last executing test programs: 2.238053492s ago: executing program 4 (id=5): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={{0x14, 0x10, 0x1, 0x2}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x50, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x1}, @NFTA_SET_DESC={0x14, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_CONCAT={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}]}]}]}]}], {0x14, 0x10}}, 0x98}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a010300000000000000000100fffd0900010073797a300000000040000000030a01020000000000000000010000000900030073797a3200000000140004800800024032658aeb08000140000000010900010073797a300000000044000000060a010400000000000001040100000008000b40000000000900010073797a30000000001c000480180001800d00010073796e70726f7879000000000400028014000000110001"], 0xcc}}, 0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000001000010000000016210000000000000a20000000000a01020000000000000000010000000900010073797a300000000040000000160a01000000000000000000010000000900010073697a30000000000900020073797a3000000000140003800800014000000000080002400000000038000000160a0101000b000000000000010000000900020073797a30000000000900010073797a300000000004000380080007000010"], 0xc0}}, 0x0) syz_usb_connect(0x0, 0x4a9, &(0x7f0000001000)=ANY=[@ANYBLOB="120100005e1a8c206d040e0a70e0010203010902a20803000090000904f1040e0300003b06240600002705240006000d240f017f000000fffe07000906241a030020042402000e2402010d033bd5385d31bbc4a60e2402010b01000809c2ef6fc2730d24020205001c00ee592a3c7c0f240201090340400103ee04f1ba7209058010080007fff409050f040800400905e105ae67"], 0x0) syz_emit_ethernet(0x3a, &(0x7f00000002c0)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x6, 0x0, @empty, @empty}, {{0x10, 0x4e26, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x1, 0x0, 0x0, {[@mss={0x2, 0x4, 0xfff}]}}}}}}}, 0x0) 1.969879711s ago: executing program 1 (id=2): r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4) bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000040)='dctcp\x00', 0x6) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) sendto$inet(r1, &(0x7f0000000180)='{', 0x1, 0x0, 0x0, 0x0) sendmmsg$inet(r1, &(0x7f0000003400)=[{{0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000e80)="06987728e729ecb494924da9913d596cb581d832ab199384137f164cc9d8f2eb0c2fade94b8aefad67a53c4c9156a4832a4e0e90e3e1e9dc0f2acc20598fd58f57a34db4b44479e52edbd8c946a0f25d9fa32717aafdad752136eba890ac1830cc7c6e57ceb18a738f3dcc19c2559e6c2a19dbdc2ba64e56c37b2449a96847d1c9c4c9995966aee50ac537a665c40773628b174417c5b56c8cc39a928cd97ce7f042b82551363cb60ec44905c3c1e435df90e4634ac4d641514343743aae1e3a8df492e31d", 0xc5}], 0x1}}], 0x1, 0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="64000000020603"], 0x64}}, 0x0) shutdown(r1, 0x1) setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000a00)=@raw={'raw\x00', 0x8, 0x3, 0x480, 0x190, 0xa, 0x148, 0x190, 0x10, 0x3e8, 0x2a8, 0x2a8, 0x3e8, 0x2a8, 0x3, 0x0, {[{{@ip={@rand_addr, @multicast1, 0x0, 0x0, 'bridge0\x00', 'rose0\x00'}, 0x0, 0x120, 0x190, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'geneve0\x00', {0x0, 0x0, 0x9, 0x0, 0x0, 0xffffffff, 0x7}}}, @common=@inet=@hashlimit1={{0x58}, {'pim6reg0\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x6, 0xa359e000}}}]}, @common=@unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "f2f7b90ad2b60c45cb4ea6e7bf902bdc2ff8a9304d9f655c746adc0bdc773506378bc0d27efd6abb05175089830cc46186074d7de46d5af300"}}}, {{@ip={@empty, @empty, 0x0, 0x0, 'pimreg1\x00', 'veth0_to_team\x00'}, 0x0, 0x1f0, 0x258, 0x0, {}, [@common=@inet=@hashlimit3={{0x158}, {'veth0_to_hsr\x00', {0x0, 0xff, 0x0, 0x0, 0x0, 0x7fff, 0x200}}}, @inet=@rpfilter={{0x28}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'snmp\x00', 'syz1\x00'}}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x4e0) 1.698923126s ago: executing program 1 (id=6): socket$nl_xfrm(0x10, 0x3, 0x6) socket$nl_route(0x10, 0x3, 0x0) syz_open_dev$sndctrl(&(0x7f0000000040), 0xa0, 0x101000) mknodat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x400, 0x1001) r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f00000000c0)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) fanotify_init(0x200, 0x0) openat$tun(0xffffffffffffff9c, 0x0, 0x8000, 0x0) socket(0x10, 0x803, 0x0) socket(0x200000100000011, 0x3, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_BEACON(r1, &(0x7f00000016c0)={0x0, 0x0, 0x0}, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000040)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB='@\x00\x00@', @ANYRES16=r3, @ANYBLOB="1fe8ffff0000000000003b00000008000300", @ANYRES32=r4, @ANYBLOB="21003300d08000000802110000000802110000015050505050500000000000", @ANYRES8=r2], 0x40}}, 0x0) open(&(0x7f0000000000)='.\x00', 0x200000, 0x0) 1.141752042s ago: executing program 1 (id=7): r0 = socket$kcm(0x2, 0x3, 0x2) sendmsg$inet(r0, &(0x7f0000001640)={&(0x7f0000000300)={0x2, 0x4e22, @rand_addr=0x64010102}, 0x10, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYRES8=r0, @ANYRES32=0x0, @ANYRES16=r0], 0x58}, 0x0) 818.605391ms ago: executing program 1 (id=8): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000007580)=[{{&(0x7f0000000140)=@file={0x0, './file0\x00'}, 0x6e, 0x0, 0x0, &(0x7f0000000380)=ANY=[], 0x88}}], 0x1, 0x0) r1 = socket(0x1e, 0x4, 0x0) r2 = socket(0x1e, 0x4, 0x0) getsockopt$inet_tcp_buf(r2, 0x6, 0xe, &(0x7f00000004c0)=""/172, &(0x7f0000000200)=0x8bee478969124412) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x6) r3 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0) fcntl$notify(r3, 0x402, 0x5) preadv(r3, 0x0, 0x0, 0x0, 0x0) preadv2(r3, 0x0, 0x0, 0x0, 0x0, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000380012800b00010069703667726500002800028006000f000000000014000700ff"], 0x58}, 0x1, 0x0, 0x0, 0x40000}, 0x0) socket$nl_route(0x10, 0x3, 0x0) r5 = syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000240)=ANY=[@ANYBLOB="12010000000000405707000a00000000000109022400010000000f0904000001030002000921000000012205000905810300020c0000"], 0x0) syz_usb_control_io(r5, 0x0, 0x0) syz_usb_control_io(r5, &(0x7f00000003c0)={0x2c, &(0x7f0000000300)=ANY=[@ANYBLOB='\x00\x00W'], 0x0, 0x0, 0x0, 0x0}, 0x0) socket(0x10, 0x2, 0x0) r6 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r6, &(0x7f0000000480)={0xa, 0x4e20, 0x0, @mcast1={0xff, 0x5}}, 0x1c) bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x26}}, 0x10) connect$inet6(r6, &(0x7f0000000100)={0xa, 0x4e23, 0x0, @empty}, 0x1c) syz_emit_ethernet(0x3a, &(0x7f0000002100)=ANY=[@ANYBLOB="0180c200000000000000000008004500002c0000c31fdd6a907900000000e000000100004e20001890780400"/58], 0x0) r7 = syz_open_procfs(0x0, &(0x7f0000000080)='net/ip_vs\x00') fsconfig$FSCONFIG_SET_FD(r7, 0x5, &(0x7f0000000080)='[\x00', 0x0, r1) socket$inet6_sctp(0xa, 0x801, 0x84) ioctl$sock_ifreq(0xffffffffffffffff, 0x8947, &(0x7f00000000c0)={'bond0\x00', @ifru_mtu}) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000040)=ANY=[@ANYBLOB="280000003e0007011100000000000000027c00000400000010000180", @ANYRES64], 0x28}}, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) 480.628429ms ago: executing program 3 (id=4): r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x1, 0x4, &(0x7f0000000040)=@framed={{0xffffffb7, 0x5, 0x0, 0x0, 0x0, 0x61, 0x10, 0x70}, [@ldst={0x4}]}, &(0x7f00000002c0)='GPL\x00', 0x5, 0xfd90, &(0x7f0000000300)=""/188, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f3, 0x10, &(0x7f0000000080), 0xfffffffffffffc79, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2a) syz_mount_image$fuse(&(0x7f0000002040), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',default_permissions'], 0x0, 0x0, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000003c0)=ANY=[@ANYBLOB="300000006800010000000000000000000a0000000000000006"], 0x30}}, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_open_dev$cec(&(0x7f0000000040), 0x0, 0x20281) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00', 0x0}) r4 = socket$inet_tcp(0x2, 0x1, 0x0) r5 = syz_open_dev$evdev(&(0x7f00000001c0), 0x0, 0x0) readv(r5, &(0x7f00000003c0)=[{&(0x7f0000000000)=""/13, 0xd}], 0x1) r6 = syz_usb_connect(0x0, 0x24, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000201b4510fc0428155d6d01020301090212000100000000090401"], 0x0) syz_usb_control_io$cdc_ncm(r6, 0x0, 0x0) syz_usb_control_io$cdc_ecm(r6, 0x0, 0x0) r7 = socket$kcm(0x11, 0x3, 0x0) setsockopt$sock_attach_bpf(r7, 0x107, 0xf, &(0x7f0000000000), 0x4) sendmsg$kcm(r7, &(0x7f00000000c0)={&(0x7f0000000100)=@hci={0x1f, 0x0, 0x4}, 0x80, &(0x7f0000000500)=[{&(0x7f00000006c0)="27030200590200000000002f1eafbcf706e105000000894f000f1103ee162bd4b8bf4a82f6184b8a34f90186cee84400000008000000001900000000", 0x260}, {&(0x7f0000000440)="63f805d7649496db72959832930469edc7b700c9e37eed5653ecb716cdb8981cd819af0b33254465cc904b7b31789d65c0e0d33330e2ef36205dd154e363bcadf8f2ea93f45503c6d9fd8dfe5a638cfeb9f79c930a4d18260e5a08ffd35ed8371cff78119319b2b62c7cd9378c73ae90c801681f55ef26cb00"/135, 0x87}, {&(0x7f0000001380)="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"/428, 0x1ac}, {&(0x7f0000000180)="6fe4dd9eeba3271dc7", 0x9}], 0x4}, 0x0) syz_usb_control_io$printer(r6, 0x0, 0x0) syz_usb_control_io(r6, 0x0, 0x0) syz_usb_control_io$uac1(r6, 0x0, 0x0) syz_usb_control_io$hid(r6, &(0x7f0000000600)={0x24, &(0x7f0000000540)={0x0, 0x21, 0x50, {0x50, 0xc, "5726ee8db317f7d8bf9702558a8e91ac6486ac17f144acd410cb99bb94e07ec99dd68a75eaf12a0ca8dfb888ae4f58c44646fc6873e33115fcc0db3644069eaf3f870e9da06ab9f7668cac7ea497"}}, &(0x7f0000000200)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x861}}, &(0x7f0000000400)={0x0, 0x22, 0x11, {[@global=@item_012={0x0, 0x1, 0x2}, @local=@item_4={0x3, 0x2, 0x9, "f242927b"}, @main=@item_012={0x2, 0x0, 0x9, "3fb7"}, @local=@item_012={0x2, 0x2, 0x9, "fbae"}, @global=@item_4={0x3, 0x1, 0xb, "c3df4c2a"}]}}, &(0x7f00000005c0)={0x0, 0x21, 0x9, {0x9, 0x21, 0x637, 0x9, 0x1, {0x22, 0xf2c}}}}, &(0x7f0000000840)={0x2c, &(0x7f0000000700)={0x20, 0x16, 0xac, "303097b11efd9060dc85e0aad91319131ce007c5bbe6805361eb65f1f62e78d2ae37468dec92270f7dc5572b2bb48d7e37dafee63ee8692838881ac5fe08a108231c862911f5d62ab6239b8e7af80fb6e51f55103818e84f7348269f0c3806140d867252126c5e7e1ed1616bc22bd7f76cf574e01165f2309f7827e24b45d8943e48b0577d5ee5bfff8645b73a9e40dc384651ca704a94e207c1fa944588d9ab5e84faf7f323c0a24dcc9594"}, &(0x7f0000000640)={0x0, 0xa, 0x1, 0x3}, &(0x7f0000000680)={0x0, 0x8, 0x1, 0x5}, &(0x7f00000007c0)={0x20, 0x1, 0xd, "522feaf2e120391412509e759d"}, &(0x7f0000000800)={0x20, 0x3, 0x1, 0x44}}) setsockopt$IPT_SO_SET_REPLACE(r4, 0x0, 0x40, &(0x7f0000000f00)=@mangle={'mangle\x00', 0x44, 0x6, 0x390, 0x260, 0x1c8, 0x1c8, 0x1c8, 0x0, 0x2f8, 0x2f8, 0x2f8, 0x2f8, 0x2f8, 0x6, 0x0, {[{{@ip={@private, @loopback, 0x0, 0x0, 'vlan0\x00', 'ip6_vti0\x00'}, 0x0, 0x70, 0x98}, @ECN={0x28}}, {{@uncond, 0x0, 0x70, 0x98}, @TTL={0x28, 'TTL\x00', 0x0, {0xfc}}}, {{@ip={@multicast2, @local, 0x0, 0x0, 'gre0\x00', 'bridge0\x00'}, 0x0, 0x70, 0x98}, @unspec=@CHECKSUM={0x28, 'CHECKSUM\x00', 0x0, {0xf4}}}, {{@ip={@multicast2, @empty, 0x0, 0x0, 'pim6reg\x00', 'pim6reg\x00'}, 0x0, 0x70, 0x98}, @unspec=@CHECKSUM={0x28}}, {{@ip={@local, @rand_addr, 0x0, 0x0, 'ip6erspan0\x00', 'batadv_slave_1\x00'}, 0x0, 0x70, 0x98}, @ECN={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x3f0) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYBLOB="880000001000010800"/20, @ANYRES32=r3, @ANYBLOB="00000000000000001c002b800000030000000000080003000000000008000800", @ANYRES32, @ANYBLOB="4c001a80100002800c00019808000f000000000038000280260001"], 0x88}}, 0x0) 402.051612ms ago: executing program 4 (id=9): io_uring_setup(0x30d1, &(0x7f0000000000)={0x0, 0x73b9, 0x1}) syz_open_dev$vim2m(&(0x7f0000000080), 0x0, 0x2) pipe(&(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newqdisc={0x44, 0x24, 0x0, 0x0, 0x0, {}, [@qdisc_kind_options=@q_cake={{0x9}, {0x14, 0x2, [@TCA_CAKE_NAT={0x8}, @TCA_CAKE_WASH={0x8}]}}]}, 0x44}}, 0x810) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="4800000010001fff752b056800080000faff8141", @ANYRES32=0x0, @ANYBLOB="67a9fde500000000280012800a00010076786c616e"], 0x3}}, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) r3 = syz_io_uring_setup(0x10f, &(0x7f0000000340)={0x0, 0x0, 0x2}, &(0x7f0000000300)=0x0, &(0x7f0000000280)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index}) io_uring_enter(r3, 0x0, 0x0, 0x6, 0x0, 0x0) io_uring_register$IORING_REGISTER_FILES_UPDATE(r3, 0x18, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)=[0xffffffffffffffff]}, 0x1) close(r2) r6 = socket$nl_route(0x10, 0x3, 0x0) write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc) splice(r0, 0x0, r2, 0x0, 0x4ffe6, 0x0) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$BTRFS_IOC_SYNC(r6, 0x9408, 0x0) setsockopt$inet6_tcp_int(r7, 0x6, 0x13, &(0x7f0000000000)=0x6, 0x4) r8 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_int(r8, 0x29, 0x42, &(0x7f0000000000)=0x82000001, 0x4) r9 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r9, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c) setsockopt$inet6_int(r9, 0x29, 0xb, &(0x7f0000000000)=0x9, 0x4) listen(r9, 0x0) syz_emit_ethernet(0x4a, &(0x7f0000000240)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "804479", 0x14, 0x6, 0x0, @private2, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0) setsockopt$inet6_int(r8, 0x29, 0x2, &(0x7f00000000c0)=0xfa0, 0x4) getsockopt$inet6_buf(r8, 0x29, 0x6, &(0x7f0000000080)=""/17, &(0x7f0000000240)=0x11) connect$inet6(r7, &(0x7f0000000100)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_TCP_ULP(r7, 0x6, 0x1f, &(0x7f00000000c0), 0x4) setsockopt$inet6_tcp_TLS_TX(r7, 0x11a, 0x1, &(0x7f0000000340)=@gcm_256={{0x304}, "0000001300", "376a31a11e8e279cec092f071cc80f218d360356a936a7e3971a8c35c47e580e", '\x00', "fffffffffffffffd"}, 0x38) 232.978886ms ago: executing program 2 (id=3): r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff) write$binfmt_elf64(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="7f454c4600000000020000000000000003003ef3ffffffffffffff00000000005cffffffffffffff0000000000000000090000000000380001000000000000000300000000000000000000000000000000000000000000000000000000000000000800000000000000000000004000"/120], 0x78) socket$nl_rdma(0x10, 0x3, 0x14) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = socket$nl_sock_diag(0x10, 0x3, 0x4) syz_emit_ethernet(0x83, &(0x7f00000002c0)={@local, @random="ffffffff00", @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "7377c2", 0x4d, 0x11, 0x0, @ipv4={'\x00', '\xff\xff', @local}, @local, {[], {0x0, 0x0, 0x4d, 0x0, @opaque="426bccdc65c29a4bc2c1266dea7a5d91556e6bcf99e630bb84dc378b1de38f34f1affaee2dd464eee10d55665f304f4faf896314ca84b8858ff78dfaa0c8d0ba589c604890"}}}}}}, 0x0) sendmsg$SOCK_DIAG_BY_FAMILY(r1, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000001480)={&(0x7f0000000300)={0x14, 0x14, 0x1, 0x0, 0x0, {0x28}}, 0x14}}, 0x0) sched_setaffinity(0x0, 0x0, 0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) sendmsg$netlink(0xffffffffffffffff, &(0x7f0000001840)={0x0, 0x0, &(0x7f0000001440)=[{&(0x7f0000000400)={0x1c8, 0x0, 0x0, 0x0, 0x0, "", [@typed={0x4}, @generic="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"]}, 0x1c8}], 0x1, 0x0, 0xe0}, 0x0) socket$netlink(0x10, 0x3, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19) syz_open_procfs(0x0, &(0x7f0000000040)='smaps\x00') ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f00000003c0)=ANY=[@ANYBLOB]) r3 = socket(0x1e, 0x1, 0x0) setsockopt$inet6_tcp_TLS_RX(r2, 0x6, 0x2, &(0x7f0000000180)=@gcm_256={{0x303}, "06e5a7c053eb5369", "0e07eeb7fcfd1e526ad57a005f13268fc3b27419df7b5fb349faf6aecf8e46ef", "be4986cc", "5105ba4dc2f16a91"}, 0x38) connect$tipc(r3, &(0x7f0000000000)=@name={0x1e, 0x2, 0x0, {{0x1, 0x1}}}, 0x10) write$binfmt_misc(r3, &(0x7f0000000080), 0x2000011a) syz_usb_connect(0x0, 0x24, &(0x7f0000000100)=ANY=[@ANYBLOB="120100004f92b90857152077ebb7000000010902"], 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) openat$cuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_service_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r4, &(0x7f0000000300)=ANY=[@ANYRES32], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r4, 0x0) madvise(&(0x7f0000000000/0x400000)=nil, 0x40001e, 0x15) execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0) openat$hwrng(0xffffff9c, &(0x7f0000000200), 0x541200, 0x0) 0s ago: executing program 0 (id=1): socket$nl_route(0x10, 0x3, 0x0) r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000280)={0x4000}, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="200000001200010a00000000000000008001"], 0x26}}, 0x0) openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) shmget$private(0x0, 0x3000, 0x8, &(0x7f0000ffa000/0x3000)=nil) r1 = socket$inet6(0xa, 0x3, 0xff) connect$inet6(r1, &(0x7f0000001940)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000000)=0x655e, 0x4) r2 = dup2(r1, r1) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000001a80)=[{{&(0x7f0000000040)={0xa, 0x0, 0x0, @mcast2, 0x7fffffff}, 0x1c, 0x0}}], 0x1, 0x0) write$tun(r2, &(0x7f0000000040)=ANY=[], 0x46) recvmmsg(r2, &(0x7f00000049c0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x10}}], 0x1, 0x2000, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000080)='net/wireless\x00') read$FUSE(r3, &(0x7f0000000880)={0x2020}, 0x5df) preadv2(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)=""/185, 0xb9}], 0x1, 0x0, 0x0, 0x0) read$FUSE(r3, &(0x7f0000012400)={0x2020}, 0x2020) mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/sctp\x00') r5 = open_tree(r4, &(0x7f0000000640)='\x00', 0x89901) move_mount(r5, &(0x7f0000000040)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) r6 = socket(0x28, 0x5, 0x0) getsockopt$sock_cred(r6, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0, 0x0}, &(0x7f0000000180)=0xc) setresgid(r7, r7, 0x0) mount$fuseblk(0x0, 0x0, 0x0, 0x2025, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/packet\x00') r8 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r8, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10) r9 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r9, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.212' (ED25519) to the list of known hosts. syzkaller login: [ 50.293146][ T5219] cgroup: Unknown subsys name 'net' [ 50.427660][ T5219] cgroup: Unknown subsys name 'cpuset' [ 50.436764][ T5219] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 51.752899][ T5219] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 53.771597][ T5230] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 53.799012][ T5234] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 53.808183][ T5234] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 53.815847][ T5240] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 53.815972][ T5234] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 53.824625][ T5240] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 53.831161][ T5234] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 53.840862][ T5240] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 53.852569][ T5240] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 53.861190][ T5243] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 53.869703][ T5243] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 53.872305][ T5242] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 53.884835][ T5243] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 53.885112][ T5242] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 53.893530][ T5243] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 53.899842][ T5242] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 53.906988][ T5243] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 53.913471][ T5242] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 53.920991][ T5243] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 53.934959][ T4624] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 53.935254][ T5242] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 53.942440][ T4624] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 53.956300][ T5242] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 53.958190][ T5230] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 53.972831][ T5239] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 53.980879][ T5239] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 54.027751][ T5239] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 54.047133][ T5239] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 54.056797][ T5239] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 54.064718][ T5239] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 54.402074][ T5244] chnl_net:caif_netlink_parms(): no params data found [ 54.509556][ T5249] chnl_net:caif_netlink_parms(): no params data found [ 54.551535][ T5250] chnl_net:caif_netlink_parms(): no params data found [ 54.578207][ T5246] chnl_net:caif_netlink_parms(): no params data found [ 54.621002][ T5247] chnl_net:caif_netlink_parms(): no params data found [ 54.680477][ T5244] bridge0: port 1(bridge_slave_0) entered blocking state [ 54.688241][ T5244] bridge0: port 1(bridge_slave_0) entered disabled state [ 54.698317][ T5244] bridge_slave_0: entered allmulticast mode [ 54.705709][ T5244] bridge_slave_0: entered promiscuous mode [ 54.740499][ T5244] bridge0: port 2(bridge_slave_1) entered blocking state [ 54.748033][ T5244] bridge0: port 2(bridge_slave_1) entered disabled state [ 54.755488][ T5244] bridge_slave_1: entered allmulticast mode [ 54.762084][ T5244] bridge_slave_1: entered promiscuous mode [ 54.829590][ T5250] bridge0: port 1(bridge_slave_0) entered blocking state [ 54.836959][ T5250] bridge0: port 1(bridge_slave_0) entered disabled state [ 54.844187][ T5250] bridge_slave_0: entered allmulticast mode [ 54.850795][ T5250] bridge_slave_0: entered promiscuous mode [ 54.865216][ T5249] bridge0: port 1(bridge_slave_0) entered blocking state [ 54.872362][ T5249] bridge0: port 1(bridge_slave_0) entered disabled state [ 54.880093][ T5249] bridge_slave_0: entered allmulticast mode [ 54.886956][ T5249] bridge_slave_0: entered promiscuous mode [ 54.933964][ T5250] bridge0: port 2(bridge_slave_1) entered blocking state [ 54.941615][ T5250] bridge0: port 2(bridge_slave_1) entered disabled state [ 54.952222][ T5250] bridge_slave_1: entered allmulticast mode [ 54.959210][ T5250] bridge_slave_1: entered promiscuous mode [ 54.973041][ T5249] bridge0: port 2(bridge_slave_1) entered blocking state [ 54.980330][ T5249] bridge0: port 2(bridge_slave_1) entered disabled state [ 54.987680][ T5249] bridge_slave_1: entered allmulticast mode [ 54.994466][ T5249] bridge_slave_1: entered promiscuous mode [ 55.002974][ T5244] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 55.028308][ T5247] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.035771][ T5247] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.043068][ T5247] bridge_slave_0: entered allmulticast mode [ 55.051122][ T5247] bridge_slave_0: entered promiscuous mode [ 55.058985][ T5247] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.066518][ T5247] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.073781][ T5247] bridge_slave_1: entered allmulticast mode [ 55.080688][ T5247] bridge_slave_1: entered promiscuous mode [ 55.103350][ T5244] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 55.118999][ T5246] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.129340][ T5246] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.136797][ T5246] bridge_slave_0: entered allmulticast mode [ 55.143441][ T5246] bridge_slave_0: entered promiscuous mode [ 55.151735][ T5246] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.159415][ T5246] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.167031][ T5246] bridge_slave_1: entered allmulticast mode [ 55.173597][ T5246] bridge_slave_1: entered promiscuous mode [ 55.190756][ T5250] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 55.211189][ T5249] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 55.253821][ T5250] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 55.269344][ T5249] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 55.281640][ T5244] team0: Port device team_slave_0 added [ 55.289891][ T5246] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 55.301487][ T5246] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 55.312490][ T5247] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 55.323758][ T5247] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 55.348973][ T5244] team0: Port device team_slave_1 added [ 55.391414][ T5250] team0: Port device team_slave_0 added [ 55.408382][ T5249] team0: Port device team_slave_0 added [ 55.423147][ T5249] team0: Port device team_slave_1 added [ 55.431669][ T5246] team0: Port device team_slave_0 added [ 55.446327][ T5250] team0: Port device team_slave_1 added [ 55.455898][ T5247] team0: Port device team_slave_0 added [ 55.486878][ T5246] team0: Port device team_slave_1 added [ 55.501800][ T5247] team0: Port device team_slave_1 added [ 55.509204][ T5244] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 55.516565][ T5244] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 55.545322][ T5244] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 55.557848][ T5249] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 55.564923][ T5249] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 55.590953][ T5249] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 55.624443][ T5244] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 55.631418][ T5244] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 55.657470][ T5244] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 55.673978][ T5249] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 55.681407][ T5249] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 55.708333][ T5249] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 55.739837][ T5250] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 55.747186][ T5250] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 55.773283][ T5250] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 55.793518][ T5247] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 55.800572][ T5247] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 55.827016][ T5247] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 55.841763][ T5247] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 55.848866][ T5247] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 55.875616][ T5247] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 55.897771][ T5249] hsr_slave_0: entered promiscuous mode [ 55.904011][ T5249] hsr_slave_1: entered promiscuous mode [ 55.911266][ T5246] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 55.918820][ T5246] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 55.945145][ T5246] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 55.958173][ T5250] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 55.965624][ T5250] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 55.991766][ T5250] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 56.014976][ T5239] Bluetooth: hci4: command tx timeout [ 56.015300][ T5246] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 56.020775][ T5239] Bluetooth: hci2: command tx timeout [ 56.032747][ T5246] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 56.033062][ T5235] Bluetooth: hci0: command tx timeout [ 56.064397][ T5246] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 56.064631][ T54] Bluetooth: hci1: command tx timeout [ 56.094820][ T5235] Bluetooth: hci3: command tx timeout [ 56.121726][ T5244] hsr_slave_0: entered promiscuous mode [ 56.128168][ T5244] hsr_slave_1: entered promiscuous mode [ 56.137841][ T5244] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 56.145694][ T5244] Cannot create hsr debugfs directory [ 56.200652][ T5250] hsr_slave_0: entered promiscuous mode [ 56.207232][ T5250] hsr_slave_1: entered promiscuous mode [ 56.213214][ T5250] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 56.221501][ T5250] Cannot create hsr debugfs directory [ 56.251202][ T5247] hsr_slave_0: entered promiscuous mode [ 56.257701][ T5247] hsr_slave_1: entered promiscuous mode [ 56.263749][ T5247] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 56.271988][ T5247] Cannot create hsr debugfs directory [ 56.310013][ T5246] hsr_slave_0: entered promiscuous mode [ 56.317469][ T5246] hsr_slave_1: entered promiscuous mode [ 56.323460][ T5246] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 56.331850][ T5246] Cannot create hsr debugfs directory [ 56.649308][ T5249] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 56.661288][ T5249] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 56.671262][ T5249] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 56.680607][ T5249] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 56.724745][ T5244] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 56.737804][ T5244] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 56.766820][ T5244] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 56.786466][ T5244] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 56.827333][ T5250] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 56.850002][ T5250] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 56.859723][ T5250] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 56.886747][ T5250] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 56.914770][ T5249] 8021q: adding VLAN 0 to HW filter on device bond0 [ 56.969694][ T5249] 8021q: adding VLAN 0 to HW filter on device team0 [ 56.986684][ T5247] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 57.012845][ T2977] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.020274][ T2977] bridge0: port 1(bridge_slave_0) entered forwarding state [ 57.034303][ T5247] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 57.043099][ T5247] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 57.057957][ T5247] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 57.105264][ T2977] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.112489][ T2977] bridge0: port 2(bridge_slave_1) entered forwarding state [ 57.129072][ T5246] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 57.138971][ T5246] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 57.156582][ T5246] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 57.168869][ T5246] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 57.224006][ T5244] 8021q: adding VLAN 0 to HW filter on device bond0 [ 57.270470][ T5244] 8021q: adding VLAN 0 to HW filter on device team0 [ 57.304875][ T61] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.312096][ T61] bridge0: port 1(bridge_slave_0) entered forwarding state [ 57.328483][ T35] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.335656][ T35] bridge0: port 2(bridge_slave_1) entered forwarding state [ 57.386927][ T5250] 8021q: adding VLAN 0 to HW filter on device bond0 [ 57.415608][ T5244] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 57.427108][ T5244] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 57.450477][ T5249] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 57.490922][ T5250] 8021q: adding VLAN 0 to HW filter on device team0 [ 57.523212][ T61] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.530386][ T61] bridge0: port 1(bridge_slave_0) entered forwarding state [ 57.558664][ T5244] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 57.572723][ T61] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.579850][ T61] bridge0: port 2(bridge_slave_1) entered forwarding state [ 57.628731][ T5247] 8021q: adding VLAN 0 to HW filter on device bond0 [ 57.660058][ T5246] 8021q: adding VLAN 0 to HW filter on device bond0 [ 57.698429][ T5249] veth0_vlan: entered promiscuous mode [ 57.710529][ T5244] veth0_vlan: entered promiscuous mode [ 57.739203][ T5247] 8021q: adding VLAN 0 to HW filter on device team0 [ 57.761936][ T5244] veth1_vlan: entered promiscuous mode [ 57.771726][ T5246] 8021q: adding VLAN 0 to HW filter on device team0 [ 57.780600][ T5249] veth1_vlan: entered promiscuous mode [ 57.808099][ T2977] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.815276][ T2977] bridge0: port 1(bridge_slave_0) entered forwarding state [ 57.826057][ T2977] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.833239][ T2977] bridge0: port 1(bridge_slave_0) entered forwarding state [ 57.850249][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.857412][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 57.883834][ T5244] veth0_macvtap: entered promiscuous mode [ 57.893377][ T35] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.900553][ T35] bridge0: port 2(bridge_slave_1) entered forwarding state [ 57.924800][ T5244] veth1_macvtap: entered promiscuous mode [ 57.979422][ T5244] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 58.000131][ T5249] veth0_macvtap: entered promiscuous mode [ 58.012026][ T5244] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 58.029891][ T5249] veth1_macvtap: entered promiscuous mode [ 58.042914][ T5250] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 58.067709][ T5244] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.079565][ T5244] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.090255][ T5244] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.099506][ T5235] Bluetooth: hci0: command tx timeout [ 58.104568][ T5244] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.105331][ T54] Bluetooth: hci1: command tx timeout [ 58.113660][ T5239] Bluetooth: hci4: command tx timeout [ 58.125405][ T5230] Bluetooth: hci2: command tx timeout [ 58.163595][ T5247] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 58.175988][ T5239] Bluetooth: hci3: command tx timeout [ 58.187545][ T5250] veth0_vlan: entered promiscuous mode [ 58.226657][ T5249] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 58.238588][ T5249] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 58.250290][ T5249] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 58.287724][ T5246] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 58.302126][ T5249] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 58.313993][ T5249] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 58.325893][ T5249] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 58.339153][ T5249] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.348715][ T5249] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.358332][ T5249] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.367247][ T5249] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.386972][ T5250] veth1_vlan: entered promiscuous mode [ 58.400178][ T5247] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 58.445285][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 58.459038][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 58.531960][ T5250] veth0_macvtap: entered promiscuous mode [ 58.551333][ T5246] veth0_vlan: entered promiscuous mode [ 58.568928][ T1112] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 58.583132][ T5246] veth1_vlan: entered promiscuous mode [ 58.583742][ T1112] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 58.592964][ T5250] veth1_macvtap: entered promiscuous mode [ 58.618042][ T5247] veth0_vlan: entered promiscuous mode [ 58.653267][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 58.668424][ T5250] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 58.681776][ T5250] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 58.691175][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 58.692723][ T5250] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 58.711514][ T5250] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 58.723226][ T5250] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 58.742439][ T5244] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 58.780155][ T5247] veth1_vlan: entered promiscuous mode [ 58.793682][ T5246] veth0_macvtap: entered promiscuous mode [ 58.814984][ T5250] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 58.828503][ T5250] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 58.838820][ T5250] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 58.849361][ T5250] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 58.875593][ T5250] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 58.908578][ T5246] veth1_macvtap: entered promiscuous mode [ 58.937626][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 58.939315][ T5247] veth0_macvtap: entered promiscuous mode [ 58.949705][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 58.956781][ T5250] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.969035][ T5250] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.979992][ T5250] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.989348][ T5250] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.021247][ T5246] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 59.034167][ T5246] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 59.044002][ T5246] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 59.055356][ T5246] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 59.065541][ T5246] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 59.076480][ T5246] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 59.091536][ T5246] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 59.106452][ T5247] veth1_macvtap: entered promiscuous mode [ 59.125551][ T5246] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 59.136996][ T5246] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 59.158796][ T5246] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 59.177528][ T5246] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 59.189969][ T5246] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 59.191180][ T5290] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 59.202207][ T5246] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 59.231857][ T5246] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 59.234310][ T5290] netlink: 80 bytes leftover after parsing attributes in process `syz.1.2'. [ 59.251559][ T5281] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 59.257646][ T5246] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.273908][ T5246] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.275099][ T5290] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING [ 59.289113][ T5246] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.303103][ T5246] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.347366][ T5247] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 59.365894][ T5247] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 59.376938][ T5247] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 59.387581][ T5247] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 59.397751][ T5247] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 59.409658][ T5247] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 59.421168][ T5247] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 59.424243][ T5281] usb 5-1: Using ep0 maxpacket: 32 [ 59.432089][ T5247] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 59.449624][ T5247] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 59.488381][ T5281] usb 5-1: config index 0 descriptor too short (expected 2210, got 1175) [ 59.501082][ T5281] usb 5-1: config 0 has an invalid interface number: 241 but max is 2 [ 59.514467][ T5281] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 59.519433][ T5247] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 59.539908][ T5281] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 3 [ 59.546163][ T5247] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 59.550418][ T5281] usb 5-1: config 0 has no interface number 0 [ 59.563364][ T5247] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 59.565943][ T5281] usb 5-1: config 0 interface 241 altsetting 4 has an invalid descriptor for endpoint zero, skipping [ 59.581897][ T5247] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 59.588081][ T5281] usb 5-1: config 0 interface 241 altsetting 4 has an endpoint descriptor with address 0xAE, changing to 0x8E [ 59.610538][ T5281] usb 5-1: config 0 interface 241 altsetting 4 endpoint 0x8E has an invalid bInterval 0, changing to 7 [ 59.622621][ T5281] usb 5-1: config 0 interface 241 altsetting 4 endpoint 0x8E has invalid wMaxPacketSize 0 [ 59.633024][ T5281] usb 5-1: config 0 interface 241 altsetting 4 has 3 endpoint descriptors, different from the interface descriptor's value: 14 [ 59.647617][ T5247] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 59.647872][ T5281] usb 5-1: config 0 interface 241 has no altsetting 0 [ 59.662159][ T5247] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 59.670985][ T5281] usb 5-1: New USB device found, idVendor=046d, idProduct=0a0e, bcdDevice=e0.70 [ 59.681428][ T5247] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 59.684850][ T5281] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 59.695594][ T5247] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 59.714616][ T5247] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 59.722688][ T5281] usb 5-1: Product: syz [ 59.728742][ T5281] usb 5-1: Manufacturer: syz [ 59.733432][ T5281] usb 5-1: SerialNumber: syz [ 59.743067][ T5247] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.752597][ T5247] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.753094][ T5281] usb 5-1: config 0 descriptor?? [ 59.771676][ T5247] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.781300][ T5247] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.904360][ T187] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 59.917898][ T187] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 59.933177][ T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 59.949996][ T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 60.067992][ T187] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 60.120955][ T187] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 60.158609][ T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 60.192868][ T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 60.200978][ T5239] Bluetooth: hci1: command tx timeout [ 60.208575][ T5239] Bluetooth: hci0: command tx timeout [ 60.214005][ T5239] Bluetooth: hci4: command tx timeout [ 60.223343][ T5239] Bluetooth: hci2: command tx timeout [ 60.267102][ T5239] Bluetooth: hci3: command tx timeout [ 60.482210][ T2977] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 60.505080][ T2977] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 60.639615][ T187] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 60.654523][ T8] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 60.707619][ T187] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 60.857460][ T8] usb 2-1: New USB device found, idVendor=0757, idProduct=0a00, bcdDevice= 0.00 [ 60.933259][ T8] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 60.981903][ T5305] fuse: Unexpected value for 'default_permissions' [ 61.060196][ T8] usb 2-1: config 0 descriptor?? [ 61.304446][ T5284] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 62.169768][ T5312] netlink: 4 bytes leftover after parsing attributes in process `syz.4.9'. [ 62.198042][ T8] nti 0003:0757:0A00.0001: unknown main item tag 0x0 [ 62.254527][ T5239] Bluetooth: hci2: command tx timeout [ 62.260542][ T54] Bluetooth: hci4: command tx timeout [ 62.268517][ T5230] Bluetooth: hci0: command tx timeout [ 62.274587][ T5230] Bluetooth: hci1: command tx timeout [ 62.291518][ T8] nti 0003:0757:0A00.0001: unknown main item tag 0x0 [ 62.334624][ T5239] Bluetooth: hci3: command tx timeout [ 62.585563][ T8] nti 0003:0757:0A00.0001: unknown main item tag 0x0 [ 62.592517][ T8] nti 0003:0757:0A00.0001: unknown main item tag 0x0 [ 62.600653][ T8] nti 0003:0757:0A00.0001: unknown main item tag 0x0 [ 62.607490][ T5284] usb 4-1: Using ep0 maxpacket: 16 [ 62.619189][ T5284] usb 4-1: config 0 has an invalid interface number: 1 but max is 0 [ 62.635433][ T8] nti 0003:0757:0A00.0001: hidraw0: USB HID v0.00 Device [HID 0757:0a00] on usb-dummy_hcd.1-1/input0 [ 62.659480][ T5312] netlink: 'syz.4.9': attribute type 11 has an invalid length. [ 62.679692][ T5284] usb 4-1: config 0 has no interface number 0 [ 62.691946][ T5284] usb 4-1: New USB device found, idVendor=04fc, idProduct=1528, bcdDevice=6d.5d [ 62.735717][ T5284] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 62.771643][ T5312] netlink: 'syz.4.9': attribute type 13 has an invalid length. [ 65.505125][ T0] NOHZ tick-stop error: local softirq work is pending, handler #0a!!! [ 65.542162][ T5284] usb 4-1: Product: syz [ 65.610324][ T5284] usb 4-1: Manufacturer: syz [ 65.655044][ T5284] usb 4-1: SerialNumber: syz [ 67.976226][ T0] NOHZ tick-stop error: local softirq work is pending, handler #0a!!! [ 68.111238][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 68.136049][ T0] NOHZ tick-stop error: local softirq work is pending, handler #0a!!! [ 68.154134][ T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!! [ 69.484766][ T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!! [ 69.493010][ T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!! [ 69.894184][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 70.304447][ T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!! [ 70.382546][ C1] sched: DL replenish lagged too much [ 70.415683][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 70.434994][ T5291] usb 2-1: USB disconnect, device number 2 [ 71.161319][ T5284] usb 4-1: config 0 descriptor?? [ 71.489529][ T5284] usb 4-1: can't set config #0, error -71 [ 71.547860][ T5312] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 71.556916][ T5312] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 71.565716][ T5312] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 71.574483][ T5312] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 71.625445][ T5284] usb 4-1: USB disconnect, device number 2 [ 71.724888][ T1271] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.731440][ T1271] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.861423][ T5312] vxlan0: entered promiscuous mode [ 72.140068][ T5318] warning: `syz.0.1' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 73.775987][ T5230] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 73.796347][ T5230] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 73.814148][ T5230] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 73.822185][ T5230] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 73.830048][ T5230] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 73.837571][ T5230] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 73.978577][ T5235] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 73.996395][ T5235] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 74.004736][ T5235] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 74.013067][ T5235] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 74.028964][ T5235] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 74.036584][ T5235] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 74.222295][ T5239] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 74.240983][ T5239] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 74.250535][ T5239] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 74.270724][ T5239] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 74.281927][ T5239] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 74.290491][ T5239] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 74.473974][ T54] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 74.485682][ T54] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 74.500508][ T54] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 74.514676][ T54] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 74.522347][ T54] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 74.544107][ T54] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 74.639253][ T5239] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 74.660803][ T5239] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 74.668714][ T5239] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 74.677035][ T5239] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 74.685029][ T5239] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 74.693602][ T5239] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 76.254922][ T54] Bluetooth: hci6: command tx timeout [ 76.262718][ T5239] Bluetooth: hci5: command tx timeout [ 76.494920][ T5239] Bluetooth: hci2: command tx timeout [ 76.654945][ T5239] Bluetooth: hci0: command tx timeout [ 76.734853][ T5239] Bluetooth: hci1: command tx timeout [ 76.858059][ T9] cfg80211: failed to load regulatory.db [ 78.335163][ T54] Bluetooth: hci6: command tx timeout [ 78.342762][ T5239] Bluetooth: hci5: command tx timeout [ 78.574275][ T5239] Bluetooth: hci2: command tx timeout [ 78.734294][ T5239] Bluetooth: hci0: command tx timeout [ 78.814287][ T5239] Bluetooth: hci1: command tx timeout [ 80.414237][ T5239] Bluetooth: hci5: command tx timeout [ 80.419701][ T5239] Bluetooth: hci6: command tx timeout [ 80.655842][ T5239] Bluetooth: hci2: command tx timeout [ 80.814444][ T5239] Bluetooth: hci0: command tx timeout [ 80.894362][ T5239] Bluetooth: hci1: command tx timeout [ 82.495709][ T54] Bluetooth: hci5: command tx timeout [ 82.501193][ T5239] Bluetooth: hci6: command tx timeout [ 82.734178][ T5239] Bluetooth: hci2: command tx timeout [ 82.894254][ T5239] Bluetooth: hci0: command tx timeout [ 82.974251][ T5239] Bluetooth: hci1: command tx timeout [ 133.137279][ T1271] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.143649][ T1271] ieee802154 phy1 wpan1: encryption failed: -22 [ 135.428621][ T54] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 135.444838][ T54] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 135.452839][ T54] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 135.490207][ T54] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 135.498822][ T54] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 135.506536][ T54] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 135.655645][ T54] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 135.674208][ T54] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 135.682197][ T54] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 135.690687][ T54] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 135.699666][ T54] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 135.707387][ T54] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 135.919226][ T5239] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 135.928180][ T5239] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 135.936482][ T5239] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 135.954369][ T5239] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 135.962622][ T5239] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 135.970428][ T5239] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 136.280734][ T54] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1 [ 136.295553][ T54] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9 [ 136.303615][ T54] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9 [ 136.317641][ T54] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4 [ 136.325465][ T54] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3 [ 136.333748][ T54] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2 [ 137.002423][ T5239] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1 [ 137.017077][ T5239] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9 [ 137.025232][ T5239] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9 [ 137.033492][ T5239] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4 [ 137.041758][ T5239] Bluetooth: hci9: unexpected cc 0x0c25 length: 249 > 3 [ 137.049274][ T5239] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2 [ 137.534207][ T5239] Bluetooth: hci3: command tx timeout [ 137.779725][ T5239] Bluetooth: hci4: command tx timeout [ 138.019736][ T5239] Bluetooth: hci7: command tx timeout [ 138.429887][ T5239] Bluetooth: hci8: command tx timeout [ 139.134195][ T5239] Bluetooth: hci9: command tx timeout [ 139.614352][ T5239] Bluetooth: hci3: command tx timeout [ 139.854143][ T5239] Bluetooth: hci4: command tx timeout [ 140.094128][ T5239] Bluetooth: hci7: command tx timeout [ 140.497473][ T5239] Bluetooth: hci8: command tx timeout [ 141.214428][ T5239] Bluetooth: hci9: command tx timeout [ 141.694306][ T5239] Bluetooth: hci3: command tx timeout [ 141.934155][ T5239] Bluetooth: hci4: command tx timeout [ 142.174407][ T5239] Bluetooth: hci7: command tx timeout [ 142.574193][ T5239] Bluetooth: hci8: command tx timeout [ 143.294215][ T5239] Bluetooth: hci9: command tx timeout [ 143.774279][ T5239] Bluetooth: hci3: command tx timeout [ 144.014211][ T5239] Bluetooth: hci4: command tx timeout [ 144.254593][ T5239] Bluetooth: hci7: command tx timeout [ 144.654263][ T5239] Bluetooth: hci8: command tx timeout [ 145.374308][ T5239] Bluetooth: hci9: command tx timeout [ 194.587209][ T1271] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.593544][ T1271] ieee802154 phy1 wpan1: encryption failed: -22 [ 196.114239][ T5230] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1 [ 196.123166][ T5230] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9 [ 196.131357][ T5230] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9 [ 196.139412][ T5230] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4 [ 196.147208][ T5230] Bluetooth: hci10: unexpected cc 0x0c25 length: 249 > 3 [ 196.164131][ T5230] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2 [ 196.242573][ T5242] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1 [ 196.256930][ T5242] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9 [ 196.265933][ T5242] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9 [ 196.275498][ T5242] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4 [ 196.283215][ T5242] Bluetooth: hci11: unexpected cc 0x0c25 length: 249 > 3 [ 196.291057][ T5242] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2 [ 196.657310][ T5230] Bluetooth: hci6: command 0x0406 tx timeout [ 196.663378][ T5230] Bluetooth: hci5: command 0x0406 tx timeout [ 196.670696][ T4624] Bluetooth: hci2: command 0x0406 tx timeout [ 196.678212][ T5230] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1 [ 196.701282][ T5230] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9 [ 196.709643][ T5230] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9 [ 196.720477][ T5230] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4 [ 196.729339][ T5230] Bluetooth: hci12: unexpected cc 0x0c25 length: 249 > 3 [ 196.739000][ T5230] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2 [ 197.064375][ T5230] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1 [ 197.073198][ T5230] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9 [ 197.083156][ T5230] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9 [ 197.092031][ T5230] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4 [ 197.100196][ T5230] Bluetooth: hci13: unexpected cc 0x0c25 length: 249 > 3 [ 197.107985][ T5230] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2 [ 197.213068][ T5242] Bluetooth: hci14: unexpected cc 0x0c03 length: 249 > 1 [ 197.223202][ T5242] Bluetooth: hci14: unexpected cc 0x1003 length: 249 > 9 [ 197.231784][ T5242] Bluetooth: hci14: unexpected cc 0x1001 length: 249 > 9 [ 197.241607][ T5242] Bluetooth: hci14: unexpected cc 0x0c23 length: 249 > 4 [ 197.249663][ T5242] Bluetooth: hci14: unexpected cc 0x0c25 length: 249 > 3 [ 197.257788][ T5242] Bluetooth: hci14: unexpected cc 0x0c38 length: 249 > 2 [ 198.254189][ T5230] Bluetooth: hci10: command tx timeout [ 198.334329][ T5230] Bluetooth: hci11: command tx timeout [ 198.816964][ T5230] Bluetooth: hci12: command tx timeout [ 199.134515][ T5230] Bluetooth: hci13: command tx timeout [ 199.294267][ T5230] Bluetooth: hci14: command tx timeout [ 200.344031][ T5230] Bluetooth: hci10: command tx timeout [ 200.414266][ T5230] Bluetooth: hci11: command tx timeout [ 200.899734][ T5230] Bluetooth: hci12: command tx timeout [ 201.216385][ T5230] Bluetooth: hci13: command tx timeout [ 201.374164][ T5230] Bluetooth: hci14: command tx timeout [ 201.774360][ T5230] Bluetooth: hci0: command 0x0406 tx timeout [ 201.858241][ T5242] Bluetooth: hci1: command 0x0406 tx timeout [ 202.414202][ T5235] Bluetooth: hci10: command tx timeout [ 202.494187][ T5235] Bluetooth: hci11: command tx timeout [ 202.974270][ T5235] Bluetooth: hci12: command tx timeout [ 203.294367][ T5235] Bluetooth: hci13: command tx timeout [ 203.454274][ T5235] Bluetooth: hci14: command tx timeout [ 204.494275][ T5235] Bluetooth: hci10: command tx timeout [ 204.574228][ T5235] Bluetooth: hci11: command tx timeout [ 205.054355][ T5235] Bluetooth: hci12: command tx timeout [ 205.374231][ T5235] Bluetooth: hci13: command tx timeout [ 205.534123][ T5235] Bluetooth: hci14: command tx timeout [ 234.894372][ T30] INFO: task kworker/0:1:9 blocked for more than 143 seconds. [ 234.901900][ T30] Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0 [ 234.944210][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 234.954037][ T30] task:kworker/0:1 state:D stack:23856 pid:9 tgid:9 ppid:2 flags:0x00004000 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 235.083090][ T30] Workqueue: events request_firmware_work_func [ 235.134211][ T30] Call Trace: [ 235.137552][ T30] [ 235.140505][ T30] __schedule+0x1895/0x4b30 [ 235.204147][ T30] ? __pfx___schedule+0x10/0x10 [ 235.209157][ T30] ? __pfx_lock_release+0x10/0x10 [ 235.254041][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 235.259567][ T30] ? kthread_data+0x52/0xd0 [ 235.307664][ T30] ? schedule+0x90/0x320 [ 235.311975][ T30] ? wq_worker_sleeping+0x66/0x240 [ 235.354142][ T30] ? schedule+0x90/0x320 [ 235.358457][ T30] schedule+0x14b/0x320 [ 235.362670][ T30] schedule_preempt_disabled+0x13/0x30 [ 235.424358][ T30] __mutex_lock+0x6a7/0xd70 [ 235.428932][ T30] ? __mutex_lock+0x52a/0xd70 [ 235.433636][ T30] ? regdb_fw_cb+0x82/0x1c0 [ 235.480737][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 235.504044][ T30] ? __pfx_regdb_fw_cb+0x10/0x10 [ 235.509050][ T30] regdb_fw_cb+0x82/0x1c0 [ 235.513468][ T30] ? __pfx_regdb_fw_cb+0x10/0x10 [ 235.559605][ T30] request_firmware_work_func+0x1a4/0x280 [ 235.584266][ T30] ? __pfx_request_firmware_work_func+0x10/0x10 [ 235.590572][ T30] ? process_scheduled_works+0x976/0x1850 [ 235.634176][ T30] process_scheduled_works+0xa63/0x1850 [ 235.639816][ T30] ? __pfx_process_scheduled_works+0x10/0x10 [ 235.674302][ T30] ? assign_work+0x364/0x3d0 [ 235.680182][ T30] worker_thread+0x870/0xd30 [ 235.714044][ T30] ? __kthread_parkme+0x169/0x1d0 [ 235.719140][ T30] ? __pfx_worker_thread+0x10/0x10 [ 235.759697][ T30] kthread+0x2f0/0x390 [ 235.763828][ T30] ? __pfx_worker_thread+0x10/0x10 [ 235.789157][ T30] ? __pfx_kthread+0x10/0x10 [ 235.793821][ T30] ret_from_fork+0x4b/0x80 [ 235.820957][ T30] ? __pfx_kthread+0x10/0x10 [ 235.831322][ T30] ret_from_fork_asm+0x1a/0x30 [ 235.841825][ T30] [ 235.855065][ T30] INFO: task jbd2/sda1-8:4649 blocked for more than 144 seconds. [ 235.862836][ T30] Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0 [ 235.899750][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 235.924085][ T30] task:jbd2/sda1-8 state:D stack:24240 pid:4649 tgid:4649 ppid:2 flags:0x00004000 [ 235.952441][ T30] Call Trace: [ 235.962537][ T30] [ 235.971129][ T30] __schedule+0x1895/0x4b30 [ 235.981287][ T30] ? __pfx___schedule+0x10/0x10 [ 235.994043][ T30] ? __pfx_lock_release+0x10/0x10 [ 235.999126][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 236.034176][ T30] ? schedule+0x90/0x320 [ 236.038488][ T30] schedule+0x14b/0x320 [ 236.042675][ T30] io_schedule+0x8d/0x110 [ 236.074122][ T30] bit_wait_io+0x12/0xd0 [ 236.078442][ T30] __wait_on_bit+0xb0/0x2f0 [ 236.082968][ T30] ? __pfx_bit_wait_io+0x10/0x10 [ 236.111778][ T30] out_of_line_wait_on_bit+0x1d5/0x260 [ 236.124143][ T30] ? __pfx_bit_wait_io+0x10/0x10 [ 236.129131][ T30] ? __pfx_out_of_line_wait_on_bit+0x10/0x10 [ 236.180070][ T30] ? __pfx_wake_bit_function+0x10/0x10 [ 236.189808][ T30] jbd2_journal_commit_transaction+0x3df6/0x67e0 [ 236.209091][ T30] ? __pfx_jbd2_journal_commit_transaction+0x10/0x10 [ 236.231883][ T30] ? lockdep_hardirqs_on+0x99/0x150 [ 236.252052][ T30] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 236.263997][ T30] ? __try_to_del_timer_sync+0x2ad/0x340 [ 236.269789][ T30] ? __timer_delete_sync+0x15c/0x310 [ 236.295285][ T30] ? __timer_delete_sync+0x25d/0x310 [ 236.300640][ T30] ? __pfx___timer_delete_sync+0x10/0x10 [ 236.329843][ T30] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 236.344164][ T30] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 236.350553][ T30] ? prepare_to_wait+0x186/0x210 [ 236.373188][ T30] ? finish_wait+0xd4/0x1e0 [ 236.387388][ T30] kjournald2+0x41c/0x7b0 [ 236.391779][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 236.416276][ T30] ? __pfx_kjournald2+0x10/0x10 [ 236.421204][ T30] ? __pfx_autoremove_wake_function+0x10/0x10 [ 236.444254][ T30] ? __kthread_parkme+0x169/0x1d0 [ 236.463905][ T30] ? __pfx_kjournald2+0x10/0x10 [ 236.468923][ T30] kthread+0x2f0/0x390 [ 236.473023][ T30] ? __pfx_kjournald2+0x10/0x10 [ 236.499934][ T30] ? __pfx_kthread+0x10/0x10 [ 236.510503][ T30] ret_from_fork+0x4b/0x80 [ 236.527316][ T30] ? __pfx_kthread+0x10/0x10 [ 236.531967][ T30] ret_from_fork_asm+0x1a/0x30 [ 236.549796][ T30] [ 236.553031][ T30] INFO: task syz-executor:5244 blocked for more than 145 seconds. [ 236.561371][ T30] Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0 [ 236.576075][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 236.590412][ T30] task:syz-executor state:D stack:20096 pid:5244 tgid:5244 ppid:1 flags:0x00004006 [ 236.602572][ T30] Call Trace: [ 236.611749][ T30] [ 236.615045][ T30] __schedule+0x1895/0x4b30 [ 236.619610][ T30] ? __pfx___schedule+0x10/0x10 [ 236.632453][ T30] ? __pfx_lock_release+0x10/0x10 [ 236.637827][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 236.643330][ T30] ? schedule+0x90/0x320 [ 236.653631][ T30] schedule+0x14b/0x320 [ 236.658106][ T30] schedule_preempt_disabled+0x13/0x30 [ 236.663600][ T30] __mutex_lock+0x6a7/0xd70 [ 236.674324][ T30] ? __mutex_lock+0x52a/0xd70 [ 236.679046][ T30] ? tun_chr_close+0x3b/0x1b0 [ 236.683754][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 236.695062][ T30] ? __pfx_call_rcu+0x10/0x10 [ 236.699787][ T30] tun_chr_close+0x3b/0x1b0 [ 236.711967][ T30] ? __pfx_tun_chr_close+0x10/0x10 [ 236.717453][ T30] __fput+0x23f/0x880 [ 236.721486][ T30] task_work_run+0x24f/0x310 [ 236.734682][ T30] ? kasan_quarantine_put+0xdc/0x230 [ 236.740059][ T30] ? __pfx_task_work_run+0x10/0x10 [ 236.751647][ T30] ? do_exit+0xa2a/0x28e0 [ 236.756296][ T30] ? kmem_cache_free+0x1a2/0x420 [ 236.761275][ T30] ? do_exit+0xa2a/0x28e0 [ 236.771560][ T30] do_exit+0xa2f/0x28e0 [ 236.776030][ T30] ? __pfx_do_exit+0x10/0x10 [ 236.780648][ T30] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 236.793581][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 236.800080][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 236.813828][ T30] ? _raw_spin_lock_irq+0xdf/0x120 [ 236.821994][ T30] do_group_exit+0x207/0x2c0 [ 236.834412][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 236.839653][ T30] ? lockdep_hardirqs_on+0x99/0x150 [ 236.850863][ T30] get_signal+0x16a3/0x1740 [ 236.855933][ T30] ? __pfx_get_signal+0x10/0x10 [ 236.861031][ T30] ? __pfx_hrtimer_nanosleep+0x10/0x10 [ 236.872449][ T30] arch_do_signal_or_restart+0x96/0x860 [ 236.879450][ T30] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 236.891632][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 236.898068][ T30] ? syscall_exit_to_user_mode+0xa3/0x370 [ 236.903824][ T30] syscall_exit_to_user_mode+0xc9/0x370 [ 236.914002][ T30] do_syscall_64+0x100/0x230 [ 236.918629][ T30] ? clear_bhb_loop+0x35/0x90 [ 236.923422][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 236.937508][ T30] RIP: 0033:0x7fd23f7b00e5 [ 236.941969][ T30] RSP: 002b:00007fd23fa5fd50 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6 [ 236.956654][ T30] RAX: 0000000000000000 RBX: 0000000000000004 RCX: 00007fd23f7b00e5 [ 236.968802][ T30] RDX: 00007fd23fa5fd90 RSI: 0000000000000000 RDI: 0000000000000000 [ 236.984099][ T30] RBP: 00007fd23fa5fdec R08: 0000000000000000 R09: 7fffffffffffffff [ 236.992119][ T30] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000000002a [ 237.005367][ T30] R13: 000000000000eee3 R14: 000000000000edcb R15: 00007fd23fa5fe40 [ 237.019909][ T30] [ 237.023037][ T30] INFO: task syz-executor:5246 blocked for more than 145 seconds. [ 237.033550][ T30] Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0 [ 237.046445][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 237.062549][ T30] task:syz-executor state:D stack:20992 pid:5246 tgid:5246 ppid:1 flags:0x00004006 [ 237.075472][ T30] Call Trace: [ 237.078805][ T30] [ 237.081757][ T30] __schedule+0x1895/0x4b30 [ 237.093882][ T30] ? __pfx___schedule+0x10/0x10 [ 237.101492][ T30] ? __pfx_lock_release+0x10/0x10 [ 237.110280][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 237.119862][ T30] ? schedule+0x90/0x320 [ 237.126776][ T30] schedule+0x14b/0x320 [ 237.130976][ T30] schedule_preempt_disabled+0x13/0x30 [ 237.147152][ T30] __mutex_lock+0x6a7/0xd70 [ 237.151700][ T30] ? __mutex_lock+0x52a/0xd70 [ 237.161797][ T30] ? tun_chr_close+0x3b/0x1b0 [ 237.167997][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 237.173062][ T30] ? __pfx_call_rcu+0x10/0x10 [ 237.182656][ T30] tun_chr_close+0x3b/0x1b0 [ 237.188592][ T30] ? __pfx_tun_chr_close+0x10/0x10 [ 237.193740][ T30] __fput+0x23f/0x880 [ 237.203179][ T30] task_work_run+0x24f/0x310 [ 237.210182][ T30] ? kasan_quarantine_put+0xdc/0x230 [ 237.221003][ T30] ? __pfx_task_work_run+0x10/0x10 [ 237.228756][ T30] ? do_exit+0xa2a/0x28e0 [ 237.233122][ T30] ? kmem_cache_free+0x1a2/0x420 [ 237.241853][ T30] ? do_exit+0xa2a/0x28e0 [ 237.250361][ T30] do_exit+0xa2f/0x28e0 [ 237.258221][ T30] ? __pfx_do_exit+0x10/0x10 [ 237.262854][ T30] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 237.271075][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 237.280927][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 237.289895][ T30] ? _raw_spin_lock_irq+0xdf/0x120 [ 237.300242][ T30] do_group_exit+0x207/0x2c0 [ 237.307833][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 237.313085][ T30] ? lockdep_hardirqs_on+0x99/0x150 [ 237.323811][ T30] get_signal+0x16a3/0x1740 [ 237.331004][ T30] ? __pfx_get_signal+0x10/0x10 [ 237.339941][ T30] arch_do_signal_or_restart+0x96/0x860 [ 237.350737][ T30] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 237.360602][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 237.369143][ T30] ? syscall_exit_to_user_mode+0xa3/0x370 [ 237.378719][ T30] syscall_exit_to_user_mode+0xc9/0x370 [ 237.386901][ T30] do_syscall_64+0x100/0x230 [ 237.391524][ T30] ? clear_bhb_loop+0x35/0x90 [ 237.401199][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 237.409656][ T30] RIP: 0033:0x7fde66d7ca3c [ 237.418185][ T30] RSP: 002b:00007fde6705fd90 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 237.430762][ T30] RAX: fffffffffffffe00 RBX: 0000000000000003 RCX: 00007fde66d7ca3c [ 237.446278][ T30] RDX: 0000000000000028 RSI: 00007fde6705fe40 RDI: 00000000000000f9 [ 237.458316][ T30] RBP: 00007fde6705fdec R08: 0000000000000000 R09: 0079746972756365 [ 237.468845][ T30] R10: 00007fde66f087e0 R11: 0000000000000246 R12: 000055559193a5eb [ 237.480638][ T30] R13: 000055559193a590 R14: 000000000000ee9c R15: 00007fde6705fe40 [ 237.492329][ T30] [ 237.499356][ T30] INFO: task syz.0.1:5320 blocked for more than 145 seconds. [ 237.509293][ T30] Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0 [ 237.520734][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 237.533951][ T30] task:syz.0.1 state:D stack:24920 pid:5320 tgid:5314 ppid:5247 flags:0x00004006 [ 237.561944][ T30] Call Trace: [ 237.565612][ T30] [ 237.568625][ T30] __schedule+0x1895/0x4b30 [ 237.573177][ T30] ? __pfx___schedule+0x10/0x10 [ 237.584066][ T30] ? __pfx_lock_release+0x10/0x10 [ 237.589145][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 237.601364][ T30] ? schedule+0x90/0x320 [ 237.605961][ T30] schedule+0x14b/0x320 [ 237.610155][ T30] schedule_preempt_disabled+0x13/0x30 [ 237.621576][ T30] __mutex_lock+0x6a7/0xd70 [ 237.628167][ T30] ? __mutex_lock+0x52a/0xd70 [ 237.632886][ T30] ? tun_chr_close+0x3b/0x1b0 [ 237.641044][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 237.651035][ T30] ? __pfx_call_rcu+0x10/0x10 [ 237.658299][ T30] tun_chr_close+0x3b/0x1b0 [ 237.662930][ T30] ? __pfx_tun_chr_close+0x10/0x10 [ 237.671912][ T30] __fput+0x23f/0x880 [ 237.678449][ T30] task_work_run+0x24f/0x310 [ 237.683076][ T30] ? kasan_quarantine_put+0xdc/0x230 [ 237.692143][ T30] ? __pfx_task_work_run+0x10/0x10 [ 237.701695][ T30] ? do_exit+0xa2a/0x28e0 [ 237.709737][ T30] ? kmem_cache_free+0x1a2/0x420 [ 237.717308][ T30] ? do_exit+0xa2a/0x28e0 [ 237.721675][ T30] do_exit+0xa2f/0x28e0 [ 237.731375][ T30] ? __pfx_do_exit+0x10/0x10 [ 237.738541][ T30] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 237.750598][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 237.759139][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 237.769313][ T30] ? _raw_spin_lock_irq+0xdf/0x120 [ 237.777033][ T30] do_group_exit+0x207/0x2c0 [ 237.781653][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 237.792149][ T30] ? lockdep_hardirqs_on+0x99/0x150 [ 237.799872][ T30] get_signal+0x16a3/0x1740 [ 237.808371][ T30] ? __pfx_get_signal+0x10/0x10 [ 237.813256][ T30] ? __fget_files+0x29/0x470 [ 237.819407][ T30] arch_do_signal_or_restart+0x96/0x860 [ 237.830396][ T30] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 237.838898][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 237.850033][ T30] ? syscall_exit_to_user_mode+0xa3/0x370 [ 237.860394][ T30] syscall_exit_to_user_mode+0xc9/0x370 [ 237.869655][ T30] do_syscall_64+0x100/0x230 [ 237.876836][ T30] ? clear_bhb_loop+0x35/0x90 [ 237.881552][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 237.891238][ T30] RIP: 0033:0x7fbe4ef7dff9 [ 237.900161][ T30] RSP: 002b:00007fbe4e9ff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000147 [ 237.912270][ T30] RAX: 00000000000000b9 RBX: 00007fbe4f136130 RCX: 00007fbe4ef7dff9 [ 237.922803][ T30] RDX: 0000000000000001 RSI: 0000000020000840 RDI: 0000000000000007 [ 237.934009][ T30] RBP: 00007fbe4eff0296 R08: 0000000000000000 R09: 0000000000000000 [ 237.942021][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 237.960568][ T30] R13: 0000000000000001 R14: 00007fbe4f136130 R15: 00007fbe4f25fa28 [ 237.971663][ T30] [ 237.979513][ T30] INFO: task syz-executor:5331 blocked for more than 146 seconds. [ 237.989948][ T30] Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0 [ 238.001295][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 238.012597][ T30] task:syz-executor state:D stack:26560 pid:5331 tgid:5331 ppid:1 flags:0x00004004 [ 238.033199][ T30] Call Trace: [ 238.037806][ T30] [ 238.040779][ T30] __schedule+0x1895/0x4b30 [ 238.051937][ T30] ? __pfx___schedule+0x10/0x10 [ 238.057622][ T30] ? __pfx_lock_release+0x10/0x10 [ 238.062692][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 238.075479][ T30] ? schedule+0x90/0x320 [ 238.079780][ T30] schedule+0x14b/0x320 [ 238.090250][ T30] schedule_preempt_disabled+0x13/0x30 [ 238.101456][ T30] __mutex_lock+0x6a7/0xd70 [ 238.111982][ T30] ? __mutex_lock+0x52a/0xd70 [ 238.117109][ T30] ? register_nexthop_notifier+0x84/0x290 [ 238.122874][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 238.134014][ T30] ? __asan_memset+0x23/0x50 [ 238.142168][ T30] register_nexthop_notifier+0x84/0x290 [ 238.151738][ T30] ? __pfx_lockdep_init_map_type+0x10/0x10 [ 238.160534][ T30] ? __pfx_debug_check_no_locks_freed+0x10/0x10 [ 238.170611][ T30] ? __pfx_register_nexthop_notifier+0x10/0x10 [ 238.184022][ T30] ? __asan_memset+0x23/0x50 [ 238.188662][ T30] ops_init+0x31e/0x590 [ 238.192848][ T30] ? lockdep_init_map_type+0xa1/0x910 [ 238.205036][ T30] setup_net+0x287/0x9e0 [ 238.209337][ T30] ? __pfx_down_read_killable+0x10/0x10 [ 238.219767][ T30] ? __pfx_setup_net+0x10/0x10 [ 238.227438][ T30] copy_net_ns+0x33f/0x570 [ 238.231923][ T30] create_new_namespaces+0x425/0x7b0 [ 238.244060][ T30] unshare_nsproxy_namespaces+0x124/0x180 [ 238.249842][ T30] ksys_unshare+0x619/0xc10 [ 238.260829][ T30] ? __pfx_ksys_unshare+0x10/0x10 [ 238.266255][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 238.272292][ T30] ? do_syscall_64+0x100/0x230 [ 238.284345][ T30] __x64_sys_unshare+0x38/0x40 [ 238.289157][ T30] do_syscall_64+0xf3/0x230 [ 238.293682][ T30] ? clear_bhb_loop+0x35/0x90 [ 238.304422][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 238.310376][ T30] RIP: 0033:0x7ff5b3d7f7f7 [ 238.321527][ T30] RSP: 002b:00007ff5b405ffa8 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 238.330321][ T30] RAX: ffffffffffffffda RBX: 00007ff5b3df1a85 RCX: 00007ff5b3d7f7f7 [ 238.345907][ T30] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000000 [ 238.353928][ T30] RBP: 0000000000000000 R08: 00007ff5b4a67d60 R09: 0000000000000000 [ 238.371007][ T30] R10: 0000000000000000 R11: 0000000000000206 R12: 000000000000000c [ 238.379365][ T30] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000 [ 238.393362][ T30] [ 238.396877][ T30] INFO: task syz-executor:5334 blocked for more than 146 seconds. [ 238.411857][ T30] Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0 [ 238.420355][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 238.434256][ T30] task:syz-executor state:D stack:26368 pid:5334 tgid:5334 ppid:1 flags:0x00004004 [ 238.451812][ T30] Call Trace: [ 238.456755][ T30] [ 238.459721][ T30] __schedule+0x1895/0x4b30 [ 238.470833][ T30] ? __pfx___schedule+0x10/0x10 [ 238.476028][ T30] ? __pfx_lock_release+0x10/0x10 [ 238.481096][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 238.492592][ T30] ? schedule+0x90/0x320 [ 238.497330][ T30] schedule+0x14b/0x320 [ 238.501528][ T30] schedule_preempt_disabled+0x13/0x30 [ 238.514002][ T30] __mutex_lock+0x6a7/0xd70 [ 238.518561][ T30] ? __mutex_lock+0x52a/0xd70 [ 238.523271][ T30] ? register_nexthop_notifier+0x84/0x290 [ 238.535526][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 238.540611][ T30] ? __asan_memset+0x23/0x50 [ 238.550553][ T30] register_nexthop_notifier+0x84/0x290 [ 238.559865][ T30] ? __pfx_lockdep_init_map_type+0x10/0x10 [ 238.569817][ T30] ? __pfx_debug_check_no_locks_freed+0x10/0x10 [ 238.578638][ T30] ? __pfx_register_nexthop_notifier+0x10/0x10 [ 238.588544][ T30] ? __asan_memset+0x23/0x50 [ 238.593179][ T30] ops_init+0x31e/0x590 [ 238.600110][ T30] ? lockdep_init_map_type+0xa1/0x910 [ 238.610398][ T30] setup_net+0x287/0x9e0 [ 238.617343][ T30] ? __pfx_down_read_killable+0x10/0x10 [ 238.622929][ T30] ? __pfx_setup_net+0x10/0x10 [ 238.631590][ T30] copy_net_ns+0x33f/0x570 [ 238.638986][ T30] create_new_namespaces+0x425/0x7b0 [ 238.648011][ T30] unshare_nsproxy_namespaces+0x124/0x180 [ 238.659166][ T30] ksys_unshare+0x619/0xc10 [ 238.663740][ T30] ? __pfx_ksys_unshare+0x10/0x10 [ 238.675537][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 238.681585][ T30] ? do_syscall_64+0x100/0x230 [ 238.690277][ T30] __x64_sys_unshare+0x38/0x40 [ 238.698924][ T30] do_syscall_64+0xf3/0x230 [ 238.703566][ T30] ? clear_bhb_loop+0x35/0x90 [ 238.712130][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 238.720611][ T30] RIP: 0033:0x7f875137f7f7 [ 238.728718][ T30] RSP: 002b:00007f875165ffa8 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 238.739723][ T30] RAX: ffffffffffffffda RBX: 00007f87513f1a85 RCX: 00007f875137f7f7 [ 238.754748][ T30] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000000 [ 238.762775][ T30] RBP: 0000000000000000 R08: 00007f8752067d60 R09: 0000000000000000 [ 238.775696][ T30] R10: 0000000000000000 R11: 0000000000000206 R12: 000000000000000c [ 238.787846][ T30] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000 [ 238.799858][ T30] [ 238.803001][ T30] INFO: task syz-executor:5335 blocked for more than 147 seconds. [ 238.815155][ T30] Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0 [ 238.822831][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 238.835551][ T30] task:syz-executor state:D stack:26096 pid:5335 tgid:5335 ppid:1 flags:0x00004004 [ 238.851594][ T30] Call Trace: [ 238.859422][ T30] [ 238.862404][ T30] __schedule+0x1895/0x4b30 [ 238.870785][ T30] ? __pfx___schedule+0x10/0x10 [ 238.878634][ T30] ? __pfx_lock_release+0x10/0x10 [ 238.883772][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 238.893575][ T30] ? schedule+0x90/0x320 [ 238.902442][ T30] schedule+0x14b/0x320 [ 238.910403][ T30] schedule_preempt_disabled+0x13/0x30 [ 238.918454][ T30] __mutex_lock+0x6a7/0xd70 [ 238.923006][ T30] ? __mutex_lock+0x52a/0xd70 [ 238.931565][ T30] ? register_nexthop_notifier+0x84/0x290 [ 238.939923][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 238.949816][ T30] ? __asan_memset+0x23/0x50 [ 238.958590][ T30] register_nexthop_notifier+0x84/0x290 [ 238.968236][ T30] ? __pfx_lockdep_init_map_type+0x10/0x10 [ 238.976679][ T30] ? __pfx_debug_check_no_locks_freed+0x10/0x10 [ 238.983005][ T30] ? __pfx_register_nexthop_notifier+0x10/0x10 [ 238.994785][ T30] ? __asan_memset+0x23/0x50 [ 238.999427][ T30] ops_init+0x31e/0x590 [ 239.003615][ T30] ? lockdep_init_map_type+0xa1/0x910 [ 239.015231][ T30] setup_net+0x287/0x9e0 [ 239.019522][ T30] ? __pfx_down_read_killable+0x10/0x10 [ 239.029989][ T30] ? __pfx_setup_net+0x10/0x10 [ 239.036444][ T30] copy_net_ns+0x33f/0x570 [ 239.040908][ T30] create_new_namespaces+0x425/0x7b0 [ 239.053035][ T30] unshare_nsproxy_namespaces+0x124/0x180 [ 239.064023][ T30] ksys_unshare+0x619/0xc10 [ 239.069597][ T30] ? __pfx_ksys_unshare+0x10/0x10 [ 239.080553][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 239.088069][ T30] ? do_syscall_64+0x100/0x230 [ 239.092884][ T30] __x64_sys_unshare+0x38/0x40 [ 239.104764][ T30] do_syscall_64+0xf3/0x230 [ 239.109316][ T30] ? clear_bhb_loop+0x35/0x90 [ 239.120131][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 239.126483][ T30] RIP: 0033:0x7fea3d77f7f7 [ 239.130935][ T30] RSP: 002b:00007fea3da5ffa8 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 239.144512][ T30] RAX: ffffffffffffffda RBX: 00007fea3d7f1a85 RCX: 00007fea3d77f7f7 [ 239.152528][ T30] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000000 [ 239.168867][ T30] RBP: 0000000000000000 R08: 00007fea3e467d60 R09: 0000000000000000 [ 239.177773][ T30] R10: 0000000000000000 R11: 0000000000000206 R12: 000000000000000c [ 239.193091][ T30] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000 [ 239.201544][ T30] [ 239.210434][ T30] INFO: task syz-executor:5337 blocked for more than 147 seconds. [ 239.221717][ T30] Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0 [ 239.235315][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 239.249483][ T30] task:syz-executor state:D stack:26304 pid:5337 tgid:5337 ppid:1 flags:0x00004006 [ 239.262447][ T30] Call Trace: [ 239.271084][ T30] [ 239.276581][ T30] __schedule+0x1895/0x4b30 [ 239.281164][ T30] ? __pfx___schedule+0x10/0x10 [ 239.289867][ T30] ? __pfx_lock_release+0x10/0x10 [ 239.300051][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 239.309220][ T30] ? schedule+0x90/0x320 [ 239.313520][ T30] schedule+0x14b/0x320 [ 239.320343][ T30] schedule_preempt_disabled+0x13/0x30 [ 239.329586][ T30] __mutex_lock+0x6a7/0xd70 [ 239.336777][ T30] ? __mutex_lock+0x52a/0xd70 [ 239.341506][ T30] ? register_nexthop_notifier+0x84/0x290 [ 239.355720][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 239.360895][ T30] ? __asan_memset+0x23/0x50 [ 239.372774][ T30] register_nexthop_notifier+0x84/0x290 [ 239.378844][ T30] ? __pfx_lockdep_init_map_type+0x10/0x10 [ 239.394150][ T30] ? __pfx_debug_check_no_locks_freed+0x10/0x10 [ 239.400455][ T30] ? __pfx_register_nexthop_notifier+0x10/0x10 [ 239.412906][ T30] ? __asan_memset+0x23/0x50 [ 239.417977][ T30] ops_init+0x31e/0x590 [ 239.422187][ T30] ? lockdep_init_map_type+0xa1/0x910 [ 239.435438][ T30] setup_net+0x287/0x9e0 [ 239.439737][ T30] ? __pfx_down_read_killable+0x10/0x10 [ 239.451488][ T30] ? __pfx_setup_net+0x10/0x10 [ 239.456796][ T30] copy_net_ns+0x33f/0x570 [ 239.461285][ T30] create_new_namespaces+0x425/0x7b0 [ 239.474065][ T30] unshare_nsproxy_namespaces+0x124/0x180 [ 239.479859][ T30] ksys_unshare+0x619/0xc10 [ 239.491661][ T30] ? __pfx_ksys_unshare+0x10/0x10 [ 239.497085][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 239.503246][ T30] ? do_syscall_64+0x100/0x230 [ 239.514436][ T30] __x64_sys_unshare+0x38/0x40 [ 239.519254][ T30] do_syscall_64+0xf3/0x230 [ 239.523781][ T30] ? clear_bhb_loop+0x35/0x90 [ 239.535043][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 239.540998][ T30] RIP: 0033:0x7f93a0b7f7f7 [ 239.551612][ T30] RSP: 002b:00007f93a0e5ffa8 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 239.560417][ T30] RAX: ffffffffffffffda RBX: 00007f93a0bf1a85 RCX: 00007f93a0b7f7f7 [ 239.570081][ T30] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000000 [ 239.585464][ T30] RBP: 0000000000000000 R08: 00007f93a1867d60 R09: 0000000000000000 [ 239.593862][ T30] R10: 0000000000000000 R11: 0000000000000206 R12: 000000000000000c [ 239.605896][ T30] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000 [ 239.613928][ T30] [ 239.622490][ T30] INFO: task syz-executor:5339 blocked for more than 148 seconds. [ 239.633314][ T30] Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0 [ 239.644761][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 239.653463][ T30] task:syz-executor state:D stack:25856 pid:5339 tgid:5339 ppid:1 flags:0x00004004 [ 239.670354][ T30] Call Trace: [ 239.675157][ T30] [ 239.678122][ T30] __schedule+0x1895/0x4b30 [ 239.682770][ T30] ? __pfx___schedule+0x10/0x10 [ 239.694981][ T30] ? __pfx_lock_release+0x10/0x10 [ 239.700067][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 239.711671][ T30] ? schedule+0x90/0x320 [ 239.717533][ T30] schedule+0x14b/0x320 [ 239.721736][ T30] schedule_preempt_disabled+0x13/0x30 [ 239.732101][ T30] __mutex_lock+0x6a7/0xd70 [ 239.738549][ T30] ? __mutex_lock+0x52a/0xd70 [ 239.743267][ T30] ? register_nexthop_notifier+0x84/0x290 [ 239.753923][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 239.759140][ T30] ? __asan_memset+0x23/0x50 [ 239.763755][ T30] register_nexthop_notifier+0x84/0x290 [ 239.778350][ T30] ? __pfx_lockdep_init_map_type+0x10/0x10 [ 239.786766][ T30] ? __pfx_debug_check_no_locks_freed+0x10/0x10 [ 239.793078][ T30] ? __pfx_register_nexthop_notifier+0x10/0x10 [ 239.803626][ T30] ? __asan_memset+0x23/0x50 [ 239.812345][ T30] ops_init+0x31e/0x590 [ 239.820202][ T30] ? lockdep_init_map_type+0xa1/0x910 [ 239.828209][ T30] setup_net+0x287/0x9e0 [ 239.832509][ T30] ? __pfx_down_read_killable+0x10/0x10 [ 239.841893][ T30] ? __pfx_setup_net+0x10/0x10 [ 239.849736][ T30] copy_net_ns+0x33f/0x570 [ 239.857987][ T30] create_new_namespaces+0x425/0x7b0 [ 239.863339][ T30] unshare_nsproxy_namespaces+0x124/0x180 [ 239.873800][ T30] ksys_unshare+0x619/0xc10 [ 239.883693][ T30] ? __pfx_ksys_unshare+0x10/0x10 [ 239.891315][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 239.901985][ T30] ? do_syscall_64+0x100/0x230 [ 239.910500][ T30] __x64_sys_unshare+0x38/0x40 [ 239.918997][ T30] do_syscall_64+0xf3/0x230 [ 239.923548][ T30] ? clear_bhb_loop+0x35/0x90 [ 239.931030][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 239.940844][ T30] RIP: 0033:0x7efc6057f7f7 [ 239.947816][ T30] RSP: 002b:00007efc6085ffa8 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 239.961428][ T30] RAX: ffffffffffffffda RBX: 00007efc605f1a85 RCX: 00007efc6057f7f7 [ 239.972041][ T30] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000000 [ 239.985444][ T30] RBP: 0000000000000000 R08: 00007efc61267d60 R09: 0000000000000000 [ 239.993454][ T30] R10: 0000000000000000 R11: 0000000000000206 R12: 000000000000000c [ 240.006964][ T30] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000 [ 240.019026][ T30] [ 240.022092][ T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings [ 240.033895][ T30] [ 240.033895][ T30] Showing all locks held in the system: [ 240.047075][ T30] 3 locks held by kworker/0:1/9: [ 240.052047][ T30] #0: ffff88801ac80948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850 [ 240.065750][ T30] #1: ffffc900000e7d00 ((work_completion)(&fw_work->work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850 [ 240.081911][ T30] #2: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: regdb_fw_cb+0x82/0x1c0 [ 240.095156][ T30] 2 locks held by ksoftirqd/1/24: [ 240.100223][ T30] 2 locks held by kworker/1:0/25: [ 240.116730][ T30] 1 lock held by khungtaskd/30: [ 240.121626][ T30] #0: ffffffff8e937de0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0 [ 240.136683][ T30] 4 locks held by kworker/u8:5/187: [ 240.141913][ T30] #0: ffff88801baed948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850 [ 240.158280][ T30] #1: ffffc90002dffd00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850 [ 240.171646][ T30] #2: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0 [ 240.185656][ T30] #3: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: wg_netns_pre_exit+0x1f/0x1e0 [ 240.203883][ T30] 3 locks held by kworker/u8:9/2915: [ 240.209517][ T30] #0: ffff88802e1a3148 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850 [ 240.229153][ T30] #1: ffffc9000a387d00 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850 [ 240.243631][ T30] #2: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_dad_work+0xd0/0x16f0 [ 240.259889][ T30] 3 locks held by kworker/u8:10/2977: [ 240.269658][ T30] #0: ffff88801ac89148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850 [ 240.288629][ T30] #1: ffffc9000a777d00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850 [ 240.301489][ T30] #2: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60 [ 240.317318][ T30] 2 locks held by getty/4988: [ 240.322031][ T30] #0: ffff88802e3a30a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 240.334693][ T30] #1: ffffc900031332f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6a6/0x1e00 [ 240.350981][ T30] 1 lock held by syz-executor/5244: [ 240.357698][ T30] #0: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3b/0x1b0 [ 240.371555][ T30] 1 lock held by syz-executor/5246: [ 240.378257][ T30] #0: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3b/0x1b0 [ 240.394073][ T30] 2 locks held by syz-executor/5250: [ 240.399393][ T30] #0: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3b/0x1b0 [ 240.414805][ T30] #1: ffffffff8e7d1dd0 (cpu_hotplug_lock){++++}-{0:0}, at: unregister_netdevice_many_notify+0x5ea/0x1da0 [ 240.432224][ T30] 5 locks held by kworker/1:3/5281: [ 240.439753][ T30] 3 locks held by kworker/0:5/5284: [ 240.446816][ T30] #0: ffff88801ac81948 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850 [ 240.463867][ T30] #1: ffffc90003ff7d00 ((reg_check_chans).work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850 [ 240.480931][ T30] #2: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: reg_check_chans_work+0x99/0xfd0 [ 240.495188][ T30] 1 lock held by syz.0.1/5320: [ 240.499988][ T30] #0: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3b/0x1b0 [ 240.515614][ T30] 2 locks held by syz-executor/5331: [ 240.520940][ T30] #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570 [ 240.535874][ T30] #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 [ 240.549615][ T30] 2 locks held by syz-executor/5334: [ 240.557584][ T30] #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570 [ 240.571007][ T30] #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 [ 240.584958][ T30] 2 locks held by syz-executor/5335: [ 240.590273][ T30] #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570 [ 240.607425][ T30] #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 [ 240.621323][ T30] 2 locks held by syz-executor/5337: [ 240.631455][ T30] #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570 [ 240.642865][ T30] #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 [ 240.657703][ T30] 2 locks held by syz-executor/5339: [ 240.663023][ T30] #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570 [ 240.675945][ T30] #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 [ 240.690831][ T30] 2 locks held by syz-executor/5355: [ 240.699260][ T30] #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570 [ 240.714704][ T30] #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 [ 240.730035][ T30] 2 locks held by syz-executor/5357: [ 240.736986][ T30] #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570 [ 240.752753][ T30] #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 [ 240.764434][ T30] 2 locks held by syz-executor/5359: [ 240.769747][ T30] #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570 [ 240.784188][ T30] #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 [ 240.800031][ T30] 2 locks held by syz-executor/5361: [ 240.809245][ T30] #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570 [ 240.822918][ T30] #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 [ 240.835664][ T30] 2 locks held by syz-executor/5363: [ 240.840976][ T30] #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570 [ 240.855950][ T30] #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 [ 240.870206][ T30] 2 locks held by syz-executor/5370: [ 240.878068][ T30] #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570 [ 240.892493][ T30] #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 [ 240.906800][ T30] 2 locks held by syz-executor/5372: [ 240.912117][ T30] #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570 [ 240.926282][ T30] #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 [ 240.941308][ T30] 2 locks held by syz-executor/5376: [ 240.949126][ T30] #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570 [ 240.962193][ T30] #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 [ 240.974852][ T30] 2 locks held by syz-executor/5378: [ 240.980161][ T30] #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570 [ 240.997650][ T30] #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 [ 241.013075][ T30] 2 locks held by syz-executor/5381: [ 241.020891][ T30] #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570 [ 241.036774][ T30] #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 [ 241.051510][ T30] [ 241.053876][ T30] ============================================= [ 241.053876][ T30] [ 241.069422][ T30] NMI backtrace for cpu 0 [ 241.073801][ T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0 [ 241.084339][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 241.094419][ T30] Call Trace: [ 241.097712][ T30] [ 241.100658][ T30] dump_stack_lvl+0x241/0x360 [ 241.105367][ T30] ? __pfx_dump_stack_lvl+0x10/0x10 [ 241.110600][ T30] ? __pfx__printk+0x10/0x10 [ 241.115236][ T30] nmi_cpu_backtrace+0x49c/0x4d0 [ 241.120208][ T30] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 241.125697][ T30] ? _printk+0xd5/0x120 [ 241.129900][ T30] ? __pfx__printk+0x10/0x10 [ 241.134521][ T30] ? __wake_up_klogd+0xcc/0x110 [ 241.139398][ T30] ? __pfx__printk+0x10/0x10 [ 241.144014][ T30] ? __rcu_read_unlock+0xa1/0x110 [ 241.149070][ T30] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 241.155077][ T30] nmi_trigger_cpumask_backtrace+0x198/0x320 [ 241.161087][ T30] watchdog+0xff4/0x1040 [ 241.165356][ T30] ? watchdog+0x1ea/0x1040 [ 241.169801][ T30] ? __pfx_watchdog+0x10/0x10 [ 241.174503][ T30] kthread+0x2f0/0x390 [ 241.178591][ T30] ? __pfx_watchdog+0x10/0x10 [ 241.183297][ T30] ? __pfx_kthread+0x10/0x10 [ 241.187997][ T30] ret_from_fork+0x4b/0x80 [ 241.192440][ T30] ? __pfx_kthread+0x10/0x10 [ 241.197049][ T30] ret_from_fork_asm+0x1a/0x30 [ 241.201853][ T30] [ 241.205877][ T30] Sending NMI from CPU 0 to CPUs 1: [ 241.212264][ C1] NMI backtrace for cpu 1 [ 241.212279][ C1] CPU: 1 UID: 0 PID: 25 Comm: kworker/1:0 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0 [ 241.212298][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 241.212308][ C1] Workqueue: events nsim_dev_trap_report_work [ 241.212333][ C1] RIP: 0010:unwind_next_frame+0x6aa/0x22d0 [ 241.212351][ C1] Code: 24 28 48 8b 44 24 58 42 80 3c 20 00 74 08 4c 89 f7 e8 2a 30 bd 00 49 8b 2e e9 32 02 00 00 4d 89 ec 4d 89 ee 48 89 e8 4c 29 f0 <48> 89 c1 48 c1 f9 02 48 c1 e8 3f 48 01 c8 48 83 e0 fe 49 8d 1c 46 [ 241.212369][ C1] RSP: 0018:ffffc90000a176d0 EFLAGS: 00000216 [ 241.212383][ C1] RAX: 000000000000000c RBX: ffffffff9035413c RCX: ffffffff90354140 [ 241.212394][ C1] RDX: 00000000000b0001 RSI: ffffffff90ae89a8 RDI: 0000000000000001 [ 241.212405][ C1] RBP: ffffffff90354138 R08: 0000000000000009 R09: ffffc90000a17890 [ 241.212417][ C1] R10: ffffc90000a177f0 R11: ffffffff81808f50 R12: ffffffff9035412c [ 241.212429][ C1] R13: ffffffff9035412c R14: ffffffff9035412c R15: ffffffff81f28154 [ 241.212441][ C1] FS: 0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000 [ 241.212455][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 241.212467][ C1] CR2: 0000565056a35eb8 CR3: 000000000e734000 CR4: 00000000003526f0 [ 241.212481][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 241.212490][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 241.212501][ C1] Call Trace: [ 241.212507][ C1] [ 241.212514][ C1] ? nmi_cpu_backtrace+0x3c2/0x4d0 [ 241.212532][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 241.212555][ C1] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 241.212572][ C1] ? nmi_handle+0x2a/0x5a0 [ 241.212595][ C1] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 241.212615][ C1] ? nmi_handle+0x14f/0x5a0 [ 241.212630][ C1] ? nmi_handle+0x2a/0x5a0 [ 241.212647][ C1] ? unwind_next_frame+0x6aa/0x22d0 [ 241.212667][ C1] ? default_do_nmi+0x63/0x160 [ 241.212686][ C1] ? exc_nmi+0x123/0x1f0 [ 241.212703][ C1] ? end_repeat_nmi+0xf/0x53 [ 241.212717][ C1] ? kmem_cache_alloc_noprof+0x134/0x2a0 [ 241.212738][ C1] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 241.212759][ C1] ? unwind_next_frame+0x6aa/0x22d0 [ 241.212774][ C1] ? unwind_next_frame+0x6aa/0x22d0 [ 241.212789][ C1] ? unwind_next_frame+0x6aa/0x22d0 [ 241.212804][ C1] [ 241.212809][ C1] [ 241.212819][ C1] ? kmem_cache_alloc_noprof+0x135/0x2a0 [ 241.212839][ C1] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 241.212857][ C1] arch_stack_walk+0x11c/0x150 [ 241.212876][ C1] ? kmem_cache_alloc_noprof+0x135/0x2a0 [ 241.212897][ C1] stack_trace_save+0x118/0x1d0 [ 241.212914][ C1] ? lockdep_hardirqs_on+0x99/0x150 [ 241.212935][ C1] ? __pfx_stack_trace_save+0x10/0x10 [ 241.212951][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 241.212973][ C1] ? ktime_get_with_offset+0x83/0x150 [ 241.212995][ C1] kasan_save_track+0x3f/0x80 [ 241.213010][ C1] ? kasan_save_track+0x3f/0x80 [ 241.213024][ C1] ? __kasan_slab_alloc+0x66/0x80 [ 241.213039][ C1] ? kmem_cache_alloc_noprof+0x135/0x2a0 [ 241.213080][ C1] __kasan_slab_alloc+0x66/0x80 [ 241.213097][ C1] ? dst_alloc+0x12b/0x190 [ 241.213111][ C1] kmem_cache_alloc_noprof+0x135/0x2a0 [ 241.213132][ C1] dst_alloc+0x12b/0x190 [ 241.213148][ C1] ip_route_output_key_hash_rcu+0x13cc/0x2390 [ 241.213176][ C1] ip_route_output_key_hash+0x193/0x2b0 [ 241.213197][ C1] ? ip_route_output_key_hash+0xdf/0x2b0 [ 241.213217][ C1] ? __pfx_ip_route_output_key_hash+0x10/0x10 [ 241.213239][ C1] ? __pfx_lock_release+0x10/0x10 [ 241.213259][ C1] ? kthread+0x2f0/0x390 [ 241.213278][ C1] ip_route_output_flow+0x29/0x140 [ 241.213299][ C1] ip_route_me_harder+0x80d/0x1300 [ 241.213323][ C1] ? __pfx_ip_route_me_harder+0x10/0x10 [ 241.213343][ C1] ? trace_kmalloc+0x1f/0xd0 [ 241.213361][ C1] ? __kmalloc_node_track_caller_noprof+0x242/0x440 [ 241.213390][ C1] synproxy_send_tcp+0x356/0x6c0 [ 241.213414][ C1] synproxy_send_client_synack+0x8b8/0xf30 [ 241.213440][ C1] ? __pfx_synproxy_send_client_synack+0x10/0x10 [ 241.213462][ C1] ? synproxy_pernet+0x45/0x270 [ 241.213484][ C1] nft_synproxy_eval_v4+0x3ca/0x610 [ 241.213508][ C1] ? __pfx_nft_synproxy_eval_v4+0x10/0x10 [ 241.213530][ C1] ? nf_ip_checksum+0x13a/0x500 [ 241.213554][ C1] nft_synproxy_do_eval+0x362/0xa60 [ 241.213577][ C1] ? __pfx_nft_synproxy_do_eval+0x10/0x10 [ 241.213597][ C1] ? validate_chain+0x11e/0x5920 [ 241.213616][ C1] ? __pfx_validate_chain+0x10/0x10 [ 241.213637][ C1] nft_do_chain+0x4ad/0x1da0 [ 241.213662][ C1] ? __pfx_nft_do_chain+0x10/0x10 [ 241.213682][ C1] ? __local_bh_enable_ip+0x168/0x200 [ 241.213714][ C1] ? __pfx_nf_nat_inet_fn+0x10/0x10 [ 241.213732][ C1] nft_do_chain_inet+0x418/0x6b0 [ 241.213754][ C1] ? __pfx_nft_do_chain_inet+0x10/0x10 [ 241.213774][ C1] ? ipt_do_table+0x312/0x1860 [ 241.213801][ C1] ? __pfx_nft_do_chain_inet+0x10/0x10 [ 241.213820][ C1] nf_hook_slow+0xc3/0x220 [ 241.213839][ C1] ? __pfx_ip_local_deliver_finish+0x10/0x10 [ 241.213856][ C1] ? __pfx_ip_local_deliver_finish+0x10/0x10 [ 241.213873][ C1] NF_HOOK+0x29e/0x450 [ 241.213891][ C1] ? NF_HOOK+0x9a/0x450 [ 241.213906][ C1] ? __pfx_NF_HOOK+0x10/0x10 [ 241.213923][ C1] ? __pfx_ip_local_deliver_finish+0x10/0x10 [ 241.213943][ C1] ? ip_rcv_finish+0x406/0x560 [ 241.213963][ C1] ? __pfx_ip_rcv_finish+0x10/0x10 [ 241.213977][ C1] NF_HOOK+0x3a4/0x450 [ 241.213993][ C1] ? __lock_acquire+0x1384/0x2050 [ 241.214014][ C1] ? NF_HOOK+0x9a/0x450 [ 241.214030][ C1] ? __pfx_NF_HOOK+0x10/0x10 [ 241.214045][ C1] ? ip_rcv_core+0x801/0xd10 [ 241.214063][ C1] ? __pfx_ip_rcv_finish+0x10/0x10 [ 241.214083][ C1] ? __pfx_ip_rcv+0x10/0x10 [ 241.214101][ C1] __netif_receive_skb+0x2bf/0x650 [ 241.214123][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 241.214145][ C1] ? __pfx___netif_receive_skb+0x10/0x10 [ 241.214163][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 241.214185][ C1] ? __pfx_lock_release+0x10/0x10 [ 241.214208][ C1] ? _raw_spin_lock_irq+0xdf/0x120 [ 241.214235][ C1] process_backlog+0x662/0x15b0 [ 241.214258][ C1] ? process_backlog+0x33b/0x15b0 [ 241.214282][ C1] ? __pfx_process_backlog+0x10/0x10 [ 241.214301][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 241.214325][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 241.214350][ C1] __napi_poll+0xcb/0x490 [ 241.214371][ C1] net_rx_action+0x89b/0x1240 [ 241.214401][ C1] ? __pfx_net_rx_action+0x10/0x10 [ 241.214422][ C1] ? sched_clock+0x4a/0x70 [ 241.214447][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 241.214473][ C1] handle_softirqs+0x2c5/0x980 [ 241.214495][ C1] ? do_softirq+0x11b/0x1e0 [ 241.214514][ C1] ? __pfx_handle_softirqs+0x10/0x10 [ 241.214538][ C1] do_softirq+0x11b/0x1e0 [ 241.214555][ C1] [ 241.214561][ C1] [ 241.214567][ C1] ? __pfx_do_softirq+0x10/0x10 [ 241.214585][ C1] ? __pfx_lockdep_softirqs_on+0x10/0x10 [ 241.214608][ C1] ? rcu_is_watching+0x15/0xb0 [ 241.214626][ C1] __local_bh_enable_ip+0x1bb/0x200 [ 241.214646][ C1] ? nsim_dev_trap_report_work+0x75d/0xaa0 [ 241.214668][ C1] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 241.214687][ C1] ? do_raw_spin_unlock+0x13c/0x8b0 [ 241.214706][ C1] ? nsim_dev_trap_report_work+0x6a7/0xaa0 [ 241.214725][ C1] nsim_dev_trap_report_work+0x75d/0xaa0 [ 241.214749][ C1] ? process_scheduled_works+0x976/0x1850 [ 241.214769][ C1] process_scheduled_works+0xa63/0x1850 [ 241.214800][ C1] ? __pfx_process_scheduled_works+0x10/0x10 [ 241.214823][ C1] ? assign_work+0x364/0x3d0 [ 241.214844][ C1] worker_thread+0x870/0xd30 [ 241.214870][ C1] ? __kthread_parkme+0x169/0x1d0 [ 241.214892][ C1] ? __pfx_worker_thread+0x10/0x10 [ 241.214912][ C1] kthread+0x2f0/0x390 [ 241.214927][ C1] ? __pfx_worker_thread+0x10/0x10 [ 241.214946][ C1] ? __pfx_kthread+0x10/0x10 [ 241.214961][ C1] ret_from_fork+0x4b/0x80 [ 241.214981][ C1] ? __pfx_kthread+0x10/0x10 [ 241.214996][ C1] ret_from_fork_asm+0x1a/0x30 [ 241.215022][ C1] [ 242.031787][ T30] Kernel panic - not syncing: hung_task: blocked tasks [ 242.038689][ T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0 [ 242.049218][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 242.059312][ T30] Call Trace: [ 242.062623][ T30] [ 242.065563][ T30] dump_stack_lvl+0x241/0x360 [ 242.070272][ T30] ? __pfx_dump_stack_lvl+0x10/0x10 [ 242.075589][ T30] ? __pfx__printk+0x10/0x10 [ 242.080291][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 242.086304][ T30] ? vscnprintf+0x5d/0x90 [ 242.090656][ T30] panic+0x349/0x880 [ 242.094579][ T30] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 242.100754][ T30] ? __pfx_panic+0x10/0x10 [ 242.105191][ T30] ? tick_nohz_tick_stopped+0x82/0xb0 [ 242.110669][ T30] ? __irq_work_queue_local+0x137/0x410 [ 242.116236][ T30] ? preempt_schedule_thunk+0x1a/0x30 [ 242.121643][ T30] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 242.127813][ T30] ? nmi_trigger_cpumask_backtrace+0x2d4/0x320 [ 242.134173][ T30] ? nmi_trigger_cpumask_backtrace+0x2d9/0x320 [ 242.140363][ T30] watchdog+0x1033/0x1040 [ 242.144724][ T30] ? watchdog+0x1ea/0x1040 [ 242.149259][ T30] ? __pfx_watchdog+0x10/0x10 [ 242.153956][ T30] kthread+0x2f0/0x390 [ 242.158040][ T30] ? __pfx_watchdog+0x10/0x10 [ 242.162737][ T30] ? __pfx_kthread+0x10/0x10 [ 242.167344][ T30] ret_from_fork+0x4b/0x80 [ 242.171790][ T30] ? __pfx_kthread+0x10/0x10 [ 242.176397][ T30] ret_from_fork_asm+0x1a/0x30 [ 242.181201][ T30] [ 242.184481][ T30] Kernel Offset: disabled [ 242.188843][ T30] Rebooting in 86400 seconds..