789 error -101 [ 595.681714][ T8] libceph: mon0 (1)[c::]:6789 connect error [ 595.715691][T12839] sp0: Synchronizing with TNC [ 595.762560][ T8] libceph: connect (1)[c::]:6789 error -101 [ 595.792427][ T8] libceph: mon0 (1)[c::]:6789 connect error [ 596.085838][ T8] libceph: connect (1)[c::]:6789 error -101 [ 596.091899][ T8] libceph: mon0 (1)[c::]:6789 connect error [ 596.273198][T12860] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2099'. [ 596.436086][T12834] ceph: No mds server is up or the cluster is laggy [ 597.284386][T12888] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2109'. [ 597.502297][T12892] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2111'. [ 601.163299][T12947] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2129'. [ 601.401611][T12961] netlink: 'syz.0.2133': attribute type 30 has an invalid length. [ 601.725302][T12975] FAULT_INJECTION: forcing a failure. [ 601.725302][T12975] name failslab, interval 1, probability 0, space 0, times 0 [ 601.739173][T12975] CPU: 0 UID: 0 PID: 12975 Comm: syz.0.2137 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 601.749629][T12975] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 601.759713][T12975] Call Trace: [ 601.763028][T12975] [ 601.765963][T12975] dump_stack_lvl+0x241/0x360 [ 601.770658][T12975] ? __pfx_dump_stack_lvl+0x10/0x10 [ 601.775859][T12975] ? __pfx__printk+0x10/0x10 [ 601.780480][T12975] ? __kmalloc_node_noprof+0xb7/0x440 [ 601.785887][T12975] ? __pfx___might_resched+0x10/0x10 [ 601.791204][T12975] should_fail_ex+0x3b0/0x4e0 [ 601.795921][T12975] should_failslab+0xac/0x100 [ 601.800665][T12975] __kmalloc_node_noprof+0xdf/0x440 [ 601.805873][T12975] ? __kvmalloc_node_noprof+0x72/0x190 [ 601.811357][T12975] __kvmalloc_node_noprof+0x72/0x190 [ 601.816666][T12975] bpf_test_run_xdp_live+0x290/0x2160 [ 601.822103][T12975] ? arch_stack_walk+0xfd/0x150 [ 601.826975][T12975] ? stack_trace_save+0x118/0x1d0 [ 601.832016][T12975] ? __pfx_bpf_test_run_xdp_live+0x10/0x10 [ 601.837843][T12975] ? mark_lock+0x9a/0x360 [ 601.842204][T12975] ? __pfx_xdp_test_run_init_page+0x10/0x10 [ 601.848101][T12975] ? __might_fault+0xaa/0x120 [ 601.852779][T12975] ? __might_fault+0xc6/0x120 [ 601.857460][T12975] ? _copy_from_user+0xa6/0xe0 [ 601.862240][T12975] ? bpf_test_init+0x15a/0x180 [ 601.867003][T12975] ? xdp_convert_md_to_buff+0x5b/0x330 [ 601.872460][T12975] bpf_prog_test_run_xdp+0x805/0x11e0 [ 601.877848][T12975] ? __pfx_lock_release+0x10/0x10 [ 601.882886][T12975] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10 [ 601.888797][T12975] ? __fget_files+0x29/0x470 [ 601.893396][T12975] ? fput+0x1a8/0x230 [ 601.897371][T12975] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10 [ 601.903182][T12975] bpf_prog_test_run+0x2e4/0x360 [ 601.908132][T12975] __sys_bpf+0x48d/0x810 [ 601.912380][T12975] ? __pfx___sys_bpf+0x10/0x10 [ 601.917154][T12975] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 601.923136][T12975] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 601.929461][T12975] ? do_syscall_64+0x100/0x230 [ 601.934223][T12975] __x64_sys_bpf+0x7c/0x90 [ 601.938636][T12975] do_syscall_64+0xf3/0x230 [ 601.943145][T12975] ? clear_bhb_loop+0x35/0x90 [ 601.947847][T12975] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 601.953743][T12975] RIP: 0033:0x7f377897dff9 [ 601.958165][T12975] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 601.977862][T12975] RSP: 002b:00007f37797a2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 601.986281][T12975] RAX: ffffffffffffffda RBX: 00007f3778b35f80 RCX: 00007f377897dff9 [ 601.994258][T12975] RDX: 0000000000000050 RSI: 0000000020000900 RDI: 000000000000000a [ 602.002222][T12975] RBP: 00007f37797a2090 R08: 0000000000000000 R09: 0000000000000000 [ 602.010190][T12975] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 602.018252][T12975] R13: 0000000000000000 R14: 00007f3778b35f80 R15: 00007ffeb93b3168 [ 602.026235][T12975] [ 603.185951][ T8] usb 1-1: new high-speed USB device number 17 using dummy_hcd [ 604.093939][ T8] usb 1-1: Using ep0 maxpacket: 16 [ 604.102852][ T8] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 604.114100][ T8] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 604.129477][ T8] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 604.142447][ T8] usb 1-1: New USB device found, idVendor=5543, idProduct=0064, bcdDevice= 0.00 [ 604.151806][ T8] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 604.207569][ T8] usb 1-1: config 0 descriptor?? [ 604.490390][T13009] hub 6-0:1.0: USB hub found [ 604.495529][T13009] hub 6-0:1.0: 1 port detected [ 604.524012][ T8] uclogic 0003:5543:0064.000C: unknown main item tag 0x0 [ 604.532657][ T8] uclogic 0003:5543:0064.000C: unknown main item tag 0x0 [ 604.564601][ T8] uclogic 0003:5543:0064.000C: unknown main item tag 0x0 [ 604.583161][ T8] uclogic 0003:5543:0064.000C: unknown main item tag 0x0 [ 604.610916][ T8] uclogic 0003:5543:0064.000C: unknown main item tag 0x0 [ 604.628062][ T8] uclogic 0003:5543:0064.000C: No inputs registered, leaving [ 604.675084][ T8] uclogic 0003:5543:0064.000C: hidraw0: USB HID v0.00 Device [HID 5543:0064] on usb-dummy_hcd.0-1/input0 [ 604.787270][T13014] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 604.799648][T13014] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 604.823863][ T25] usb 4-1: new high-speed USB device number 22 using dummy_hcd [ 604.871861][ T8] usb 1-1: USB disconnect, device number 17 [ 605.087709][ T25] usb 4-1: Using ep0 maxpacket: 16 [ 605.103552][ T25] usb 4-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6 [ 605.112961][ T25] usb 4-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3 [ 605.130213][ T25] usb 4-1: Product: syz [ 605.135306][ T25] usb 4-1: Manufacturer: syz [ 605.140059][ T25] usb 4-1: SerialNumber: syz [ 605.159260][ T25] usb 4-1: config 0 descriptor?? [ 605.557180][ T5273] usb 4-1: USB disconnect, device number 22 [ 608.094877][T13058] netlink: 'syz.0.2162': attribute type 2 has an invalid length. [ 608.711502][T13061] hub 6-0:1.0: USB hub found [ 608.716728][T13061] hub 6-0:1.0: 1 port detected [ 608.751054][T13058] netlink: 'syz.0.2162': attribute type 1 has an invalid length. [ 608.804441][T13068] hub 6-0:1.0: USB hub found [ 608.810489][T13068] hub 6-0:1.0: 1 port detected [ 608.983076][T13058] netlink: 152 bytes leftover after parsing attributes in process `syz.0.2162'. [ 609.454571][ T25] usb 1-1: new high-speed USB device number 18 using dummy_hcd [ 609.614286][T13094] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2173'. [ 610.395441][ T25] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 610.407103][ T25] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 610.417999][ T25] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 610.431118][ T25] usb 1-1: New USB device found, idVendor=11c0, idProduct=5506, bcdDevice= 0.00 [ 610.440260][ T25] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 610.451168][ T25] usb 1-1: config 0 descriptor?? [ 611.426647][T13115] hub 6-0:1.0: USB hub found [ 611.432194][T13115] hub 6-0:1.0: 1 port detected [ 611.657637][ T25] usbhid 1-1:0.0: can't add hid device: -71 [ 611.663687][ T25] usbhid 1-1:0.0: probe with driver usbhid failed with error -71 [ 611.673394][ T25] usb 1-1: USB disconnect, device number 18 [ 611.962753][T13132] syzkaller0: entered promiscuous mode [ 611.970571][T13132] syzkaller0: entered allmulticast mode [ 612.098976][T13126] syz.2.2183 (13126) used greatest stack depth: 19160 bytes left [ 613.185806][ T1529] usb 4-1: new high-speed USB device number 23 using dummy_hcd [ 613.350912][ T1529] usb 4-1: Using ep0 maxpacket: 16 [ 613.358676][ T1529] usb 4-1: unable to read config index 0 descriptor/start: -61 [ 613.367041][ T1529] usb 4-1: can't read configurations, error -61 [ 613.511497][ T1529] usb 4-1: new high-speed USB device number 24 using dummy_hcd [ 613.664716][ T1529] usb 4-1: Using ep0 maxpacket: 16 [ 613.678001][ T1529] usb 4-1: unable to read config index 0 descriptor/start: -61 [ 613.689094][ T1529] usb 4-1: can't read configurations, error -61 [ 613.698775][ T1529] usb usb4-port1: attempt power cycle [ 613.934462][T13167] sctp: [Deprecated]: syz.0.2194 (pid 13167) Use of struct sctp_assoc_value in delayed_ack socket option. [ 613.934462][T13167] Use struct sctp_sack_info instead [ 614.044144][ T1529] usb 4-1: new high-speed USB device number 25 using dummy_hcd [ 614.076343][ T1529] usb 4-1: Using ep0 maxpacket: 16 [ 614.118246][ T1529] usb 4-1: unable to read config index 0 descriptor/start: -61 [ 614.164884][ T1529] usb 4-1: can't read configurations, error -61 [ 614.360672][ T1529] usb 4-1: new high-speed USB device number 26 using dummy_hcd [ 614.415609][ T1529] usb 4-1: Using ep0 maxpacket: 16 [ 614.441287][ T1529] usb 4-1: unable to read config index 0 descriptor/start: -61 [ 614.461999][ T1529] usb 4-1: can't read configurations, error -61 [ 614.485725][ T1529] usb usb4-port1: unable to enumerate USB device [ 614.883886][ T5274] usb 1-1: new high-speed USB device number 19 using dummy_hcd [ 615.045607][ T5274] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 615.058421][ T5274] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 615.070168][ T5274] usb 1-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00 [ 615.093905][ T5274] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 615.115316][ T5274] usb 1-1: config 0 descriptor?? [ 615.772568][ T5274] usb 1-1: string descriptor 0 read error: -22 [ 615.984468][ T5274] uclogic 0003:256C:006D.000D: failed retrieving string descriptor #100: -71 [ 615.994918][ T5274] uclogic 0003:256C:006D.000D: failed retrieving pen parameters: -71 [ 616.003063][ T5274] uclogic 0003:256C:006D.000D: failed probing pen v1 parameters: -71 [ 616.018023][ T5274] uclogic 0003:256C:006D.000D: failed probing parameters: -71 [ 616.037716][ T5274] uclogic 0003:256C:006D.000D: probe with driver uclogic failed with error -71 [ 616.053101][ T5274] usb 1-1: USB disconnect, device number 19 [ 616.185661][T11801] usb 3-1: new high-speed USB device number 12 using dummy_hcd [ 616.386849][T11801] usb 3-1: Using ep0 maxpacket: 16 [ 616.748423][T11801] usb 3-1: New USB device found, idVendor=1a0a, idProduct=0104, bcdDevice=dd.d4 [ 616.774239][T11801] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 616.782543][T11801] usb 3-1: Product: syz [ 616.789055][T11801] usb 3-1: Manufacturer: syz [ 616.797435][T11801] usb 3-1: SerialNumber: syz [ 616.812120][T11801] usb 3-1: config 0 descriptor?? [ 616.871175][T11801] usb_ehset_test 3-1:0.0: probe with driver usb_ehset_test failed with error -32 [ 617.032115][T11801] usb 3-1: USB disconnect, device number 12 [ 617.094583][T13193] netlink: 'syz.3.2203': attribute type 9 has an invalid length. [ 617.102555][T13193] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.2203'. [ 617.373711][T13138] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2185'. [ 617.573663][T13199] mmap: syz.1.2207 (13199) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 617.641279][T13204] FAULT_INJECTION: forcing a failure. [ 617.641279][T13204] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 617.942018][T13204] CPU: 0 UID: 0 PID: 13204 Comm: syz.4.2205 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 617.952595][T13204] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 617.962678][T13204] Call Trace: [ 617.965987][T13204] [ 617.968932][T13204] dump_stack_lvl+0x241/0x360 [ 617.973632][T13204] ? __pfx_dump_stack_lvl+0x10/0x10 [ 617.978856][T13204] ? __pfx__printk+0x10/0x10 [ 617.983467][T13204] ? snprintf+0xda/0x120 [ 617.987736][T13204] should_fail_ex+0x3b0/0x4e0 [ 617.992445][T13204] _copy_to_user+0x2f/0xb0 [ 617.996896][T13204] simple_read_from_buffer+0xca/0x150 [ 618.002294][T13204] proc_fail_nth_read+0x1e9/0x250 [ 618.007339][T13204] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 618.012909][T13204] ? rw_verify_area+0x55e/0x6f0 [ 618.017778][T13204] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 618.023346][T13204] vfs_read+0x201/0xbc0 [ 618.027654][T13204] ? __pfx_vfs_read+0x10/0x10 [ 618.032350][T13204] ? __sys_bpf+0x72e/0x810 [ 618.036791][T13204] ? __pfx___sys_bpf+0x10/0x10 [ 618.041624][T13204] ? fdget_pos+0x265/0x320 [ 618.046068][T13204] ksys_read+0x183/0x2b0 [ 618.050332][T13204] ? __pfx_ksys_read+0x10/0x10 [ 618.055111][T13204] ? do_syscall_64+0x100/0x230 [ 618.059891][T13204] ? do_syscall_64+0xb6/0x230 [ 618.064587][T13204] do_syscall_64+0xf3/0x230 [ 618.069102][T13204] ? clear_bhb_loop+0x35/0x90 [ 618.073791][T13204] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 618.079705][T13204] RIP: 0033:0x7f937917ca3c [ 618.084133][T13204] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48 [ 618.103926][T13204] RSP: 002b:00007f9379f19030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 618.112344][T13204] RAX: ffffffffffffffda RBX: 00007f9379335f80 RCX: 00007f937917ca3c [ 618.120317][T13204] RDX: 000000000000000f RSI: 00007f9379f190a0 RDI: 0000000000000003 [ 618.128273][T13204] RBP: 00007f9379f19090 R08: 0000000000000000 R09: 0000000000000000 [ 618.136265][T13204] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 618.144665][T13204] R13: 0000000000000000 R14: 00007f9379335f80 R15: 00007ffe50517ad8 [ 618.152631][T13204] [ 619.619014][T13224] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2214'. [ 619.668038][T13228] sp0: Synchronizing with TNC [ 619.682307][T13221] fuse: Bad value for 'user_id' [ 619.705197][T13221] fuse: Bad value for 'user_id' [ 620.119322][T13242] netlink: 'syz.4.2218': attribute type 9 has an invalid length. [ 620.119351][T13242] netlink: 209836 bytes leftover after parsing attributes in process `syz.4.2218'. [ 621.676766][T13253] Bluetooth: MGMT ver 1.23 [ 622.104041][ T5274] usb 2-1: new high-speed USB device number 20 using dummy_hcd [ 622.271859][ T5274] usb 2-1: New USB device found, idVendor=046d, idProduct=0870, bcdDevice=61.47 [ 622.785817][ T5274] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 622.844555][ T5274] usb 2-1: config 0 descriptor?? [ 622.864550][ T5274] gspca_main: STV06xx-2.14.0 probing 046d:0870 [ 623.044147][ T5273] usb 3-1: new full-speed USB device number 13 using dummy_hcd [ 623.066541][ T5274] usb 2-1: USB disconnect, device number 20 [ 623.206508][ T5273] usb 3-1: config 0 has an invalid interface number: 52 but max is 0 [ 623.229193][ T5273] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 623.241735][ T5273] usb 3-1: config 0 has no interface number 0 [ 623.248283][ T5273] usb 3-1: config 0 interface 52 altsetting 1 endpoint 0x8A has an invalid bInterval 0, changing to 10 [ 623.260543][ T5273] usb 3-1: config 0 interface 52 altsetting 1 endpoint 0x8A has invalid maxpacket 255, setting to 64 [ 623.271852][ T5273] usb 3-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 623.330230][ T5273] usb 3-1: config 0 interface 52 has no altsetting 0 [ 623.358811][ T5273] usb 3-1: New USB device found, idVendor=06cb, idProduct=0003, bcdDevice=e8.00 [ 623.368444][ T5273] usb 3-1: New USB device strings: Mfr=22, Product=149, SerialNumber=35 [ 623.377080][ T5273] usb 3-1: Product: syz [ 623.381489][ T5273] usb 3-1: Manufacturer: syz [ 623.386994][ T5273] usb 3-1: SerialNumber: syz [ 623.419174][ T5273] usb 3-1: config 0 descriptor?? [ 623.675685][ T5273] input: syz syz as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.52/input/input9 [ 624.315669][T13289] netlink: 'syz.1.2233': attribute type 9 has an invalid length. [ 624.353728][T13289] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.2233'. [ 624.676101][ T1266] ieee802154 phy0 wpan0: encryption failed: -22 [ 624.683662][ T1266] ieee802154 phy1 wpan1: encryption failed: -22 [ 625.246153][T13305] hub 6-0:1.0: USB hub found [ 625.254288][T13305] hub 6-0:1.0: 1 port detected [ 626.464338][ T5274] usb 3-1: USB disconnect, device number 13 [ 626.464365][ C1] synaptics_usb 3-1:0.52: synusb_irq - usb_submit_urb failed with result: -19 [ 627.585976][T13339] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2247'. [ 627.737533][T13344] FAULT_INJECTION: forcing a failure. [ 627.737533][T13344] name failslab, interval 1, probability 0, space 0, times 0 [ 627.750633][T13344] CPU: 1 UID: 0 PID: 13344 Comm: syz.2.2248 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 627.761078][T13344] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 627.771410][T13344] Call Trace: [ 627.774703][T13344] [ 627.777643][T13344] dump_stack_lvl+0x241/0x360 [ 627.782346][T13344] ? __pfx_dump_stack_lvl+0x10/0x10 [ 627.787556][T13344] ? __pfx__printk+0x10/0x10 [ 627.792159][T13344] ? kmem_cache_alloc_node_noprof+0x49/0x320 [ 627.798153][T13344] ? __pfx___might_resched+0x10/0x10 [ 627.803461][T13344] should_fail_ex+0x3b0/0x4e0 [ 627.808248][T13344] should_failslab+0xac/0x100 [ 627.812935][T13344] ? __alloc_skb+0x1c3/0x440 [ 627.817535][T13344] kmem_cache_alloc_node_noprof+0x71/0x320 [ 627.823409][T13344] __alloc_skb+0x1c3/0x440 [ 627.827839][T13344] ? validate_chain+0x11e/0x5920 [ 627.832790][T13344] ? __pfx___alloc_skb+0x10/0x10 [ 627.837738][T13344] ? reacquire_held_locks+0x690/0x690 [ 627.843126][T13344] ? __pfx_lock_release+0x10/0x10 [ 627.848180][T13344] alloc_skb_with_frags+0xc3/0x820 [ 627.853301][T13344] ? mark_lock+0x9a/0x360 [ 627.857648][T13344] ? __lock_acquire+0x1384/0x2050 [ 627.862701][T13344] sock_alloc_send_pskb+0x91a/0xa60 [ 627.867935][T13344] ? __pfx_sock_alloc_send_pskb+0x10/0x10 [ 627.873676][T13344] ? smack_socket_sendmsg+0x178/0x540 [ 627.879067][T13344] ? __pfx_smack_socket_sendmsg+0x10/0x10 [ 627.884818][T13344] ? tomoyo_socket_sendmsg_permission+0x288/0x420 [ 627.891276][T13344] hci_sock_sendmsg+0x22b/0x11c0 [ 627.896250][T13344] ? __pfx_tomoyo_socket_sendmsg_permission+0x10/0x10 [ 627.903043][T13344] ? __pfx_hci_sock_sendmsg+0x10/0x10 [ 627.908446][T13344] ? __pfx_hci_sock_sendmsg+0x10/0x10 [ 627.913831][T13344] __sock_sendmsg+0x221/0x270 [ 627.918540][T13344] sock_write_iter+0x2d7/0x3f0 [ 627.923325][T13344] ? __pfx_sock_write_iter+0x10/0x10 [ 627.928652][T13344] ? bpf_lsm_file_permission+0x9/0x10 [ 627.934097][T13344] ? security_file_permission+0x74/0x280 [ 627.939754][T13344] vfs_write+0xa6d/0xc90 [ 627.944014][T13344] ? __pfx_sock_write_iter+0x10/0x10 [ 627.949319][T13344] ? __pfx_vfs_write+0x10/0x10 [ 627.954112][T13344] ? fdget_pos+0x19a/0x320 [ 627.958550][T13344] ksys_write+0x183/0x2b0 [ 627.962910][T13344] ? __pfx_ksys_write+0x10/0x10 [ 627.968224][T13344] ? do_syscall_64+0x100/0x230 [ 627.973004][T13344] ? do_syscall_64+0xb6/0x230 [ 627.977700][T13344] do_syscall_64+0xf3/0x230 [ 627.982219][T13344] ? clear_bhb_loop+0x35/0x90 [ 627.986916][T13344] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 627.992825][T13344] RIP: 0033:0x7f1d2db7dff9 [ 627.997367][T13344] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 628.017160][T13344] RSP: 002b:00007f1d2e93a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 628.026081][T13344] RAX: ffffffffffffffda RBX: 00007f1d2dd36130 RCX: 00007f1d2db7dff9 [ 628.034095][T13344] RDX: 0000000000000008 RSI: 0000000020000500 RDI: 0000000000000008 [ 628.042103][T13344] RBP: 00007f1d2e93a090 R08: 0000000000000000 R09: 0000000000000000 [ 628.050138][T13344] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 628.058232][T13344] R13: 0000000000000000 R14: 00007f1d2dd36130 R15: 00007ffe39ea2f38 [ 628.066253][T13344] [ 628.185867][T13346] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6 [ 629.682631][T13368] sp0: Synchronizing with TNC [ 630.083915][ T25] usb 3-1: new high-speed USB device number 14 using dummy_hcd [ 631.139885][T12791] udevd[12791]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory [ 631.156263][ T25] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 631.177461][ T25] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 631.206728][ T25] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00 [ 632.083999][ T25] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 632.139574][ T25] usb 3-1: config 0 descriptor?? [ 632.450242][ T25] usb 3-1: string descriptor 0 read error: -71 [ 632.460975][ T25] uclogic 0003:256C:006D.000E: failed retrieving string descriptor #200: -71 [ 632.503917][ T25] uclogic 0003:256C:006D.000E: failed retrieving pen parameters: -71 [ 632.513870][ T25] uclogic 0003:256C:006D.000E: failed probing pen v2 parameters: -71 [ 632.522036][ T25] uclogic 0003:256C:006D.000E: failed probing parameters: -71 [ 632.529796][ T25] uclogic 0003:256C:006D.000E: probe with driver uclogic failed with error -71 [ 632.658141][ T25] usb 3-1: USB disconnect, device number 14 [ 632.817881][T13425] FAULT_INJECTION: forcing a failure. [ 632.817881][T13425] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 632.831180][T13425] CPU: 0 UID: 0 PID: 13425 Comm: syz.0.2272 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 632.841627][T13425] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 632.851697][T13425] Call Trace: [ 632.854988][T13425] [ 632.857951][T13425] dump_stack_lvl+0x241/0x360 [ 632.862663][T13425] ? __pfx_dump_stack_lvl+0x10/0x10 [ 632.867893][T13425] ? __pfx__printk+0x10/0x10 [ 632.872521][T13425] ? __pfx_lock_release+0x10/0x10 [ 632.877599][T13425] should_fail_ex+0x3b0/0x4e0 [ 632.882338][T13425] _copy_from_user+0x2f/0xe0 [ 632.887153][T13425] copy_msghdr_from_user+0xae/0x680 [ 632.892379][T13425] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 632.898231][T13425] ? kasan_check_range+0x70/0x290 [ 632.903295][T13425] __sys_sendmsg+0x22d/0x380 [ 632.907912][T13425] ? __pfx___sys_sendmsg+0x10/0x10 [ 632.913051][T13425] ? __pfx_vfs_write+0x10/0x10 [ 632.917920][T13425] ? __pfx___schedule+0x10/0x10 [ 632.922810][T13425] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 632.929161][T13425] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 632.935698][T13425] ? do_syscall_64+0xb6/0x230 [ 632.940389][T13425] do_syscall_64+0xf3/0x230 [ 632.944905][T13425] ? clear_bhb_loop+0x35/0x90 [ 632.949606][T13425] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 632.955562][T13425] RIP: 0033:0x7f377897dff9 [ 632.959998][T13425] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 632.979713][T13425] RSP: 002b:00007f3779760038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 632.988163][T13425] RAX: ffffffffffffffda RBX: 00007f3778b36130 RCX: 00007f377897dff9 [ 632.996156][T13425] RDX: 0000000000008090 RSI: 00000000200000c0 RDI: 0000000000000008 [ 633.004145][T13425] RBP: 00007f3779760090 R08: 0000000000000000 R09: 0000000000000000 [ 633.012415][T13425] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 633.020579][T13425] R13: 0000000000000000 R14: 00007f3778b36130 R15: 00007ffeb93b3168 [ 633.028579][T13425] [ 638.370629][T13452] sp0: Synchronizing with TNC [ 639.374189][T13460] sp0: Synchronizing with TNC [ 641.250579][T13462] FAULT_INJECTION: forcing a failure. [ 641.250579][T13462] name failslab, interval 1, probability 0, space 0, times 0 [ 641.270798][T13462] CPU: 1 UID: 0 PID: 13462 Comm: syz.2.2287 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 641.281277][T13462] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 641.291569][T13462] Call Trace: [ 641.294874][T13462] [ 641.297828][T13462] dump_stack_lvl+0x241/0x360 [ 641.302538][T13462] ? __pfx_dump_stack_lvl+0x10/0x10 [ 641.307765][T13462] ? __pfx__printk+0x10/0x10 [ 641.312382][T13462] ? kmem_cache_alloc_node_noprof+0x49/0x320 [ 641.318384][T13462] ? __pfx___might_resched+0x10/0x10 [ 641.323705][T13462] should_fail_ex+0x3b0/0x4e0 [ 641.328409][T13462] should_failslab+0xac/0x100 [ 641.333110][T13462] ? __alloc_skb+0x1c3/0x440 [ 641.337719][T13462] kmem_cache_alloc_node_noprof+0x71/0x320 [ 641.343552][T13462] __alloc_skb+0x1c3/0x440 [ 641.347995][T13462] ? __pfx___alloc_skb+0x10/0x10 [ 641.352955][T13462] ? smack_socket_getpeersec_dgram+0x1a0/0x410 [ 641.359147][T13462] netlink_sendmsg+0x638/0xcb0 [ 641.363945][T13462] ? __pfx_netlink_sendmsg+0x10/0x10 [ 641.369299][T13462] ? __pfx_netlink_sendmsg+0x10/0x10 [ 641.374621][T13462] __sock_sendmsg+0x221/0x270 [ 641.379340][T13462] ____sys_sendmsg+0x52a/0x7e0 [ 641.384158][T13462] ? __pfx_____sys_sendmsg+0x10/0x10 [ 641.389494][T13462] __sys_sendmsg+0x292/0x380 [ 641.394128][T13462] ? __pfx___sys_sendmsg+0x10/0x10 [ 641.399286][T13462] ? __pfx_vfs_write+0x10/0x10 [ 641.404284][T13462] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 641.410644][T13462] ? do_syscall_64+0x100/0x230 [ 641.415441][T13462] ? do_syscall_64+0xb6/0x230 [ 641.420243][T13462] do_syscall_64+0xf3/0x230 [ 641.424767][T13462] ? clear_bhb_loop+0x35/0x90 [ 641.429467][T13462] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 641.435388][T13462] RIP: 0033:0x7f1d2db7dff9 [ 641.439827][T13462] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 641.459545][T13462] RSP: 002b:00007f1d2e97c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 641.468086][T13462] RAX: ffffffffffffffda RBX: 00007f1d2dd35f80 RCX: 00007f1d2db7dff9 [ 641.476085][T13462] RDX: 0000000000000000 RSI: 0000000020000a80 RDI: 0000000000000003 [ 641.484080][T13462] RBP: 00007f1d2e97c090 R08: 0000000000000000 R09: 0000000000000000 [ 641.492159][T13462] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 641.500158][T13462] R13: 0000000000000000 R14: 00007f1d2dd35f80 R15: 00007ffe39ea2f38 [ 641.508170][T13462] [ 643.180551][ T4615] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 643.194815][ T4615] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 643.205169][ T4615] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 643.213382][ T4615] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 643.224305][ T4615] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 643.231755][ T4615] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 645.293990][ T4615] Bluetooth: hci4: command tx timeout [ 646.987798][ T5232] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 647.008307][ T5232] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 647.019161][ T5232] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 647.027251][ T5232] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 647.037084][ T5232] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 647.050759][ T5232] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 647.374058][ T5232] Bluetooth: hci4: command tx timeout [ 649.134232][ T5232] Bluetooth: hci5: command tx timeout [ 649.454362][ T5232] Bluetooth: hci4: command tx timeout [ 649.880689][ T4615] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 649.897427][ T4615] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 649.906157][ T4615] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 649.915190][ T4615] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 649.931799][T13494] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1 [ 649.946516][T13494] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9 [ 649.960759][T13494] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9 [ 649.973955][T13494] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 649.982196][T13494] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 649.999605][T13494] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4 [ 650.007954][T13494] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3 [ 650.021172][T13494] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2 [ 651.213978][ T4615] Bluetooth: hci5: command tx timeout [ 651.534046][ T4615] Bluetooth: hci4: command tx timeout [ 652.094231][ T4615] Bluetooth: hci8: command tx timeout [ 652.100296][T13494] Bluetooth: hci7: command tx timeout [ 652.635488][T13495] udevd[13495]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory [ 653.299928][ T4615] Bluetooth: hci5: command tx timeout [ 654.174643][T13494] Bluetooth: hci7: command tx timeout [ 654.181937][ T4615] Bluetooth: hci8: command tx timeout [ 655.375498][ T4615] Bluetooth: hci5: command tx timeout [ 656.254168][T13494] Bluetooth: hci7: command tx timeout [ 656.261127][ T4615] Bluetooth: hci8: command tx timeout [ 658.334668][T13494] Bluetooth: hci7: command tx timeout [ 658.340176][ T4615] Bluetooth: hci8: command tx timeout [ 658.415131][T13513] hub 6-0:1.0: USB hub found [ 658.420094][T13513] hub 6-0:1.0: 1 port detected [ 661.777042][T13520] xt_hashlimit: max too large, truncated to 1048576 [ 671.679082][T13494] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 671.691415][T13494] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 671.704111][T13494] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 671.712021][T13494] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 671.720147][T13494] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 671.738390][T13494] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 673.854021][T13494] Bluetooth: hci0: command tx timeout [ 675.933988][T13494] Bluetooth: hci0: command tx timeout [ 678.013954][T13494] Bluetooth: hci0: command tx timeout [ 678.133340][ T2942] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 680.094804][T13494] Bluetooth: hci0: command tx timeout [ 681.862148][ T2942] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 686.099196][ T1266] ieee802154 phy0 wpan0: encryption failed: -22 [ 686.106108][ T1266] ieee802154 phy1 wpan1: encryption failed: -22 [ 690.276390][ T2942] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 690.912762][T13483] chnl_net:caif_netlink_parms(): no params data found [ 691.104090][T13483] bridge0: port 1(bridge_slave_0) entered blocking state [ 691.111387][T13483] bridge0: port 1(bridge_slave_0) entered disabled state [ 691.124150][T13483] bridge_slave_0: entered allmulticast mode [ 691.133596][T13483] bridge_slave_0: entered promiscuous mode [ 691.146592][T13483] bridge0: port 2(bridge_slave_1) entered blocking state [ 691.162036][T13483] bridge0: port 2(bridge_slave_1) entered disabled state [ 691.170317][T13483] bridge_slave_1: entered allmulticast mode [ 691.185472][T13483] bridge_slave_1: entered promiscuous mode [ 691.301457][T13483] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 691.320739][T13483] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 691.411949][T13483] team0: Port device team_slave_0 added [ 691.427521][T13483] team0: Port device team_slave_1 added [ 691.480173][T13483] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 691.489614][T13483] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 691.529842][T13483] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 691.552384][T13483] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 691.562675][T13483] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 691.596206][T13483] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 691.772748][T13483] hsr_slave_0: entered promiscuous mode [ 691.806365][T13483] hsr_slave_1: entered promiscuous mode [ 691.822894][T13483] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 691.832959][T13483] Cannot create hsr debugfs directory [ 697.761935][T13483] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 704.357191][ T4615] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 704.374513][ T4615] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 704.383337][ T4615] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 704.402649][ T4615] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 704.421887][ T4615] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 704.429915][ T4615] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 706.494218][ T4615] Bluetooth: hci1: command tx timeout [ 707.701892][T13494] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 707.711935][T13494] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 707.722634][T13494] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 707.735159][T13494] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 707.742786][T13494] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 707.753959][T13494] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 708.574057][T13494] Bluetooth: hci1: command tx timeout [ 709.869502][T13494] Bluetooth: hci2: command tx timeout [ 710.400751][ T4615] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 710.410822][ T4615] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 710.424661][ T4615] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 710.434462][ T4615] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 710.442087][ T4615] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 710.455283][ T4615] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 710.537834][T13494] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 710.548010][T13494] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 710.557454][T13494] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 710.571589][T13494] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 710.584650][T13494] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 710.592883][T13494] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 710.654056][T13494] Bluetooth: hci1: command tx timeout [ 710.682618][ T2942] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 710.891201][T13483] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 711.934099][T13494] Bluetooth: hci2: command tx timeout [ 712.494028][T13494] Bluetooth: hci3: command tx timeout [ 712.654318][T13494] Bluetooth: hci6: command tx timeout [ 712.734110][T13494] Bluetooth: hci1: command tx timeout [ 714.014092][T13494] Bluetooth: hci2: command tx timeout [ 714.574107][T13494] Bluetooth: hci3: command tx timeout [ 714.737425][T13494] Bluetooth: hci6: command tx timeout [ 716.094364][T13494] Bluetooth: hci2: command tx timeout [ 716.654065][T13494] Bluetooth: hci3: command tx timeout [ 716.814632][ T4615] Bluetooth: hci6: command tx timeout [ 718.733999][ T4615] Bluetooth: hci3: command tx timeout [ 718.894141][ T4615] Bluetooth: hci6: command tx timeout [ 719.540524][T13483] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 728.142601][T13483] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 732.192323][T13494] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1 [ 732.202071][T13494] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9 [ 732.212345][T13494] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9 [ 732.220866][T13494] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4 [ 732.228791][T13494] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3 [ 732.246464][T13494] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2 [ 734.334145][ T4615] Bluetooth: hci8: command tx timeout [ 736.414132][ T4615] Bluetooth: hci8: command tx timeout [ 738.494126][ T4615] Bluetooth: hci8: command tx timeout [ 740.574218][ T4615] Bluetooth: hci8: command tx timeout [ 745.008495][ T2942] bond0 (unregistering): Released all slaves [ 745.879120][T13551] chnl_net:caif_netlink_parms(): no params data found [ 746.360454][T13539] chnl_net:caif_netlink_parms(): no params data found [ 746.757572][T13549] chnl_net:caif_netlink_parms(): no params data found [ 746.897356][T13557] chnl_net:caif_netlink_parms(): no params data found [ 747.370896][T13551] bridge0: port 1(bridge_slave_0) entered blocking state [ 747.398686][T13551] bridge0: port 1(bridge_slave_0) entered disabled state [ 747.418304][T13551] bridge_slave_0: entered allmulticast mode [ 747.428414][T13551] bridge_slave_0: entered promiscuous mode [ 747.448191][T13551] bridge0: port 2(bridge_slave_1) entered blocking state [ 747.455943][T13551] bridge0: port 2(bridge_slave_1) entered disabled state [ 747.464379][T13551] bridge_slave_1: entered allmulticast mode [ 747.471504][T13551] bridge_slave_1: entered promiscuous mode [ 747.543355][ T1266] ieee802154 phy0 wpan0: encryption failed: -22 [ 747.553990][ T1266] ieee802154 phy1 wpan1: encryption failed: -22 [ 747.680631][T13539] bridge0: port 1(bridge_slave_0) entered blocking state [ 747.701377][T13539] bridge0: port 1(bridge_slave_0) entered disabled state [ 747.722518][T13539] bridge_slave_0: entered allmulticast mode [ 747.732500][T13539] bridge_slave_0: entered promiscuous mode [ 747.774741][T13551] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 761.882534][T13543] chnl_net:caif_netlink_parms(): no params data found [ 761.936014][T13539] bridge0: port 2(bridge_slave_1) entered blocking state [ 761.943250][T13539] bridge0: port 2(bridge_slave_1) entered disabled state [ 761.951230][T13539] bridge_slave_1: entered allmulticast mode [ 761.959424][T13539] bridge_slave_1: entered promiscuous mode [ 761.992731][T13551] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 762.280236][T13557] bridge0: port 1(bridge_slave_0) entered blocking state [ 762.302010][T13557] bridge0: port 1(bridge_slave_0) entered disabled state [ 762.328194][T13557] bridge_slave_0: entered allmulticast mode [ 762.344265][T13557] bridge_slave_0: entered promiscuous mode [ 762.366941][T13557] bridge0: port 2(bridge_slave_1) entered blocking state [ 762.375063][T13557] bridge0: port 2(bridge_slave_1) entered disabled state [ 762.382394][T13557] bridge_slave_1: entered allmulticast mode [ 762.390560][T13557] bridge_slave_1: entered promiscuous mode [ 762.436751][T13551] team0: Port device team_slave_0 added [ 764.295879][T13494] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 764.307380][T13494] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 764.318684][T13494] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 764.328492][T13494] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 764.346144][T13494] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 764.353592][T13494] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 766.414203][ T4615] Bluetooth: hci0: command tx timeout [ 768.494215][ T4615] Bluetooth: hci0: command tx timeout [ 768.770311][T13494] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 768.780280][T13494] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 768.792604][T13494] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 768.802445][T13494] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 768.812868][T13494] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 768.824045][T13494] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 770.574031][T13494] Bluetooth: hci0: command tx timeout [ 770.896075][T13494] Bluetooth: hci4: command tx timeout [ 771.436042][ T4615] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 771.446706][ T4615] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 771.455704][ T4615] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 771.486233][ T4615] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 771.494707][ T4615] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 771.502090][ T4615] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 771.574737][T13494] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 771.586285][T13494] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 771.597384][T13494] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 771.605883][T13494] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 771.614941][T13494] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 771.622450][T13494] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 772.654070][T13494] Bluetooth: hci0: command tx timeout [ 772.844194][T13549] bridge0: port 1(bridge_slave_0) entered blocking state [ 772.851851][T13549] bridge0: port 1(bridge_slave_0) entered disabled state [ 772.894259][T13549] bridge_slave_0: entered allmulticast mode [ 772.924112][T13549] bridge_slave_0: entered promiscuous mode [ 772.934491][T13543] workqueue: Failed to create a rescuer kthread for wq "wg-crypt-wg0": -EINTR [ 772.959512][T13539] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 772.983457][T13494] Bluetooth: hci4: command tx timeout [ 773.534077][T13494] Bluetooth: hci5: command tx timeout [ 773.694409][T13494] Bluetooth: hci7: command tx timeout [ 774.144552][T13551] team0: Port device team_slave_1 added [ 774.709997][T13557] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 775.055215][T13494] Bluetooth: hci4: command tx timeout [ 775.337737][T13557] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 775.393223][ T2942] hsr_slave_0: left promiscuous mode [ 775.433036][ T2942] hsr_slave_1: left promiscuous mode [ 775.508943][ T2942] veth1_macvtap: left promiscuous mode [ 775.529436][ T2942] veth0_macvtap: left promiscuous mode [ 775.544322][ T2942] veth1_vlan: left promiscuous mode [ 775.549666][ T2942] veth0_vlan: left promiscuous mode [ 775.624028][ T4615] Bluetooth: hci5: command tx timeout [ 775.778598][ T4615] Bluetooth: hci7: command tx timeout [ 777.138782][ T4615] Bluetooth: hci4: command tx timeout [ 777.529511][ T2942] team0 (unregistering): Port device wg2 removed [ 777.694059][ T4615] Bluetooth: hci5: command tx timeout [ 777.863975][ T4615] Bluetooth: hci7: command tx timeout [ 779.048955][T13557] team0: Port device team_slave_0 added [ 779.098593][T13557] team0: Port device team_slave_1 added [ 779.695983][T13557] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 779.702979][T13557] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 779.739360][T13557] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 779.774072][ T4615] Bluetooth: hci5: command tx timeout [ 779.791627][T13557] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 779.799062][T13557] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 779.826704][T13557] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 779.936299][ T4615] Bluetooth: hci7: command tx timeout [ 780.017655][T13643] chnl_net:caif_netlink_parms(): no params data found [ 780.063326][T13557] hsr_slave_0: entered promiscuous mode [ 780.078022][T13557] hsr_slave_1: entered promiscuous mode [ 780.104670][T13557] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 780.112465][T13557] Cannot create hsr debugfs directory [ 780.369740][T13634] chnl_net:caif_netlink_parms(): no params data found [ 780.496890][T13641] chnl_net:caif_netlink_parms(): no params data found [ 780.807775][T13630] chnl_net:caif_netlink_parms(): no params data found [ 781.036010][T13643] bridge0: port 1(bridge_slave_0) entered blocking state [ 781.073630][T13643] bridge0: port 1(bridge_slave_0) entered disabled state [ 781.084344][T13643] bridge_slave_0: entered allmulticast mode [ 781.091598][T13643] bridge_slave_0: entered promiscuous mode [ 781.309145][ T2942] IPVS: stop unused estimator thread 0... [ 781.493703][T13643] bridge0: port 2(bridge_slave_1) entered blocking state [ 781.504090][T13643] bridge0: port 2(bridge_slave_1) entered disabled state [ 781.511380][T13643] bridge_slave_1: entered allmulticast mode [ 781.535304][T13643] bridge_slave_1: entered promiscuous mode [ 781.941327][T13643] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 782.068848][T13641] bridge0: port 1(bridge_slave_0) entered blocking state [ 782.077243][T13641] bridge0: port 1(bridge_slave_0) entered disabled state [ 782.085622][T13641] bridge_slave_0: entered allmulticast mode [ 782.092879][T13641] bridge_slave_0: entered promiscuous mode [ 782.106882][T13643] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 782.132729][T13634] bridge0: port 1(bridge_slave_0) entered blocking state [ 782.154007][T13634] bridge0: port 1(bridge_slave_0) entered disabled state [ 782.161436][T13634] bridge_slave_0: entered allmulticast mode [ 782.171070][T13634] bridge_slave_0: entered promiscuous mode [ 782.281587][T13557] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 782.566278][T13643] team0: Port device team_slave_0 added [ 782.585806][T13634] bridge0: port 2(bridge_slave_1) entered blocking state [ 782.592946][T13634] bridge0: port 2(bridge_slave_1) entered disabled state [ 782.614103][T13634] bridge_slave_1: entered allmulticast mode [ 782.710567][T13634] bridge_slave_1: entered promiscuous mode [ 782.755316][T13641] bridge0: port 2(bridge_slave_1) entered blocking state [ 782.762446][T13641] bridge0: port 2(bridge_slave_1) entered disabled state [ 782.789842][T13641] bridge_slave_1: entered allmulticast mode [ 782.895216][T13641] bridge_slave_1: entered promiscuous mode [ 783.073165][T13643] team0: Port device team_slave_1 added [ 783.132751][T13557] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 783.260271][T13634] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 783.427538][T13557] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 783.458502][T13630] bridge0: port 1(bridge_slave_0) entered blocking state [ 783.504127][T13630] bridge0: port 1(bridge_slave_0) entered disabled state [ 783.514883][T13630] bridge_slave_0: entered allmulticast mode [ 783.546167][T13630] bridge_slave_0: entered promiscuous mode [ 783.575331][T13630] bridge0: port 2(bridge_slave_1) entered blocking state [ 783.582486][T13630] bridge0: port 2(bridge_slave_1) entered disabled state [ 783.604435][T13630] bridge_slave_1: entered allmulticast mode [ 783.626005][T13630] bridge_slave_1: entered promiscuous mode [ 783.668021][T13634] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 783.709675][T13641] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 783.738664][T13641] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 783.890380][T13557] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 783.960383][T13643] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 783.984107][T13643] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 784.044316][T13643] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 784.356899][T13643] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 784.374554][T13643] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 784.421336][T13643] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 784.484652][T13634] team0: Port device team_slave_0 added [ 784.507254][T13641] team0: Port device team_slave_0 added [ 784.580913][T13630] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 784.712815][T13634] team0: Port device team_slave_1 added [ 784.720234][T13641] team0: Port device team_slave_1 added [ 784.737148][T13630] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 784.796534][ T2942] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 784.814456][T13643] hsr_slave_0: entered promiscuous mode [ 784.822867][T13643] hsr_slave_1: entered promiscuous mode [ 784.829634][T13643] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 784.839408][T13643] Cannot create hsr debugfs directory [ 784.884767][T13630] team0: Port device team_slave_0 added [ 784.911050][ T2942] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 784.963066][T13634] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 784.979133][T13634] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 785.005705][T13634] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 785.036071][T13641] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 785.043931][T13641] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 785.071106][T13641] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 785.086763][T13630] team0: Port device team_slave_1 added [ 785.094410][T13641] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 785.101389][T13641] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 785.127976][T13641] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 785.189747][ T2942] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 785.209143][T13634] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 785.220950][T13634] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 785.254505][T13634] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 785.420840][ T2942] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 785.441428][T13630] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 785.448762][T13630] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 785.475678][T13630] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 785.501755][T13641] hsr_slave_0: entered promiscuous mode [ 785.511500][T13641] hsr_slave_1: entered promiscuous mode [ 785.518406][T13641] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 785.526343][T13641] Cannot create hsr debugfs directory [ 785.559217][T13630] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 785.569274][T13630] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 785.595535][T13630] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 785.628361][T13557] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 785.707781][T13557] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 785.754685][T13630] hsr_slave_0: entered promiscuous mode [ 785.761599][T13630] hsr_slave_1: entered promiscuous mode [ 785.769163][T13630] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 785.777113][T13630] Cannot create hsr debugfs directory [ 785.794079][T13557] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 785.824005][T13557] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 785.856309][T13634] hsr_slave_0: entered promiscuous mode [ 785.873212][T13634] hsr_slave_1: entered promiscuous mode [ 785.880403][T13634] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 785.888649][T13634] Cannot create hsr debugfs directory [ 786.021128][ T2942] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 786.102927][ T2942] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 786.210679][ T2942] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 786.323313][ T2942] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 786.699311][ T2942] bridge_slave_1: left allmulticast mode [ 786.714820][ T2942] bridge_slave_1: left promiscuous mode [ 786.720583][ T2942] bridge0: port 2(bridge_slave_1) entered disabled state [ 786.743294][ T2942] bridge_slave_0: left allmulticast mode [ 786.758175][ T2942] bridge_slave_0: left promiscuous mode [ 786.764623][ T2942] bridge0: port 1(bridge_slave_0) entered disabled state [ 786.779427][ T2942] bridge_slave_1: left allmulticast mode [ 786.794249][ T2942] bridge_slave_1: left promiscuous mode [ 786.799995][ T2942] bridge0: port 2(bridge_slave_1) entered disabled state [ 786.825413][ T2942] bridge_slave_0: left allmulticast mode [ 786.831105][ T2942] bridge_slave_0: left promiscuous mode [ 786.843508][ T2942] bridge0: port 1(bridge_slave_0) entered disabled state [ 786.866784][ T2942] bridge_slave_0: left allmulticast mode [ 786.872840][ T2942] bridge_slave_0: left promiscuous mode [ 786.895451][ T2942] bridge0: port 1(bridge_slave_0) entered disabled state [ 786.916132][ T2942] bridge_slave_1: left allmulticast mode [ 786.921839][ T2942] bridge_slave_1: left promiscuous mode [ 786.942490][ T2942] bridge0: port 2(bridge_slave_1) entered disabled state [ 786.956863][ T2942] bridge_slave_0: left allmulticast mode [ 786.962572][ T2942] bridge_slave_0: left promiscuous mode [ 786.979781][ T2942] bridge0: port 1(bridge_slave_0) entered disabled state [ 788.727276][ T2942] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 788.739594][ T2942] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 788.750701][ T2942] bond0 (unregistering): Released all slaves [ 788.766651][ T2942] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 788.777798][ T2942] bond0 (unregistering): Released all slaves [ 788.790733][ T2942] bond0 (unregistering): Released all slaves [ 788.803576][ T2942] bond0 (unregistering): Released all slaves [ 788.825778][ T2942] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 788.839113][ T2942] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 788.856222][ T2942] bond0 (unregistering): Released all slaves [ 789.014424][ T2942] bond0 (unregistering): Released all slaves [ 789.184596][ T2942] bond0 (unregistering): Released all slaves [ 789.348987][ T2942] bond0 (unregistering): Released all slaves [ 789.512138][ T2942] bond0 (unregistering): Released all slaves [ 789.657068][T13557] 8021q: adding VLAN 0 to HW filter on device bond0 [ 789.807903][ T2942] tipc: Left network mode [ 789.833631][T13557] 8021q: adding VLAN 0 to HW filter on device team0 [ 789.862760][ T35] bridge0: port 1(bridge_slave_0) entered blocking state [ 789.869953][ T35] bridge0: port 1(bridge_slave_0) entered forwarding state [ 790.042249][ T35] bridge0: port 2(bridge_slave_1) entered blocking state [ 790.049571][ T35] bridge0: port 2(bridge_slave_1) entered forwarding state [ 790.323467][T13641] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 790.407709][T13641] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 790.474146][T13641] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 790.495484][T13641] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 790.817518][T13634] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 790.961727][T13557] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 790.975993][T13634] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 791.031157][T13634] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 791.089107][T13634] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 791.387402][T13641] 8021q: adding VLAN 0 to HW filter on device bond0 [ 791.415759][T13557] veth0_vlan: entered promiscuous mode [ 791.440519][T13557] veth1_vlan: entered promiscuous mode [ 791.641389][T13557] veth0_macvtap: entered promiscuous mode [ 791.667663][T13641] 8021q: adding VLAN 0 to HW filter on device team0 [ 791.753164][T13557] veth1_macvtap: entered promiscuous mode [ 791.798306][T13630] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 791.820940][T13634] 8021q: adding VLAN 0 to HW filter on device bond0 [ 791.829459][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 791.836654][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 791.861346][T13630] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 791.873536][T13630] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 791.892339][T13630] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 791.906838][T13557] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 791.926249][T13634] 8021q: adding VLAN 0 to HW filter on device team0 [ 791.943725][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 791.950891][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 791.980042][T13557] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 791.997102][T13557] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 792.007661][T13557] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 792.018330][T13557] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 792.028103][T13557] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 792.048742][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 792.055918][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 792.080511][ T1039] bridge0: port 2(bridge_slave_1) entered blocking state [ 792.087841][ T1039] bridge0: port 2(bridge_slave_1) entered forwarding state [ 792.233358][T13643] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 792.321224][T13643] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 792.339768][T13643] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 792.367125][T13643] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 792.421348][T13634] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 792.434156][T13634] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 792.451147][T13641] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 792.728455][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 792.741724][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 793.108933][T13641] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 793.281881][T13634] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 793.315953][T13494] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 793.319940][T13630] 8021q: adding VLAN 0 to HW filter on device bond0 [ 793.326206][T13494] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 793.350580][T13494] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 793.360611][T13494] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 793.374492][T13494] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 793.381957][T13494] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 793.615666][ T3012] kworker/u8:11 (3012) used greatest stack depth: 19056 bytes left [ 793.659105][T13630] 8021q: adding VLAN 0 to HW filter on device team0 [ 793.698064][T13643] 8021q: adding VLAN 0 to HW filter on device bond0 [ 793.759311][ T1124] bridge0: port 1(bridge_slave_0) entered blocking state [ 793.766500][ T1124] bridge0: port 1(bridge_slave_0) entered forwarding state [ 793.778850][ T1124] bridge0: port 2(bridge_slave_1) entered blocking state [ 793.786030][ T1124] bridge0: port 2(bridge_slave_1) entered forwarding state [ 793.796592][T13641] veth0_vlan: entered promiscuous mode [ 793.873144][T13643] 8021q: adding VLAN 0 to HW filter on device team0 [ 793.889975][T13641] veth1_vlan: entered promiscuous mode [ 793.926972][T13634] veth0_vlan: entered promiscuous mode [ 793.947122][ T35] bridge0: port 1(bridge_slave_0) entered blocking state [ 793.954325][ T35] bridge0: port 1(bridge_slave_0) entered forwarding state [ 794.052728][ T35] bridge0: port 2(bridge_slave_1) entered blocking state [ 794.059927][ T35] bridge0: port 2(bridge_slave_1) entered forwarding state [ 794.085108][T13634] veth1_vlan: entered promiscuous mode [ 794.152064][T13641] veth0_macvtap: entered promiscuous mode [ 794.249053][T13641] veth1_macvtap: entered promiscuous mode [ 794.337422][T13634] veth0_macvtap: entered promiscuous mode [ 794.472478][T13641] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 794.495119][T13641] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 794.525632][T13641] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 794.546819][T13634] veth1_macvtap: entered promiscuous mode [ 794.626031][T13641] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 794.644956][T13641] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 794.657965][T13641] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 794.704858][T13814] chnl_net:caif_netlink_parms(): no params data found [ 794.759409][T13641] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 794.784863][T13641] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 794.793610][T13641] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 794.825353][T13641] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 794.858570][T13634] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 794.876677][T13634] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 794.904608][T13634] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 794.923991][T13634] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 794.945651][T13634] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 795.017221][T13630] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 795.036218][T13634] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 795.049082][T13634] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 795.073924][T13634] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 795.094081][T13634] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 795.113062][T13634] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 795.230770][T13643] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 795.377309][T13634] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 795.410429][T13634] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 795.424145][T13634] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 795.432895][T13634] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 795.454398][ T4615] Bluetooth: hci1: command tx timeout [ 795.642063][T13630] veth0_vlan: entered promiscuous mode [ 795.685687][ T2942] hsr_slave_0: left promiscuous mode [ 795.694743][ T2942] hsr_slave_1: left promiscuous mode [ 795.703578][ T2942] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 795.716269][ T2942] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 795.742195][ T2942] hsr_slave_0: left promiscuous mode [ 795.749024][ T2942] hsr_slave_1: left promiscuous mode [ 795.761688][ T2942] hsr_slave_0: left promiscuous mode [ 795.777083][ T2942] hsr_slave_1: left promiscuous mode [ 795.804944][ T2942] hsr_slave_0: left promiscuous mode [ 795.825097][ T2942] hsr_slave_1: left promiscuous mode [ 795.843858][ T2942] hsr_slave_0: left promiscuous mode [ 795.850010][ T2942] hsr_slave_1: left promiscuous mode [ 795.922685][ T2942] veth1_macvtap: left promiscuous mode [ 795.928746][ T2942] veth0_macvtap: left promiscuous mode [ 795.935370][ T2942] veth1_vlan: left promiscuous mode [ 795.940692][ T2942] veth0_vlan: left promiscuous mode [ 795.953433][ T2942] veth1_macvtap: left promiscuous mode [ 795.964342][ T2942] veth0_macvtap: left promiscuous mode [ 795.969986][ T2942] veth1_vlan: left promiscuous mode [ 795.991048][ T2942] veth0_vlan: left promiscuous mode [ 796.005485][ T2942] veth1_macvtap: left promiscuous mode [ 796.011128][ T2942] veth0_macvtap: left promiscuous mode [ 796.034153][ T2942] veth1_vlan: left promiscuous mode [ 796.039960][ T2942] veth0_vlan: left promiscuous mode [ 796.054854][ T2942] veth1_macvtap: left promiscuous mode [ 796.061016][ T2942] veth0_macvtap: left promiscuous mode [ 796.082946][ T2942] veth1_vlan: left promiscuous mode [ 796.088781][ T2942] veth0_vlan: left promiscuous mode [ 796.795246][ T2942] team0 (unregistering): Port device team_slave_1 removed [ 796.866138][ T2942] team0 (unregistering): Port device team_slave_0 removed [ 797.535414][ T4615] Bluetooth: hci1: command tx timeout [ 797.600671][ T2942] team0 (unregistering): Port device team_slave_1 removed [ 797.638128][ T2942] team0 (unregistering): Port device team_slave_0 removed [ 798.619715][ T2942] team0 (unregistering): Port device wg2 removed [ 799.620571][ T4615] Bluetooth: hci1: command tx timeout [ 799.809781][ T2942] team0 (unregistering): Port device wg2 removed [ 800.918184][ T2942] team0 (unregistering): Port device wg2 removed [ 801.699724][ T4615] Bluetooth: hci1: command tx timeout [ 802.036992][ T2942] team0 (unregistering): Port device wg2 removed [ 802.415351][T13814] bridge0: port 1(bridge_slave_0) entered blocking state [ 802.422484][T13814] bridge0: port 1(bridge_slave_0) entered disabled state [ 802.430770][T13814] bridge_slave_0: entered allmulticast mode [ 802.438128][T13814] bridge_slave_0: entered promiscuous mode [ 802.448677][T13814] bridge0: port 2(bridge_slave_1) entered blocking state [ 802.462835][T13814] bridge0: port 2(bridge_slave_1) entered disabled state [ 802.470254][T13814] bridge_slave_1: entered allmulticast mode [ 802.477340][T13814] bridge_slave_1: entered promiscuous mode [ 802.575525][T13630] veth1_vlan: entered promiscuous mode [ 802.581089][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 802.604171][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 802.621387][T13814] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 802.645298][T13814] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 802.693615][T13630] veth0_macvtap: entered promiscuous mode [ 802.799621][T13814] team0: Port device team_slave_0 added [ 802.856037][T13814] team0: Port device team_slave_1 added [ 802.887163][ T1039] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 802.887982][T13630] veth1_macvtap: entered promiscuous mode [ 802.933969][ T1039] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 803.002703][ T1039] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 803.017168][ T1039] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 803.033636][T13630] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 803.066913][T13630] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 803.081122][T13630] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 803.092949][T13630] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 803.103976][T13630] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 803.115551][T13630] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 803.140467][T13630] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 803.158191][T13814] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 803.173921][T13814] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 803.200867][T13814] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 803.255385][T13630] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 803.278880][T13630] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 803.289405][T13630] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 803.301408][T13630] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 803.311608][T13630] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 803.324312][T13630] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 803.354862][T13630] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 803.389434][T13814] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 803.404224][T13814] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 803.455413][T13814] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 803.505120][T13643] veth0_vlan: entered promiscuous mode [ 803.523316][T13630] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 803.554537][T13630] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 803.563300][T13630] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 803.584324][T13630] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 803.660950][T13814] hsr_slave_0: entered promiscuous mode [ 803.698435][T13814] hsr_slave_1: entered promiscuous mode [ 803.717112][ T1063] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 803.754107][ T1063] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 803.815555][T13643] veth1_vlan: entered promiscuous mode [ 804.132031][T13643] veth0_macvtap: entered promiscuous mode [ 804.194881][T13643] veth1_macvtap: entered promiscuous mode [ 804.391690][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 804.586456][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 804.604961][T13643] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 804.617982][T13643] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 804.628336][T13643] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 804.638888][T13643] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 804.648891][T13643] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 804.660124][T13643] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 804.675369][T13643] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 805.223994][T13643] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 805.248155][T13643] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 805.319121][ T1039] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 805.330110][ T1039] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 805.421844][T13643] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 805.467013][T13643] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 805.476994][T13643] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 805.487517][T13643] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 805.497451][T13643] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 805.508219][T13643] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 805.518881][T13643] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 805.529555][T13643] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 805.555284][T13643] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 805.711076][T13814] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 805.923455][T13643] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 806.038707][T13643] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 806.049724][T13643] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 806.135342][T13643] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 806.639386][T13814] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 806.836415][T13814] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 807.165562][T13814] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 807.336182][ T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 807.344113][ T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 807.422361][ T8320] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 807.454823][ T8320] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 807.481233][T14008] capability: warning: `syz.3.2309' uses 32-bit capabilities (legacy support in use) [ 807.914630][T13814] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 807.958264][T13814] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 807.973446][T13814] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 808.488927][T14017] sp0: Synchronizing with TNC [ 808.490167][T13814] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 809.028952][ T1266] ieee802154 phy0 wpan0: encryption failed: -22 [ 809.144842][ T1266] ieee802154 phy1 wpan1: encryption failed: -22 [ 810.808385][T13814] 8021q: adding VLAN 0 to HW filter on device bond0 [ 817.631675][T13814] 8021q: adding VLAN 0 to HW filter on device team0 [ 817.725335][ T62] bridge0: port 1(bridge_slave_0) entered blocking state [ 817.732483][ T62] bridge0: port 1(bridge_slave_0) entered forwarding state [ 817.842055][ T62] bridge0: port 2(bridge_slave_1) entered blocking state [ 817.849284][ T62] bridge0: port 2(bridge_slave_1) entered forwarding state [ 818.360009][T14055] Driver unsupported XDP return value 0 on prog (id 200) dev N/A, expect packet loss! [ 818.569983][T14058] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2321'. [ 818.584908][T14058] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2321'. [ 818.598062][ T29] audit: type=1326 audit(1727565031.549:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14048 comm="syz.0.2321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08af17dff9 code=0x7ffc0000 [ 818.661722][ T29] audit: type=1326 audit(1727565031.549:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14048 comm="syz.0.2321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08af17dff9 code=0x7ffc0000 [ 818.762774][ T29] audit: type=1326 audit(1727565031.549:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14048 comm="syz.0.2321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f08af17c990 code=0x7ffc0000 [ 818.848275][ T29] audit: type=1326 audit(1727565031.549:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14048 comm="syz.0.2321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f08af17f827 code=0x7ffc0000 [ 818.956848][ T29] audit: type=1326 audit(1727565031.549:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14048 comm="syz.0.2321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f08af17dff9 code=0x7ffc0000 [ 819.050820][ T29] audit: type=1326 audit(1727565031.549:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14048 comm="syz.0.2321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f08af17f827 code=0x7ffc0000 [ 819.155469][ T29] audit: type=1326 audit(1727565031.549:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14048 comm="syz.0.2321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f08af17cc8a code=0x7ffc0000 [ 819.197784][T13814] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 819.261967][ T29] audit: type=1326 audit(1727565031.549:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14048 comm="syz.0.2321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08af17dff9 code=0x7ffc0000 [ 819.352883][T13814] veth0_vlan: entered promiscuous mode [ 819.362730][ T29] audit: type=1326 audit(1727565031.549:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14048 comm="syz.0.2321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08af17dff9 code=0x7ffc0000 [ 819.406522][T13814] veth1_vlan: entered promiscuous mode [ 819.437244][ T29] audit: type=1326 audit(1727565031.549:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14048 comm="syz.0.2321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f08af17dff9 code=0x7ffc0000 [ 819.491364][T13814] veth0_macvtap: entered promiscuous mode [ 819.513121][T13814] veth1_macvtap: entered promiscuous mode [ 819.560542][T13814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 819.583091][T13814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 819.595849][T13814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 819.615100][T13814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 819.643642][T13814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 819.667297][T13814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 819.688208][T13814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 819.711426][T13814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 819.723201][T13814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 819.744259][T13814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 819.770530][T13814] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 819.811347][T13814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 820.400572][T13814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 820.432362][T13814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 820.443704][T13814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 820.463955][T13814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 820.491353][T13814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 820.515960][T13814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 820.580540][T13814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 820.608795][T13814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 820.624851][T13814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 820.636088][T14067] Cannot find add_set index 0 as target [ 822.720489][T13814] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 822.731557][T13814] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 822.742308][T13814] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 822.751119][T13814] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 822.760683][T13814] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 826.672586][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 826.680751][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 827.326499][ T8320] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 827.345878][ T8320] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 831.707971][ T5232] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 831.718703][ T5232] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 831.730050][ T5232] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 831.745605][ T5232] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 831.755140][ T5232] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 831.765977][ T5232] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 831.775227][ T5232] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 831.782625][ T5232] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 831.875816][ T5232] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 831.930499][ T5232] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 831.938623][ T5232] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 831.951899][ T5232] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 832.208609][T14096] chnl_net:caif_netlink_parms(): no params data found [ 832.471001][T14096] bridge0: port 1(bridge_slave_0) entered blocking state [ 832.488627][T14096] bridge0: port 1(bridge_slave_0) entered disabled state [ 832.499034][T14096] bridge_slave_0: entered allmulticast mode [ 832.506634][T14096] bridge_slave_0: entered promiscuous mode [ 832.525303][T14096] bridge0: port 2(bridge_slave_1) entered blocking state [ 832.534059][T14096] bridge0: port 2(bridge_slave_1) entered disabled state [ 832.541982][T14096] bridge_slave_1: entered allmulticast mode [ 832.549644][T14096] bridge_slave_1: entered promiscuous mode [ 832.608596][T14096] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 832.621001][T14096] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 832.686036][T14096] team0: Port device team_slave_0 added [ 832.706463][T14096] team0: Port device team_slave_1 added [ 832.792608][T14096] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 832.811176][T14096] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 832.848727][T14096] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 832.879890][T14096] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 832.896405][T14096] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 832.969495][T14096] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 832.991760][T14099] chnl_net:caif_netlink_parms(): no params data found [ 833.485263][T14096] hsr_slave_0: entered promiscuous mode [ 833.521916][T14096] hsr_slave_1: entered promiscuous mode [ 833.536686][T14096] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 833.553941][T14096] Cannot create hsr debugfs directory [ 833.854142][ T5232] Bluetooth: hci2: command tx timeout [ 834.024266][ T5232] Bluetooth: hci3: command tx timeout [ 835.943903][ T5232] Bluetooth: hci2: command tx timeout [ 836.095199][ T5232] Bluetooth: hci3: command tx timeout [ 836.513707][T13494] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 836.524450][T13494] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 836.535629][T13494] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 836.545849][T13494] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 836.554977][T13494] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 836.562567][T13494] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 838.014095][ T5232] Bluetooth: hci2: command tx timeout [ 838.183875][ T5232] Bluetooth: hci3: command tx timeout [ 838.328357][T13494] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 838.364368][T13494] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 838.374441][T13494] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 838.386755][T13494] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 838.397934][T13494] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 838.406322][T13494] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 838.654413][T13494] Bluetooth: hci6: command tx timeout [ 838.879350][ T5232] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 838.894402][ T5232] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 838.907183][ T5232] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 838.915668][ T5232] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 838.924919][ T5232] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 838.932361][ T5232] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 840.094069][ T5232] Bluetooth: hci2: command tx timeout [ 840.254341][ T5232] Bluetooth: hci3: command tx timeout [ 840.494162][ T5232] Bluetooth: hci7: command tx timeout [ 840.734966][ T5232] Bluetooth: hci6: command tx timeout [ 840.983020][ T5232] Bluetooth: hci0: command tx timeout [ 842.574236][ T5232] Bluetooth: hci7: command tx timeout [ 842.815755][ T5232] Bluetooth: hci6: command tx timeout [ 843.054100][ T5232] Bluetooth: hci0: command tx timeout [ 844.654316][ T5232] Bluetooth: hci7: command tx timeout [ 844.894258][ T5232] Bluetooth: hci6: command tx timeout [ 845.137577][ T5232] Bluetooth: hci0: command tx timeout [ 846.734950][ T5232] Bluetooth: hci7: command tx timeout [ 847.214014][ T5232] Bluetooth: hci0: command tx timeout [ 870.415156][ T1266] ieee802154 phy0 wpan0: encryption failed: -22 [ 870.421503][ T1266] ieee802154 phy1 wpan1: encryption failed: -22 [ 890.261098][T13494] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 890.271384][T13494] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 890.281682][T13494] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 890.289757][T13494] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 890.297587][T13494] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 890.313409][T13494] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 890.397894][ T5232] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 890.407613][ T5232] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 890.418039][ T5232] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 890.430223][ T5232] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 890.438377][ T5232] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 890.446762][ T5232] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 892.340432][T13494] Bluetooth: hci1: command tx timeout [ 892.494153][T13494] Bluetooth: hci4: command tx timeout [ 894.419809][T13494] Bluetooth: hci1: command tx timeout [ 894.574036][T13494] Bluetooth: hci4: command tx timeout [ 896.494900][T13494] Bluetooth: hci1: command tx timeout [ 896.664177][T13494] Bluetooth: hci4: command tx timeout [ 896.864167][ T5232] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 896.875797][ T5232] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 896.884675][ T5232] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 896.897734][ T5232] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 896.906687][ T5232] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 896.914612][ T5232] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 898.574614][ T5232] Bluetooth: hci1: command tx timeout [ 898.589972][T13494] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1 [ 898.599767][T13494] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9 [ 898.610185][T13494] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9 [ 898.620133][T13494] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4 [ 898.630465][T13494] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3 [ 898.640492][T13494] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2 [ 898.734213][T13494] Bluetooth: hci4: command tx timeout [ 898.976434][T13494] Bluetooth: hci5: command tx timeout [ 899.611810][ T5232] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1 [ 899.622061][ T5232] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9 [ 899.635973][ T5232] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9 [ 899.644733][ T5232] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4 [ 899.652382][ T5232] Bluetooth: hci9: unexpected cc 0x0c25 length: 249 > 3 [ 899.661277][ T5232] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2 [ 900.734200][ T5232] Bluetooth: hci8: command tx timeout [ 901.054278][ T5232] Bluetooth: hci5: command tx timeout [ 901.694105][ T5232] Bluetooth: hci9: command tx timeout [ 902.814204][ T5232] Bluetooth: hci8: command tx timeout [ 903.134485][ T5232] Bluetooth: hci5: command tx timeout [ 903.774043][ T5232] Bluetooth: hci9: command tx timeout [ 904.894012][ T5232] Bluetooth: hci8: command tx timeout [ 905.214408][ T5232] Bluetooth: hci5: command tx timeout [ 905.854050][ T5232] Bluetooth: hci9: command tx timeout [ 906.974050][ T5232] Bluetooth: hci8: command tx timeout [ 907.934259][ T5232] Bluetooth: hci9: command tx timeout [ 931.862078][ T1266] ieee802154 phy0 wpan0: encryption failed: -22 [ 931.868666][ T1266] ieee802154 phy1 wpan1: encryption failed: -22 [ 952.662184][ T4615] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1 [ 952.673558][ T4615] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9 [ 952.682479][ T4615] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9 [ 952.690641][ T4615] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4 [ 952.698750][ T4615] Bluetooth: hci10: unexpected cc 0x0c25 length: 249 > 3 [ 952.709076][ T4615] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2 [ 952.842685][T14152] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1 [ 952.864057][T14152] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9 [ 952.873705][T14152] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9 [ 952.883554][T14152] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4 [ 952.891658][T14152] Bluetooth: hci11: unexpected cc 0x0c25 length: 249 > 3 [ 952.900714][T14152] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2 [ 954.431391][ T4615] Bluetooth: hci2: command 0x0406 tx timeout [ 954.437667][T14152] Bluetooth: hci3: command 0x0406 tx timeout [ 954.734153][T13494] Bluetooth: hci10: command tx timeout [ 954.974554][T13494] Bluetooth: hci11: command tx timeout [ 956.814077][T13494] Bluetooth: hci10: command tx timeout [ 957.060530][T13494] Bluetooth: hci11: command tx timeout [ 957.683391][T14152] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1 [ 957.694651][T14152] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9 [ 957.703357][T14152] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9 [ 957.713202][T14152] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4 [ 957.721524][T14152] Bluetooth: hci12: unexpected cc 0x0c25 length: 249 > 3 [ 957.730013][T14152] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2 [ 958.904002][T14152] Bluetooth: hci10: command tx timeout [ 959.134917][T14152] Bluetooth: hci11: command tx timeout [ 959.162211][T13494] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1 [ 959.175924][T13494] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9 [ 959.184918][T13494] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9 [ 959.192897][T13494] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4 [ 959.200804][T13494] Bluetooth: hci13: unexpected cc 0x0c25 length: 249 > 3 [ 959.208471][T13494] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2 [ 959.545802][T13494] Bluetooth: hci6: command 0x0406 tx timeout [ 959.774073][ T5232] Bluetooth: hci12: command tx timeout [ 960.154281][T13494] Bluetooth: hci14: unexpected cc 0x0c03 length: 249 > 1 [ 960.177805][T13494] Bluetooth: hci14: unexpected cc 0x1003 length: 249 > 9 [ 960.187562][T13494] Bluetooth: hci14: unexpected cc 0x1001 length: 249 > 9 [ 960.196499][T13494] Bluetooth: hci14: unexpected cc 0x0c23 length: 249 > 4 [ 960.209347][T13494] Bluetooth: hci14: unexpected cc 0x0c25 length: 249 > 3 [ 960.216917][T13494] Bluetooth: hci14: unexpected cc 0x0c38 length: 249 > 2 [ 960.974187][ T5232] Bluetooth: hci10: command tx timeout [ 961.214532][ T5232] Bluetooth: hci11: command tx timeout [ 961.294177][ T5232] Bluetooth: hci13: command tx timeout [ 961.858728][ T5232] Bluetooth: hci12: command tx timeout [ 962.254341][ T5232] Bluetooth: hci14: command tx timeout [ 963.374068][T13494] Bluetooth: hci13: command tx timeout [ 963.934717][T13494] Bluetooth: hci12: command tx timeout [ 964.334268][T13494] Bluetooth: hci14: command tx timeout [ 964.667815][ T4615] Bluetooth: hci7: command 0x0406 tx timeout [ 964.674033][T13494] Bluetooth: hci0: command 0x0406 tx timeout [ 965.453999][ T5232] Bluetooth: hci13: command tx timeout [ 966.014082][ T5232] Bluetooth: hci12: command tx timeout [ 966.414456][T14152] Bluetooth: hci14: command tx timeout [ 967.534101][ T5232] Bluetooth: hci13: command tx timeout [ 968.494274][ T5232] Bluetooth: hci14: command tx timeout [ 993.302357][ T1266] ieee802154 phy0 wpan0: encryption failed: -22 [ 993.308896][ T1266] ieee802154 phy1 wpan1: encryption failed: -22 [ 995.223704][ T30] INFO: task kworker/u8:9:2942 blocked for more than 143 seconds. [ 995.231787][ T30] Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 995.300673][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 995.374464][ T30] task:kworker/u8:9 state:D stack:20152 pid:2942 tgid:2942 ppid:2 flags:0x00004000 [ 995.474673][ T30] Workqueue: netns cleanup_net [ 995.479527][ T30] Call Trace: [ 995.482836][ T30] [ 995.569960][ T30] __schedule+0x1843/0x4ae0 [ 995.609217][ T30] ? __pfx___schedule+0x10/0x10 [ 995.662108][ T30] ? __pfx_lock_release+0x10/0x10 [ 995.675928][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 995.682394][ T30] ? kthread_data+0x52/0xd0 [ 995.724421][ T30] ? schedule+0x90/0x320 [ 995.728744][ T30] ? wq_worker_sleeping+0x66/0x240 [ 995.744249][ T30] ? schedule+0x90/0x320 [ 995.748569][ T30] schedule+0x14b/0x320 [ 995.752761][ T30] schedule_preempt_disabled+0x13/0x30 [ 995.768703][ T30] __mutex_lock+0x6a7/0xd70 [ 995.773278][ T30] ? __mutex_lock+0x52a/0xd70 [ 995.799993][ T30] ? wg_destruct+0x25/0x2e0 [ 995.807980][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 995.813077][ T30] ? __pfx_free_percpu+0x10/0x10 [ 995.830032][ T30] ? kobject_put+0x272/0x480 [ 995.838625][ T30] ? __pfx_wg_destruct+0x10/0x10 [ 995.843717][ T30] wg_destruct+0x25/0x2e0 [ 995.861408][ T30] ? __pfx_wg_destruct+0x10/0x10 [ 995.873944][ T30] netdev_run_todo+0xe1a/0x1000 [ 995.896907][ T30] ? __pfx_netdev_run_todo+0x10/0x10 [ 995.902263][ T30] ? unregister_netdevice_queue+0x26b/0x370 [ 995.913985][ T30] ? batadv_softif_destroy_netlink+0x1e3/0x270 [ 995.930747][ T30] default_device_exit_batch+0xa24/0xaa0 [ 995.941640][ T30] ? __pfx___might_resched+0x10/0x10 [ 995.954000][ T30] ? __pfx_default_device_exit_batch+0x10/0x10 [ 995.960242][ T30] ? __pfx_rdma_dev_exit_net+0x10/0x10 [ 995.975573][ T30] ? cfg802154_pernet_exit+0xc3/0xe0 [ 995.980932][ T30] ? __pfx_default_device_exit_batch+0x10/0x10 [ 995.993942][ T30] cleanup_net+0x89d/0xcc0 [ 995.998440][ T30] ? __pfx_cleanup_net+0x10/0x10 [ 996.003416][ T30] ? process_scheduled_works+0x976/0x1850 [ 996.023428][ T30] process_scheduled_works+0xa63/0x1850 [ 996.042718][ T30] ? __pfx_process_scheduled_works+0x10/0x10 [ 996.052959][ T30] ? assign_work+0x364/0x3d0 [ 996.063943][ T30] worker_thread+0x870/0xd30 [ 996.068759][ T30] ? __kthread_parkme+0x169/0x1d0 [ 996.089010][ T30] ? __pfx_worker_thread+0x10/0x10 [ 996.100179][ T30] kthread+0x2f0/0x390 [ 996.109685][ T30] ? __pfx_worker_thread+0x10/0x10 [ 996.122168][ T30] ? __pfx_kthread+0x10/0x10 [ 996.133995][ T30] ret_from_fork+0x4b/0x80 [ 996.138583][ T30] ? __pfx_kthread+0x10/0x10 [ 996.143211][ T30] ret_from_fork_asm+0x1a/0x30 [ 996.158960][ T30] [ 996.162477][ T30] INFO: task syz.1.2320:14046 blocked for more than 144 seconds. [ 996.194320][ T30] Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 996.201655][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 996.284134][ T30] task:syz.1.2320 state:D stack:23808 pid:14046 tgid:14046 ppid:13630 flags:0x00004006 [ 996.306240][ T30] Call Trace: [ 996.309584][ T30] [ 996.312543][ T30] __schedule+0x1843/0x4ae0 [ 996.324080][ T30] ? __pfx___schedule+0x10/0x10 [ 996.329617][ T30] ? __pfx_lock_release+0x10/0x10 [ 996.345651][ T30] ? schedule+0x90/0x320 [ 996.349981][ T30] schedule+0x14b/0x320 [ 996.366277][ T30] schedule_timeout+0xb0/0x310 [ 996.371233][ T30] ? __pfx_schedule_timeout+0x10/0x10 [ 996.383869][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 996.389931][ T30] ? wait_for_completion+0x2fe/0x620 [ 996.406847][ T30] ? wait_for_completion+0x2fe/0x620 [ 996.412201][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 996.425972][ T30] ? lockdep_hardirqs_on+0x99/0x150 [ 996.431243][ T30] ? wait_for_completion+0x2fe/0x620 [ 996.447726][ T30] wait_for_completion+0x355/0x620 [ 996.452929][ T30] ? __pfx_wait_for_completion+0x10/0x10 [ 996.463971][ T30] ? __flush_work+0xe7/0xc50 [ 996.468629][ T30] __flush_work+0xa37/0xc50 [ 996.473155][ T30] ? __flush_work+0xe7/0xc50 [ 996.491036][ T30] ? __pfx___flush_work+0x10/0x10 [ 996.502326][ T30] ? __pfx_wq_barrier_func+0x10/0x10 [ 996.513523][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 996.523811][ T30] ? _raw_spin_lock_irq+0xdf/0x120 [ 996.531460][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 996.544251][ T30] unregister_netdevice_many_notify+0x87b/0x1da0 [ 996.550654][ T30] ? enqueue_timer+0x21b/0x570 [ 996.565188][ T30] ? __mod_timer+0xb89/0xeb0 [ 996.569855][ T30] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 996.591445][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 996.601167][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 996.614081][ T30] ? queue_delayed_work_on+0x1eb/0x390 [ 996.619605][ T30] ? lockdep_hardirqs_on+0x99/0x150 [ 996.636351][ T30] unregister_netdevice_queue+0x303/0x370 [ 996.642140][ T30] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 996.655812][ T30] __tun_detach+0x6b9/0x1600 [ 996.660497][ T30] tun_chr_close+0x105/0x1b0 [ 996.677642][ T30] ? __pfx_tun_chr_close+0x10/0x10 [ 996.682827][ T30] __fput+0x23f/0x880 [ 996.694618][ T30] task_work_run+0x24f/0x310 [ 996.699656][ T30] ? kasan_quarantine_put+0xdc/0x230 [ 996.714286][ T30] ? __pfx_task_work_run+0x10/0x10 [ 996.719458][ T30] ? do_exit+0xa2a/0x28e0 [ 996.734954][ T30] ? kmem_cache_free+0x1a2/0x420 [ 996.740816][ T30] ? do_exit+0xa2a/0x28e0 [ 996.753846][ T30] do_exit+0xa2f/0x28e0 [ 996.758072][ T30] ? __pfx_do_exit+0x10/0x10 [ 996.762691][ T30] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 996.779272][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 996.793177][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 996.805815][ T30] ? _raw_spin_lock_irq+0xdf/0x120 [ 996.811006][ T30] do_group_exit+0x207/0x2c0 [ 996.834006][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 996.839296][ T30] ? lockdep_hardirqs_on+0x99/0x150 [ 996.853944][ T30] get_signal+0x16a3/0x1740 [ 996.858882][ T30] ? __pfx_get_signal+0x10/0x10 [ 996.873955][ T30] arch_do_signal_or_restart+0x96/0x860 [ 996.879577][ T30] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 996.894271][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 996.900335][ T30] ? syscall_exit_to_user_mode+0xa3/0x370 [ 996.920258][ T30] syscall_exit_to_user_mode+0xc9/0x370 [ 996.931221][ T30] do_syscall_64+0x100/0x230 [ 996.942079][ T30] ? clear_bhb_loop+0x35/0x90 [ 996.952376][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 996.963908][ T30] RIP: 0033:0x7fc34897dff9 [ 996.968385][ T30] RSP: 002b:00007ffe7108fb38 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 996.987344][ T30] RAX: 0000000000000000 RBX: 00007fc348b37a80 RCX: 00007fc34897dff9 [ 997.003910][ T30] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003 [ 997.023519][ T30] RBP: 00007fc348b37a80 R08: 00007fc348b22000 R09: 00007ffe7108fe2f [ 997.033104][ T30] R10: 00000000005f0534 R11: 0000000000000246 R12: 00000000000c7dcc [ 997.053568][ T30] R13: 00007ffe7108fc40 R14: 0000000000000032 R15: ffffffffffffffff [ 997.062502][ T30] [ 997.103185][ T30] INFO: task syz.3.2325:14074 blocked for more than 145 seconds. [ 997.135058][ T30] Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 997.142408][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 997.171151][ T30] task:syz.3.2325 state:D stack:23808 pid:14074 tgid:14074 ppid:13641 flags:0x00004006 [ 997.185581][ T30] Call Trace: [ 997.188911][ T30] [ 997.191870][ T30] __schedule+0x1843/0x4ae0 [ 997.204288][ T30] ? __pfx___schedule+0x10/0x10 [ 997.209211][ T30] ? __pfx_lock_release+0x10/0x10 [ 997.226162][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 997.231724][ T30] ? schedule+0x90/0x320 [ 997.245094][ T30] schedule+0x14b/0x320 [ 997.249324][ T30] schedule_preempt_disabled+0x13/0x30 [ 997.264153][ T30] __mutex_lock+0x6a7/0xd70 [ 997.268761][ T30] ? __mutex_lock+0x52a/0xd70 [ 997.273466][ T30] ? tun_chr_close+0x3b/0x1b0 [ 997.288733][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 997.300949][ T30] ? __pfx_call_rcu+0x10/0x10 [ 997.311576][ T30] tun_chr_close+0x3b/0x1b0 [ 997.322164][ T30] ? __pfx_tun_chr_close+0x10/0x10 [ 997.334187][ T30] __fput+0x23f/0x880 [ 997.338246][ T30] task_work_run+0x24f/0x310 [ 997.342864][ T30] ? kasan_quarantine_put+0xdc/0x230 [ 997.359933][ T30] ? __pfx_task_work_run+0x10/0x10 [ 997.379632][ T30] ? do_exit+0xa2a/0x28e0 [ 997.384923][ T30] ? kmem_cache_free+0x1a2/0x420 [ 997.389926][ T30] ? do_exit+0xa2a/0x28e0 [ 997.404078][ T30] do_exit+0xa2f/0x28e0 [ 997.408313][ T30] ? __pfx_do_exit+0x10/0x10 [ 997.412938][ T30] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 997.430724][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 997.443063][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 997.460591][ T30] ? _raw_spin_lock_irq+0xdf/0x120 [ 997.466986][ T30] do_group_exit+0x207/0x2c0 [ 997.471621][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 997.488143][ T30] ? lockdep_hardirqs_on+0x99/0x150 [ 997.493419][ T30] get_signal+0x16a3/0x1740 [ 997.503952][ T30] ? __pfx_get_signal+0x10/0x10 [ 997.508883][ T30] arch_do_signal_or_restart+0x96/0x860 [ 997.526272][ T30] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 997.532497][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 997.549883][ T30] ? syscall_exit_to_user_mode+0xa3/0x370 [ 997.561035][ T30] syscall_exit_to_user_mode+0xc9/0x370 [ 997.573463][ T30] do_syscall_64+0x100/0x230 [ 997.583565][ T30] ? clear_bhb_loop+0x35/0x90 [ 997.593991][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 997.599960][ T30] RIP: 0033:0x7fcdfc97dff9 [ 997.615091][ T30] RSP: 002b:00007ffc23db66b8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 997.635961][ T30] RAX: 0000000000000000 RBX: 00000000000c99dc RCX: 00007fcdfc97dff9 [ 997.654889][ T30] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003 [ 997.662923][ T30] RBP: 00007fcdfcb37a80 R08: 0000000000000001 R09: 00007ffc23db69af [ 997.681548][ T30] R10: 00007fcdfc800000 R11: 0000000000000246 R12: 00000000000c9d35 [ 997.692902][ T30] R13: 00007ffc23db67c0 R14: 0000000000000032 R15: ffffffffffffffff [ 997.705305][ T30] [ 997.717304][ T30] INFO: task syz.0.2326:14080 blocked for more than 145 seconds. [ 997.733898][ T30] Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 997.741239][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 997.760965][ T30] task:syz.0.2326 state:D stack:25168 pid:14080 tgid:14079 ppid:13634 flags:0x00004002 [ 997.788571][ T30] Call Trace: [ 997.791926][ T30] [ 997.800358][ T30] __schedule+0x1843/0x4ae0 [ 997.812858][ T30] ? __pfx___schedule+0x10/0x10 [ 997.822727][ T30] ? __pfx_lock_release+0x10/0x10 [ 997.833973][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 997.839506][ T30] ? schedule+0x90/0x320 [ 997.853433][ T30] schedule+0x14b/0x320 [ 997.864010][ T30] schedule_preempt_disabled+0x13/0x30 [ 997.869546][ T30] __mutex_lock+0x6a7/0xd70 [ 997.884255][ T30] ? __mutex_lock+0x52a/0xd70 [ 997.889018][ T30] ? tun_chr_close+0x3b/0x1b0 [ 997.906161][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 997.911258][ T30] ? __pfx_call_rcu+0x10/0x10 [ 997.926884][ T30] tun_chr_close+0x3b/0x1b0 [ 997.932734][ T30] ? __pfx_tun_chr_close+0x10/0x10 [ 997.953887][ T30] __fput+0x23f/0x880 [ 997.957966][ T30] task_work_run+0x24f/0x310 [ 997.962593][ T30] ? kasan_quarantine_put+0xdc/0x230 [ 997.980451][ T30] ? __pfx_task_work_run+0x10/0x10 [ 997.991122][ T30] ? do_exit+0xa2a/0x28e0 [ 998.001343][ T30] ? kmem_cache_free+0x1a2/0x420 [ 998.011139][ T30] ? do_exit+0xa2a/0x28e0 [ 998.024612][ T30] do_exit+0xa2f/0x28e0 [ 998.028838][ T30] ? __pfx_do_exit+0x10/0x10 [ 998.045482][ T30] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 998.051018][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 998.067206][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 998.073612][ T30] ? _raw_spin_lock_irq+0xdf/0x120 [ 998.089538][ T30] do_group_exit+0x207/0x2c0 [ 998.096799][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 998.102059][ T30] ? lockdep_hardirqs_on+0x99/0x150 [ 998.118101][ T30] get_signal+0x16a3/0x1740 [ 998.122688][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 998.143882][ T30] ? __pfx_get_signal+0x10/0x10 [ 998.148826][ T30] arch_do_signal_or_restart+0x96/0x860 [ 998.163889][ T30] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 998.171075][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 998.185972][ T30] ? syscall_exit_to_user_mode+0xa3/0x370 [ 998.191762][ T30] syscall_exit_to_user_mode+0xc9/0x370 [ 998.208106][ T30] do_syscall_64+0x100/0x230 [ 998.212851][ T30] ? clear_bhb_loop+0x35/0x90 [ 998.223967][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 998.229941][ T30] RIP: 0033:0x7f08af17dff9 [ 998.249061][ T30] RSP: 002b:00007f08b0040038 EFLAGS: 00000246 ORIG_RAX: 000000000000013d [ 998.262482][ T30] RAX: 0000000000000000 RBX: 00007f08af335f80 RCX: 00007f08af17dff9 [ 998.281573][ T30] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000000000001 [ 998.292247][ T30] RBP: 00007f08af1f0296 R08: 0000000000000000 R09: 0000000000000000 [ 998.312015][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 998.322294][ T30] R13: 0000000000000001 R14: 00007f08af335f80 R15: 00007fffee508a78 [ 998.334060][ T30] [ 998.341558][ T30] INFO: task syz.2.2328:14094 blocked for more than 146 seconds. [ 998.363462][ T30] Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 998.379903][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 998.393317][ T30] task:syz.2.2328 state:D stack:23512 pid:14094 tgid:14090 ppid:13814 flags:0x00004006 [ 998.416936][ T30] Call Trace: [ 998.420274][ T30] [ 998.423232][ T30] __schedule+0x1843/0x4ae0 [ 998.439384][ T30] ? __pfx___schedule+0x10/0x10 [ 998.450514][ T30] ? __pfx_lock_release+0x10/0x10 [ 998.463125][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 998.480386][ T30] ? schedule+0x90/0x320 [ 998.488402][ T30] schedule+0x14b/0x320 [ 998.492626][ T30] schedule_preempt_disabled+0x13/0x30 [ 998.503914][ T30] __mutex_lock+0x6a7/0xd70 [ 998.508487][ T30] ? __mutex_lock+0x52a/0xd70 [ 998.513207][ T30] ? tun_chr_close+0x3b/0x1b0 [ 998.528202][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 998.533315][ T30] ? __pfx_call_rcu+0x10/0x10 [ 998.544382][ T30] tun_chr_close+0x3b/0x1b0 [ 998.554291][ T30] ? __pfx_tun_chr_close+0x10/0x10 [ 998.559516][ T30] __fput+0x23f/0x880 [ 998.563541][ T30] task_work_run+0x24f/0x310 [ 998.581392][ T30] ? kasan_quarantine_put+0xdc/0x230 [ 998.591699][ T30] ? __pfx_task_work_run+0x10/0x10 [ 998.602942][ T30] ? do_exit+0xa2a/0x28e0 [ 998.612198][ T30] ? kmem_cache_free+0x1a2/0x420 [ 998.623086][ T30] ? do_exit+0xa2a/0x28e0 [ 998.633960][ T30] do_exit+0xa2f/0x28e0 [ 998.638184][ T30] ? __pfx_do_exit+0x10/0x10 [ 998.642798][ T30] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 998.663968][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 998.670038][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 998.691037][ T30] ? _raw_spin_lock_irq+0xdf/0x120 [ 998.702428][ T30] do_group_exit+0x207/0x2c0 [ 998.713340][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 998.723465][ T30] ? lockdep_hardirqs_on+0x99/0x150 [ 998.734227][ T30] get_signal+0x16a3/0x1740 [ 998.739047][ T30] ? __pfx_get_signal+0x10/0x10 [ 998.751189][ T30] ? __sys_bpf+0x4ee/0x810 [ 998.761452][ T30] arch_do_signal_or_restart+0x96/0x860 [ 998.773459][ T30] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 998.784567][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 998.790718][ T30] ? syscall_exit_to_user_mode+0xa3/0x370 [ 998.807143][ T30] syscall_exit_to_user_mode+0xc9/0x370 [ 998.812763][ T30] do_syscall_64+0x100/0x230 [ 998.824330][ T30] ? clear_bhb_loop+0x35/0x90 [ 998.833945][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 998.839964][ T30] RIP: 0033:0x7f2fa417dff9 [ 998.856865][ T30] RSP: 002b:00007f2fa3bff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 998.872819][ T30] RAX: 0000000000000006 RBX: 00007f2fa4336130 RCX: 00007f2fa417dff9 [ 998.885293][ T30] RDX: 0000000000000090 RSI: 0000000020000680 RDI: 0000000000000005 [ 998.893379][ T30] RBP: 00007f2fa41f0296 R08: 0000000000000000 R09: 0000000000000000 [ 998.922832][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 998.941474][ T30] R13: 0000000000000000 R14: 00007f2fa4336130 R15: 00007fffc5412988 [ 998.952554][ T30] [ 998.963958][ T30] INFO: task kworker/u8:10:14095 blocked for more than 147 seconds. [ 998.972006][ T30] Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 999.001479][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 999.015199][ T30] task:kworker/u8:10 state:D stack:25088 pid:14095 tgid:14095 ppid:2 flags:0x00004000 [ 999.036747][ T30] Workqueue: events_unbound linkwatch_event [ 999.042728][ T30] Call Trace: [ 999.053968][ T30] [ 999.056965][ T30] __schedule+0x1843/0x4ae0 [ 999.073917][ T30] ? __pfx___schedule+0x10/0x10 [ 999.078846][ T30] ? __pfx_lock_release+0x10/0x10 [ 999.094665][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 999.100230][ T30] ? kthread_data+0x52/0xd0 [ 999.119104][ T30] ? schedule+0x90/0x320 [ 999.123435][ T30] ? wq_worker_sleeping+0x66/0x240 [ 999.134517][ T30] ? schedule+0x90/0x320 [ 999.138838][ T30] schedule+0x14b/0x320 [ 999.143041][ T30] schedule_preempt_disabled+0x13/0x30 [ 999.158987][ T30] __mutex_lock+0x6a7/0xd70 [ 999.169598][ T30] ? __mutex_lock+0x52a/0xd70 [ 999.181004][ T30] ? linkwatch_event+0xe/0x60 [ 999.190511][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 999.201605][ T30] ? preempt_schedule_thunk+0x1a/0x30 [ 999.213425][ T30] ? process_scheduled_works+0x976/0x1850 [ 999.224181][ T30] linkwatch_event+0xe/0x60 [ 999.228760][ T30] process_scheduled_works+0xa63/0x1850 [ 999.247118][ T30] ? __pfx_process_scheduled_works+0x10/0x10 [ 999.253186][ T30] ? assign_work+0x364/0x3d0 [ 999.263167][ T30] worker_thread+0x870/0xd30 [ 999.273966][ T30] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 999.280029][ T30] ? __kthread_parkme+0x169/0x1d0 [ 999.296376][ T30] ? __pfx_worker_thread+0x10/0x10 [ 999.301563][ T30] kthread+0x2f0/0x390 [ 999.314616][ T30] ? __pfx_worker_thread+0x10/0x10 [ 999.319795][ T30] ? __pfx_kthread+0x10/0x10 [ 999.336117][ T30] ret_from_fork+0x4b/0x80 [ 999.340624][ T30] ? __pfx_kthread+0x10/0x10 [ 999.353930][ T30] ret_from_fork_asm+0x1a/0x30 [ 999.358797][ T30] [ 999.373663][ T30] INFO: task syz-executor:14096 blocked for more than 147 seconds. [ 999.383085][ T30] Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 999.411400][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 999.422819][ T30] task:syz-executor state:D stack:21728 pid:14096 tgid:14096 ppid:1 flags:0x00000004 [ 999.443508][ T30] Call Trace: [ 999.447351][ T30] [ 999.450321][ T30] __schedule+0x1843/0x4ae0 [ 999.464336][ T30] ? __pfx___schedule+0x10/0x10 [ 999.474244][ T30] ? __pfx_lock_release+0x10/0x10 [ 999.479345][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 999.495432][ T30] ? schedule+0x90/0x320 [ 999.499827][ T30] schedule+0x14b/0x320 [ 999.510346][ T30] schedule_preempt_disabled+0x13/0x30 [ 999.522025][ T30] __mutex_lock+0x6a7/0xd70 [ 999.531371][ T30] ? __mutex_lock+0x52a/0xd70 [ 999.553389][ T30] ? rtnetlink_rcv_msg+0x6e6/0xcf0 [ 999.560541][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 999.570366][ T30] rtnetlink_rcv_msg+0x6e6/0xcf0 [ 999.583972][ T30] ? rtnetlink_rcv_msg+0x1a7/0xcf0 [ 999.589172][ T30] ? __lock_acquire+0x1384/0x2050 [ 999.604585][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 999.610170][ T30] netlink_rcv_skb+0x1e3/0x430 [ 999.628792][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 999.639152][ T30] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 999.651952][ T30] ? netlink_deliver_tap+0x2e/0x1b0 [ 999.662823][ T30] netlink_unicast+0x7f6/0x990 [ 999.672382][ T30] ? __pfx_netlink_unicast+0x10/0x10 [ 999.683941][ T30] ? __virt_addr_valid+0x183/0x530 [ 999.689222][ T30] ? __check_object_size+0x48e/0x900 [ 999.706591][ T30] netlink_sendmsg+0x8e4/0xcb0 [ 999.711453][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 999.729916][ T30] ? __might_fault+0xaa/0x120 [ 999.740562][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 999.748360][ T30] __sock_sendmsg+0x221/0x270 [ 999.753107][ T30] __sys_sendto+0x39b/0x4f0 [ 999.769332][ T30] ? __pfx___sys_sendto+0x10/0x10 [ 999.783024][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 999.793923][ T30] ? blkcg_maybe_throttle_current+0x1ab/0xb80 [ 999.800075][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 999.817193][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 999.823605][ T30] __x64_sys_sendto+0xde/0x100 [ 999.834317][ T30] do_syscall_64+0xf3/0x230 [ 999.838890][ T30] ? clear_bhb_loop+0x35/0x90 [ 999.843606][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 999.862852][ T30] RIP: 0033:0x7f931437fe8c [ 999.872249][ T30] RSP: 002b:00007ffe7b08ee60 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 999.895223][ T30] RAX: ffffffffffffffda RBX: 00007f9315064620 RCX: 00007f931437fe8c [ 999.903268][ T30] RDX: 000000000000006c RSI: 00007f9315064670 RDI: 0000000000000003 [ 999.924266][ T30] RBP: 0000000000000000 R08: 00007ffe7b08eeb4 R09: 000000000000000c [ 999.932351][ T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 999.945990][ T30] R13: 0000000000000000 R14: 00007f9315064670 R15: 0000000000000000 [ 999.964278][ T30] [ 999.969859][ T30] INFO: task syz-executor:14099 blocked for more than 148 seconds. [ 1000.000618][ T30] Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 1000.018733][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1000.041303][ T30] task:syz-executor state:D stack:21728 pid:14099 tgid:14099 ppid:1 flags:0x00000004 [ 1000.063336][ T30] Call Trace: [ 1000.066838][ T30] [ 1000.069802][ T30] __schedule+0x1843/0x4ae0 [ 1000.082389][ T30] ? __pfx___schedule+0x10/0x10 [ 1000.091644][ T30] ? __pfx_lock_release+0x10/0x10 [ 1000.103970][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 1000.109511][ T30] ? schedule+0x90/0x320 [ 1000.129150][ T30] schedule+0x14b/0x320 [ 1000.133476][ T30] schedule_preempt_disabled+0x13/0x30 [ 1000.143966][ T30] __mutex_lock+0x6a7/0xd70 [ 1000.148568][ T30] ? __mutex_lock+0x52a/0xd70 [ 1000.153285][ T30] ? rtnetlink_rcv_msg+0x6e6/0xcf0 [ 1000.168590][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 1000.181500][ T30] rtnetlink_rcv_msg+0x6e6/0xcf0 [ 1000.192505][ T30] ? rtnetlink_rcv_msg+0x1a7/0xcf0 [ 1000.203627][ T30] ? __lock_acquire+0x1384/0x2050 [ 1000.213972][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 1000.220232][ T30] netlink_rcv_skb+0x1e3/0x430 [ 1000.234265][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 1000.239812][ T30] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1000.256170][ T30] ? netlink_deliver_tap+0x2e/0x1b0 [ 1000.261468][ T30] netlink_unicast+0x7f6/0x990 [ 1000.274296][ T30] ? __pfx_netlink_unicast+0x10/0x10 [ 1000.279650][ T30] ? __virt_addr_valid+0x183/0x530 [ 1000.294285][ T30] ? __check_object_size+0x48e/0x900 [ 1000.299643][ T30] netlink_sendmsg+0x8e4/0xcb0 [ 1000.315564][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1000.320992][ T30] ? __might_fault+0xaa/0x120 [ 1000.335446][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1000.340804][ T30] __sock_sendmsg+0x221/0x270 [ 1000.359066][ T30] __sys_sendto+0x39b/0x4f0 [ 1000.363646][ T30] ? __pfx___sys_sendto+0x10/0x10 [ 1000.373935][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 1000.379547][ T30] ? blkcg_maybe_throttle_current+0x1ab/0xb80 [ 1000.399359][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 1000.410220][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 1000.422614][ T30] __x64_sys_sendto+0xde/0x100 [ 1000.432551][ T30] do_syscall_64+0xf3/0x230 [ 1000.444082][ T30] ? clear_bhb_loop+0x35/0x90 [ 1000.448817][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1000.468099][ T30] RIP: 0033:0x7f57a0d7fe8c [ 1000.472573][ T30] RSP: 002b:00007ffd92a24060 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 1000.483865][ T30] RAX: ffffffffffffffda RBX: 00007f57a1a64620 RCX: 00007f57a0d7fe8c [ 1000.503195][ T30] RDX: 000000000000006c RSI: 00007f57a1a64670 RDI: 0000000000000003 [ 1000.525684][ T30] RBP: 0000000000000000 R08: 00007ffd92a240b4 R09: 000000000000000c [ 1000.533723][ T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 1000.552969][ T30] R13: 0000000000000000 R14: 00007f57a1a64670 R15: 0000000000000000 [ 1000.568480][ T30] [ 1000.577148][ T30] INFO: task syz-executor:14114 blocked for more than 148 seconds. [ 1000.594852][ T30] Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 1000.602270][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1000.624755][ T30] task:syz-executor state:D stack:24128 pid:14114 tgid:14114 ppid:1 flags:0x00000004 [ 1000.644638][ T30] Call Trace: [ 1000.647975][ T30] [ 1000.650934][ T30] __schedule+0x1843/0x4ae0 [ 1000.667697][ T30] ? __pfx___schedule+0x10/0x10 [ 1000.672788][ T30] ? __pfx_lock_release+0x10/0x10 [ 1000.683894][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 1000.689423][ T30] ? schedule+0x90/0x320 [ 1000.693695][ T30] schedule+0x14b/0x320 [ 1000.708740][ T30] schedule_preempt_disabled+0x13/0x30 [ 1000.720772][ T30] __mutex_lock+0x6a7/0xd70 [ 1000.731745][ T30] ? __mutex_lock+0x52a/0xd70 [ 1000.743302][ T30] ? rtnetlink_rcv_msg+0x6e6/0xcf0 [ 1000.754986][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 1000.760088][ T30] rtnetlink_rcv_msg+0x6e6/0xcf0 [ 1000.774340][ T30] ? rtnetlink_rcv_msg+0x1a7/0xcf0 [ 1000.779521][ T30] ? __lock_acquire+0x1384/0x2050 [ 1000.800461][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 1000.814049][ T30] netlink_rcv_skb+0x1e3/0x430 [ 1000.818894][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 1000.834308][ T30] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1000.839771][ T30] ? netlink_deliver_tap+0x2e/0x1b0 [ 1000.856030][ T30] netlink_unicast+0x7f6/0x990 [ 1000.860869][ T30] ? __pfx_netlink_unicast+0x10/0x10 [ 1000.877163][ T30] ? __virt_addr_valid+0x183/0x530 [ 1000.882362][ T30] ? __check_object_size+0x48e/0x900 [ 1000.895601][ T30] netlink_sendmsg+0x8e4/0xcb0 [ 1000.913245][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1000.918843][ T30] ? __might_fault+0xaa/0x120 [ 1000.923665][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1000.940613][ T30] __sock_sendmsg+0x221/0x270 [ 1000.949842][ T30] __sys_sendto+0x39b/0x4f0 [ 1000.960420][ T30] ? __pfx___sys_sendto+0x10/0x10 [ 1000.970556][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 1000.983905][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 1000.990409][ T30] __x64_sys_sendto+0xde/0x100 [ 1001.011701][ T30] do_syscall_64+0xf3/0x230 [ 1001.023560][ T30] ? clear_bhb_loop+0x35/0x90 [ 1001.032047][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1001.049820][ T30] RIP: 0033:0x7f09d057fe8c [ 1001.063893][ T30] RSP: 002b:00007ffe18d15680 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 1001.072377][ T30] RAX: ffffffffffffffda RBX: 00007f09d1264620 RCX: 00007f09d057fe8c [ 1001.091310][ T30] RDX: 000000000000002c RSI: 00007f09d1264670 RDI: 0000000000000003 [ 1001.103205][ T30] RBP: 0000000000000000 R08: 00007ffe18d156d4 R09: 000000000000000c [ 1001.123932][ T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 1001.132066][ T30] R13: 0000000000000000 R14: 00007f09d1264670 R15: 0000000000000000 [ 1001.153337][ T30] [ 1001.159312][ T30] INFO: task syz-executor:14120 blocked for more than 149 seconds. [ 1001.178417][ T30] Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 1001.192484][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1001.206801][ T30] task:syz-executor state:D stack:24128 pid:14120 tgid:14120 ppid:1 flags:0x00000004 [ 1001.225418][ T30] Call Trace: [ 1001.228859][ T30] [ 1001.231831][ T30] __schedule+0x1843/0x4ae0 [ 1001.247785][ T30] ? __pfx___schedule+0x10/0x10 [ 1001.253518][ T30] ? __pfx_lock_release+0x10/0x10 [ 1001.274652][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 1001.280259][ T30] ? schedule+0x90/0x320 [ 1001.294292][ T30] schedule+0x14b/0x320 [ 1001.298516][ T30] schedule_preempt_disabled+0x13/0x30 [ 1001.311147][ T30] __mutex_lock+0x6a7/0xd70 [ 1001.321651][ T30] ? __mutex_lock+0x52a/0xd70 [ 1001.332768][ T30] ? rtnetlink_rcv_msg+0x6e6/0xcf0 [ 1001.343943][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 1001.349073][ T30] rtnetlink_rcv_msg+0x6e6/0xcf0 [ 1001.364284][ T30] ? rtnetlink_rcv_msg+0x1a7/0xcf0 [ 1001.369555][ T30] ? __lock_acquire+0x1384/0x2050 [ 1001.384756][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 1001.390301][ T30] netlink_rcv_skb+0x1e3/0x430 [ 1001.404163][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 1001.409714][ T30] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1001.426539][ T30] ? netlink_deliver_tap+0x2e/0x1b0 [ 1001.431807][ T30] netlink_unicast+0x7f6/0x990 [ 1001.445294][ T30] ? __pfx_netlink_unicast+0x10/0x10 [ 1001.450750][ T30] ? __virt_addr_valid+0x183/0x530 [ 1001.469793][ T30] ? __check_object_size+0x48e/0x900 [ 1001.482074][ T30] netlink_sendmsg+0x8e4/0xcb0 [ 1001.490852][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1001.503657][ T30] ? __might_fault+0xaa/0x120 [ 1001.512212][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1001.524609][ T30] __sock_sendmsg+0x221/0x270 [ 1001.529365][ T30] __sys_sendto+0x39b/0x4f0 [ 1001.545981][ T30] ? __pfx___sys_sendto+0x10/0x10 [ 1001.551117][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 1001.569104][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 1001.580370][ T30] __x64_sys_sendto+0xde/0x100 [ 1001.591022][ T30] do_syscall_64+0xf3/0x230 [ 1001.601723][ T30] ? clear_bhb_loop+0x35/0x90 [ 1001.608877][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1001.623897][ T30] RIP: 0033:0x7fb5d537fe8c [ 1001.628383][ T30] RSP: 002b:00007ffe2592ddf0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 1001.647501][ T30] RAX: ffffffffffffffda RBX: 00007fb5d6064620 RCX: 00007fb5d537fe8c [ 1001.669884][ T30] RDX: 000000000000002c RSI: 00007fb5d6064670 RDI: 0000000000000003 [ 1001.688469][ T30] RBP: 0000000000000000 R08: 00007ffe2592de44 R09: 000000000000000c [ 1001.702984][ T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 1001.720785][ T30] R13: 0000000000000000 R14: 00007fb5d6064670 R15: 0000000000000000 [ 1001.740017][ T30] [ 1001.743096][ T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings [ 1001.762556][ T30] INFO: task syz-executor:14122 blocked for more than 149 seconds. [ 1001.772348][ T30] Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 1001.793376][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1001.813890][ T30] task:syz-executor state:D stack:24128 pid:14122 tgid:14122 ppid:1 flags:0x00000004 [ 1001.834166][ T30] Call Trace: [ 1001.837506][ T30] [ 1001.840472][ T30] __schedule+0x1843/0x4ae0 [ 1001.854998][ T30] ? __pfx___schedule+0x10/0x10 [ 1001.859925][ T30] ? __pfx_lock_release+0x10/0x10 [ 1001.878541][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 1001.891998][ T30] ? schedule+0x90/0x320 [ 1001.902337][ T30] schedule+0x14b/0x320 [ 1001.911434][ T30] schedule_preempt_disabled+0x13/0x30 [ 1001.922848][ T30] __mutex_lock+0x6a7/0xd70 [ 1001.933460][ T30] ? __mutex_lock+0x52a/0xd70 [ 1001.943918][ T30] ? rtnetlink_rcv_msg+0x6e6/0xcf0 [ 1001.949136][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 1001.963857][ T30] rtnetlink_rcv_msg+0x6e6/0xcf0 [ 1001.968872][ T30] ? rtnetlink_rcv_msg+0x1a7/0xcf0 [ 1001.984431][ T30] ? __lock_acquire+0x1384/0x2050 [ 1001.989524][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 1002.004150][ T30] netlink_rcv_skb+0x1e3/0x430 [ 1002.009075][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 1002.024475][ T30] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1002.040981][ T30] ? netlink_deliver_tap+0x2e/0x1b0 [ 1002.049274][ T30] netlink_unicast+0x7f6/0x990 [ 1002.062174][ T30] ? __pfx_netlink_unicast+0x10/0x10 [ 1002.069216][ T30] ? __virt_addr_valid+0x183/0x530 [ 1002.084865][ T30] ? __check_object_size+0x48e/0x900 [ 1002.090501][ T30] netlink_sendmsg+0x8e4/0xcb0 [ 1002.107144][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1002.112587][ T30] ? __might_fault+0xaa/0x120 [ 1002.126823][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1002.133447][ T30] __sock_sendmsg+0x221/0x270 [ 1002.150497][ T30] __sys_sendto+0x39b/0x4f0 [ 1002.160806][ T30] ? __pfx___sys_sendto+0x10/0x10 [ 1002.172182][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 1002.190211][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 1002.201172][ T30] ? exc_page_fault+0x590/0x8c0 [ 1002.212958][ T30] __x64_sys_sendto+0xde/0x100 [ 1002.223961][ T30] do_syscall_64+0xf3/0x230 [ 1002.228525][ T30] ? clear_bhb_loop+0x35/0x90 [ 1002.244272][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1002.250668][ T30] RIP: 0033:0x7fea3a57fe8c [ 1002.267669][ T30] RSP: 002b:00007ffcc51c58b0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 1002.287648][ T30] RAX: ffffffffffffffda RBX: 00007fea3b264620 RCX: 00007fea3a57fe8c [ 1002.304671][ T30] RDX: 0000000000000028 RSI: 00007fea3b264670 RDI: 0000000000000003 [ 1002.312704][ T30] RBP: 0000000000000000 R08: 00007ffcc51c5904 R09: 000000000000000c [ 1002.332545][ T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 1002.343952][ T30] R13: 0000000000000000 R14: 00007fea3b264670 R15: 0000000000000000 [ 1002.351997][ T30] [ 1002.367155][ T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings [ 1002.384487][ T30] [ 1002.384487][ T30] Showing all locks held in the system: [ 1002.392259][ T30] 3 locks held by kworker/u8:0/11: [ 1002.409127][ T30] #0: ffff88814b211148 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850 [ 1002.433394][ T30] #1: ffffc90000107d00 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850 [ 1002.460191][ T30] #2: ffffffff8fcbefc8 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0x19/0x30 [ 1002.475767][ T30] 1 lock held by khungtaskd/30: [ 1002.480682][ T30] #0: ffffffff8e937da0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0 [ 1002.501403][ T30] 4 locks held by kworker/u8:9/2942: [ 1002.510462][ T30] #0: ffff88801baeb148 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850 [ 1002.532649][ T30] #1: ffffc900098d7d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850 [ 1002.549689][ T30] #2: ffffffff8fcb24d0 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0 [ 1002.573979][ T30] #3: ffffffff8fcbefc8 (rtnl_mutex){+.+.}-{3:3}, at: wg_destruct+0x25/0x2e0 [ 1002.584294][ T30] 2 locks held by getty/4980: [ 1002.589012][ T30] #0: ffff8880328da0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 1002.609590][ T30] #1: ffffc900031332f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6a6/0x1e00 [ 1002.631203][ T30] 3 locks held by kworker/0:5/5275: [ 1002.637666][ T30] 3 locks held by kworker/0:2/13178: [ 1002.654280][ T30] 3 locks held by kworker/1:3/13793: [ 1002.659648][ T30] #0: ffff88801ac81948 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850 [ 1002.686623][ T30] #1: ffffc90003af7d00 ((reg_check_chans).work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850 [ 1002.704180][ T30] #2: ffffffff8fcbefc8 (rtnl_mutex){+.+.}-{3:3}, at: reg_check_chans_work+0x99/0xfd0 [ 1002.723896][ T30] 4 locks held by kworker/0:6/13821: [ 1002.729237][ T30] 2 locks held by syz.1.2320/14046: [ 1002.748222][ T30] #0: ffffffff8fcbefc8 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3b/0x1b0 [ 1002.764222][ T30] #1: ffffffff8e7d1dd0 (cpu_hotplug_lock){++++}-{0:0}, at: unregister_netdevice_many_notify+0x5ea/0x1da0 [ 1002.788514][ T30] 1 lock held by syz.3.2325/14074: [ 1002.799161][ T30] #0: ffffffff8fcbefc8 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3b/0x1b0 [ 1002.814692][ T30] 1 lock held by syz.0.2326/14080: [ 1002.819861][ T30] #0: ffffffff8fcbefc8 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3b/0x1b0 [ 1002.840472][ T30] 1 lock held by syz.2.2328/14094: [ 1002.850584][ T30] #0: ffffffff8fcbefc8 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3b/0x1b0 [ 1002.870763][ T30] 3 locks held by kworker/u8:10/14095: [ 1002.876762][ T30] #0: ffff88801ac89148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850 [ 1002.906202][ T30] #1: ffffc90004047d00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850 [ 1002.930258][ T30] #2: ffffffff8fcbefc8 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60 [ 1002.943485][ T30] 1 lock held by syz-executor/14096: [ 1002.961909][ T30] #0: ffffffff8fcbefc8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0 [ 1002.983903][ T30] 1 lock held by syz-executor/14099: [ 1002.989918][ T30] #0: ffffffff8fcbefc8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0 [ 1003.014584][ T30] 1 lock held by syz-executor/14114: [ 1003.020052][ T30] #0: ffffffff8fcbefc8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0 [ 1003.041504][ T30] 1 lock held by syz-executor/14120: [ 1003.051949][ T30] #0: ffffffff8fcbefc8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0 [ 1003.073257][ T30] 1 lock held by syz-executor/14122: [ 1003.083890][ T30] #0: ffffffff8fcbefc8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0 [ 1003.093393][ T30] 1 lock held by syz-executor/14133: [ 1003.109867][ T30] #0: ffffffff8fcbefc8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0 [ 1003.130886][ T30] 1 lock held by syz-executor/14137: [ 1003.143999][ T30] #0: ffffffff8fcbefc8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0 [ 1003.165587][ T30] 1 lock held by syz-executor/14140: [ 1003.170927][ T30] #0: ffffffff8fcbefc8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0 [ 1003.191368][ T30] 1 lock held by syz-executor/14145: [ 1003.201512][ T30] #0: ffffffff8fcbefc8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0 [ 1003.223860][ T30] 1 lock held by syz-executor/14148: [ 1003.229206][ T30] #0: ffffffff8fcbefc8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0 [ 1003.249840][ T30] 1 lock held by syz-executor/14153: [ 1003.260320][ T30] #0: ffffffff8fcbefc8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0 [ 1003.280749][ T30] 1 lock held by syz-executor/14158: [ 1003.291481][ T30] #0: ffffffff8fcbefc8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0 [ 1003.312766][ T30] 1 lock held by syz-executor/14161: [ 1003.319721][ T30] #0: ffffffff8fcbefc8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0 [ 1003.340352][ T30] 1 lock held by syz-executor/14167: [ 1003.351874][ T30] #0: ffffffff8fcbefc8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0 [ 1003.372931][ T30] 1 lock held by syz-executor/14170: [ 1003.381777][ T30] #0: ffffffff8fcbefc8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0 [ 1003.402940][ T30] [ 1003.408149][ T30] ============================================= [ 1003.408149][ T30] [ 1003.430693][ T30] NMI backtrace for cpu 1 [ 1003.435078][ T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 1003.445255][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1003.455338][ T30] Call Trace: [ 1003.458635][ T30] [ 1003.461583][ T30] dump_stack_lvl+0x241/0x360 [ 1003.466294][ T30] ? __pfx_dump_stack_lvl+0x10/0x10 [ 1003.471557][ T30] ? __pfx__printk+0x10/0x10 [ 1003.476181][ T30] nmi_cpu_backtrace+0x49c/0x4d0 [ 1003.481153][ T30] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 1003.486632][ T30] ? _printk+0xd5/0x120 [ 1003.490809][ T30] ? __pfx__printk+0x10/0x10 [ 1003.495417][ T30] ? __wake_up_klogd+0xcc/0x110 [ 1003.500310][ T30] ? __pfx__printk+0x10/0x10 [ 1003.504944][ T30] ? __rcu_read_unlock+0xa1/0x110 [ 1003.510010][ T30] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 1003.516101][ T30] nmi_trigger_cpumask_backtrace+0x198/0x320 [ 1003.522151][ T30] watchdog+0xff4/0x1040 [ 1003.526468][ T30] ? watchdog+0x1ea/0x1040 [ 1003.530923][ T30] ? __pfx_watchdog+0x10/0x10 [ 1003.535627][ T30] kthread+0x2f0/0x390 [ 1003.539717][ T30] ? __pfx_watchdog+0x10/0x10 [ 1003.544432][ T30] ? __pfx_kthread+0x10/0x10 [ 1003.549053][ T30] ret_from_fork+0x4b/0x80 [ 1003.553560][ T30] ? __pfx_kthread+0x10/0x10 [ 1003.558249][ T30] ret_from_fork_asm+0x1a/0x30 [ 1003.563154][ T30] [ 1003.567203][ T30] Sending NMI from CPU 1 to CPUs 0: [ 1003.572475][ C0] NMI backtrace for cpu 0 [ 1003.572489][ C0] CPU: 0 UID: 0 PID: 13821 Comm: kworker/0:6 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 1003.572508][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1003.572519][ C0] Workqueue: events nsim_dev_trap_report_work [ 1003.572542][ C0] RIP: 0010:__lock_acquire+0x890/0x2050 [ 1003.572565][ C0] Code: c0 0f 85 4d 01 00 00 41 8b 5d 00 81 e3 ff 1f 00 00 48 89 d8 48 c1 e8 06 48 8d 3c c5 c0 f7 23 94 be 08 00 00 00 e8 e0 24 8b 00 <48> 0f a3 1d c8 a4 b3 12 73 1a 48 69 c3 c8 00 00 00 48 8d 98 c0 76 [ 1003.572578][ C0] RSP: 0018:ffffc90000007810 EFLAGS: 00000056 [ 1003.572590][ C0] RAX: 0000000000000001 RBX: 00000000000000e1 RCX: ffffffff817052f0 [ 1003.572601][ C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff9423f7d8 [ 1003.572611][ C0] RBP: 0000000000000003 R08: ffffffff9423f7df R09: 1ffffffff2847efb [ 1003.572622][ C0] R10: dffffc0000000000 R11: fffffbfff2847efc R12: 0000000000000004 [ 1003.572633][ C0] R13: ffff88802d8547a0 R14: 0000000000000004 R15: ffff88802d8547a0 [ 1003.572644][ C0] FS: 0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000 [ 1003.572656][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1003.572667][ C0] CR2: 0000001b32c1aff8 CR3: 000000000e734000 CR4: 00000000003526f0 [ 1003.572681][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1003.572691][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1003.572702][ C0] Call Trace: [ 1003.572707][ C0] [ 1003.572714][ C0] ? nmi_cpu_backtrace+0x3c2/0x4d0 [ 1003.572733][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 1003.572760][ C0] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 1003.572783][ C0] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 1003.572801][ C0] ? nmi_handle+0x14f/0x5a0 [ 1003.572816][ C0] ? nmi_handle+0x2a/0x5a0 [ 1003.572831][ C0] ? __lock_acquire+0x890/0x2050 [ 1003.572850][ C0] ? default_do_nmi+0x63/0x160 [ 1003.572868][ C0] ? exc_nmi+0x123/0x1f0 [ 1003.572885][ C0] ? end_repeat_nmi+0xf/0x53 [ 1003.572901][ C0] ? __lock_acquire+0x890/0x2050 [ 1003.572922][ C0] ? __lock_acquire+0x890/0x2050 [ 1003.572941][ C0] ? __lock_acquire+0x890/0x2050 [ 1003.572960][ C0] ? __lock_acquire+0x890/0x2050 [ 1003.572980][ C0] [ 1003.572984][ C0] [ 1003.572995][ C0] lock_acquire+0x1ed/0x550 [ 1003.573014][ C0] ? ref_tracker_free+0x121/0x7e0 [ 1003.573032][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 1003.573050][ C0] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 1003.573068][ C0] ? arch_stack_walk+0x11c/0x150 [ 1003.573085][ C0] ? ret_from_fork_asm+0x1a/0x30 [ 1003.573107][ C0] _raw_spin_lock_irqsave+0xd5/0x120 [ 1003.573127][ C0] ? ref_tracker_free+0x121/0x7e0 [ 1003.573140][ C0] ? __pfx__raw_spin_lock_irqsave+0x10/0x10 [ 1003.573159][ C0] ? stack_depot_save_flags+0x29/0x830 [ 1003.573182][ C0] ref_tracker_free+0x121/0x7e0 [ 1003.573197][ C0] ? __pfx_ref_tracker_free+0x10/0x10 [ 1003.573211][ C0] ? dst_destroy+0x171/0x460 [ 1003.573225][ C0] ? rcu_core+0xaaa/0x17a0 [ 1003.573239][ C0] ? handle_softirqs+0x2c5/0x980 [ 1003.573257][ C0] ? do_softirq+0x11b/0x1e0 [ 1003.573273][ C0] ? __local_bh_enable_ip+0x1bb/0x200 [ 1003.573290][ C0] ? nsim_dev_trap_report_work+0x75d/0xaa0 [ 1003.573305][ C0] ? process_scheduled_works+0xa63/0x1850 [ 1003.573323][ C0] ? worker_thread+0x870/0xd30 [ 1003.573340][ C0] ? kthread+0x2f0/0x390 [ 1003.573355][ C0] ? ret_from_fork+0x4b/0x80 [ 1003.573374][ C0] ? ret_from_fork_asm+0x1a/0x30 [ 1003.573393][ C0] ? do_raw_spin_unlock+0x13c/0x8b0 [ 1003.573412][ C0] ? __pfx_ipv4_dst_destroy+0x10/0x10 [ 1003.573426][ C0] dst_destroy+0x171/0x460 [ 1003.573441][ C0] ? rcu_core+0xa37/0x17a0 [ 1003.573454][ C0] ? __pfx_dst_destroy_rcu+0x10/0x10 [ 1003.573469][ C0] rcu_core+0xaaa/0x17a0 [ 1003.573488][ C0] ? __pfx_rcu_core+0x10/0x10 [ 1003.573503][ C0] ? sched_balance_domains+0x91b/0xa90 [ 1003.573524][ C0] ? sched_balance_domains+0x1b2/0xa90 [ 1003.573540][ C0] ? __pfx_sched_balance_domains+0x10/0x10 [ 1003.573559][ C0] handle_softirqs+0x2c5/0x980 [ 1003.573579][ C0] ? do_softirq+0x11b/0x1e0 [ 1003.573596][ C0] ? __pfx_handle_softirqs+0x10/0x10 [ 1003.573617][ C0] do_softirq+0x11b/0x1e0 [ 1003.573633][ C0] [ 1003.573638][ C0] [ 1003.573644][ C0] ? __pfx_do_softirq+0x10/0x10 [ 1003.573661][ C0] ? __pfx_lockdep_softirqs_on+0x10/0x10 [ 1003.573682][ C0] ? rcu_is_watching+0x15/0xb0 [ 1003.573698][ C0] __local_bh_enable_ip+0x1bb/0x200 [ 1003.573716][ C0] ? nsim_dev_trap_report_work+0x75d/0xaa0 [ 1003.573735][ C0] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 1003.573757][ C0] ? do_raw_spin_unlock+0x13c/0x8b0 [ 1003.573774][ C0] ? nsim_dev_trap_report_work+0x6a7/0xaa0 [ 1003.573790][ C0] nsim_dev_trap_report_work+0x75d/0xaa0 [ 1003.573811][ C0] ? process_scheduled_works+0x976/0x1850 [ 1003.573829][ C0] process_scheduled_works+0xa63/0x1850 [ 1003.573855][ C0] ? __pfx_process_scheduled_works+0x10/0x10 [ 1003.573877][ C0] ? assign_work+0x364/0x3d0 [ 1003.573894][ C0] worker_thread+0x870/0xd30 [ 1003.573915][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 1003.573936][ C0] ? __kthread_parkme+0x169/0x1d0 [ 1003.573959][ C0] ? __pfx_worker_thread+0x10/0x10 [ 1003.573979][ C0] kthread+0x2f0/0x390 [ 1003.573992][ C0] ? __pfx_worker_thread+0x10/0x10 [ 1003.574011][ C0] ? __pfx_kthread+0x10/0x10 [ 1003.574026][ C0] ret_from_fork+0x4b/0x80 [ 1003.574046][ C0] ? __pfx_kthread+0x10/0x10 [ 1003.574061][ C0] ret_from_fork_asm+0x1a/0x30 [ 1003.574086][ C0] [ 1004.151581][ T30] Kernel panic - not syncing: hung_task: blocked tasks [ 1004.158751][ T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 1004.168929][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1004.179004][ T30] Call Trace: [ 1004.182313][ T30] [ 1004.185358][ T30] dump_stack_lvl+0x241/0x360 [ 1004.190086][ T30] ? __pfx_dump_stack_lvl+0x10/0x10 [ 1004.195321][ T30] ? __pfx__printk+0x10/0x10 [ 1004.199942][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 1004.205974][ T30] ? vscnprintf+0x5d/0x90 [ 1004.210346][ T30] panic+0x349/0x880 [ 1004.214316][ T30] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 1004.220496][ T30] ? __pfx_panic+0x10/0x10 [ 1004.224941][ T30] ? tick_nohz_tick_stopped+0x82/0xb0 [ 1004.230426][ T30] ? __irq_work_queue_local+0x137/0x410 [ 1004.236034][ T30] ? preempt_schedule_thunk+0x1a/0x30 [ 1004.241431][ T30] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 1004.247622][ T30] ? nmi_trigger_cpumask_backtrace+0x2d4/0x320 [ 1004.253983][ T30] ? nmi_trigger_cpumask_backtrace+0x2d9/0x320 [ 1004.260169][ T30] watchdog+0x1033/0x1040 [ 1004.264529][ T30] ? watchdog+0x1ea/0x1040 [ 1004.268975][ T30] ? __pfx_watchdog+0x10/0x10 [ 1004.273684][ T30] kthread+0x2f0/0x390 [ 1004.277832][ T30] ? __pfx_watchdog+0x10/0x10 [ 1004.282636][ T30] ? __pfx_kthread+0x10/0x10 [ 1004.287299][ T30] ret_from_fork+0x4b/0x80 [ 1004.291829][ T30] ? __pfx_kthread+0x10/0x10 [ 1004.296445][ T30] ret_from_fork_asm+0x1a/0x30 [ 1004.301250][ T30] [ 1004.304564][ T30] Kernel Offset: disabled [ 1004.308895][ T30] Rebooting in 86400 seconds..