last executing test programs: 2m55.557993206s ago: executing program 0 (id=3482): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) socket(0xa, 0x3, 0x4) io_setup(0x6, &(0x7f0000000240)) preadv(r0, &(0x7f0000000580)=[{&(0x7f0000000640)=""/102396, 0xfffffd6e}, {&(0x7f0000019740)=""/242}], 0x2, 0x0, 0x0) mmap(&(0x7f0000941000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000180)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_NEWRULE={0x28, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x9c}}, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) syz_usb_connect(0x1, 0x36, &(0x7f0000000180)=ANY=[@ANYBLOB="1e0100005c6b4408070a64006e00010203010902240001a82200000904000002ca743600090503032000ff00ef08058402"], &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]}) syz_open_dev$char_usb(0xc, 0xb4, 0x0) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendmsg$ETHTOOL_MSG_PAUSE_SET(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x0) r3 = socket$kcm(0x21, 0x2, 0x2) sendmsg$kcm(r3, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @broadcast}}, 0x80, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}, 0x0) sendmsg$kcm(r3, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @broadcast}}, 0x80, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000100100000100000070"], 0x18}, 0x0) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) dup2(r4, r3) dup(r2) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000380)={0x1e, 0x0, 0x6}) syz_mount_image$hfs(&(0x7f00000000c0), &(0x7f0000000000)='./file2\x00', 0x0, &(0x7f00000001c0)=ANY=[], 0x3, 0x29f, &(0x7f0000000440)="$eJzs3bFu00AYwPHvLm7qkKqYtggJMaBCJcSAaFkQCwjlIZgQ0ASpwipSWwTtQmFGPAA7r8BDMCFegAkmHiATRne+JE4T22mb5Gj4/6SkTnyf/V1s5+6LVFkA/LceNn58vvPLPJRIRSoick9ESyKhSCAiF+VS+Gp7b2svbjWLNlQRE2EeStJINdBGSWtYqImzEU5kXgWyEI6hfygWJvM1t1g9bmySejv+rDBt9uofctFqkXl3ddr1s3JNHvpOwDPVlra8kUXfeQAA/HLjv3bj/IKbCmgtsuaG/Zka/9u+E/AsM/7byitR5viet6t69Z6dDZr1ulMlnmRftrDQ7gTqJlBWVdpcdO35Vty6tfkybmp5L/edTLMV+9xMT90Ol609Wd8Nbnp1SG1a4OR9r9s+zJk+bOTkvzzePZZTX9U39VhF8kma3flfkChzmOyRio4cqTT/2/lbtL2M0lY5vbxgd3K5v8gs6WWYpvHHlZnZVVW3zSCbalSWp41a6vupodO79ZKo5aFRGyVRK0ejumfzT/Myzg+fIPVRPVKr8lu+SCMz/9fmk1yTUa5M08a21HM184mbqzO3ZWBbRtm3Dq8MbalHeAen5r76PsgzuSuLu/sH1adx3NrZ3T94wULxgvsmSia+r2DC3emcC//Ep3raBYlaO+0kSXzn8+CqjHeDZgzx1x2PX1GYmt5B950JPDGzLJXWf/WwN9+38wTzFBXM05P+l4NlVaYCWu/VBpKtDZbs87nedO/m6/RvQW1Qz6/gRq25rt0QuZ55s6QaiVyeM0I15Ls84fd/AAAAAAAAAAAAAAAAAACAs2Ya/07gu48AAAAAAAAAAAAAAAAAAAAAAJx1eff/lUnc/3dz+1j3/+2/eQ6AcfsbAAD//7KJi5s=") chdir(&(0x7f0000000140)='./file0\x00') r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) unlinkat(r5, &(0x7f0000002780)='./file0\x00', 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r6 = socket$igmp(0x2, 0x3, 0x2) setsockopt$MRT_ADD_VIF(r6, 0x0, 0xca, &(0x7f0000000200)={0x0, 0x4, 0x0, 0x0, @vifc_lcl_ifindex, @dev}, 0x10) syz_mount_image$hfs(&(0x7f0000000080), &(0x7f0000000040)='./file0\x00', 0x802, &(0x7f0000000200)=ANY=[@ANYBLOB="636f6465706167653d69736f383835392d312c696f636861727365743d69736f383835392d362c756d61736b3d30303030303030303030303030303030303030303030352c66696c655f756d61736b3d30303030303030303030303030303030303030303130302c756d61736b3d30313737373737373737373737373737373737373737332c009331112d80fe0197fb570b89bcbd54d424dd36484f3659918d4141bb8718d5a115229dbc37aa9bb406abe4cb67a3ccd5b65aa6196000bfe43d2fb51718b109d2fe98ec87258093b61780e71b4d4b2a077a1ec98e812a313195214ea5a5c96585"], 0x7, 0x2db, &(0x7f0000000800)="$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") mkdir(&(0x7f0000000440)='./file1\x00', 0x0) 2m17.534040217s ago: executing program 0 (id=3482): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) socket(0xa, 0x3, 0x4) io_setup(0x6, &(0x7f0000000240)) preadv(r0, &(0x7f0000000580)=[{&(0x7f0000000640)=""/102396, 0xfffffd6e}, {&(0x7f0000019740)=""/242}], 0x2, 0x0, 0x0) mmap(&(0x7f0000941000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000180)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_NEWRULE={0x28, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x9c}}, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) syz_usb_connect(0x1, 0x36, &(0x7f0000000180)=ANY=[@ANYBLOB="1e0100005c6b4408070a64006e00010203010902240001a82200000904000002ca743600090503032000ff00ef08058402"], &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]}) syz_open_dev$char_usb(0xc, 0xb4, 0x0) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendmsg$ETHTOOL_MSG_PAUSE_SET(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x0) r3 = socket$kcm(0x21, 0x2, 0x2) sendmsg$kcm(r3, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @broadcast}}, 0x80, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}, 0x0) sendmsg$kcm(r3, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @broadcast}}, 0x80, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000100100000100000070"], 0x18}, 0x0) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) dup2(r4, r3) dup(r2) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000380)={0x1e, 0x0, 0x6}) syz_mount_image$hfs(&(0x7f00000000c0), &(0x7f0000000000)='./file2\x00', 0x0, &(0x7f00000001c0)=ANY=[], 0x3, 0x29f, &(0x7f0000000440)="$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") chdir(&(0x7f0000000140)='./file0\x00') r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) unlinkat(r5, &(0x7f0000002780)='./file0\x00', 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r6 = socket$igmp(0x2, 0x3, 0x2) setsockopt$MRT_ADD_VIF(r6, 0x0, 0xca, &(0x7f0000000200)={0x0, 0x4, 0x0, 0x0, @vifc_lcl_ifindex, @dev}, 0x10) syz_mount_image$hfs(&(0x7f0000000080), &(0x7f0000000040)='./file0\x00', 0x802, &(0x7f0000000200)=ANY=[@ANYBLOB="636f6465706167653d69736f383835392d312c696f636861727365743d69736f383835392d362c756d61736b3d30303030303030303030303030303030303030303030352c66696c655f756d61736b3d30303030303030303030303030303030303030303130302c756d61736b3d30313737373737373737373737373737373737373737332c009331112d80fe0197fb570b89bcbd54d424dd36484f3659918d4141bb8718d5a115229dbc37aa9bb406abe4cb67a3ccd5b65aa6196000bfe43d2fb51718b109d2fe98ec87258093b61780e71b4d4b2a077a1ec98e812a313195214ea5a5c96585"], 0x7, 0x2db, &(0x7f0000000800)="$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") mkdir(&(0x7f0000000440)='./file1\x00', 0x0) 1m55.965157285s ago: executing program 0 (id=3482): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) socket(0xa, 0x3, 0x4) io_setup(0x6, &(0x7f0000000240)) preadv(r0, &(0x7f0000000580)=[{&(0x7f0000000640)=""/102396, 0xfffffd6e}, {&(0x7f0000019740)=""/242}], 0x2, 0x0, 0x0) mmap(&(0x7f0000941000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000180)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_NEWRULE={0x28, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x9c}}, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) syz_usb_connect(0x1, 0x36, &(0x7f0000000180)=ANY=[@ANYBLOB="1e0100005c6b4408070a64006e00010203010902240001a82200000904000002ca743600090503032000ff00ef08058402"], &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]}) syz_open_dev$char_usb(0xc, 0xb4, 0x0) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendmsg$ETHTOOL_MSG_PAUSE_SET(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x0) r3 = socket$kcm(0x21, 0x2, 0x2) sendmsg$kcm(r3, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @broadcast}}, 0x80, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}, 0x0) sendmsg$kcm(r3, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @broadcast}}, 0x80, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000100100000100000070"], 0x18}, 0x0) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) dup2(r4, r3) dup(r2) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000380)={0x1e, 0x0, 0x6}) syz_mount_image$hfs(&(0x7f00000000c0), &(0x7f0000000000)='./file2\x00', 0x0, &(0x7f00000001c0)=ANY=[], 0x3, 0x29f, &(0x7f0000000440)="$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") chdir(&(0x7f0000000140)='./file0\x00') r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) unlinkat(r5, &(0x7f0000002780)='./file0\x00', 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r6 = socket$igmp(0x2, 0x3, 0x2) setsockopt$MRT_ADD_VIF(r6, 0x0, 0xca, &(0x7f0000000200)={0x0, 0x4, 0x0, 0x0, @vifc_lcl_ifindex, @dev}, 0x10) syz_mount_image$hfs(&(0x7f0000000080), &(0x7f0000000040)='./file0\x00', 0x802, &(0x7f0000000200)=ANY=[@ANYBLOB="636f6465706167653d69736f383835392d312c696f636861727365743d69736f383835392d362c756d61736b3d30303030303030303030303030303030303030303030352c66696c655f756d61736b3d30303030303030303030303030303030303030303130302c756d61736b3d30313737373737373737373737373737373737373737332c009331112d80fe0197fb570b89bcbd54d424dd36484f3659918d4141bb8718d5a115229dbc37aa9bb406abe4cb67a3ccd5b65aa6196000bfe43d2fb51718b109d2fe98ec87258093b61780e71b4d4b2a077a1ec98e812a313195214ea5a5c96585"], 0x7, 0x2db, &(0x7f0000000800)="$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") mkdir(&(0x7f0000000440)='./file1\x00', 0x0) 1m29.378874511s ago: executing program 0 (id=3482): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) socket(0xa, 0x3, 0x4) io_setup(0x6, &(0x7f0000000240)) preadv(r0, &(0x7f0000000580)=[{&(0x7f0000000640)=""/102396, 0xfffffd6e}, {&(0x7f0000019740)=""/242}], 0x2, 0x0, 0x0) mmap(&(0x7f0000941000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000180)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_NEWRULE={0x28, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x9c}}, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) syz_usb_connect(0x1, 0x36, &(0x7f0000000180)=ANY=[@ANYBLOB="1e0100005c6b4408070a64006e00010203010902240001a82200000904000002ca743600090503032000ff00ef08058402"], &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]}) syz_open_dev$char_usb(0xc, 0xb4, 0x0) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendmsg$ETHTOOL_MSG_PAUSE_SET(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x0) r3 = socket$kcm(0x21, 0x2, 0x2) sendmsg$kcm(r3, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @broadcast}}, 0x80, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}, 0x0) sendmsg$kcm(r3, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @broadcast}}, 0x80, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000100100000100000070"], 0x18}, 0x0) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) dup2(r4, r3) dup(r2) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000380)={0x1e, 0x0, 0x6}) syz_mount_image$hfs(&(0x7f00000000c0), &(0x7f0000000000)='./file2\x00', 0x0, &(0x7f00000001c0)=ANY=[], 0x3, 0x29f, &(0x7f0000000440)="$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") chdir(&(0x7f0000000140)='./file0\x00') r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) unlinkat(r5, &(0x7f0000002780)='./file0\x00', 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r6 = socket$igmp(0x2, 0x3, 0x2) setsockopt$MRT_ADD_VIF(r6, 0x0, 0xca, &(0x7f0000000200)={0x0, 0x4, 0x0, 0x0, @vifc_lcl_ifindex, @dev}, 0x10) syz_mount_image$hfs(&(0x7f0000000080), &(0x7f0000000040)='./file0\x00', 0x802, &(0x7f0000000200)=ANY=[@ANYBLOB="636f6465706167653d69736f383835392d312c696f636861727365743d69736f383835392d362c756d61736b3d30303030303030303030303030303030303030303030352c66696c655f756d61736b3d30303030303030303030303030303030303030303130302c756d61736b3d30313737373737373737373737373737373737373737332c009331112d80fe0197fb570b89bcbd54d424dd36484f3659918d4141bb8718d5a115229dbc37aa9bb406abe4cb67a3ccd5b65aa6196000bfe43d2fb51718b109d2fe98ec87258093b61780e71b4d4b2a077a1ec98e812a313195214ea5a5c96585"], 0x7, 0x2db, &(0x7f0000000800)="$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") mkdir(&(0x7f0000000440)='./file1\x00', 0x0) 35.597327035s ago: executing program 0 (id=3482): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) socket(0xa, 0x3, 0x4) io_setup(0x6, &(0x7f0000000240)) preadv(r0, &(0x7f0000000580)=[{&(0x7f0000000640)=""/102396, 0xfffffd6e}, {&(0x7f0000019740)=""/242}], 0x2, 0x0, 0x0) mmap(&(0x7f0000941000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000180)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_NEWRULE={0x28, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x9c}}, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) syz_usb_connect(0x1, 0x36, &(0x7f0000000180)=ANY=[@ANYBLOB="1e0100005c6b4408070a64006e00010203010902240001a82200000904000002ca743600090503032000ff00ef08058402"], &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]}) syz_open_dev$char_usb(0xc, 0xb4, 0x0) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendmsg$ETHTOOL_MSG_PAUSE_SET(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x0) r3 = socket$kcm(0x21, 0x2, 0x2) sendmsg$kcm(r3, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @broadcast}}, 0x80, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}, 0x0) sendmsg$kcm(r3, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @broadcast}}, 0x80, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000100100000100000070"], 0x18}, 0x0) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) dup2(r4, r3) dup(r2) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000380)={0x1e, 0x0, 0x6}) syz_mount_image$hfs(&(0x7f00000000c0), &(0x7f0000000000)='./file2\x00', 0x0, &(0x7f00000001c0)=ANY=[], 0x3, 0x29f, &(0x7f0000000440)="$eJzs3bFu00AYwPHvLm7qkKqYtggJMaBCJcSAaFkQCwjlIZgQ0ASpwipSWwTtQmFGPAA7r8BDMCFegAkmHiATRne+JE4T22mb5Gj4/6SkTnyf/V1s5+6LVFkA/LceNn58vvPLPJRIRSoick9ESyKhSCAiF+VS+Gp7b2svbjWLNlQRE2EeStJINdBGSWtYqImzEU5kXgWyEI6hfygWJvM1t1g9bmySejv+rDBt9uofctFqkXl3ddr1s3JNHvpOwDPVlra8kUXfeQAA/HLjv3bj/IKbCmgtsuaG/Zka/9u+E/AsM/7byitR5viet6t69Z6dDZr1ulMlnmRftrDQ7gTqJlBWVdpcdO35Vty6tfkybmp5L/edTLMV+9xMT90Ol609Wd8Nbnp1SG1a4OR9r9s+zJk+bOTkvzzePZZTX9U39VhF8kma3flfkChzmOyRio4cqTT/2/lbtL2M0lY5vbxgd3K5v8gs6WWYpvHHlZnZVVW3zSCbalSWp41a6vupodO79ZKo5aFRGyVRK0ejumfzT/Myzg+fIPVRPVKr8lu+SCMz/9fmk1yTUa5M08a21HM184mbqzO3ZWBbRtm3Dq8MbalHeAen5r76PsgzuSuLu/sH1adx3NrZ3T94wULxgvsmSia+r2DC3emcC//Ep3raBYlaO+0kSXzn8+CqjHeDZgzx1x2PX1GYmt5B950JPDGzLJXWf/WwN9+38wTzFBXM05P+l4NlVaYCWu/VBpKtDZbs87nedO/m6/RvQW1Qz6/gRq25rt0QuZ55s6QaiVyeM0I15Ls84fd/AAAAAAAAAAAAAAAAAACAs2Ya/07gu48AAAAAAAAAAAAAAAAAAAAAAJx1eff/lUnc/3dz+1j3/+2/eQ6AcfsbAAD//7KJi5s=") chdir(&(0x7f0000000140)='./file0\x00') r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) unlinkat(r5, &(0x7f0000002780)='./file0\x00', 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r6 = socket$igmp(0x2, 0x3, 0x2) setsockopt$MRT_ADD_VIF(r6, 0x0, 0xca, &(0x7f0000000200)={0x0, 0x4, 0x0, 0x0, @vifc_lcl_ifindex, @dev}, 0x10) syz_mount_image$hfs(&(0x7f0000000080), &(0x7f0000000040)='./file0\x00', 0x802, &(0x7f0000000200)=ANY=[@ANYBLOB="636f6465706167653d69736f383835392d312c696f636861727365743d69736f383835392d362c756d61736b3d30303030303030303030303030303030303030303030352c66696c655f756d61736b3d30303030303030303030303030303030303030303130302c756d61736b3d30313737373737373737373737373737373737373737332c009331112d80fe0197fb570b89bcbd54d424dd36484f3659918d4141bb8718d5a115229dbc37aa9bb406abe4cb67a3ccd5b65aa6196000bfe43d2fb51718b109d2fe98ec87258093b61780e71b4d4b2a077a1ec98e812a313195214ea5a5c96585"], 0x7, 0x2db, &(0x7f0000000800)="$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") mkdir(&(0x7f0000000440)='./file1\x00', 0x0) 13.811757573s ago: executing program 3 (id=3967): syz_emit_ethernet(0x76, &(0x7f0000000280)={@local, @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "e400ff", 0x40, 0x3a, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @local, {[], @param_prob={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, '\x00', 0x0, 0x11, 0x0, @private2, @ipv4={'\x00', '\xff\xff', @dev}, [], "17c11d58674e624c1a14ff3aaab57fff"}}}}}}}, 0x0) 13.294981505s ago: executing program 3 (id=3971): socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) close(r0) r1 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002) r2 = fcntl$dupfd(r1, 0x0, r1) write$tun(r2, &(0x7f0000000400)=ANY=[], 0xa2) mount$9p_fd(0x0, &(0x7f0000000040)='.\x00', &(0x7f0000000180), 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r0]) 12.340286948s ago: executing program 3 (id=3981): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000340)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)={0x38, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_TX_RATES={0x1c, 0x5a, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x18, 0x1, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x0, 0x0, 0x0, 0x0, 0x0, 0xf11]}}]}]}]}, 0x38}}, 0x0) 11.896189863s ago: executing program 3 (id=3983): syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000ac0)="$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") creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0) mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1) link(&(0x7f0000001240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000bc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') rename(&(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') r0 = socket$unix(0x1, 0x2, 0x0) creat(&(0x7f0000000000)='./bus\x00', 0x0) mount(&(0x7f0000001880)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x100100d, 0x0) r1 = open(&(0x7f00000018c0)='./bus\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000000fc0)={0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x200000, 0x0, "ef35ff013bb93852f7d6d1ce5d202eee5e5ca9000f7c41c660e677df701908b90010f6a0040000000000fd00", "eb6b47c678b908000002000002fdcf335263bda1ef549b1b6ae9b49600002a00000000000000b47b00", "4361971fd1efc0ff0bb24612b954ff01007eaffe6900f001ff001ef3ff00"}) bind$unix(r0, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) 11.098484305s ago: executing program 3 (id=3985): open(0x0, 0x4a37e, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) r1 = socket$inet_udp(0x2, 0x2, 0x0) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0) setsockopt$sock_int(r1, 0x1, 0x3c, &(0x7f00000000c0), 0x4) sendto$inet(r1, 0x0, 0x0, 0x400c006, &(0x7f0000000180)={0x2, 0x4e21, @remote}, 0x10) sendto$inet(r1, &(0x7f0000000100)='J', 0xfdbe, 0x4004084, 0x0, 0x11000a00) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r0}, 0x10) rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000faffffff850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f00000005c0)='erofs_fill_inode\x00', r2}, 0x10) fstat(r3, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000140)='./file1\x00', 0x810410, &(0x7f0000000600)=ANY=[@ANYRES32=r5, @ANYBLOB="749235c63bc001e29d7d09ef375f63128afacfe8f0ceeecb4e94d802fcf7fb224c8e9d9df582f661c26d2970f7ab1e0f14f11584b083ba27367e9700cdb013122b6f248e89447aa3b0ffba27c76545e41126f8c5b59b3e9a839669f2a212105589ad1abd707ddc", @ANYRES32, @ANYRES64, @ANYRES16=r4, @ANYBLOB="e2d3defc6ea7d9d6f5261ad72a34630b954e0eaaca3369568145e8bb6cf6bb3f8698a1a86cd1bee9cebd9f8142b89a175e9a2795a5f787d7836a75c24cb6a25df7aee443ed4af428a9a8b8b9a74879740bcf7064014e47b7b06ec12b27580f0a3d8eac4e5dfe605ce84878dc09ad02e8463647ffbd8f614da3de7683442fe9eddfe0b70b6daace110c94e77d1cd34a83cab18695117b21398bfcf9a25c9b19737d417b2af1feea342c954e5d56122b88646cf159b58d6d97dd3a71bdd7297327efd7a96d3509aeacc78cb68f6f1ccf48f84bed5ff4db110968c09bef597ff7c5f67d2a0378db144d369785c09a8d1e9bb7cab1d8b8edc638a8d4df64625b2c299adb9d328cdbcef5c07130950b834b47ec9a32eb95efec40f750a60a777dc17a229a452c444a88cc9708d138d2030e20d957d4408cf4f3febf13536b9c54fbf540ae88da9399ccec8155d8e1cb1f2ee5d633c4730ed582df2b4118eea97ec0e78d5a5fac0a7eefd94f77384522ee218df4d5ed694d21b3566cedec20599b9ad6c90497397a3e73fa51ee6ddc63b6d7db7464e1d3ad51428b655c77be73369c35f85a9d42e247ce91834dae86fe0fef0b8a041151ac397525a1823139f7d1503ee9c6be4faa0a242ce2272c5e219bbb7e908ba029b575e24a920250f365d8e5c71e1f42050248b1622e6675a52e05724fe70c54c1961605c46bd3b6a89394a98de71edb8cd64ee5caebb386d4ebf36563809b58a98d139c93b6d788711d30d2bc53502a7f1ac12345604c9196f0adb45aa0ab816cf32eaaa4423845b851136fbfa7d215676bfcf0611b451ad130c6ef71f4251445dfa406630810417500381c11b9b530321ae7ab7705451942220d8a55369c052adf74d4701f3833a53bde2ea826957e593b0c0b82140c6f2ed9f3b3f871f19a3c310115f664c7b1ba920613ce8958a7ce1da17aec341d151f06edaaa80469bf9e912aff7f004579d5df0e192d9a37526e4f0d955e6d195f3be7fab9967431c67bdf0c57c80b58ab708e0a899a5f48960dd38486efde7a806cc6b05baf79a4b5538023823d5f2708d2404879f090633645c0814b325aba300dbbbf1d0df9d878901a44e6c3045d715dfe5e1b543a29088eb23cbf64206c67f88eec79cb0741af1e5a2bca8b05fc3ceb16e872abd8caaffa47077be13cc8f8e04670ae278958abce5432359935fbaa7d2c5df08a4c9258a020ae9ac6d439a64df94c8008abeca0c5210727a2c8ac5090bfe488adf07bc84a7467416b79f17006a94afe07fffad50b4e2f0bcb9668770b82d4e9f3a7f9cb2ed6fdee964c3da87dd9c1ebea024dcbb5a3a081a62e4c0bbf9dc7d537036415ca1d81044ef6398a9bc4009c0e0287a1a0900364024b5939b8d681d1829b0c6a40ba5206a8b779350f2765e6fdfe401b445f1610eb4b5538f4a263e5540a16e7979b4fb5058b0dad06e1305404f4a1b4e27f36a6ecb58cf328de0bfd06d4b828239a3f71c8eb31bb93f9b9ddacdfda53bd03958652667060cdd073b398eb4946b2670c8ef8f27ba16af189375ab72c8b46104ccce6b4f3708c75effd964664e5811c3afd204dbccf967191c07025a53be6b3bc41509d5daac37ecc08d459d56bbb86444c88ef5a42413d743e285972e7bb781e0c83a3bfa9c2191809a5da156141073e902711b139a8d27246dd19bb3eabd2dc61f6a78eb3a9b6f5d2a59f327fe69d4f1887eb488f2ecd281d0bd3088ef53ff1f2238729dec679f2a9c2a381e1dcac9b86780eba8813ab8a7a427336489c42d0496b6f6833c7153b346f56a60e39e6d903440961743fe14c0be9bdc9b479c19aceb64b04e28c15fb5dee3b461004f01595140614c7db2297a171379a34072ff2087c2196a2499d82533cf476e827428a8465cde6dc277d2c232d3da09dc7d5e94aed1ffa4de2b36a79c7bdee724cc75c7f27a0e5002c4b92fdf76ebef5ffc602fd027dbe1acef58ce6fa9a2d34ee22732161bd055539b0f7980f1509f4c6e650d052842b455829b02016f2086c2fc3f4ff494b9b9fef32c83f93fe85e3b6743cd8c522bc2e6505c2fd936f715c5f596da2352f4ddbadf536fe7e9140f8a1eec5f2e0333cd84f1255d50d879c53025d805d6b14f82f871178faa8bc798c2f0bb7671ce185c60ae7957d223b3f641f9a306795a818e60c89002537bd225bb2d9687f329114201207b7840e4ed394d1fbc6e9c4efd6a0a68db1096076dce6a0075417e06e40cc9d5df31a3c7ea2dbee5a369bbff556a5caae847f517d0fbb473d5275d0ba06da7e8a62802e43253838168befd6fbcc012f12076e6e6972d1f1826d4834b3940ddf374898d1af97e1903f37cbe83438511387d239c6d4edeb3884a9c587d21ed226ac648f83595bbb5cd37448c2cd259636e2610ad8427e4f7c7c90dbb43cbc2815df305e85f7e307fff0715d2582f152a0f7c5322238ab570f1b9bbe4092da115979fe0a5753fdfb7ee53b4de13a767d16c4507d2e7f6f58cc216a03012abdba49a01a1dd4bd1ebb936e9bde78cd1b2e987d2d7296dd7aeb37fbfb270e235bc29c025ba6c4693d09f901f1ef6b7a2142ed3a24c35817dcc9d3c3ede970eecd9d19993673ade157b8933c8dcd259bf6537827d7368e73c73e1dbea3a10a28281eba05e3f3d6f78b48a12141977f312f45bccb964c3ef8f89efad2e4413bdbdd59162b6ff6aab57a76c10618824f487a6f3077d8bad06ce39e118247b4ec7fd681ef95db0f2d3dbd142dc2090e926eae454f52d091cc24f62391461e6267bc1b084aa05b28c8c6b5cb16d8fbb87c993de873a7dc28cc44ede3cd02ee73dae39cbf472ddebfcc506d9a7a833cfd7b45e813c251110d206148c4e1cfb68ed20d80cfa6c7e4677037eb9e1bc021b34f9dcaaded11dfad1c59a1d52fd046610134fc80335a7ac0e2083ad945a49e30565cff09b8d200d9370461def8bff3d223a75370554210314af46adf26532159fd681e55ae9193df30276d87c44ba3aaaeab62013b0da5f972ced7e6d84e26394a230e35a7bb2a1ab0f8533e2109a173299352414c744fa59a118cca99c0bca930117b84e7c735cf6d879c1a7e151ef9f08f1518cd249115387247d2f9471d07a94324a13073142d8c3cf804528038d9c898492dd0b2d3ffd5f15c2e391c35f45d34be4b1a520fca923b97a74e84212f6b11a71d1fbc40add864257d2205cdd7a71335af471a66a494ba3ca51f2348c4cf99170ec026e195667c1ca4975618785bf8a3b6b107d2bdaaef86681bac9cd5f00cc5e08c1e6f65a50061a1c6a02d6ce3f2879c77f88d9df98d6049f5e062dec3316e5982b6dd582d34ffe0c4330dd40c99256934a5c03fb1b94c370091572283bb2367f5c8af689d4fe201f5602a1c77c9d9fa7f687f3cd7edba0fe2d475345ca6e5aa370261ee83ed014d3f13f90ced4ad63f7c7037a7bc77da5f8d87aa2c97fdae951e1e3be2b1c5402f570ce34494e7e28d40a45a208800b165919ce9282fd261dfa61367ea2518859a269418b70bf8de06f966ff12f7cd9057011d5d71d03b8ed4768a48ba7f0cb259ad66067078e681d894f876101abc02370069b9ba567e942444222993e252cf6a682831db337edf676190b8aeb95c9fadebb5b880357700ed570d309b835fba9c411664186f2ef4388768473caa93e32ea3b41408507fb2cec956b859ee6628dacc32dede23ac4430aa94c4feb976f8e0b07ac1dfe28c69cb31190d31779d5868f82145a6bf4e691179d576ccc23e2412d23cc12b50734a0d55f929624411c6ffb38005cc915caf9e7d38dc99f3e5ccf90c32e51cb440ba2c828da2819b275601b3aee0a795b5535c27b1fd6b0a1e4c047afbb692eff7e81d9ae59ecdef60e689b3b7d5344c3e08089bd12d18e37956a7a3c708414b5d3a2b7a480b992384972a17bdc68d824bc0769cab5ab6411b27306fcc5ff6ff8dfe4efc260eaf82618efb7f1e7163fe7a1fc5975950b6d0da5622eba102fa747cacaf19358f8da0168bd8c921aa16b4f4c21b4067d7c3d61b0608206246d029174b14f4c8161fa0d0110533718cbc1b852ffae92ffa4d142a0c47fe15f7ae783bbb05568c2a2a7ad61b9037c8f31dd786431ad303d6b720fd05731494f635b2842ef530e83b1ccc23dfebb200a8a51ed70fc206e29723f0a45bbce0165ec9fdffb532545b900acef2c6902d1907f2b6d9aaefd243cc543be85e56920ad16463b91d4825d71a9abbec204264a5172d5cc9f167861a2176baa96fc85e29ec32db32e9400bfdbfb106e5c695ba9dd4f58c229db69cb1f0c810fee425b1c1e95e8b30e1de94d78e0b7b814a7e3c5210f3dde21a3ef2574796af33c71f986847a0355f5ac6d8ff4475ce55747db603580ef35383a5161847875a306d8cf627927a5143c839a5892156cf8874b46e27d2bfb6abefe00c6bd830dba307116fed2ce23bb0a9731d13c2dd9fe39574702ff12a2d57a21c960e3ae48719840646ef482994d8749b28049e5a16da9a468a79ad6664a7bdb65e7725e5afaf5283a0c708f825d1a6d818bf3c8689187f28eebff58275422f60c718594981c6d3760beff9ea7f1fa5db08df7443f193505678d7b190b2ccca961d9ca3dcd9dffff27f26d067a0a6d64661b07d668880a9234963f67d8e8ad06778e896b297d2dfd3c8a0b98936474e1f443f338cef670097d491697f14de8d089092429929c885c57af2e400ebc600b524912436f796bd7bd76e9d93df3e68f597061727ee25fc1844be45a46b2d7efdee22b26b0bf25b8549bdb414c611b964e4003f6371f7b8e380cd1ed24cb5f9ec061b1b5b926a9f8630e0502a5d5a7541cc6dc992b7f6068015722a66a7d907bb52269bdafa12f24e27f005fd1d57f4b402ffc775751de2bba9d04ad77db0bbb27e7496c6b5c0b586f42c83247d54cb8f07130d50b196607d3ee56d6dbd314786ecf143d4209c570a3ffe0cd170c23a79dfde969441f60665eb6f0d6415e1c2fa7f58b86fffb8cbb1f227cbef3fb069dd29f9d36d0ae43d893aa72cf37c44bd24c208f364a55d630cedd0927062e136206210936e744ebd93a2a5f6cd383126b2dfaa2dfd864a0aea6b911f41c9dd2d87d04608dfe0665f1ba4c3a078c6c87e74f257b71e0cb5bbb7b519b4d1c708e41baedfeac26af0170c47331b3f44a7ef4e3b730bbbe4bc76f53691c1fbb567f4ec434db2cb8e598a37ef7781868ab7214e4010e298e82c74bd836e811db92a7f1dd399adf60b679ee875b96a5741e5909a3d245597fdead150e27c8f01826c90c81d56a57169bcd22473200ebed427c8e8a3caf0ad34460ad0ad2f109ac45f4edd9426d5caeda4a29dfa8728a1aae45d627e7e38ad6edb3d90df98d5720cd2982071a43e681f523b6b79fb20f1c0e688829c657f5d858a0c2b482f2aa236aca4853d1c51742b78d46efce6ba118f08bd3e00d7538401c5a4356b5436a99a03c8444e838606dd853c89103bf9c0e8a0248f374dac905f898aa87f9a402f039630f65d88094ef0eb8884576fa2eb181628285ae16bda2a6a87eb9eb1b2301dd2b07fe07e0c35836a82f0e71b91acc2b51d197d6883a9614cd461a58c0a61c4f3adb8545837d0bde445b87cc912ec4b38276d408605b9e866ede8a629cd3068fa4a759a7c87c78eb6ce521d014edcb67b5896e339b237dc09430205c34b6c194a6994556c5ca8a33ac62043d795b774cc1aa0033001d0dde0f2c98d008545f99e98606145f3aecb5097e661296f5222c7841695086bf329", @ANYRESDEC=r5, @ANYRES8=r4], 0x2, 0x1d6, &(0x7f0000000200)="$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") clock_gettime(0x0, &(0x7f0000000480)={0x0, 0x0}) pselect6(0x40, &(0x7f0000000080)={0xfffffffffffffff7, 0x80, 0x8001, 0xfffffffffffffff8, 0x200, 0x8000000000000001, 0x6, 0x758}, &(0x7f0000000400)={0x8000000000000001, 0x7, 0x0, 0x3, 0x429, 0x9, 0x10001, 0x672}, &(0x7f0000000440)={0x380000000000000, 0x0, 0x3, 0x200, 0xa8a, 0x0, 0xdf05, 0x80000000}, &(0x7f00000004c0)={r6, r7+60000000}, &(0x7f00000016c0)={&(0x7f0000000580)={[0x1ff]}, 0x8}) openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x0) fanotify_init(0x0, 0x0) 9.208404934s ago: executing program 3 (id=3995): syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000ac0)="$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") creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0) mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1) link(&(0x7f0000001240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000bc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') rename(&(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') r0 = socket$unix(0x1, 0x2, 0x0) creat(&(0x7f0000000000)='./bus\x00', 0x0) mount(&(0x7f0000001880)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x100100d, 0x0) r1 = open(&(0x7f00000018c0)='./bus\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000000fc0)={0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x200000, 0x0, "ef35ff013bb93852f7d6d1ce5d202eee5e5ca9000f7c41c660e677df701908b90010f6a0040000000000fd00", "eb6b47c678b908000002000002fdcf335263bda1ef549b1b6ae9b49600002a00000000000000b47b00", "4361971fd1efc0ff0bb24612b954ff01007eaffe6900f001ff001ef3ff00"}) bind$unix(r0, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) 7.630001729s ago: executing program 0 (id=3482): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) socket(0xa, 0x3, 0x4) io_setup(0x6, &(0x7f0000000240)) preadv(r0, &(0x7f0000000580)=[{&(0x7f0000000640)=""/102396, 0xfffffd6e}, {&(0x7f0000019740)=""/242}], 0x2, 0x0, 0x0) mmap(&(0x7f0000941000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000180)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_NEWRULE={0x28, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x9c}}, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) syz_usb_connect(0x1, 0x36, &(0x7f0000000180)=ANY=[@ANYBLOB="1e0100005c6b4408070a64006e00010203010902240001a82200000904000002ca743600090503032000ff00ef08058402"], &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]}) syz_open_dev$char_usb(0xc, 0xb4, 0x0) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendmsg$ETHTOOL_MSG_PAUSE_SET(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x0) r3 = socket$kcm(0x21, 0x2, 0x2) sendmsg$kcm(r3, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @broadcast}}, 0x80, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}, 0x0) sendmsg$kcm(r3, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @broadcast}}, 0x80, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000100100000100000070"], 0x18}, 0x0) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) dup2(r4, r3) dup(r2) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000380)={0x1e, 0x0, 0x6}) syz_mount_image$hfs(&(0x7f00000000c0), &(0x7f0000000000)='./file2\x00', 0x0, &(0x7f00000001c0)=ANY=[], 0x3, 0x29f, &(0x7f0000000440)="$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") chdir(&(0x7f0000000140)='./file0\x00') r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) unlinkat(r5, &(0x7f0000002780)='./file0\x00', 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r6 = socket$igmp(0x2, 0x3, 0x2) setsockopt$MRT_ADD_VIF(r6, 0x0, 0xca, &(0x7f0000000200)={0x0, 0x4, 0x0, 0x0, @vifc_lcl_ifindex, @dev}, 0x10) syz_mount_image$hfs(&(0x7f0000000080), &(0x7f0000000040)='./file0\x00', 0x802, &(0x7f0000000200)=ANY=[@ANYBLOB="636f6465706167653d69736f383835392d312c696f636861727365743d69736f383835392d362c756d61736b3d30303030303030303030303030303030303030303030352c66696c655f756d61736b3d30303030303030303030303030303030303030303130302c756d61736b3d30313737373737373737373737373737373737373737332c009331112d80fe0197fb570b89bcbd54d424dd36484f3659918d4141bb8718d5a115229dbc37aa9bb406abe4cb67a3ccd5b65aa6196000bfe43d2fb51718b109d2fe98ec87258093b61780e71b4d4b2a077a1ec98e812a313195214ea5a5c96585"], 0x7, 0x2db, &(0x7f0000000800)="$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") mkdir(&(0x7f0000000440)='./file1\x00', 0x0) 4.089427563s ago: executing program 1 (id=4010): syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1008002, &(0x7f0000000280)={[{@grpquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x88}}, {@resuid}, {@max_batch_time={'max_batch_time', 0x3d, 0x3}}, {@lazytime}, {@usrquota}, {@data_err_abort}, {@data_err_abort}]}, 0x1, 0x5d8, &(0x7f0000001200)="$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") openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x6b142, 0x0) mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./bus\x00', 0x0, 0x1000, 0x0) r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, "ef359f413bb90152f7d6d1ce5d29c3ee5e5ca9000f7c41499dc2aac63a01000000000000004faa2ad9c084a003ea00", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00"}) openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0) 3.844072979s ago: executing program 1 (id=4011): r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f00000004c0)=@raw={'raw\x00', 0x8, 0x3, 0x3d8, 0x1c0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x308, 0xffffffff, 0xffffffff, 0x308, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @local, [], [], 'veth0_to_hsr\x00', 'veth1_vlan\x00'}, 0x0, 0x1a0, 0x1c0, 0x60030000, {0x0, 0xff000000}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x9220d18c8277c576, 0x0, 'syz1\x00'}}]}, @unspec=@TRACE={0x20}}, {{@uncond, 0x0, 0x128, 0x148, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'veth1\x00'}}, @inet=@rpfilter={{0x28}}]}, @unspec=@NOTRACK={0x20}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x438) 3.523633318s ago: executing program 1 (id=4014): r0 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x800) preadv(r0, &(0x7f0000000340)=[{&(0x7f0000000080)=""/82, 0x52}], 0x1, 0x0, 0x0) 3.280231988s ago: executing program 1 (id=4016): openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x2, 0x4, 0x5}, 0x48) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r4, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc) connect$inet6(r4, &(0x7f0000000080), 0x1c) setsockopt$inet6_tcp_TCP_ULP(r4, 0x6, 0x1f, &(0x7f00000002c0), 0x4) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r4, 0x6, 0x14, &(0x7f00000000c0)=0x1, 0x4) write$binfmt_script(r4, &(0x7f0000000100), 0x61) setsockopt$inet6_tcp_TLS_TX(r4, 0x11a, 0x2, &(0x7f0000000000)=@gcm_128={{0x304}, '\x00', "2a75544000000000000000000e001600", "af2ff1f7", "4a8d4609470a1403"}, 0x28) setsockopt$sock_int(r4, 0x1, 0x8, &(0x7f0000000480), 0x4) setsockopt$sock_int(r4, 0x1, 0x12, &(0x7f0000000380), 0x4) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r3, 0xffffffffffffffff}, &(0x7f0000000b00), &(0x7f0000000300)}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000807b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe50, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10) r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) r7 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0x1f, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b702000014000000b70300001b0000008500000083000000bf0900000000000055090100000000009500000000000000b7080000000000007b9af8ff00000000b5090500000000007baaf0ff00000000bda804000000000007080000f8ffffffbfa000000000000007000000f0ffffffb70200000800000018220000", @ANYRES32=r6, @ANYBLOB="0000000000000000b70500010000000004000000181700000000000000000000000000007076509143f72902a604b0e821081cca761c7627ba1999c390a4257b36fcb233aead5f50f5a26d8f37e1c1b670da9970831d6df337cfe22aea7d143765a1d6136b35927bd111f3c66dc6b77adb924425ff44b12b0b9a9a345b5220dc863bdecc3a8a27f0fa969f1fc29cd73fd44de758d720a90d8ecd0381", @ANYRES32=r7, @ANYBLOB="0000000000000000bf91000000000000b6080000000000008500000085000000b7000000000000009500000000000000"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xf, 0x4, 0x8, 0x8}, 0x48) 3.253340433s ago: executing program 4 (id=4017): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.events\x00', 0x26e1, 0x0) close(r0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)) ioctl$SIOCSIFHWADDR(r0, 0x8b06, &(0x7f0000000000)={'virt_wifi0\x00', @random="010000001000"}) 2.068556014s ago: executing program 1 (id=4018): syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000ac0)="$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") creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0) mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1) link(&(0x7f0000001240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000bc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') rename(&(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') r0 = socket$unix(0x1, 0x2, 0x0) creat(&(0x7f0000000000)='./bus\x00', 0x0) mount(&(0x7f0000001880)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x100100d, 0x0) r1 = open(&(0x7f00000018c0)='./bus\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000000fc0)={0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x200000, 0x0, "ef35ff013bb93852f7d6d1ce5d202eee5e5ca9000f7c41c660e677df701908b90010f6a0040000000000fd00", "eb6b47c678b908000002000002fdcf335263bda1ef549b1b6ae9b49600002a00000000000000b47b00", "4361971fd1efc0ff0bb24612b954ff01007eaffe6900f001ff001ef3ff00"}) bind$unix(r0, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) 1.948032888s ago: executing program 4 (id=4019): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) r1 = userfaultfd(0x1) ioctl$UFFDIO_API(r1, 0xc018aa3f, 0x0) r2 = socket$kcm(0x29, 0x5, 0x0) close(r2) r3 = socket$kcm(0x2b, 0x1, 0x0) r4 = creat(0x0, 0x1de) close(r4) execve(&(0x7f0000000280)='./file0\x00', 0x0, &(0x7f0000000080)=[&(0x7f00000002c0)='\\\\B\xc6+\xd5\xb9\x93L\\\x87\x84K\xb9!\x0eX =z\\\x14\xec*\xed\xa6u\xc4\x14=\xdb_\xe8\\\x96\n\xa6)\v\xf9 \xddb|\xe7\x14\x82\xc3\x90\xf9=?i\x86Lpw\xba\xe1\v\x1a9G\a\xf9\x18\xe4\xf6f\xd6\fpfP\xcf\xee<\\C\x1e\\\x1f&\xaf\xea?\x91\a\xea\x8d\x05\x83aJ\xf0v\xc0q\x84\x93il\v\x03\b\xadT\a\x14\xd7\xd5u\x84\x82\xb2\xd4(\x1dC\xba2\xa6u\x14\x0ee\xef\x04\xf2\v\xe9\x8a\xdfU\xd1\x1f\x9b\x1d2mRQ\xea\x90\xa0m#\xa4\x1dy\x9d\xe9\xfa\x06\xa27\x9d;\xe4\xb4\x86\xa7&\xa9c6\x1b\x8d\xae\xa0\"(\x9a\x82\xc0o/\x8c\x97\xb9BJh\x9f\xb2\"\x95h\xd7PN\xf1\xe7\xe2\xb7\xe8Ac*v\xf7\x16\x8fe\xef\x84\xf5k\xa9\xeb\xebt\xc3\xf1f\xca\x04*\xec\xfa\xe5bP%Z\xad\x83\xda\xbe2\xa9\xf2\xdaH\xf2{\xf6~\x0f\xb9\xdd.\x06W\xd7\x1dG<\x1e\f2c\xf4\xa0d\x01\x88\xee\xcc\x18(\rap\x98?\xb1$\xe9\xe9+\xa6\xfb\xb1\xc61\xf1\xe7m\xfd\x05\xee\xa0L\xe4C\"\xba\xd5\x91]]\xb26\xbfA\x86\f\xda\xa1w,\xc7\x15oA\xc5m\xbb\x15\xd1\x1e\fi\xc8\xefl&*\"_^5\xd1 H\x17\xf0\xcc\a\x10dxb\xc2\x13m[P\xac]\xc2\xc1\xa8\x1df_\xcax\xbd\xf4moccU\xb5\\\xf5\x05\xec\xa7\x98\f1\x89\x99\xf0P\x8e\x1b\xe3\x9e\xb9\x0f\xf9\xb0\xacd\x9d=d\xae\xbf\xd7K\x9do)p\x00!3\xd7\x05\xf0Xk\xb7vo?1H\x86\x19f\xd3\t\xf8\x96\'\x8c{\a\xfer\x14\x0e\xd9=\x9f\xa1\xda@\xc7-\x93\xbc4\xc0\xfe\xf6\xf6\xc4\xc3ZT>R\x11\xba\xf9\x17\r\x98\a\x06\xe8\x80\xf3\xdf\x87\x1f\xfd\xb8\x99\x9c\x19\xb4\xac\xca\xc2-\xfc\xe8\xc3qAt\b\x94\xee\x9e4\x85\xd0\xfe+\xc0\x17\xbfE\x15\xfdZ\xce\x954v\x8a\x05\xde\xaal\xf4\x82\xe2?\xabS\xe4\xe2\xe1\xd83\x17\xfe\xf8~\x04\xb6\x11\xc4K3\x82\x127\xf7\xc7\x06\x177\x8bWF\xb21\xce\xc7\x19|\x9f\xe87\x80\xbc\xac\xb6;\xcc\xafr\xbd\x90\xde9\x0e\xda\x05\x86\xf0i\xf4{\xbf\x82#\xfd9\xdc\xa7\x01\x00\x12\xea1K\xc9\xe1\xfdv#0U\xd2\t\x14\x10\xe6\xfc\xba\xa1\xac=\xfd\xd7\xa8\xc8\x18\x00\x00\x00\xc4w', &(0x7f00000020c0)='gcB\xc6+\xbf\xcc_\x81 \xd5\xb9\x93L9\x87\x84K9\"\xf1@\a\xea\xbb\xfe\x9cY\xfc\x80\x99\xb9!\x0eX czg\x14\xec*\xed\xa6u\xc4\x14*\xdb_\xe8\\\x96\n\xa6)\v\xf9 \xddb|\xe7\x14\x82\xc3\x90\xf9\r?i\x86Lpw\xba\xe1\v\x1a9G\x04\fpfP\xcf\xee<:C\x1e\\\x1f&\xaf\xea?\x91\a\xea\x8d\x05\x83aJ\xf0v\xc0q\x84\x93il\v\x03\b\xadT\a\x14\xd7\xd5u\xdfU\xd1\x1f\x9b\x1d2mRQ\xea\x90\xa0m#\xa4\x1dy\x9d\xe9\xfa\x06\xa27\x9d;\xe4\xb4\x86\xa7&\xa9c6\x1b\x8d\xa6$\x82\x1b\x9a\x82\xc0o/\x8c\x97\xb9BJh\x9f\xb2\"\x95j\xd7PN\x89\x7f\xc8AB\xc7}T\xbe\xf1\xe7\xe2\xad\xdd\xc2\xb7\xe8Ac*v\xf7\x16\x8fe\xef\x84\xf5k\xa9\xeb\xebt\xc3\xf1f\xca\x04*\xec\xfa\xe5b\xeb\xb4\x99\xefSv\x82\xe2\xe3\x02)sP%Z\xad\x83\xda\xbe2\xa9\xf2\x04\xda\nU\x84\xc2\xe3E\xc1\xd8L\xb1r\xb0\xdaH\xf2{\xf6~\x0f\xb9\xdd.\x06W\xd7\x1dG<\x1e\f2c\xf4\xa0d\x11\x88\xee\xcc\x18(\rap\x98?\xb1$\xe9\xe9+\xa6\xfb\xb1\xc61\xf1\xe7\xf7\xff]]\xb26\xbfA\x86\f\xda\fi\xc8\xefl&*\"_^5\xd1 H\x17\xf0\xa7\x83}\x92W\xeb\xe5\xa3\xcc\a\x10dxb\xc2\x13mNP\xac]\xc2\xc1\xa8\x1df_\xcax\xbd\xf4m\x1e\x18occU\xb6\\\xf5\xf3\xeb\xa3\x98\f1\x8b\x99\xf0P\x8e\x1b\xe3\x9e\xb9\x0f\xf9\xb0\xadd\x9d=d\x94\xec\xceQx\xdb\xf6zG!3\xd7\x05\xf0=k\xb7vo?1H\x86\x192\xb2&\xa5\x9d\xd7\xbc\x85\a\xfer\x14\x0e\xd9=\xa6\xa1\x03cz>R\x11\xba\xf9\x17\r\x98\ap\xda-\xb0R\t\x93.r/\xce\xa4\rK\xcb\x1aO\x03z$\xbeYvYn\xddI\xe7\x13\x8f\x15\xefL\xba`\x9d\xea\xed\xf0)s\x12r\x9b\xf2&\xf2-\xc6\xec\x96\x19\xc9\xd7\xda\x06\xba\x87\x18\xef+\xcdp\x95\xef\xd9\xb9s\x8b\xf3\x8b\x88<\xa0\xa3\xad\x8c\xaf&iMM\xc5>\xa7v\x17\xdf \xca\x86#\xa7*\xecl\xbfp\xc3x\xc3\xc1r\xbe7\xb5\xa3\xf11[`\xcb7z\xa0P\xd5p\xe9\xddC\xc0\x80=\xd9y\x01\x1c\xe7\x1cdN\xd5x\x89\xc9\xc0\xc4{\x01\xa6o\x9ceZ\xe1\xfa0?\x94\x1f\x9aQ\xf0Lf\x1e\x17A@\x06\x89\xadg+$/V\r\xc9oQ=k\xa0\xa6\\\x00\x99\x94\x10dy\x7f\xd1\xd2\xd04\x96\b\x80/\x9a\xfc\a\'\x83\xb8\xcd\xb1\xf5#\tr\xb4\xc4\x929\x01\xee\xe6\n\x8ba\xde\xdbsAzG\xe86\xfe\x83\x1d\xb3K2\xf0\x8f\xde\x85\x00M&\x00\x00O\x86\xec2/\xea\xe6$(L\x85\xf8Y\xcf,\xa3\x87^\xe1\xd8F\xe4AJ\xaa\x1f\xe9\xff?\x9aF\x97M\x80\xe9LR\xdc\x9f~\xce\xb5\xef\x14M\f#>O\xb44LB\xc6a\x82\xc5\x107\xae\xdb\v\xf7\xc4k\xab\xf8:\x1fj\xa2vf)\xee\xab\xb3C\x92\x8e\x80\xb1\x01\x85\xb1v\xae*\xa7])n)+\xd9\xcf\xe9\x9ag\x8a*u\xe4e?\xf9\x93\x93u\xd2M\xfd\xa1\xc5\xff\xd9\x15-\xabH\x90\x04\xea\x88\"\xfe\v\x1d\xa5}H\xee\xc7\x94\xdb\x02\xf7\t5\x1e\xd6~R\x9e\xb5NV)\xa6\x1ff\xde\xbf\x97V\x87\v\x94\xb4\xb0\x7f3\xa3\x85c=\xb0\x8ab\x06\xfa\xe9\xb3\x1d\x0e0\xfe\xc7\xf9\xde\xd6\xe6\x14O\xc8\xff7\xd8\xed\xc6\xdf\x01\xb3\n8\xbf\xbe\x1e\v\x18\xd9\xb3+X4\xb5S\xe7\xf6oO;\xc5\xc8-\x9e\xb5\xbe\x97\xb4k\xd2n\xfa\xd1\x82\x16\xea\x93\xc7\xb3?\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb7\xf2K\xe9\xcf\xc6y\xb00\xe0\xa0\f\xef\x02\xd5 (S\xffhY\"\x83\x05M\x0f\v\xec0B\x1f\xd7\x80\xdaL\xa2Q\x8c\xde\x17* \xf5)tk\xb6\xb9\x86?\x1a\xff\xdc\xecP\xd1w1\xf4a\x00r\x06,\x86S\x11)\xf4\x16W\xd6\x86\x10\x02\x15mod\x854\xd4\'^\xb6\xe9f\xd6:\xfc5%\x16\xc5\xa5\xf1\x11k\xdd{\xaai\x8a\xde\xa6\x18,H\xd8\xe5\xf5g\xe7U\\(\x01\xc5\xde\x1d\x8acHf\x86`9qV|=\xbb\xd1\x95\x0f\x86\xffa\xb1\xdb\x82l\xc3\xcf\x88\xeeJ\xda\x8b0f\xac\xc2n\xd1\')\xf2\xaf\xc0\x06\x01\xb4b\xef\xa8!\xf9\n\xf7{C\xdc`h\b6>\x171\x16\x89\xa8\xe9OC\x7f\xb1\x1c\xd4\xd5\xa7\x7f\xfd\xa8Y\xf0s_\xfb\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00.\xeb\x1a\x18\xf1h\x04\xa8\xe8\x92\xe6\xbc\xe1O\xcf', &(0x7f0000001e80)='gcB\xc6+[;\x88\xfe\x97B*[\a\x03\x96l\x1e\b\xd9\xbf\xcc_\x81 \xd5\xb9\x93L9\x87\x84K\xb9!\x0eX c\x03\x00\x00\x00\x00\x00\x00\x00\t\x00\x00\x00\x00\x00\x00\x00\n\xa6)\xd9\x10#\xf5b|i\x86Lpw\xba\xe1\v\x1a9G\x04\fpfP\xcf\xee<:C\x1e\\\x1f&\xaf\xea?\x91\a\xea\x8d\x05\x83aJ\xf0v\xc0q\x84\x93il\v\x03\b\xadT\a\x14\xd7\xd5u\x84\x82\xb2\xd4(\x1d\x04\xf2\v\xe9\x8a\xdfE\xd1\x1f\x9b\x1d2mRQ\xea\x90\xa0m#\xa4\x1dy\x9d\xe9\xfa\x06\xa27\x9d;\xe4\xb4\x86\xa7&\xa9c6\x1b\x8d\xa6$\x82\x1b\x9a\x82\xc0o/\x8c\x97\x00\x00Jh\x9f\xb2\"\x95j\xd7PN\x89\x7f\xc8AB\xc7\x8d\xf1\xe7\xe2\xad\xdd\xc2\xb7\xe8Ac*v\xf7\x16\x8f_\xda8l\xc8\xa2\xb0\xd1\fg\x00\x00\x00\x00\x00\x00\xfa\xe5b\xeb\xb4\x99\xefSv\x82\xe2\xe3\x02)sP%Z\xad\x83\xda\xbe2\xa9\xf2\xdaH\xf2{\xf6~\x0f\xb9\xdd.\x06W\xd7\x1dG<\x1e\f2c1\xf1\xe7m\xfd\x00\x00\x00\x00\xe4C\"\xba\xd5\x91]]\xb26\xbfA\x86\f\xda\fi\xc8\xefl&\x9c\xbd\xbb\x90\x17$\x9e\\\xee\xc6\x88?)\r@e*\"_^xb\xc2\x13m[P\xac]\xc2\xc1\xa8\x1df_\xcax\xbd\xf4m\x1e\x18occU\xb5\\\xf5\x05\xec\xa3\x98\f1\x89\x99\xf0P\x8e\x1b\xe3\x9e\xb9\x0f\xf9\xb0\xadd\x9d=d\x94\xec\xceQx\xdb\xf6zG!3\xd7\x05\xf0Xk\xb7vo?1H\x86\x192\xb2&\xa5\x9d\xd7\xbc\x85\a\xfer\x14\x0e\xd9=\x9f\xa1\xda@\xc7-\x93\xbc4\xc0\xfe\xf6\xf6\xc4\xc3ZT>R\x11\xba\xf9\x17\xfd\x98\x06\x06\xe8\x80\xef\xdf\x87\x1f\xfd\xb8\x99\x9c\x19\xb4\xac\xb0\x11i\xcc\xb9BG\x1ac\xbc\xd9&\xb6\xd9\x04\x03\xc6\xebf\x84\xe5\xfe[\xe7\xe6\xb3\xe9\xca\xe7\xc1\xa7\x9aO\xc1\t\x1c\xeb\xfbl\xa4\x80KQG\x80\xcd\xdd\t\x91\xdb}\xb1\xde\xf9\xbe=\x8b\xde\xf2G\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xf7\xa9\x99t\x87 \x9f\x03}\x8d\x1b\x14\x1eU.r\xe1\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000d00)='gcB\xc6+\xbf\xcc_\x81 \xd5\xb9\x93L9\x87\x84K\xb9!3\xf2\x84\xa9H\x92\x1e4\"u\xc4\x14*\xdb_\xe8\\\x96\n\xa6)\v\xf9 \xddb|\xe7\x14\x82\xc3\x90\xf9\r?i\x86Lpw\xba\xe1\v\x1a9G\x04\fpfP\xcf\xee<:C\x1e\\\x1f&\xaf\xea?\x91\a\xea\x8d\x05\x83aJ\xf0v\xc0q\x84\x93il\v\x03\b\xadT\a\x14\xd7\xd5u\x84\x82\xb2\xd4(\x1d\x04\xf2\v\xe9\x8a\xdfU\xd1\x1f\x9b\x1d2mRQ\xea\x90\xa0m#\xa4\x1dy\x9d\xe9\xfa\x06\xa27\x9d;\xe4\xb4\x86\xa7&\xa9c6\x1b\x8d\xa6 \x82\x1b\x9a\x82\xc0o/\x8c\x97\xb9BJ9\x13V\x1e\b\x16\xf6/\xc3{h\x9f\xb2\"\x95j\xd7PN\x89\x7f\xc8AB\xc7}T\xbe\x8aO\x9d\x94\x8d\xf1\xe7\xe2\xad\xdd\xc2\xb7\xe8Ac*v\xf7\x16\x8fe\xef\x84\xf5k\xa9\xeb\xebt\xc3\xf1f\xca\x04*\xec\xfa\xe5b\xeb\xb4\x99\xefSv\x82\xe2\x1f\x02)sP%Z\xad\x83\xda\xbe2r\xb0\xdaH\xf2{\xf6~\x0f\xb9\xdd.\x06W\xd7\x1dG<\x1e\f2c\xf4\xafd\x01\x88\xee\xcc\x18(\rap\x98?\xb1$\xe9\xe9+\xa6\xfb\xb1\xc61\xf1\xe7m\xfd\x05\xee\xa0L\xe4C\"\xba\xd5\x91_]\xb26\xbf\x9cA\x86\f\xda\fi\xc8\xefl&*\"_^5\xd1 H\x17\xf0\xcc\a\x10`xb\xc2\x13m[P\xac]\xc2\xc1\xa8\x1df_\xcax\xbd\xf4m\x1e\x18occU\xb5\\\xf5\x05\xec\xa3\x98\f1\x8b\x99\xf0P\x8e\x1b\xe3\x9e\xb9\x0f\xf9\xb0\xadd\x9d=d\x94\xec\xceQx\xdb\xf6zG!3\xd7\x05\xf0\xd8k\xb7vo?1H\x86\x032\xb2&\xa5\x9d\xd7\xbc\x85\a\xfer\x14\x0e\xd9=\x9f\xa1\xda@\xc7-\x93\xbc4\xc0\xfe\xf6\xf6\xc4\xc3ZT>R\x11\xba\xf9\x17\xf2\a\x00\x00\x00\x00\x00\x00\x00\x00\x13\x9eX$\xe1\x00\x00\x00\x00\x00\x00\x003\xe0\xe3\x0e\xaa\x8e\x9a\x1f\x12\fRw\x11B\x17xOO\xb44L`\xc6a\x82\xc5\x107\xae\xdb\v\xf7\xc4k\xab\xf8:\x1fj\xa2vf\xab', &(0x7f00000012c0)='gcB\xc6+\xbf\x0eX czg\x14\xec*\xed\xa6u\xc4\x14*\xdb_\xe8\\\x96\n\xa6)\v\xf9 \xddb|\xe7\x14\x82\xc3\x90\xf9\r?i\x86Lpw\xba\xe1\v\x1a9G\x04\fpfP\xdf\xee<:C\x1e\\\x1f&\xaf\xea?\x91\a\xea\x8d\x05\x83aJ\xf0vl\v\x03\b\xadT\a\x14\xd7\xd7\xb5\x84\x82\xb2\xd4(\x1d\x04\xf2\v\xe9\x8a\xdfU\xd1\x1f\x9b\x1d2mRQ\xea\x90\xa0m\xb3\fv\xc5\x9d\xe9\xfa\x06\xa27\x9d;\xe4\xb4\x86\xa7&\xa9c6\x1b\x8d\xa6$\x82\x1b\x9a\x82\xc0o/\x8c\x97\xb9BJh\x9f\xb2\"\x95j\xd7PN\x89\x7f\xc8AB\xc7}T\xbe\x8aO\x9d\x94\x16\xf0\xf9s\x9af$\xb3x\x8d\xf1\xe7\xe2\xad\xdd\xdf\xb7\xe8Ac*t\xf7\x16\x8fe\xef\x84\xf5k\xa9\xeb\xebt\xc3\xf1f\xca\x04*\xec\xfa\xe5b\xeb\xb4\x99\xefSv\x82\xe2\xe3\x02)sP%Z\xad\x83\xda\xbe2\xa9\xf2\xdaH\xf2{\xf6~\x0f\xb9\xdd.\x06W\xd7\x1dG<\x1e\f2c\xf4\xa0d\x01\x88\xee\xcc\x10(\rap\x98?\xb1$\xe9\xe9+\xa6\xfb\xb1\xc61\xba\xd1\x91]]\xb26\xbfA\x96\f\xda\fi\xc8\xefl&*\"_^5\xd1 H\x16\xf0\xcc\a\x10dxb\xc2\x13m[xS\rO\x880\xf1P\xac]\xc2\xc1\xa8\x1df_\xcax\xbd\xf4m\x1e\x18occU\xb5^\xf5\x05\xec\xa3\x98\f1\t\x99\xf0P\x8e\x1b\xe3\x9e\xb9\x0f\xf9\xb0\xadd\x9d=d\x94\xec\xcex\xdb\xf6zG!3\xb9\x05\xf0Xk\xb7vo?1H\x86\x192\xb2&\xa5\x9d\xd7\xbc\x85\a\xfer\x14\x0e\xd9=\x9f\xa1\xda@\xc7-\x93\xbc4\xc0\xfe\xf6\xf6\xc4\xc3ZT>R\x11\xba\xf9\x17\r\x98\a\x06\xe8\x80\xef\xdf\x87\x01\xfd\xb8\x99\x9c\x19\xb4\xac%~\x12\x7ft\xa9A\x1brx\x87\xa16\x93\xd5fap\x83k\xf6O\v\xae\x9c\xf3\xb0\xb9\t\x8d\xb9p\xcb\xe3csR\xe2\xfbL\x9f\xb3\xa4^\xc1\xf7m0\xa8\x1b\xd0\xfdY\\d\x03(\x89\xe7\xe1G\xcd\xce\xf5o@\xfdi\xd1w~\xc8\x95\x94\xea\xd4\xe8\xcaP\x89\x9b\x12\xa7\xdb\x95c=\x16\xd5\x06\xf9O\xa6+\xcf\n\xd5\xad\x15^\xa0\xe8\x9a\x9e>O\xbf\xd3Fd\xfe\xe7\xc7X\xeaf\x9cn0\xdd\x7f\x85^\xdf\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00`DK\x17\xe9s2\xe0\xe2[IZS5\xa9\x00\x00\x00\x00\x00\xd5\x84\xc4\x91d\\L\xa0|o\xa9\"f\x9ah\xbda~H\xdf\xaf\xa1c\x83+\x00\xb5t\xc28\xb9\x15\xb1\r[g\xab\x1f\xe74N\xa1\xbe\'x\xf7\xfe\xd3=\xfa\nP\xf8\x89M\xd2\xefk.\xaa.\xc3\xddmr\xa3f\t\xfcC\xd7\xc8\xde\xbb\xa6\xf0\x06\xca\xbb\xf4\x0f\xfd\xc1\xca\xd9\x1d\xf0\x12\x94\x02\xdc\xe5`\xfc\x92_\xfe\x82\xcf\xc4\xa1\x8f\x95\xf9e\xbd$\x93V\xf0\xd6\xd9iu\x1d\x00\x00\x00\x00\xed\x9f\n\'\x00\x00\x00\x00\x00\x00\x00\x00x(\xbd\xfd.\xb1I<\xc31H\xe37\xecM:\xc0N\xdd\x81\xb0g\xf7;I)\xff\xc0\x8d|\x14D\xb2L2\xa4\xacBg=\xb8\xe9\xd0zh\x1d\x1d\xa0\xc8\xacJ\xf2\xe8W\xd9\xa9+6V!\x94\xbd\xec\xac\xad\x8cY\x05\xc4e\xdfc\x9a\xa4u\xad\x01\xf8:\xc0\xea\xae\xd4\xf66A\xf9\x15\xb5]\xf9\x18)v%?g6j\xdd\xd4\xe8\x98\xa3\xbaoi\x802\xd1\xfaZ\xf3!\x983\xb1\xfbH\x9a\x94\xf0\xf0l\xdd[\x99\x9f\x8ftPO`z\x94\xdd\x04_-u\x1aP>W3\xbc\xc9\x9fw<\x97C\xa8\x90\xf0\xe7\xfeUN\xeb\xf7\xf06\xc2\xd8l\x14\xd9>\xa27[R\x02K\x82\x01\x10\x16\x93\'\xafL\x81\x8c\xef\"\x1a\xa8\x15*u\xbb\xbc7u}\x877\xa5s[\x13\xa6\x99Iv~\xf4`+\xdf\xe2\xd1\xfe\x03\b\xcf\x81\xd6\xc5\xcb\xb6\x7f\x8a\xbf#\xc4\xdbq\xd0J\x862iG\xfc\x7fIl\xb9!\x0e\x14\xdcLor\xeb\x16D\x83\xf2f\xfb\at\xd8F\x12\xbe-\n\x04k\x01k\xd7?\x03~h\x9a\b\xae\x1b\xd1\xb2\xbd\xe8\x1c\x8d\xcd\xcbUh\xf6\xfd\xd3\x9c\x06\xd7\x99\t\x0e\xdc\x11\x15\r\x8a\x86X\xdfq\xb2\xc2\x12(\xab\xd2\xca\xd0\x05\xe3u\xfbM\xe0\xf9\xd8\x98\x8b91\x9cJH\xd3\x9c\xd2\xa9\x80M\x96\"\x01\b\xfc\x9a\n\v\x19}?\f\xb6\xd4w\x12r\xba\x90!\xd40\xdaA\x82b\x92\x9f_\xe9\xf5\xba\xf3k\xe4\x9f\xa4\xfd\x15\xa5::\x86\xa7>\xabU\xa5\xe9{Yh\xec\xe9\x14\x12\x19\xb0\x93s\xb6\xe3\x15\xdd\xd4\xf9~$)\xf5\x95\xabU\xec\xc3\xa0!Ac\xe80xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0xd, &(0x7f00000001c0)=ANY=[@ANYBLOB="18020000000000000000000000080000850000001700000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000093a8850000008200000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r5, 0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe4ffffff, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r0, 0xfeffff, 0x113, 0x3f00f000, &(0x7f0000000700)="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", 0x0, 0xf0, 0x0, 0x4a, 0xffffff0c}, 0x40) r6 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000300), 0x40c000, 0x0) recvfrom$rxrpc(r6, &(0x7f0000000380)=""/177, 0xb1, 0x40, &(0x7f0000000440)=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x4e21, 0xfffffff8, @rand_addr=' \x01\x00', 0xdad400}}, 0x24) kernel console output (not intermixed with test programs): C0] ? unregister_netdevice_queue+0x26b/0x370 [ 1115.769232][ C0] ? batadv_softif_destroy_netlink+0x1e0/0x270 [ 1115.775404][ C0] default_device_exit_batch+0xa0f/0xa90 [ 1115.781091][ C0] ? __pfx___might_resched+0x10/0x10 [ 1115.786412][ C0] ? __pfx_default_device_exit_batch+0x10/0x10 [ 1115.792630][ C0] ? cfg802154_pernet_exit+0xc3/0xe0 [ 1115.797980][ C0] ? __pfx_default_device_exit_batch+0x10/0x10 [ 1115.804284][ C0] cleanup_net+0x89d/0xcc0 [ 1115.808770][ C0] ? __pfx_cleanup_net+0x10/0x10 [ 1115.813769][ C0] ? process_scheduled_works+0x945/0x1830 [ 1115.819582][ C0] process_scheduled_works+0xa2c/0x1830 [ 1115.825379][ C0] ? __pfx_process_scheduled_works+0x10/0x10 [ 1115.831413][ C0] ? assign_work+0x364/0x3d0 [ 1115.836046][ C0] worker_thread+0x86d/0xd40 [ 1115.840694][ C0] ? __kthread_parkme+0x169/0x1d0 [ 1115.845733][ C0] ? __pfx_worker_thread+0x10/0x10 [ 1115.850887][ C0] kthread+0x2f0/0x390 [ 1115.854988][ C0] ? __pfx_worker_thread+0x10/0x10 [ 1115.860202][ C0] ? __pfx_kthread+0x10/0x10 [ 1115.864834][ C0] ret_from_fork+0x4b/0x80 [ 1115.869299][ C0] ? __pfx_kthread+0x10/0x10 [ 1115.873903][ C0] ret_from_fork_asm+0x1a/0x30 [ 1115.878836][ C0] [ 1115.881974][ C0] DEBUG: waiting rtnl_mutex for 649 jiffies. [ 1115.887999][ C0] task:syz-executor state:D stack:20600 pid:17592 tgid:17592 ppid:17585 flags:0x00000000 [ 1115.898256][ C0] Call Trace: [ 1115.901556][ C0] [ 1115.904494][ C0] __schedule+0x1800/0x4a60 [ 1115.909165][ C0] ? __pfx___schedule+0x10/0x10 [ 1115.914049][ C0] ? __pfx_lock_release+0x10/0x10 [ 1115.919209][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 1115.924746][ C0] ? schedule+0x90/0x320 [ 1115.929065][ C0] schedule+0x14b/0x320 [ 1115.933261][ C0] schedule_preempt_disabled+0x13/0x30 [ 1115.938800][ C0] __mutex_lock+0x6a4/0xd70 [ 1115.943361][ C0] ? __mutex_lock+0x527/0xd70 [ 1115.948114][ C0] ? rtnetlink_rcv_msg+0x847/0x1180 [ 1115.953380][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 1115.958485][ C0] ? get_rtnl_holder+0x144/0x190 [ 1115.963463][ C0] rtnetlink_rcv_msg+0x847/0x1180 [ 1115.968604][ C0] ? rtnetlink_rcv_msg+0x208/0x1180 [ 1115.973857][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 1115.979364][ C0] ? is_bpf_text_address+0x285/0x2a0 [ 1115.984669][ C0] ? __pfx_validate_chain+0x10/0x10 [ 1115.989939][ C0] ? __pfx_validate_chain+0x10/0x10 [ 1115.995155][ C0] ? arch_stack_walk+0x16d/0x1b0 [ 1116.000140][ C0] ? mark_lock+0x9a/0x360 [ 1116.004481][ C0] ? __pfx_validate_chain+0x10/0x10 [ 1116.009743][ C0] ? __lock_acquire+0x1359/0x2000 [ 1116.014897][ C0] ? mark_lock+0x9a/0x360 [ 1116.019277][ C0] ? __lock_acquire+0x1359/0x2000 [ 1116.024352][ C0] netlink_rcv_skb+0x1e3/0x430 [ 1116.029240][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 1116.034774][ C0] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1116.040197][ C0] ? netlink_deliver_tap+0x2e/0x1b0 [ 1116.045435][ C0] netlink_unicast+0x7f0/0x990 [ 1116.050295][ C0] ? __pfx_netlink_unicast+0x10/0x10 [ 1116.055645][ C0] ? __virt_addr_valid+0x183/0x530 [ 1116.060840][ C0] ? __check_object_size+0x49c/0x900 [ 1116.066171][ C0] ? bpf_lsm_netlink_send+0x9/0x10 [ 1116.071334][ C0] netlink_sendmsg+0x8e4/0xcb0 [ 1116.076118][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1116.081444][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 1116.087489][ C0] ? aa_sock_msg_perm+0x91/0x160 [ 1116.092454][ C0] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 1116.097812][ C0] ? security_socket_sendmsg+0x87/0xb0 [ 1116.103329][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1116.108683][ C0] __sock_sendmsg+0x221/0x270 [ 1116.113427][ C0] __sys_sendto+0x3a4/0x4f0 [ 1116.117997][ C0] ? __pfx___sys_sendto+0x10/0x10 [ 1116.123082][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 1116.129152][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 1116.135524][ C0] __x64_sys_sendto+0xde/0x100 [ 1116.140333][ C0] do_syscall_64+0xf3/0x230 [ 1116.144850][ C0] ? clear_bhb_loop+0x35/0x90 [ 1116.149604][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1116.155554][ C0] RIP: 0033:0x7f702e77796c [ 1116.160020][ C0] RSP: 002b:00007ffd912bb1e0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 1116.168503][ C0] RAX: ffffffffffffffda RBX: 00007f702f434620 RCX: 00007f702e77796c [ 1116.176548][ C0] RDX: 0000000000000040 RSI: 00007f702f434670 RDI: 0000000000000003 [ 1116.184553][ C0] RBP: 0000000000000000 R08: 00007ffd912bb234 R09: 000000000000000c [ 1116.192602][ C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 1116.200733][ C0] R13: 0000000000000000 R14: 00007f702f434670 R15: 0000000000000000 [ 1116.208788][ C0] [ 1116.211854][ C0] DEBUG: waiting rtnl_mutex for 682 jiffies. [ 1116.217886][ C0] task:syz-executor state:D stack:21024 pid:17604 tgid:17604 ppid:17598 flags:0x00000000 [ 1116.228120][ C0] Call Trace: [ 1116.231416][ C0] [ 1116.234356][ C0] __schedule+0x1800/0x4a60 [ 1116.238917][ C0] ? __pfx___schedule+0x10/0x10 [ 1116.243896][ C0] ? __pfx_lock_release+0x10/0x10 [ 1116.249007][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 1116.254538][ C0] ? schedule+0x90/0x320 [ 1116.258856][ C0] schedule+0x14b/0x320 [ 1116.263057][ C0] schedule_preempt_disabled+0x13/0x30 [ 1116.268592][ C0] __mutex_lock+0x6a4/0xd70 [ 1116.273159][ C0] ? __mutex_lock+0x527/0xd70 [ 1116.277914][ C0] ? rtnetlink_rcv_msg+0x847/0x1180 [ 1116.283171][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 1116.288310][ C0] ? get_rtnl_holder+0x144/0x190 [ 1116.293288][ C0] rtnetlink_rcv_msg+0x847/0x1180 [ 1116.298372][ C0] ? rtnetlink_rcv_msg+0x208/0x1180 [ 1116.303592][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 1116.309140][ C0] ? is_bpf_text_address+0x285/0x2a0 [ 1116.314486][ C0] ? __pfx_validate_chain+0x10/0x10 [ 1116.319755][ C0] ? __pfx_validate_chain+0x10/0x10 [ 1116.324968][ C0] ? arch_stack_walk+0x16d/0x1b0 [ 1116.329972][ C0] ? mark_lock+0x9a/0x360 [ 1116.334332][ C0] ? __pfx_validate_chain+0x10/0x10 [ 1116.339577][ C0] ? __lock_acquire+0x1359/0x2000 [ 1116.344625][ C0] ? mark_lock+0x9a/0x360 [ 1116.349023][ C0] ? __lock_acquire+0x1359/0x2000 [ 1116.354105][ C0] netlink_rcv_skb+0x1e3/0x430 [ 1116.358915][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 1116.364664][ C0] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1116.370067][ C0] ? netlink_deliver_tap+0x2e/0x1b0 [ 1116.375327][ C0] netlink_unicast+0x7f0/0x990 [ 1116.380205][ C0] ? __pfx_netlink_unicast+0x10/0x10 [ 1116.385546][ C0] ? __virt_addr_valid+0x183/0x530 [ 1116.390729][ C0] ? __check_object_size+0x49c/0x900 [ 1116.396025][ C0] ? bpf_lsm_netlink_send+0x9/0x10 [ 1116.401220][ C0] netlink_sendmsg+0x8e4/0xcb0 [ 1116.406024][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1116.411345][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 1116.417402][ C0] ? aa_sock_msg_perm+0x91/0x160 [ 1116.422378][ C0] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 1116.427703][ C0] ? security_socket_sendmsg+0x87/0xb0 [ 1116.433186][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1116.438525][ C0] __sock_sendmsg+0x221/0x270 [ 1116.443248][ C0] __sys_sendto+0x3a4/0x4f0 [ 1116.447812][ C0] ? __pfx___sys_sendto+0x10/0x10 [ 1116.452867][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 1116.459257][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 1116.465623][ C0] __x64_sys_sendto+0xde/0x100 [ 1116.470456][ C0] do_syscall_64+0xf3/0x230 [ 1116.474991][ C0] ? clear_bhb_loop+0x35/0x90 [ 1116.479733][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1116.485660][ C0] RIP: 0033:0x7f4279f7796c [ 1116.490170][ C0] RSP: 002b:00007fff4d18e650 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 1116.498883][ C0] RAX: ffffffffffffffda RBX: 00007f427ac34620 RCX: 00007f4279f7796c [ 1116.506915][ C0] RDX: 0000000000000058 RSI: 00007f427ac34670 RDI: 0000000000000003 [ 1116.514901][ C0] RBP: 0000000000000000 R08: 00007fff4d18e6a4 R09: 000000000000000c [ 1116.523028][ C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 1116.531295][ C0] R13: 0000000000000000 R14: 00007f427ac34670 R15: 0000000000000000 [ 1116.539379][ C0] [ 1116.542422][ C0] DEBUG: waiting rtnl_mutex for 714 jiffies. [ 1116.548437][ C0] task:kworker/u8:2 state:D stack:18864 pid:35 tgid:35 ppid:2 flags:0x00004000 [ 1116.558701][ C0] Workqueue: ipv6_addrconf addrconf_dad_work [ 1116.564755][ C0] Call Trace: [ 1116.568111][ C0] [ 1116.571096][ C0] __schedule+0x1800/0x4a60 [ 1116.575727][ C0] ? __pfx___schedule+0x10/0x10 [ 1116.580654][ C0] ? __pfx_lock_release+0x10/0x10 [ 1116.585719][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 1116.591234][ C0] ? kthread_data+0x52/0xd0 [ 1116.595786][ C0] ? schedule+0x90/0x320 [ 1116.600126][ C0] ? wq_worker_sleeping+0x66/0x240 [ 1116.605304][ C0] ? schedule+0x90/0x320 [ 1116.609616][ C0] schedule+0x14b/0x320 [ 1116.613795][ C0] schedule_preempt_disabled+0x13/0x30 [ 1116.619322][ C0] __mutex_lock+0x6a4/0xd70 [ 1116.623889][ C0] ? mark_lock+0x9a/0x360 [ 1116.628265][ C0] ? __mutex_lock+0x527/0xd70 [ 1116.632953][ C0] ? addrconf_dad_work+0xd0/0x16f0 [ 1116.638133][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 1116.643219][ C0] ? get_rtnl_holder+0x144/0x190 [ 1116.648230][ C0] addrconf_dad_work+0xd0/0x16f0 [ 1116.653205][ C0] ? __pfx_addrconf_dad_work+0x10/0x10 [ 1116.658720][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 1116.665093][ C0] ? process_scheduled_works+0x945/0x1830 [ 1116.670855][ C0] process_scheduled_works+0xa2c/0x1830 [ 1116.676590][ C0] ? __pfx_process_scheduled_works+0x10/0x10 [ 1116.682636][ C0] ? assign_work+0x364/0x3d0 [ 1116.687327][ C0] worker_thread+0x86d/0xd40 [ 1116.691979][ C0] ? __kthread_parkme+0x169/0x1d0 [ 1116.697110][ C0] ? __pfx_worker_thread+0x10/0x10 [ 1116.702281][ C0] kthread+0x2f0/0x390 [ 1116.706439][ C0] ? __pfx_worker_thread+0x10/0x10 [ 1116.711666][ C0] ? __pfx_kthread+0x10/0x10 [ 1116.716308][ C0] ret_from_fork+0x4b/0x80 [ 1116.720952][ C0] ? __pfx_kthread+0x10/0x10 [ 1116.725647][ C0] ret_from_fork_asm+0x1a/0x30 [ 1116.730498][ C0] [ 1116.733525][ C0] DEBUG: waiting rtnl_mutex for 707 jiffies. [ 1116.739551][ C0] task:kworker/1:4 state:D stack:20432 pid:5109 tgid:5109 ppid:2 flags:0x00004000 [ 1116.749817][ C0] Workqueue: events linkwatch_event [ 1116.755131][ C0] Call Trace: [ 1116.758495][ C0] [ 1116.761458][ C0] __schedule+0x1800/0x4a60 [ 1116.765998][ C0] ? __pfx___schedule+0x10/0x10 [ 1116.770935][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 1116.777019][ C0] ? __pfx_lock_release+0x10/0x10 [ 1116.782195][ C0] ? kick_pool+0x1bd/0x620 [ 1116.786704][ C0] ? _raw_spin_unlock_irq+0x23/0x50 [ 1116.791970][ C0] ? lockdep_hardirqs_on+0x99/0x150 [ 1116.797256][ C0] ? schedule+0x90/0x320 [ 1116.801553][ C0] schedule+0x14b/0x320 [ 1116.805740][ C0] schedule_preempt_disabled+0x13/0x30 [ 1116.811307][ C0] __mutex_lock+0x6a4/0xd70 [ 1116.815866][ C0] ? __mutex_lock+0x527/0xd70 [ 1116.820648][ C0] ? linkwatch_event+0xe/0x60 [ 1116.825364][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 1116.830469][ C0] ? get_rtnl_holder+0x144/0x190 [ 1116.835439][ C0] ? process_scheduled_works+0x945/0x1830 [ 1116.841227][ C0] linkwatch_event+0xe/0x60 [ 1116.845750][ C0] process_scheduled_works+0xa2c/0x1830 [ 1116.851395][ C0] ? __pfx_process_scheduled_works+0x10/0x10 [ 1116.857548][ C0] ? assign_work+0x364/0x3d0 [ 1116.862176][ C0] worker_thread+0x86d/0xd40 [ 1116.866837][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 1116.872768][ C0] ? __kthread_parkme+0x169/0x1d0 [ 1116.877872][ C0] ? __pfx_worker_thread+0x10/0x10 [ 1116.883050][ C0] kthread+0x2f0/0x390 [ 1116.887209][ C0] ? __pfx_worker_thread+0x10/0x10 [ 1116.892353][ C0] ? __pfx_kthread+0x10/0x10 [ 1116.897009][ C0] ret_from_fork+0x4b/0x80 [ 1116.901521][ C0] ? __pfx_kthread+0x10/0x10 [ 1116.906125][ C0] ret_from_fork_asm+0x1a/0x30 [ 1116.911034][ C0] [ 1116.914091][ C0] [ 1116.914091][ C0] Showing all locks held in the system: [ 1116.921892][ C0] 3 locks held by kworker/u8:2/35: [ 1116.927081][ C0] #0: ffff88802a58f948 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 1116.938782][ C0] #1: ffffc90000ab7d00 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 1116.951672][ C0] #2: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_dad_work+0xd0/0x16f0 [ 1116.961312][ C0] 2 locks held by kworker/u8:3/52: [ 1116.966573][ C0] #0: ffff888015089148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 1116.978454][ C0] #1: ffffc90000bc7d00 ((work_completion)(&(&kfence_timer)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 1116.991341][ C0] 5 locks held by kworker/u8:8/1102: [ 1116.996702][ C0] #0: ffff888015edd948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 1117.007725][ C0] #1: ffffc900046e7d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 1117.018391][ C0] #2: ffffffff8f5f2c10 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0 [ 1117.027935][ C0] #3: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: default_device_exit_batch+0xe9/0xa90 [ 1117.038183][ C0] #4: ffffffff8e33ac38 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x381/0x830 [ 1117.049190][ C0] 2 locks held by getty/4852: [ 1117.053865][ C0] #0: ffff88802b12e0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 1117.063672][ C0] #1: ffffc90002f062f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10 [ 1117.073818][ C0] 3 locks held by kworker/1:4/5109: [ 1117.079093][ C0] #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 1117.090188][ C0] #1: ffffc9000387fd00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 1117.101259][ C0] #2: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60 [ 1117.110324][ C0] 4 locks held by syz.2.3112/15394: [ 1117.115543][ C0] #0: ffff88805f0820a8 (&ctx->uring_lock){+.+.}-{3:3}, at: __se_sys_io_uring_enter+0x1b6a/0x2670 [ 1117.126327][ C0] #1: ffff88805f0823d8 (&ctx->completion_lock){+.+.}-{2:2}, at: io_eventfd_flush_signal+0x2f/0x120 [ 1117.137215][ C0] #2: ffffc90000007c00 (net/core/rtnetlink.c:83){+.-.}-{0:0}, at: call_timer_fn+0xc0/0x650 [ 1117.147440][ C0] #3: ffffffff8e335860 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0 [ 1117.157412][ C0] 1 lock held by syz.4.3660/17087: [ 1117.162536][ C0] #0: ffff88801b6a8578 (&hugetlb_fault_mutex_table[i]){+.+.}-{3:3}, at: remove_inode_hugepages+0x38e/0x1520 [ 1117.174272][ C0] 3 locks held by syz.4.3804/17539: [ 1117.179632][ C0] #0: ffff88805f9bbdf0 (&vma->vm_lock->lock){++++}-{3:3}, at: uffd_lock_vma+0x22d/0x2e0 [ 1117.189586][ C0] #1: ffff888050d16df8 (&ctx->map_changing_lock){++++}-{3:3}, at: mfill_atomic_poison+0x2af/0x1780 [ 1117.200461][ C0] #2: ffff88801b6a8578 (&hugetlb_fault_mutex_table[i]){+.+.}-{3:3}, at: mfill_atomic_poison+0x10a6/0x1780 [ 1117.211936][ C0] 1 lock held by syz-executor/17592: [ 1117.217265][ C0] #0: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x847/0x1180 [ 1117.226970][ C0] 1 lock held by syz-executor/17604: [ 1117.232277][ C0] #0: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x847/0x1180 [ 1117.241826][ C0] 1 lock held by syz-executor/17607: [ 1117.247162][ C0] #0: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x847/0x1180 [ 1117.256971][ C0] 1 lock held by syz-executor/17616: [ 1117.262293][ C0] #0: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x847/0x1180 [ 1117.271906][ C0] 3 locks held by syz.3.3849/17697: [ 1117.277158][ C0] #0: ffffffff8f668fb0 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40 [ 1117.285415][ C0] #1: ffff888023daf678 (nlk_cb_mutex-GENERIC){+.+.}-{3:3}, at: __netlink_dump_start+0x119/0x780 [ 1117.296219][ C0] #2: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: nl80211_dump_interface+0x103/0x760 [ 1117.306259][ C0] 2 locks held by syz.3.3849/17699: [ 1117.311500][ C0] #0: ffffffff8f668fb0 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40 [ 1117.319765][ C0] #1: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: ethnl_default_set_doit+0x394/0x910 [ 1117.329807][ C0] 1 lock held by syz.3.3849/17701: [ 1117.334918][ C0] #0: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x847/0x1180 [ 1117.344569][ C0] [ 1117.346940][ C0] ============================================= [ 1117.346940][ C0] [ 1117.595065][ T1102] team0 (unregistering): Port device team_slave_1 removed [ 1117.716264][ T1102] team0 (unregistering): Port device team_slave_0 removed [ 1118.369440][ C0] DEBUG: waiting rtnl_mutex for 813 jiffies. [ 1118.375502][ C0] task:syz.3.3849 state:D stack:25984 pid:17699 tgid:17694 ppid:17114 flags:0x00000004 [ 1118.385763][ C0] Call Trace: [ 1118.389116][ C0] [ 1118.392081][ C0] __schedule+0x1800/0x4a60 [ 1118.396724][ C0] ? __pfx___schedule+0x10/0x10 [ 1118.401623][ C0] ? __pfx_lock_release+0x10/0x10 [ 1118.406738][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 1118.412607][ C0] ? schedule+0x90/0x320 [ 1118.416959][ C0] schedule+0x14b/0x320 [ 1118.421339][ C0] schedule_preempt_disabled+0x13/0x30 [ 1118.426883][ C0] __mutex_lock+0x6a4/0xd70 [ 1118.431439][ C0] ? __mutex_lock+0x527/0xd70 [ 1118.436150][ C0] ? ethnl_default_set_doit+0x394/0x910 [ 1118.441789][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 1118.446974][ C0] ? get_rtnl_holder+0x144/0x190 [ 1118.451977][ C0] ethnl_default_set_doit+0x394/0x910 [ 1118.457441][ C0] ? irqentry_exit+0x63/0x90 [ 1118.462097][ C0] ? __pfx_ethnl_default_set_doit+0x10/0x10 [ 1118.468079][ C0] ? __pfx_ethnl_default_set_doit+0x10/0x10 [ 1118.474029][ C0] genl_rcv_msg+0xb14/0xec0 [ 1118.478622][ C0] ? mark_lock+0x9a/0x360 [ 1118.483020][ C0] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1118.488258][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 1118.493320][ C0] ? __pfx_ethnl_default_set_doit+0x10/0x10 [ 1118.499274][ C0] ? __pfx___might_resched+0x10/0x10 [ 1118.504615][ C0] netlink_rcv_skb+0x1e3/0x430 [ 1118.509472][ C0] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1118.514574][ C0] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1118.519965][ C0] ? __netlink_deliver_tap+0x77e/0x7c0 [ 1118.525502][ C0] genl_rcv+0x28/0x40 [ 1118.529572][ C0] netlink_unicast+0x7f0/0x990 [ 1118.534401][ C0] ? __pfx_netlink_unicast+0x10/0x10 [ 1118.539769][ C0] ? __virt_addr_valid+0x183/0x530 [ 1118.544995][ C0] ? __check_object_size+0x49c/0x900 [ 1118.550353][ C0] ? bpf_lsm_netlink_send+0x9/0x10 [ 1118.555891][ C0] netlink_sendmsg+0x8e4/0xcb0 [ 1118.560762][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1118.566103][ C0] ? __import_iovec+0x536/0x820 [ 1118.571028][ C0] ? aa_sock_msg_perm+0x91/0x160 [ 1118.576000][ C0] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 1118.581358][ C0] ? security_socket_sendmsg+0x87/0xb0 [ 1118.586999][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1118.592327][ C0] __sock_sendmsg+0x221/0x270 [ 1118.597092][ C0] ____sys_sendmsg+0x525/0x7d0 [ 1118.601909][ C0] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1118.607291][ C0] __sys_sendmsg+0x2b0/0x3a0 [ 1118.611919][ C0] ? __pfx___sys_sendmsg+0x10/0x10 [ 1118.617080][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 1118.623071][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 1118.629486][ C0] ? do_syscall_64+0x100/0x230 [ 1118.634281][ C0] ? do_syscall_64+0xb6/0x230 [ 1118.639017][ C0] do_syscall_64+0xf3/0x230 [ 1118.643645][ C0] ? clear_bhb_loop+0x35/0x90 [ 1118.648403][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1118.654326][ C0] RIP: 0033:0x7f4b9ef75bd9 [ 1118.658786][ C0] RSP: 002b:00007f4b9fd60048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1118.667285][ C0] RAX: ffffffffffffffda RBX: 00007f4b9f1041e8 RCX: 00007f4b9ef75bd9 [ 1118.675291][ C0] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 000000000000000a [ 1118.683344][ C0] RBP: 00007f4b9efe4e60 R08: 0000000000000000 R09: 0000000000000000 [ 1118.692015][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1118.700079][ C0] R13: 000000000000006e R14: 00007f4b9f1041e8 R15: 00007ffc2c22b1e8 [ 1118.708176][ C0] [ 1118.711223][ C0] DEBUG: waiting rtnl_mutex for 836 jiffies. [ 1118.717265][ C0] task:syz.3.3849 state:D stack:26800 pid:17701 tgid:17694 ppid:17114 flags:0x00000004 [ 1118.727522][ C0] Call Trace: [ 1118.730835][ C0] [ 1118.733800][ C0] __schedule+0x1800/0x4a60 [ 1118.738413][ C0] ? __pfx___schedule+0x10/0x10 [ 1118.743298][ C0] ? __pfx_lock_release+0x10/0x10 [ 1118.748387][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 1118.753907][ C0] ? schedule+0x90/0x320 [ 1118.758239][ C0] schedule+0x14b/0x320 [ 1118.762431][ C0] schedule_preempt_disabled+0x13/0x30 [ 1118.767962][ C0] __mutex_lock+0x6a4/0xd70 [ 1118.772511][ C0] ? __mutex_lock+0x527/0xd70 [ 1118.777267][ C0] ? rtnetlink_rcv_msg+0x847/0x1180 [ 1118.782527][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 1118.787655][ C0] ? get_rtnl_holder+0x144/0x190 [ 1118.792632][ C0] rtnetlink_rcv_msg+0x847/0x1180 [ 1118.797745][ C0] ? rtnetlink_rcv_msg+0x208/0x1180 [ 1118.802980][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 1118.808512][ C0] ? __local_bh_enable_ip+0x168/0x200 [ 1118.813935][ C0] ? lockdep_hardirqs_on+0x99/0x150 [ 1118.819215][ C0] ? __local_bh_enable_ip+0x168/0x200 [ 1118.824629][ C0] ? dev_hard_start_xmit+0x773/0x7e0 [ 1118.830085][ C0] ? __dev_queue_xmit+0x2da/0x3e90 [ 1118.835241][ C0] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 1118.841034][ C0] ? __dev_queue_xmit+0x2da/0x3e90 [ 1118.846205][ C0] ? __dev_queue_xmit+0x1763/0x3e90 [ 1118.851479][ C0] ? kasan_save_track+0x51/0x80 [ 1118.856431][ C0] ? do_syscall_64+0xf3/0x230 [ 1118.861200][ C0] ? __dev_queue_xmit+0x2da/0x3e90 [ 1118.866369][ C0] ? __pfx___dev_queue_xmit+0x10/0x10 [ 1118.871841][ C0] ? ref_tracker_free+0x643/0x7e0 [ 1118.876952][ C0] netlink_rcv_skb+0x1e3/0x430 [ 1118.881768][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 1118.887312][ C0] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1118.892687][ C0] ? netlink_deliver_tap+0x2e/0x1b0 [ 1118.897945][ C0] netlink_unicast+0x7f0/0x990 [ 1118.902771][ C0] ? __pfx_netlink_unicast+0x10/0x10 [ 1118.908136][ C0] ? __virt_addr_valid+0x183/0x530 [ 1118.913286][ C0] ? __check_object_size+0x49c/0x900 [ 1118.918636][ C0] ? bpf_lsm_netlink_send+0x9/0x10 [ 1118.923796][ C0] netlink_sendmsg+0x8e4/0xcb0 [ 1118.928651][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1118.933984][ C0] ? __import_iovec+0x536/0x820 [ 1118.938915][ C0] ? aa_sock_msg_perm+0x91/0x160 [ 1118.943901][ C0] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 1118.949269][ C0] ? security_socket_sendmsg+0x87/0xb0 [ 1118.954767][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1118.960131][ C0] __sock_sendmsg+0x221/0x270 [ 1118.964950][ C0] ____sys_sendmsg+0x525/0x7d0 [ 1118.969816][ C0] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1118.975254][ C0] __sys_sendmsg+0x2b0/0x3a0 [ 1118.980019][ C0] ? __pfx___sys_sendmsg+0x10/0x10 [ 1118.985282][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 1118.991845][ C0] ? do_syscall_64+0x100/0x230 [ 1118.996701][ C0] ? do_syscall_64+0xb6/0x230 [ 1119.001425][ C0] do_syscall_64+0xf3/0x230 [ 1119.005961][ C0] ? clear_bhb_loop+0x35/0x90 [ 1119.010713][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1119.016725][ C0] RIP: 0033:0x7f4b9ef75bd9 [ 1119.021189][ C0] RSP: 002b:00007f4b9fd3f048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1119.029785][ C0] RAX: ffffffffffffffda RBX: 00007f4b9f1042c0 RCX: 00007f4b9ef75bd9 [ 1119.038040][ C0] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 000000000000000b [ 1119.046151][ C0] RBP: 00007f4b9efe4e60 R08: 0000000000000000 R09: 0000000000000000 [ 1119.054204][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1119.062353][ C0] R13: 000000000000006e R14: 00007f4b9f1042c0 R15: 00007ffc2c22b1e8 [ 1119.070434][ C0] [ 1119.073479][ C0] DEBUG: waiting rtnl_mutex for 867 jiffies. [ 1119.079603][ C0] task:syz.3.3849 state:D stack:26096 pid:17697 tgid:17694 ppid:17114 flags:0x00000004 [ 1119.089897][ C0] Call Trace: [ 1119.093210][ C0] [ 1119.096181][ C0] __schedule+0x1800/0x4a60 [ 1119.100803][ C0] ? __pfx___schedule+0x10/0x10 [ 1119.105756][ C0] ? __pfx_lock_release+0x10/0x10 [ 1119.110898][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 1119.116417][ C0] ? schedule+0x90/0x320 [ 1119.120753][ C0] schedule+0x14b/0x320 [ 1119.124972][ C0] schedule_preempt_disabled+0x13/0x30 [ 1119.130631][ C0] __mutex_lock+0x6a4/0xd70 [ 1119.135255][ C0] ? __mutex_lock+0x527/0xd70 [ 1119.140068][ C0] ? nl80211_dump_interface+0x103/0x760 [ 1119.145683][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 1119.150831][ C0] ? get_rtnl_holder+0x144/0x190 [ 1119.155929][ C0] nl80211_dump_interface+0x103/0x760 [ 1119.161379][ C0] ? rcu_is_watching+0x15/0xb0 [ 1119.166169][ C0] ? __kmalloc_node_track_caller_noprof+0x242/0x440 [ 1119.172847][ C0] ? __build_skb_around+0x245/0x3d0 [ 1119.178136][ C0] ? __pfx_nl80211_dump_interface+0x10/0x10 [ 1119.184261][ C0] ? __alloc_skb+0x28f/0x440 [ 1119.188927][ C0] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1119.195160][ C0] ? __pfx___alloc_skb+0x10/0x10 [ 1119.200205][ C0] genl_dumpit+0x107/0x1a0 [ 1119.204848][ C0] netlink_dump+0x647/0xd80 [ 1119.209451][ C0] ? __pfx_netlink_dump+0x10/0x10 [ 1119.214549][ C0] ? __asan_memset+0x23/0x50 [ 1119.219221][ C0] ? genl_start+0x4a8/0x6d0 [ 1119.223798][ C0] __netlink_dump_start+0x59f/0x780 [ 1119.229084][ C0] genl_rcv_msg+0x88c/0xec0 [ 1119.233633][ C0] ? mark_lock+0x9a/0x360 [ 1119.238063][ C0] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1119.243141][ C0] ? __pfx_genl_start+0x10/0x10 [ 1119.248078][ C0] ? __pfx_genl_dumpit+0x10/0x10 [ 1119.253100][ C0] ? __pfx_genl_done+0x10/0x10 [ 1119.257966][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 1119.263036][ C0] ? __pfx_nl80211_dump_interface+0x10/0x10 [ 1119.269023][ C0] ? __pfx___might_resched+0x10/0x10 [ 1119.274374][ C0] netlink_rcv_skb+0x1e3/0x430 [ 1119.279212][ C0] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1119.284284][ C0] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1119.289694][ C0] ? __netlink_deliver_tap+0x77e/0x7c0 [ 1119.295222][ C0] genl_rcv+0x28/0x40 [ 1119.299277][ C0] netlink_unicast+0x7f0/0x990 [ 1119.304108][ C0] ? __pfx_netlink_unicast+0x10/0x10 [ 1119.309479][ C0] ? __virt_addr_valid+0x183/0x530 [ 1119.314673][ C0] ? __check_object_size+0x49c/0x900 [ 1119.320021][ C0] ? bpf_lsm_netlink_send+0x9/0x10 [ 1119.325172][ C0] netlink_sendmsg+0x8e4/0xcb0 [ 1119.330050][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1119.335367][ C0] ? __import_iovec+0x536/0x820 [ 1119.340287][ C0] ? aa_sock_msg_perm+0x91/0x160 [ 1119.345280][ C0] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 1119.350700][ C0] ? security_socket_sendmsg+0x87/0xb0 [ 1119.356222][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1119.361589][ C0] __sock_sendmsg+0x221/0x270 [ 1119.366311][ C0] ____sys_sendmsg+0x525/0x7d0 [ 1119.371158][ C0] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1119.376567][ C0] __sys_sendmsg+0x2b0/0x3a0 [ 1119.381302][ C0] ? __pfx___sys_sendmsg+0x10/0x10 [ 1119.386630][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 1119.393038][ C0] ? do_syscall_64+0x100/0x230 [ 1119.397865][ C0] ? do_syscall_64+0xb6/0x230 [ 1119.402584][ C0] do_syscall_64+0xf3/0x230 [ 1119.407192][ C0] ? clear_bhb_loop+0x35/0x90 [ 1119.411915][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1119.417911][ C0] RIP: 0033:0x7f4b9ef75bd9 [ 1119.422368][ C0] RSP: 002b:00007f4b9fd81048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1119.430880][ C0] RAX: ffffffffffffffda RBX: 00007f4b9f104110 RCX: 00007f4b9ef75bd9 [ 1119.438950][ C0] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000006 [ 1119.447034][ C0] RBP: 00007f4b9efe4e60 R08: 0000000000000000 R09: 0000000000000000 [ 1119.455070][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1119.463139][ C0] R13: 000000000000006e R14: 00007f4b9f104110 R15: 00007ffc2c22b1e8 [ 1119.471244][ C0] [ 1119.474302][ C0] DEBUG: waiting rtnl_mutex for 1009 jiffies. [ 1119.480446][ C0] task:syz-executor state:D stack:21024 pid:17616 tgid:17616 ppid:17615 flags:0x00004000 [ 1119.490805][ C0] Call Trace: [ 1119.494137][ C0] [ 1119.497145][ C0] __schedule+0x1800/0x4a60 [ 1119.501741][ C0] ? __pfx___schedule+0x10/0x10 [ 1119.506680][ C0] ? __pfx_lock_release+0x10/0x10 [ 1119.511763][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 1119.517321][ C0] ? schedule+0x90/0x320 [ 1119.521617][ C0] schedule+0x14b/0x320 [ 1119.525833][ C0] schedule_preempt_disabled+0x13/0x30 [ 1119.531396][ C0] __mutex_lock+0x6a4/0xd70 [ 1119.535956][ C0] ? __mutex_lock+0x527/0xd70 [ 1119.540746][ C0] ? rtnetlink_rcv_msg+0x847/0x1180 [ 1119.546105][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 1119.551445][ C0] ? get_rtnl_holder+0x144/0x190 [ 1119.556446][ C0] rtnetlink_rcv_msg+0x847/0x1180 [ 1119.561671][ C0] ? rtnetlink_rcv_msg+0x208/0x1180 [ 1119.566984][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 1119.572515][ C0] ? is_bpf_text_address+0x285/0x2a0 [ 1119.577929][ C0] ? __pfx_validate_chain+0x10/0x10 [ 1119.583198][ C0] ? __pfx_validate_chain+0x10/0x10 [ 1119.588495][ C0] ? arch_stack_walk+0x16d/0x1b0 [ 1119.593491][ C0] ? mark_lock+0x9a/0x360 [ 1119.597923][ C0] ? __pfx_validate_chain+0x10/0x10 [ 1119.603194][ C0] ? __lock_acquire+0x1359/0x2000 [ 1119.608325][ C0] ? mark_lock+0x9a/0x360 [ 1119.612709][ C0] ? __lock_acquire+0x1359/0x2000 [ 1119.617845][ C0] netlink_rcv_skb+0x1e3/0x430 [ 1119.622667][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 1119.628233][ C0] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1119.633602][ C0] ? netlink_deliver_tap+0x2e/0x1b0 [ 1119.638874][ C0] netlink_unicast+0x7f0/0x990 [ 1119.643708][ C0] ? __pfx_netlink_unicast+0x10/0x10 [ 1119.649093][ C0] ? __virt_addr_valid+0x183/0x530 [ 1119.654261][ C0] ? __check_object_size+0x49c/0x900 [ 1119.659640][ C0] ? bpf_lsm_netlink_send+0x9/0x10 [ 1119.664815][ C0] netlink_sendmsg+0x8e4/0xcb0 [ 1119.669697][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1119.675032][ C0] ? aa_sock_msg_perm+0x91/0x160 [ 1119.680075][ C0] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 1119.685430][ C0] ? security_socket_sendmsg+0x87/0xb0 [ 1119.691054][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1119.696415][ C0] __sock_sendmsg+0x221/0x270 [ 1119.701197][ C0] __sys_sendto+0x3a4/0x4f0 [ 1119.705783][ C0] ? __pfx___sys_sendto+0x10/0x10 [ 1119.711094][ C0] ? _raw_spin_unlock_irq+0x23/0x50 [ 1119.716391][ C0] ? blkcg_maybe_throttle_current+0x1ab/0xb80 [ 1119.722609][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 1119.728702][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 1119.735096][ C0] __x64_sys_sendto+0xde/0x100 [ 1119.739952][ C0] do_syscall_64+0xf3/0x230 [ 1119.744543][ C0] ? clear_bhb_loop+0x35/0x90 [ 1119.749332][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1119.755346][ C0] RIP: 0033:0x7f5c0a57796c [ 1119.759861][ C0] RSP: 002b:00007ffc2732b070 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 1119.768366][ C0] RAX: ffffffffffffffda RBX: 00007f5c0b234620 RCX: 00007f5c0a57796c [ 1119.776394][ C0] RDX: 000000000000005c RSI: 00007f5c0b234670 RDI: 0000000000000003 [ 1119.784807][ C0] RBP: 0000000000000000 R08: 00007ffc2732b0c4 R09: 000000000000000c [ 1119.792863][ C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 1119.800931][ C0] R13: 0000000000000000 R14: 00007f5c0b234670 R15: 0000000000000000 [ 1119.809000][ C0] [ 1119.812056][ C0] DEBUG: waiting rtnl_mutex for 1042 jiffies. [ 1119.818273][ C0] task:syz-executor state:D stack:21024 pid:17607 tgid:17607 ppid:17595 flags:0x00000000 [ 1119.828534][ C0] Call Trace: [ 1119.832109][ C0] [ 1119.835114][ C0] __schedule+0x1800/0x4a60 [ 1119.839827][ C0] ? __pfx___schedule+0x10/0x10 [ 1119.844764][ C0] ? __pfx_lock_release+0x10/0x10 [ 1119.849883][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 1119.855414][ C0] ? schedule+0x90/0x320 [ 1119.859757][ C0] schedule+0x14b/0x320 [ 1119.863971][ C0] schedule_preempt_disabled+0x13/0x30 [ 1119.869522][ C0] __mutex_lock+0x6a4/0xd70 [ 1119.874168][ C0] ? __mutex_lock+0x527/0xd70 [ 1119.878934][ C0] ? rtnetlink_rcv_msg+0x847/0x1180 [ 1119.884201][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 1119.889413][ C0] ? get_rtnl_holder+0x144/0x190 [ 1119.894389][ C0] rtnetlink_rcv_msg+0x847/0x1180 [ 1119.899514][ C0] ? rtnetlink_rcv_msg+0x208/0x1180 [ 1119.904773][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 1119.910323][ C0] ? is_bpf_text_address+0x285/0x2a0 [ 1119.915678][ C0] ? __pfx_validate_chain+0x10/0x10 [ 1119.921079][ C0] ? __pfx_validate_chain+0x10/0x10 [ 1119.926339][ C0] ? arch_stack_walk+0x16d/0x1b0 [ 1119.931371][ C0] ? mark_lock+0x9a/0x360 [ 1119.935748][ C0] ? __pfx_validate_chain+0x10/0x10 [ 1119.941099][ C0] ? __lock_acquire+0x1359/0x2000 [ 1119.946197][ C0] ? mark_lock+0x9a/0x360 [ 1119.950626][ C0] ? __lock_acquire+0x1359/0x2000 [ 1119.955746][ C0] netlink_rcv_skb+0x1e3/0x430 [ 1119.960621][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 1119.966194][ C0] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1119.971605][ C0] ? netlink_deliver_tap+0x2e/0x1b0 [ 1119.976888][ C0] netlink_unicast+0x7f0/0x990 [ 1119.981740][ C0] ? __pfx_netlink_unicast+0x10/0x10 [ 1119.987121][ C0] ? __virt_addr_valid+0x183/0x530 [ 1119.992287][ C0] ? __check_object_size+0x49c/0x900 [ 1119.997651][ C0] ? bpf_lsm_netlink_send+0x9/0x10 [ 1120.002827][ C0] netlink_sendmsg+0x8e4/0xcb0 [ 1120.007786][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1120.013218][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 1120.019308][ C0] ? aa_sock_msg_perm+0x91/0x160 [ 1120.024306][ C0] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 1120.029686][ C0] ? security_socket_sendmsg+0x87/0xb0 [ 1120.035207][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1120.041429][ C0] __sock_sendmsg+0x221/0x270 [ 1120.046263][ C0] __sys_sendto+0x3a4/0x4f0 [ 1120.050865][ C0] ? __pfx___sys_sendto+0x10/0x10 [ 1120.055972][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 1120.062045][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 1120.064590][ T5104] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 1120.068455][ C0] __x64_sys_sendto+0xde/0x100 [ 1120.068498][ C0] do_syscall_64+0xf3/0x230 [ 1120.068525][ C0] ? clear_bhb_loop+0x35/0x90 [ 1120.068560][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1120.068590][ C0] RIP: 0033:0x7fc8dab7796c [ 1120.068613][ C0] RSP: 002b:00007ffd321946c0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 1120.068643][ C0] RAX: ffffffffffffffda RBX: 00007fc8db834620 RCX: 00007fc8dab7796c [ 1120.068663][ C0] RDX: 0000000000000050 RSI: 00007fc8db834670 RDI: 0000000000000003 [ 1120.068681][ C0] RBP: 0000000000000000 R08: 00007ffd32194714 R09: 000000000000000c [ 1120.068703][ C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 1120.068723][ C0] R13: 0000000000000000 R14: 00007fc8db834670 R15: 0000000000000000 [ 1120.068761][ C0] [ 1120.068772][ C0] DEBUG: holding rtnl_mutex for 1068 jiffies. [ 1120.099547][ T5104] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 1120.101113][ C0] task:kworker/u8:8 state:D [ 1120.115780][ T5104] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 1120.117695][ C0] stack:20016 pid:1102 tgid:1102 ppid:2 flags:0x00004000 [ 1120.117726][ C0] Workqueue: netns cleanup_net [ 1120.133567][ T5104] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 1120.133761][ C0] [ 1120.153523][ T5104] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 1120.158896][ C0] Call Trace: [ 1120.158915][ C0] [ 1120.158933][ C0] __schedule+0x1800/0x4a60 [ 1120.158992][ C0] ? __pfx___schedule+0x10/0x10 [ 1120.159027][ C0] ? __pfx_lock_release+0x10/0x10 [ 1120.159056][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 1120.159094][ C0] ? kthread_data+0x52/0xd0 [ 1120.159127][ C0] ? wq_worker_sleeping+0x66/0x240 [ 1120.159162][ C0] ? schedule+0x90/0x320 [ 1120.159191][ C0] schedule+0x14b/0x320 [ 1120.159224][ C0] synchronize_rcu_expedited+0x684/0x830 [ 1120.159268][ C0] ? __pfx_synchronize_rcu_expedited+0x10/0x10 [ 1120.159326][ C0] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 1120.159364][ C0] ? __pfx___might_resched+0x10/0x10 [ 1120.159392][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 1120.159424][ C0] ? __pfx_autoremove_wake_function+0x10/0x10 [ 1120.159457][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 1120.159503][ C0] synchronize_rcu+0x11b/0x360 [ 1120.159541][ C0] ? __pfx_synchronize_rcu+0x10/0x10 [ 1120.159594][ C0] lockdep_unregister_key+0x556/0x610 [ 1120.159633][ C0] ? __pfx_lockdep_unregister_key+0x10/0x10 [ 1120.159672][ C0] ? rcu_is_watching+0x15/0xb0 [ 1120.159715][ C0] ? qdisc_reset+0x3bf/0x5b0 [ 1120.159749][ C0] __qdisc_destroy+0x165/0x410 [ 1120.159780][ C0] dev_shutdown+0x357/0x440 [ 1120.169239][ T5104] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 1120.171770][ C0] unregister_netdevice_many_notify+0x9c7/0x1d20 [ 1120.347329][ C0] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 1120.354173][ C0] ? unregister_netdevice_queue+0x26b/0x370 [ 1120.360184][ C0] ? batadv_softif_destroy_netlink+0x1e0/0x270 [ 1120.366442][ C0] default_device_exit_batch+0xa0f/0xa90 [ 1120.372293][ C0] ? __pfx___might_resched+0x10/0x10 [ 1120.377667][ C0] ? __pfx_default_device_exit_batch+0x10/0x10 [ 1120.383895][ C0] ? cfg802154_pernet_exit+0xc3/0xe0 [ 1120.389358][ C0] ? __pfx_default_device_exit_batch+0x10/0x10 [ 1120.395592][ C0] cleanup_net+0x89d/0xcc0 [ 1120.400094][ C0] ? __pfx_cleanup_net+0x10/0x10 [ 1120.405075][ C0] ? process_scheduled_works+0x945/0x1830 [ 1120.410956][ C0] process_scheduled_works+0xa2c/0x1830 [ 1120.416631][ C0] ? __pfx_process_scheduled_works+0x10/0x10 [ 1120.422663][ C0] ? assign_work+0x364/0x3d0 [ 1120.427323][ C0] worker_thread+0x86d/0xd40 [ 1120.431980][ C0] ? __kthread_parkme+0x169/0x1d0 [ 1120.437091][ C0] ? __pfx_worker_thread+0x10/0x10 [ 1120.442246][ C0] kthread+0x2f0/0x390 [ 1120.446440][ C0] ? __pfx_worker_thread+0x10/0x10 [ 1120.451637][ C0] ? __pfx_kthread+0x10/0x10 [ 1120.456266][ C0] ret_from_fork+0x4b/0x80 [ 1120.460744][ C0] ? __pfx_kthread+0x10/0x10 [ 1120.465394][ C0] ret_from_fork_asm+0x1a/0x30 [ 1120.470279][ C0] [ 1120.473336][ C0] DEBUG: waiting rtnl_mutex for 1108 jiffies. [ 1120.479556][ C0] task:syz-executor state:D stack:20600 pid:17592 tgid:17592 ppid:17585 flags:0x00000000 [ 1120.489822][ C0] Call Trace: [ 1120.493138][ C0] [ 1120.496105][ C0] __schedule+0x1800/0x4a60 [ 1120.500724][ C0] ? __pfx___schedule+0x10/0x10 [ 1120.505614][ C0] ? __pfx_lock_release+0x10/0x10 [ 1120.510705][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 1120.516239][ C0] ? schedule+0x90/0x320 [ 1120.520564][ C0] schedule+0x14b/0x320 [ 1120.524777][ C0] schedule_preempt_disabled+0x13/0x30 [ 1120.530341][ C0] __mutex_lock+0x6a4/0xd70 [ 1120.534926][ C0] ? __mutex_lock+0x527/0xd70 [ 1120.539717][ C0] ? rtnetlink_rcv_msg+0x847/0x1180 [ 1120.544975][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 1120.550133][ C0] ? get_rtnl_holder+0x144/0x190 [ 1120.555121][ C0] rtnetlink_rcv_msg+0x847/0x1180 [ 1120.560245][ C0] ? rtnetlink_rcv_msg+0x208/0x1180 [ 1120.565506][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 1120.571128][ C0] ? is_bpf_text_address+0x285/0x2a0 [ 1120.576561][ C0] ? __pfx_validate_chain+0x10/0x10 [ 1120.581909][ C0] ? __pfx_validate_chain+0x10/0x10 [ 1120.587209][ C0] ? arch_stack_walk+0x16d/0x1b0 [ 1120.592219][ C0] ? mark_lock+0x9a/0x360 [ 1120.596649][ C0] ? __pfx_validate_chain+0x10/0x10 [ 1120.601910][ C0] ? __lock_acquire+0x1359/0x2000 [ 1120.607066][ C0] ? mark_lock+0x9a/0x360 [ 1120.611452][ C0] ? __lock_acquire+0x1359/0x2000 [ 1120.616586][ C0] netlink_rcv_skb+0x1e3/0x430 [ 1120.621492][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 1120.627046][ C0] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1120.632412][ C0] ? netlink_deliver_tap+0x2e/0x1b0 [ 1120.637704][ C0] netlink_unicast+0x7f0/0x990 [ 1120.642538][ C0] ? __pfx_netlink_unicast+0x10/0x10 [ 1120.647900][ C0] ? __virt_addr_valid+0x183/0x530 [ 1120.653061][ C0] ? __check_object_size+0x49c/0x900 [ 1120.658405][ C0] ? bpf_lsm_netlink_send+0x9/0x10 [ 1120.663563][ C0] netlink_sendmsg+0x8e4/0xcb0 [ 1120.668457][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1120.673801][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 1120.679870][ C0] ? aa_sock_msg_perm+0x91/0x160 [ 1120.684876][ C0] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 1120.690253][ C0] ? security_socket_sendmsg+0x87/0xb0 [ 1120.695770][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1120.701134][ C0] __sock_sendmsg+0x221/0x270 [ 1120.705859][ C0] __sys_sendto+0x3a4/0x4f0 [ 1120.710447][ C0] ? __pfx___sys_sendto+0x10/0x10 [ 1120.715549][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 1120.721708][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 1120.728376][ C0] __x64_sys_sendto+0xde/0x100 [ 1120.733194][ C0] do_syscall_64+0xf3/0x230 [ 1120.737770][ C0] ? clear_bhb_loop+0x35/0x90 [ 1120.742508][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1120.748457][ C0] RIP: 0033:0x7f702e77796c [ 1120.752904][ C0] RSP: 002b:00007ffd912bb1e0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 1120.761392][ C0] RAX: ffffffffffffffda RBX: 00007f702f434620 RCX: 00007f702e77796c [ 1120.769422][ C0] RDX: 0000000000000040 RSI: 00007f702f434670 RDI: 0000000000000003 [ 1120.777475][ C0] RBP: 0000000000000000 R08: 00007ffd912bb234 R09: 000000000000000c [ 1120.785477][ C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 1120.793520][ C0] R13: 0000000000000000 R14: 00007f702f434670 R15: 0000000000000000 [ 1120.801590][ C0] [ 1120.804650][ C0] DEBUG: waiting rtnl_mutex for 1141 jiffies. [ 1120.810776][ C0] task:syz-executor state:D stack:21024 pid:17604 tgid:17604 ppid:17598 flags:0x00000000 [ 1120.821084][ C0] Call Trace: [ 1120.824394][ C0] [ 1120.827397][ C0] __schedule+0x1800/0x4a60 [ 1120.832040][ C0] ? __pfx___schedule+0x10/0x10 [ 1120.836958][ C0] ? __pfx_lock_release+0x10/0x10 [ 1120.842029][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 1120.847585][ C0] ? schedule+0x90/0x320 [ 1120.851886][ C0] schedule+0x14b/0x320 [ 1120.856128][ C0] schedule_preempt_disabled+0x13/0x30 [ 1120.861672][ C0] __mutex_lock+0x6a4/0xd70 [ 1120.866230][ C0] ? __mutex_lock+0x527/0xd70 [ 1120.870995][ C0] ? rtnetlink_rcv_msg+0x847/0x1180 [ 1120.876255][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 1120.881379][ C0] ? get_rtnl_holder+0x144/0x190 [ 1120.886351][ C0] rtnetlink_rcv_msg+0x847/0x1180 [ 1120.891450][ C0] ? rtnetlink_rcv_msg+0x208/0x1180 [ 1120.896738][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 1120.902249][ C0] ? is_bpf_text_address+0x285/0x2a0 [ 1120.907626][ C0] ? __pfx_validate_chain+0x10/0x10 [ 1120.912873][ C0] ? __pfx_validate_chain+0x10/0x10 [ 1120.918173][ C0] ? arch_stack_walk+0x16d/0x1b0 [ 1120.923165][ C0] ? mark_lock+0x9a/0x360 [ 1120.927582][ C0] ? __pfx_validate_chain+0x10/0x10 [ 1120.932842][ C0] ? __lock_acquire+0x1359/0x2000 [ 1120.937968][ C0] ? mark_lock+0x9a/0x360 [ 1120.942342][ C0] ? __lock_acquire+0x1359/0x2000 [ 1120.947473][ C0] netlink_rcv_skb+0x1e3/0x430 [ 1120.952337][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 1120.957865][ C0] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1120.963240][ C0] ? netlink_deliver_tap+0x2e/0x1b0 [ 1120.968515][ C0] netlink_unicast+0x7f0/0x990 [ 1120.973332][ C0] ? __pfx_netlink_unicast+0x10/0x10 [ 1120.978777][ C0] ? __virt_addr_valid+0x183/0x530 [ 1120.983953][ C0] ? __check_object_size+0x49c/0x900 [ 1120.989316][ C0] ? bpf_lsm_netlink_send+0x9/0x10 [ 1120.994569][ C0] netlink_sendmsg+0x8e4/0xcb0 [ 1120.999431][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1121.004759][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 1121.010927][ C0] ? aa_sock_msg_perm+0x91/0x160 [ 1121.016006][ C0] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 1121.021371][ C0] ? security_socket_sendmsg+0x87/0xb0 [ 1121.026974][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1121.032322][ C0] __sock_sendmsg+0x221/0x270 [ 1121.037096][ C0] __sys_sendto+0x3a4/0x4f0 [ 1121.041659][ C0] ? __pfx___sys_sendto+0x10/0x10 [ 1121.046787][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 1121.052811][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 1121.059380][ C0] __x64_sys_sendto+0xde/0x100 [ 1121.064224][ C0] do_syscall_64+0xf3/0x230 [ 1121.068806][ C0] ? clear_bhb_loop+0x35/0x90 [ 1121.073540][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1121.079494][ C0] RIP: 0033:0x7f4279f7796c [ 1121.083943][ C0] RSP: 002b:00007fff4d18e650 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 1121.092431][ C0] RAX: ffffffffffffffda RBX: 00007f427ac34620 RCX: 00007f4279f7796c [ 1121.100475][ C0] RDX: 0000000000000058 RSI: 00007f427ac34670 RDI: 0000000000000003 [ 1121.108531][ C0] RBP: 0000000000000000 R08: 00007fff4d18e6a4 R09: 000000000000000c [ 1121.116846][ C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 1121.124871][ C0] R13: 0000000000000000 R14: 00007f427ac34670 R15: 0000000000000000 [ 1121.132966][ C0] [ 1121.136018][ C0] DEBUG: waiting rtnl_mutex for 1173 jiffies. [ 1121.142146][ C0] task:kworker/u8:2 state:D stack:18864 pid:35 tgid:35 ppid:2 flags:0x00004000 [ 1121.152405][ C0] Workqueue: ipv6_addrconf addrconf_dad_work [ 1121.158488][ C0] Call Trace: [ 1121.161786][ C0] [ 1121.164728][ C0] __schedule+0x1800/0x4a60 [ 1121.169324][ C0] ? __pfx___schedule+0x10/0x10 [ 1121.174219][ C0] ? __pfx_lock_release+0x10/0x10 [ 1121.179323][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 1121.184828][ C0] ? kthread_data+0x52/0xd0 [ 1121.189398][ C0] ? schedule+0x90/0x320 [ 1121.193683][ C0] ? wq_worker_sleeping+0x66/0x240 [ 1121.198877][ C0] ? schedule+0x90/0x320 [ 1121.203156][ C0] schedule+0x14b/0x320 [ 1121.207373][ C0] schedule_preempt_disabled+0x13/0x30 [ 1121.212871][ C0] __mutex_lock+0x6a4/0xd70 [ 1121.217460][ C0] ? mark_lock+0x9a/0x360 [ 1121.221867][ C0] ? __mutex_lock+0x527/0xd70 [ 1121.226610][ C0] ? addrconf_dad_work+0xd0/0x16f0 [ 1121.231909][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 1121.237118][ C0] ? get_rtnl_holder+0x144/0x190 [ 1121.242087][ C0] addrconf_dad_work+0xd0/0x16f0 [ 1121.247087][ C0] ? __pfx_addrconf_dad_work+0x10/0x10 [ 1121.252602][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 1121.259142][ C0] ? process_scheduled_works+0x945/0x1830 [ 1121.264907][ C0] process_scheduled_works+0xa2c/0x1830 [ 1121.270565][ C0] ? __pfx_process_scheduled_works+0x10/0x10 [ 1121.276631][ C0] ? assign_work+0x364/0x3d0 [ 1121.281276][ C0] worker_thread+0x86d/0xd40 [ 1121.285944][ C0] ? __kthread_parkme+0x169/0x1d0 [ 1121.291067][ C0] ? __pfx_worker_thread+0x10/0x10 [ 1121.296345][ C0] kthread+0x2f0/0x390 [ 1121.300522][ C0] ? __pfx_worker_thread+0x10/0x10 [ 1121.305668][ C0] ? __pfx_kthread+0x10/0x10 [ 1121.310328][ C0] ret_from_fork+0x4b/0x80 [ 1121.314834][ C0] ? __pfx_kthread+0x10/0x10 [ 1121.319529][ C0] ret_from_fork_asm+0x1a/0x30 [ 1121.324362][ C0] [ 1121.327442][ C0] DEBUG: waiting rtnl_mutex for 1167 jiffies. [ 1121.333623][ C0] task:kworker/1:4 state:D stack:20432 pid:5109 tgid:5109 ppid:2 flags:0x00004000 [ 1121.343859][ C0] Workqueue: events linkwatch_event [ 1121.349125][ C0] Call Trace: [ 1121.352436][ C0] [ 1121.355403][ C0] __schedule+0x1800/0x4a60 [ 1121.360042][ C0] ? __pfx___schedule+0x10/0x10 [ 1121.364946][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 1121.371020][ C0] ? __pfx_lock_release+0x10/0x10 [ 1121.376183][ C0] ? kick_pool+0x1bd/0x620 [ 1121.380693][ C0] ? _raw_spin_unlock_irq+0x23/0x50 [ 1121.385951][ C0] ? lockdep_hardirqs_on+0x99/0x150 [ 1121.391286][ C0] ? schedule+0x90/0x320 [ 1121.395701][ C0] schedule+0x14b/0x320 [ 1121.400078][ C0] schedule_preempt_disabled+0x13/0x30 [ 1121.405603][ C0] __mutex_lock+0x6a4/0xd70 [ 1121.410196][ C0] ? __mutex_lock+0x527/0xd70 [ 1121.414921][ C0] ? linkwatch_event+0xe/0x60 [ 1121.419683][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 1121.424829][ C0] ? get_rtnl_holder+0x144/0x190 [ 1121.429965][ C0] ? process_scheduled_works+0x945/0x1830 [ 1121.435825][ C0] linkwatch_event+0xe/0x60 [ 1121.440416][ C0] process_scheduled_works+0xa2c/0x1830 [ 1121.446119][ C0] ? __pfx_process_scheduled_works+0x10/0x10 [ 1121.452185][ C0] ? assign_work+0x364/0x3d0 [ 1121.456873][ C0] worker_thread+0x86d/0xd40 [ 1121.461535][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 1121.467515][ C0] ? __kthread_parkme+0x169/0x1d0 [ 1121.472590][ C0] ? __pfx_worker_thread+0x10/0x10 [ 1121.477858][ C0] kthread+0x2f0/0x390 [ 1121.481976][ C0] ? __pfx_worker_thread+0x10/0x10 [ 1121.487177][ C0] ? __pfx_kthread+0x10/0x10 [ 1121.491829][ C0] ret_from_fork+0x4b/0x80 [ 1121.496301][ C0] ? __pfx_kthread+0x10/0x10 [ 1121.500988][ C0] ret_from_fork_asm+0x1a/0x30 [ 1121.505819][ C0] [ 1121.508915][ C0] [ 1121.508915][ C0] Showing all locks held in the system: [ 1121.516702][ C0] 3 locks held by kworker/u8:2/35: [ 1121.521849][ C0] #0: ffff88802a58f948 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 1121.533632][ C0] #1: ffffc90000ab7d00 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 1121.546607][ C0] #2: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_dad_work+0xd0/0x16f0 [ 1121.556202][ C0] 5 locks held by kworker/u8:4/62: [ 1121.561524][ C0] 3 locks held by kworker/u8:6/1053: [ 1121.566924][ C0] 5 locks held by kworker/u8:8/1102: [ 1121.572262][ C0] #0: ffff888015edd948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 1121.583375][ C0] #1: ffffc900046e7d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 1121.594062][ C0] #2: ffffffff8f5f2c10 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0 [ 1121.603604][ C0] #3: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: default_device_exit_batch+0xe9/0xa90 [ 1121.613903][ C0] #4: ffffffff8e33ac38 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x381/0x830 [ 1121.624887][ C0] 2 locks held by getty/4852: [ 1121.629624][ C0] #0: ffff88802b12e0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 1121.639607][ C0] #1: ffffc90002f062f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10 [ 1121.649930][ C0] 3 locks held by kworker/1:4/5109: [ 1121.655148][ C0] #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 1121.666183][ C0] #1: ffffc9000387fd00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 1121.677238][ C0] #2: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60 [ 1121.686288][ C0] 4 locks held by syz.2.3112/15394: [ 1121.691542][ C0] #0: ffff88805f0820a8 (&ctx->uring_lock){+.+.}-{3:3}, at: __se_sys_io_uring_enter+0x1b6a/0x2670 [ 1121.702436][ C0] #1: ffff88805f0823d8 (&ctx->completion_lock){+.+.}-{2:2}, at: __io_cqring_overflow_flush+0x1c7/0x690 [ 1121.713720][ C0] #2: ffffc90000007c00 (net/core/rtnetlink.c:83){+.-.}-{0:0}, at: call_timer_fn+0xc0/0x650 [ 1121.723939][ C0] #3: ffffffff8e335860 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0 [ 1121.733912][ C0] 1 lock held by syz.4.3660/17087: [ 1121.739085][ C0] #0: ffff88801b6a8578 (&hugetlb_fault_mutex_table[i]){+.+.}-{3:3}, at: remove_inode_hugepages+0x38e/0x1520 [ 1121.750799][ C0] 3 locks held by syz.4.3804/17539: [ 1121.756060][ C0] #0: ffff88805f9bbdf0 (&vma->vm_lock->lock){++++}-{3:3}, at: uffd_lock_vma+0x22d/0x2e0 [ 1121.765964][ C0] #1: ffff888050d16df8 (&ctx->map_changing_lock){++++}-{3:3}, at: mfill_atomic_poison+0x2af/0x1780 [ 1121.776836][ C0] #2: ffff88801b6a8578 (&hugetlb_fault_mutex_table[i]){+.+.}-{3:3}, at: mfill_atomic_poison+0x10a6/0x1780 [ 1121.788374][ C0] 1 lock held by syz-executor/17592: [ 1121.793677][ C0] #0: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x847/0x1180 [ 1121.803364][ C0] 1 lock held by syz-executor/17604: [ 1121.808719][ C0] #0: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x847/0x1180 [ 1121.818342][ C0] 1 lock held by syz-executor/17607: [ 1121.824098][ C0] #0: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x847/0x1180 [ 1121.833793][ C0] 1 lock held by syz-executor/17616: [ 1121.839137][ C0] #0: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x847/0x1180 [ 1121.848770][ C0] 3 locks held by syz.3.3849/17697: [ 1121.853989][ C0] #0: ffffffff8f668fb0 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40 [ 1121.862255][ C0] #1: ffff888023daf678 (nlk_cb_mutex-GENERIC){+.+.}-{3:3}, at: __netlink_dump_start+0x119/0x780 [ 1121.872929][ C0] #2: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: nl80211_dump_interface+0x103/0x760 [ 1121.882982][ C0] 2 locks held by syz.3.3849/17699: [ 1121.888291][ C0] #0: ffffffff8f668fb0 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40 [ 1121.896606][ C0] #1: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: ethnl_default_set_doit+0x394/0x910 [ 1121.906577][ C0] 1 lock held by syz.3.3849/17701: [ 1121.911720][ C0] #0: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x847/0x1180 [ 1121.921356][ C0] 1 lock held by syz-executor/17703: [ 1121.926719][ C0] #0: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x847/0x1180 [ 1121.936305][ C0] [ 1121.938683][ C0] ============================================= [ 1121.938683][ C0] [ 1121.955557][ T1248] ieee802154 phy0 wpan0: encryption failed: -22 [ 1121.962250][ T1248] ieee802154 phy1 wpan1: encryption failed: -22 [ 1122.216725][ T54] Bluetooth: hci4: command tx timeout [ 1122.878825][T17701] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3849'. [ 1123.555588][ T5109] usb 4-1: USB disconnect, device number 20 [ 1124.286792][ T54] Bluetooth: hci4: command tx timeout [ 1124.303791][T17592] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1124.423618][T17592] 8021q: adding VLAN 0 to HW filter on device team0 [ 1124.510783][T17703] chnl_net:caif_netlink_parms(): no params data found [ 1124.549025][T15027] bridge0: port 1(bridge_slave_0) entered blocking state [ 1124.556392][T15027] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1124.603017][T15027] bridge0: port 2(bridge_slave_1) entered blocking state [ 1124.610261][T15027] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1124.728239][ C1] vkms_vblank_simulate: vblank timer overrun [ 1124.861367][T17604] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1125.026125][ T1102] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1125.197530][T17604] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1125.282016][ T1102] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1125.436861][T17604] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1125.512539][ T1102] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1125.690381][T17604] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1125.779730][ T1102] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1125.840397][T17703] bridge0: port 1(bridge_slave_0) entered blocking state [ 1125.856826][T17703] bridge0: port 1(bridge_slave_0) entered disabled state [ 1125.864243][T17703] bridge_slave_0: entered allmulticast mode [ 1125.886129][T17703] bridge_slave_0: entered promiscuous mode [ 1125.917829][T17703] bridge0: port 2(bridge_slave_1) entered blocking state [ 1125.937316][T17703] bridge0: port 2(bridge_slave_1) entered disabled state [ 1125.944736][T17703] bridge_slave_1: entered allmulticast mode [ 1125.965803][T17703] bridge_slave_1: entered promiscuous mode [ 1126.152414][T17703] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1126.264986][T17703] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1126.366595][ T54] Bluetooth: hci4: command tx timeout [ 1126.439481][T17604] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 1126.465001][T17592] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1126.510451][T17703] team0: Port device team_slave_0 added [ 1126.548319][T17703] team0: Port device team_slave_1 added [ 1126.737373][T17604] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 1126.750990][T17604] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 1126.778775][T17703] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1126.785760][T17703] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1126.811794][ C1] vkms_vblank_simulate: vblank timer overrun [ 1126.836347][T17703] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1126.867329][T17703] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1126.874352][T17703] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1126.900293][ C1] vkms_vblank_simulate: vblank timer overrun [ 1126.916102][T17703] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1126.945487][T17604] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 1127.125560][ T1102] bridge_slave_1: left allmulticast mode [ 1127.136920][ T1102] bridge_slave_1: left promiscuous mode [ 1127.142717][ T1102] bridge0: port 2(bridge_slave_1) entered disabled state [ 1127.173647][ T1102] bridge_slave_0: left allmulticast mode [ 1127.179800][ T1102] bridge_slave_0: left promiscuous mode [ 1127.185622][ T1102] bridge0: port 1(bridge_slave_0) entered disabled state [ 1128.270784][ T1102] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1128.305686][ T1102] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1128.332692][ T1102] bond0 (unregistering): Released all slaves [ 1128.384313][T17703] hsr_slave_0: entered promiscuous mode [ 1128.437424][T17703] hsr_slave_1: entered promiscuous mode [ 1128.463477][ T54] Bluetooth: hci4: command tx timeout [ 1128.476982][T17703] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1128.484672][T17703] Cannot create hsr debugfs directory [ 1128.680713][T17616] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 1128.813576][T17616] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 1128.904847][T17616] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 1128.922047][T17616] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 1129.085272][ T1102] hsr_slave_0: left promiscuous mode [ 1129.102112][ T1102] hsr_slave_1: left promiscuous mode [ 1129.108979][ T1102] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1129.116454][ T1102] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1129.127688][ T1102] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1129.135174][ T1102] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1129.171471][ T1102] veth1_macvtap: left promiscuous mode [ 1129.177337][ T1102] veth0_macvtap: left promiscuous mode [ 1129.183043][ T1102] veth1_vlan: left promiscuous mode [ 1129.188480][ T1102] veth0_vlan: left promiscuous mode [ 1130.648096][ T1102] team0 (unregistering): Port device team_slave_1 removed [ 1130.821444][ T1102] team0 (unregistering): Port device team_slave_0 removed [ 1132.371816][T17592] veth0_vlan: entered promiscuous mode [ 1132.483964][T17607] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 1132.512663][T17607] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 1132.613083][T17607] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 1132.690571][T17592] veth1_vlan: entered promiscuous mode [ 1132.702408][T17607] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 1133.004945][T17592] veth0_macvtap: entered promiscuous mode [ 1133.103464][T17592] veth1_macvtap: entered promiscuous mode [ 1133.214175][T17604] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1133.328654][T17592] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1133.355515][T17592] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1133.383015][T17592] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1133.393980][T17592] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1133.417043][T17592] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1133.436571][T17592] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1133.446451][T17592] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1133.458098][T17592] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1133.485310][T17592] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1133.561691][T17604] 8021q: adding VLAN 0 to HW filter on device team0 [ 1133.595066][T17592] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1133.617676][T17592] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1133.629174][T17592] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1133.639919][T17592] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1133.650863][T17592] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1133.662004][T17592] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1133.671936][T17592] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1133.694116][T17592] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1133.721722][T17592] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1133.763842][T17616] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1133.789677][ T5109] bridge0: port 1(bridge_slave_0) entered blocking state [ 1133.797133][ T5109] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1133.825174][T17607] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1133.840968][T17592] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1133.856684][T17592] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1133.865459][T17592] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1133.879003][T17592] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1133.962073][ T5109] bridge0: port 2(bridge_slave_1) entered blocking state [ 1133.969354][ T5109] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1133.992357][T17616] 8021q: adding VLAN 0 to HW filter on device team0 [ 1134.152686][T17607] 8021q: adding VLAN 0 to HW filter on device team0 [ 1134.172403][ T5109] bridge0: port 1(bridge_slave_0) entered blocking state [ 1134.179676][ T5109] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1134.194088][ T5109] bridge0: port 2(bridge_slave_1) entered blocking state [ 1134.201338][ T5109] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1134.276195][ T5109] bridge0: port 1(bridge_slave_0) entered blocking state [ 1134.283530][ T5109] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1134.351172][ T5109] bridge0: port 2(bridge_slave_1) entered blocking state [ 1134.358542][ T5109] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1134.454618][T17703] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 1134.486152][ T62] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1134.508781][ T62] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1134.552187][T17703] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 1134.576619][T17703] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 1134.660138][T17703] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 1134.720307][ T52] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1134.737263][ T52] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1134.834317][T17616] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 1135.060760][T17604] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1135.339587][T17703] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1135.453000][T17703] 8021q: adding VLAN 0 to HW filter on device team0 [ 1135.553898][ T5151] bridge0: port 1(bridge_slave_0) entered blocking state [ 1135.561172][ T5151] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1135.625924][T17607] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1135.678383][ T5151] bridge0: port 2(bridge_slave_1) entered blocking state [ 1135.685596][ T5151] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1135.753828][T17616] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1135.911093][T17703] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 1136.063603][T17604] veth0_vlan: entered promiscuous mode [ 1136.201305][T17604] veth1_vlan: entered promiscuous mode [ 1136.276285][T17616] veth0_vlan: entered promiscuous mode [ 1136.309553][T17607] veth0_vlan: entered promiscuous mode [ 1136.347289][T17607] veth1_vlan: entered promiscuous mode [ 1136.375603][T17616] veth1_vlan: entered promiscuous mode [ 1136.509282][T17604] veth0_macvtap: entered promiscuous mode [ 1136.543005][T17607] veth0_macvtap: entered promiscuous mode [ 1136.577209][T17604] veth1_macvtap: entered promiscuous mode [ 1136.782859][T17616] veth0_macvtap: entered promiscuous mode [ 1136.939911][T17607] veth1_macvtap: entered promiscuous mode [ 1137.023987][T17703] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1137.049680][T17604] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1137.074437][T17604] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1137.095220][T17604] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1137.116108][T17604] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1137.138536][T17604] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1137.164454][T17604] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1137.179344][T17604] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1137.190428][T17604] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1137.200387][T17604] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1137.211095][T17604] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1137.223463][T17604] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1137.233924][T17616] veth1_macvtap: entered promiscuous mode [ 1137.280377][T17604] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1137.301236][T17604] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1137.321721][T17604] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1137.346022][T17604] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1137.406753][T17604] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1137.426711][T17604] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1137.446640][T17604] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1137.476528][T17604] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1137.515329][T17604] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1137.529443][T17604] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1137.548714][T17604] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1137.653749][T17616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1137.686824][T17616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1137.706705][T17616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1137.728805][T17616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1137.751669][T17616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1137.762629][T17616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1137.788850][T17616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1137.799752][T17616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1137.836733][T17616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1137.862073][T17616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1137.873647][T17616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1137.905889][T17616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1137.919235][T17616] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1138.004908][T17607] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1138.041594][T17607] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1138.077404][T17607] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1138.116694][T17607] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1138.129403][T17607] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1138.139911][T17607] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1138.149814][T17607] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1138.160426][T17607] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1138.170318][T17607] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1138.353090][T17607] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1138.452956][T17607] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1138.626600][T17607] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1138.656726][T17607] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1138.698538][T17607] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1138.730818][T17607] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1138.759067][T17604] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1138.786749][T17604] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1138.816811][T17604] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1138.825667][T17604] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1138.938615][T17607] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1138.958930][T17607] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1138.977736][T17607] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1139.003558][T17607] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1139.024165][T17607] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1139.056246][T17607] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1139.073723][T17607] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1139.084282][T17607] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1139.094538][T17607] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1139.136833][T17607] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1139.156639][T17607] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1139.180453][T17607] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1139.212776][T17607] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1139.228591][T17616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1139.241888][T17616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1139.265885][T17616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1139.287732][T17616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1139.307041][T17616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1139.327828][T17616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1139.347078][T17616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1139.366614][T17616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1139.389261][T17616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1139.401425][T17616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1139.430638][T17616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1139.451054][T17616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1139.469280][T17616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1139.480000][T17616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1139.496259][T17616] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1139.508815][T17616] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1139.522540][T17616] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1139.531638][T17616] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1139.540777][T17616] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1139.639474][T17607] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1139.661835][T17607] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1139.671008][T17607] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1139.692440][T17607] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1139.732219][T17703] veth0_vlan: entered promiscuous mode [ 1139.863743][T17703] veth1_vlan: entered promiscuous mode [ 1140.024062][ T9003] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1140.076683][ T9003] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1140.205076][T17703] veth0_macvtap: entered promiscuous mode [ 1140.273967][ T9003] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1140.282203][ T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1140.300614][ T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1140.306419][ T9003] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1140.378613][T17703] veth1_macvtap: entered promiscuous mode [ 1140.464431][T17703] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1140.466682][ T62] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1140.506929][ T62] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1140.510675][T17703] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1140.551926][T17703] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1140.579357][T17703] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1140.616829][T17703] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1140.637481][T17703] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1140.666563][T17703] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1140.693270][T17703] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1140.739584][T17703] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1140.767748][T17703] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1140.777837][T17703] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1140.796641][T17703] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1140.806665][T17703] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1140.817251][T17703] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1140.827228][T17703] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1140.837832][T17703] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1140.902159][T17703] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1141.060837][T17703] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1141.106641][T17703] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1141.133896][T17703] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1141.156620][T17703] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1141.173242][T17703] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1141.183972][T17703] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1141.207093][T17703] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1141.226567][T17703] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1141.256636][T17703] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1141.298001][T17703] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1141.341981][T17703] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1141.354174][T17703] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1141.382182][T17703] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1141.416588][T17703] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1141.426461][T17703] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1141.487468][T17703] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1141.519968][T17703] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1141.571386][ T52] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1141.604126][ T52] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1141.651691][ T52] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1141.653080][T17703] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1141.688724][ T52] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1141.706354][T17703] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1141.735672][T17703] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1141.768122][T17703] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1142.310366][ T1102] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1142.342869][ T1102] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1142.554368][T17793] loop4: detected capacity change from 0 to 32768 [ 1142.638209][T17793] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1142.695663][ T52] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1142.769889][ T9003] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1142.816760][ T9003] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1142.838895][T17793] XFS (loop4): Ending clean mount [ 1142.875375][T17793] XFS (loop4): Quotacheck needed: Please wait. [ 1142.892143][ T52] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1143.012092][T17793] XFS (loop4): Quotacheck: Done. [ 1143.079765][ T52] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1143.240780][T17604] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1143.266019][ T52] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1143.518876][T17817] loop2: detected capacity change from 0 to 22 [ 1143.566343][T17817] MTD: Attempt to mount non-MTD device "/dev/loop2" [ 1143.676662][T17817] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 1143.876966][ T52] bridge_slave_1: left allmulticast mode [ 1143.882779][ T52] bridge_slave_1: left promiscuous mode [ 1143.927601][ T5104] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 1143.942822][ T5104] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 1143.952595][ T5104] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 1143.963229][ T5104] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 1143.966855][ T52] bridge0: port 2(bridge_slave_1) entered disabled state [ 1143.971761][ T5104] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 1143.985437][ T5104] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 1144.072440][ T52] bridge_slave_0: left allmulticast mode [ 1144.116757][ T52] bridge_slave_0: left promiscuous mode [ 1144.126205][ T52] bridge0: port 1(bridge_slave_0) entered disabled state [ 1145.068986][ C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 1146.047566][ T5104] Bluetooth: hci6: command tx timeout [ 1146.378682][ T52] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1146.437751][ T52] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1146.477454][ T52] bond0 (unregistering): Released all slaves [ 1146.755819][T17851] loop2: detected capacity change from 0 to 32768 [ 1147.426627][ T52] hsr_slave_0: left promiscuous mode [ 1147.446873][ T52] hsr_slave_1: left promiscuous mode [ 1147.455166][T17892] loop3: detected capacity change from 0 to 256 [ 1147.464794][ T52] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1147.487915][ T52] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1147.507781][ T52] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1147.526731][ T52] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1147.616846][ T52] veth1_macvtap: left promiscuous mode [ 1147.622472][ T52] veth0_macvtap: left promiscuous mode [ 1147.642300][ T52] veth1_vlan: left promiscuous mode [ 1147.656881][ T52] veth0_vlan: left promiscuous mode [ 1148.128359][ T5104] Bluetooth: hci6: command tx timeout [ 1150.207246][ T5104] Bluetooth: hci6: command tx timeout [ 1150.488217][ T52] team0 (unregistering): Port device team_slave_1 removed [ 1150.644978][ T52] team0 (unregistering): Port device team_slave_0 removed [ 1150.912570][T17914] loop2: detected capacity change from 0 to 32768 [ 1151.011709][T17914] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1151.205238][T17914] XFS (loop2): Ending clean mount [ 1151.253215][T17914] XFS (loop2): Quotacheck needed: Please wait. [ 1151.448239][T17914] XFS (loop2): Quotacheck: Done. [ 1151.606329][T17616] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1152.352572][ T5104] Bluetooth: hci6: command tx timeout [ 1153.166530][ C0] DEBUG: waiting rtnl_mutex for 581 jiffies. [ 1153.172595][ C0] task:syz-executor state:D stack:24480 pid:17830 tgid:17830 ppid:17812 flags:0x00004002 [ 1153.182879][ C0] Call Trace: [ 1153.186203][ C0] [ 1153.189227][ C0] __schedule+0x1800/0x4a60 [ 1153.193826][ C0] ? __pfx___schedule+0x10/0x10 [ 1153.198773][ C0] ? __pfx_lock_release+0x10/0x10 [ 1153.203863][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 1153.209424][ C0] ? schedule+0x90/0x320 [ 1153.213718][ C0] schedule+0x14b/0x320 [ 1153.217962][ C0] schedule_preempt_disabled+0x13/0x30 [ 1153.223477][ C0] __mutex_lock+0x6a4/0xd70 [ 1153.228064][ C0] ? __mutex_lock+0x527/0xd70 [ 1153.232806][ C0] ? rtnl_lock_killable+0x26/0x150 [ 1153.238003][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 1153.243084][ C0] ? __kasan_kmalloc+0x98/0xb0 [ 1153.247950][ C0] ? alloc_netdev_mqs+0xb6f/0xff0 [ 1153.253045][ C0] ? get_rtnl_holder+0x144/0x190 [ 1153.258075][ C0] rtnl_lock_killable+0x26/0x150 [ 1153.263066][ C0] register_netdev+0x13/0x50 [ 1153.267742][ C0] sit_init_net+0x1fb/0x4e0 [ 1153.272301][ C0] ops_init+0x359/0x610 [ 1153.276550][ C0] setup_net+0x515/0xca0 [ 1153.280918][ C0] ? __pfx_down_read_killable+0x10/0x10 [ 1153.286551][ C0] ? __pfx_setup_net+0x10/0x10 [ 1153.291371][ C0] copy_net_ns+0x4e2/0x7b0 [ 1153.295833][ C0] create_new_namespaces+0x425/0x7b0 [ 1153.301199][ C0] ? bpf_lsm_capable+0x9/0x10 [ 1153.305929][ C0] unshare_nsproxy_namespaces+0x124/0x180 [ 1153.311733][ C0] ksys_unshare+0x619/0xc10 [ 1153.316419][ C0] ? __pfx_ksys_unshare+0x10/0x10 [ 1153.321552][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 1153.327637][ C0] ? do_syscall_64+0x100/0x230 [ 1153.332457][ C0] __x64_sys_unshare+0x38/0x40 [ 1153.337352][ C0] do_syscall_64+0xf3/0x230 [ 1153.341903][ C0] ? clear_bhb_loop+0x35/0x90 [ 1153.346657][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1153.352602][ C0] RIP: 0033:0x7faa52777337 [ 1153.357097][ C0] RSP: 002b:00007fffc9a5bcc8 EFLAGS: 00000202 ORIG_RAX: 0000000000000110 [ 1153.365611][ C0] RAX: ffffffffffffffda RBX: 00007faa52903f20 RCX: 00007faa52777337 [ 1153.373673][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000000 [ 1153.381715][ C0] RBP: 00007faa52904a18 R08: 0000000000000000 R09: 0000000000000000 [ 1153.389759][ C0] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000000000c [ 1153.397799][ C0] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000009 [ 1153.405829][ C0] [ 1153.408914][ C0] DEBUG: holding rtnl_mutex for 603 jiffies. [ 1153.415011][ C0] task:kworker/u8:3 state:D stack:18320 pid:52 tgid:52 ppid:2 flags:0x00004000 [ 1153.425273][ C0] Workqueue: netns cleanup_net [ 1153.430233][ C0] Call Trace: [ 1153.433591][ C0] [ 1153.436597][ C0] __schedule+0x1800/0x4a60 [ 1153.441217][ C0] ? __pfx___schedule+0x10/0x10 [ 1153.446125][ C0] ? __pfx_lock_release+0x10/0x10 [ 1153.451227][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 1153.457216][ C0] ? kthread_data+0x52/0xd0 [ 1153.461773][ C0] ? wq_worker_sleeping+0x66/0x240 [ 1153.466972][ C0] ? schedule+0x90/0x320 [ 1153.471259][ C0] schedule+0x14b/0x320 [ 1153.475464][ C0] synchronize_rcu_expedited+0x684/0x830 [ 1153.481194][ C0] ? __pfx_synchronize_rcu_expedited+0x10/0x10 [ 1153.487470][ C0] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 1153.492826][ C0] ? __pfx___might_resched+0x10/0x10 [ 1153.498198][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 1153.504237][ C0] ? __pfx_autoremove_wake_function+0x10/0x10 [ 1153.510396][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 1153.516820][ C0] synchronize_rcu+0x11b/0x360 [ 1153.521638][ C0] ? __pfx_synchronize_rcu+0x10/0x10 [ 1153.527024][ C0] lockdep_unregister_key+0x556/0x610 [ 1153.532449][ C0] ? __pfx_lockdep_unregister_key+0x10/0x10 [ 1153.538433][ C0] ? rcu_is_watching+0x15/0xb0 [ 1153.543268][ C0] ? qdisc_reset+0x3bf/0x5b0 [ 1153.547966][ C0] __qdisc_destroy+0x165/0x410 [ 1153.552787][ C0] dev_shutdown+0x9b/0x440 [ 1153.557297][ C0] unregister_netdevice_many_notify+0x9c7/0x1d20 [ 1153.563876][ C0] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 1153.570851][ C0] ? unregister_netdevice_queue+0x26b/0x370 [ 1153.576930][ C0] ? batadv_softif_destroy_netlink+0x1e0/0x270 [ 1153.583144][ C0] default_device_exit_batch+0xa0f/0xa90 [ 1153.588878][ C0] ? __pfx___might_resched+0x10/0x10 [ 1153.594207][ C0] ? __pfx_default_device_exit_batch+0x10/0x10 [ 1153.600456][ C0] ? cfg802154_pernet_exit+0xc3/0xe0 [ 1153.605875][ C0] ? __pfx_default_device_exit_batch+0x10/0x10 [ 1153.612134][ C0] cleanup_net+0x89d/0xcc0 [ 1153.616632][ C0] ? __pfx_cleanup_net+0x10/0x10 [ 1153.621632][ C0] ? process_scheduled_works+0x945/0x1830 [ 1153.627425][ C0] process_scheduled_works+0xa2c/0x1830 [ 1153.633045][ C0] ? __pfx_process_scheduled_works+0x10/0x10 [ 1153.639137][ C0] ? assign_work+0x364/0x3d0 [ 1153.643785][ C0] worker_thread+0x86d/0xd40 [ 1153.648484][ C0] ? __kthread_parkme+0x169/0x1d0 [ 1153.653558][ C0] ? __pfx_worker_thread+0x10/0x10 [ 1153.658746][ C0] kthread+0x2f0/0x390 [ 1153.662870][ C0] ? __pfx_worker_thread+0x10/0x10 [ 1153.668055][ C0] ? __pfx_kthread+0x10/0x10 [ 1153.672780][ C0] ret_from_fork+0x4b/0x80 [ 1153.677391][ C0] ? __pfx_kthread+0x10/0x10 [ 1153.682168][ C0] ret_from_fork_asm+0x1a/0x30 [ 1153.687129][ C0] [ 1153.690186][ C0] DEBUG: waiting rtnl_mutex for 629 jiffies. [ 1153.696369][ C0] task:syz.4.3899 state:D stack:24224 pid:17889 tgid:17887 ppid:17604 flags:0x00004004 [ 1153.706609][ C0] Call Trace: [ 1153.709916][ C0] [ 1153.712881][ C0] __schedule+0x1800/0x4a60 [ 1153.717497][ C0] ? __pfx___schedule+0x10/0x10 [ 1153.722396][ C0] ? __pfx_lock_release+0x10/0x10 [ 1153.727504][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 1153.733031][ C0] ? schedule+0x90/0x320 [ 1153.737352][ C0] schedule+0x14b/0x320 [ 1153.741608][ C0] schedule_preempt_disabled+0x13/0x30 [ 1153.747142][ C0] __mutex_lock+0x6a4/0xd70 [ 1153.751699][ C0] ? __mutex_lock+0x527/0xd70 [ 1153.756418][ C0] ? ieee80211_register_hw+0x2b85/0x3d30 [ 1153.762139][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 1153.767343][ C0] ? get_rtnl_holder+0x144/0x190 [ 1153.772325][ C0] ieee80211_register_hw+0x2b85/0x3d30 [ 1153.777878][ C0] ? ieee80211_register_hw+0x1281/0x3d30 [ 1153.783730][ C0] ? ieee80211_register_hw+0x1081/0x3d30 [ 1153.789450][ C0] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 1153.795316][ C0] ? __asan_memset+0x23/0x50 [ 1153.799984][ C0] ? __hrtimer_init+0x170/0x250 [ 1153.804884][ C0] mac80211_hwsim_new_radio+0x2597/0x44d0 [ 1153.810733][ C0] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 1153.816887][ C0] hwsim_new_radio_nl+0xe4c/0x21d0 [ 1153.822101][ C0] ? __pfx___nla_validate_parse+0x10/0x10 [ 1153.827902][ C0] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 1153.833534][ C0] ? genl_family_rcv_msg_attrs_parse+0x1d1/0x290 [ 1153.839944][ C0] genl_rcv_msg+0xb14/0xec0 [ 1153.844493][ C0] ? mark_lock+0x9a/0x360 [ 1153.848954][ C0] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1153.854064][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 1153.859175][ C0] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 1153.864764][ C0] ? __pfx___might_resched+0x10/0x10 [ 1153.870126][ C0] netlink_rcv_skb+0x1e3/0x430 [ 1153.874940][ C0] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1153.880039][ C0] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1153.885391][ C0] ? __netlink_deliver_tap+0x77e/0x7c0 [ 1153.891020][ C0] genl_rcv+0x28/0x40 [ 1153.895139][ C0] netlink_unicast+0x7f0/0x990 [ 1153.899998][ C0] ? __pfx_netlink_unicast+0x10/0x10 [ 1153.905414][ C0] ? __virt_addr_valid+0x183/0x530 [ 1153.910615][ C0] ? __check_object_size+0x49c/0x900 [ 1153.915940][ C0] ? bpf_lsm_netlink_send+0x9/0x10 [ 1153.921126][ C0] netlink_sendmsg+0x8e4/0xcb0 [ 1153.925946][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1153.931303][ C0] ? __import_iovec+0x536/0x820 [ 1153.936196][ C0] ? aa_sock_msg_perm+0x91/0x160 [ 1153.941205][ C0] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 1153.946563][ C0] ? security_socket_sendmsg+0x87/0xb0 [ 1153.952081][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1153.957547][ C0] __sock_sendmsg+0x221/0x270 [ 1153.962291][ C0] ____sys_sendmsg+0x525/0x7d0 [ 1153.967145][ C0] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1153.972497][ C0] __sys_sendmsg+0x2b0/0x3a0 [ 1153.977175][ C0] ? __pfx___sys_sendmsg+0x10/0x10 [ 1153.982490][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 1153.988988][ C0] ? do_syscall_64+0x100/0x230 [ 1153.993797][ C0] ? do_syscall_64+0xb6/0x230 [ 1153.998643][ C0] do_syscall_64+0xf3/0x230 [ 1154.003197][ C0] ? clear_bhb_loop+0x35/0x90 [ 1154.007956][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1154.013894][ C0] RIP: 0033:0x7f4279f75bd9 [ 1154.018390][ C0] RSP: 002b:00007f427ad81048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1154.026889][ C0] RAX: ffffffffffffffda RBX: 00007f427a103f60 RCX: 00007f4279f75bd9 [ 1154.034900][ C0] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 000000000000000c [ 1154.042975][ C0] RBP: 00007f4279fe4e60 R08: 0000000000000000 R09: 0000000000000000 [ 1154.051017][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1154.059085][ C0] R13: 000000000000000b R14: 00007f427a103f60 R15: 00007fff4d18ea68 [ 1154.067153][ C0] [ 1154.070201][ C0] DEBUG: waiting rtnl_mutex for 650 jiffies. [ 1154.076201][ C0] task:kworker/0:3 state:D stack:19632 pid:5151 tgid:5151 ppid:2 flags:0x00004000 [ 1154.086450][ C0] Workqueue: events linkwatch_event [ 1154.091726][ C0] Call Trace: [ 1154.095028][ C0] [ 1154.098034][ C0] __schedule+0x1800/0x4a60 [ 1154.102610][ C0] ? __pfx___schedule+0x10/0x10 [ 1154.107533][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 1154.113556][ C0] ? __pfx_lock_release+0x10/0x10 [ 1154.118650][ C0] ? kick_pool+0x45c/0x620 [ 1154.123117][ C0] ? _raw_spin_unlock_irq+0x23/0x50 [ 1154.128396][ C0] ? lockdep_hardirqs_on+0x99/0x150 [ 1154.133651][ C0] ? schedule+0x90/0x320 [ 1154.137966][ C0] schedule+0x14b/0x320 [ 1154.142194][ C0] schedule_preempt_disabled+0x13/0x30 [ 1154.147743][ C0] __mutex_lock+0x6a4/0xd70 [ 1154.152291][ C0] ? __mutex_lock+0x527/0xd70 [ 1154.157046][ C0] ? linkwatch_event+0xe/0x60 [ 1154.161767][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 1154.166896][ C0] ? get_rtnl_holder+0x144/0x190 [ 1154.171876][ C0] ? process_scheduled_works+0x945/0x1830 [ 1154.177670][ C0] linkwatch_event+0xe/0x60 [ 1154.182214][ C0] process_scheduled_works+0xa2c/0x1830 [ 1154.187870][ C0] ? __pfx_process_scheduled_works+0x10/0x10 [ 1154.193907][ C0] ? assign_work+0x364/0x3d0 [ 1154.198575][ C0] worker_thread+0x86d/0xd40 [ 1154.203222][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 1154.209202][ C0] ? __kthread_parkme+0x169/0x1d0 [ 1154.214289][ C0] ? __pfx_worker_thread+0x10/0x10 [ 1154.219503][ C0] kthread+0x2f0/0x390 [ 1154.223625][ C0] ? __pfx_worker_thread+0x10/0x10 [ 1154.228816][ C0] ? __pfx_kthread+0x10/0x10 [ 1154.233465][ C0] ret_from_fork+0x4b/0x80 [ 1154.237970][ C0] ? __pfx_kthread+0x10/0x10 [ 1154.242617][ C0] ret_from_fork_asm+0x1a/0x30 [ 1154.247485][ C0] [ 1154.250533][ C0] DEBUG: waiting rtnl_mutex for 649 jiffies. [ 1154.256564][ C0] task:syz.3.3902 state:D stack:22640 pid:17898 tgid:17895 ppid:17703 flags:0x00000004 [ 1154.266811][ C0] Call Trace: [ 1154.270155][ C0] [ 1154.273143][ C0] __schedule+0x1800/0x4a60 [ 1154.277769][ C0] ? __pfx___schedule+0x10/0x10 [ 1154.282682][ C0] ? __pfx_lock_release+0x10/0x10 [ 1154.287795][ C0] ? __mutex_trylock_common+0x92/0x2e0 [ 1154.293333][ C0] ? schedule+0x90/0x320 [ 1154.297649][ C0] schedule+0x14b/0x320 [ 1154.301896][ C0] schedule_preempt_disabled+0x13/0x30 [ 1154.307451][ C0] __mutex_lock+0x6a4/0xd70 [ 1154.312043][ C0] ? __mutex_lock+0x527/0xd70 [ 1154.316803][ C0] ? rtnetlink_rcv_msg+0x847/0x1180 [ 1154.322051][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 1154.327165][ C0] ? get_rtnl_holder+0x144/0x190 [ 1154.332147][ C0] rtnetlink_rcv_msg+0x847/0x1180 [ 1154.337259][ C0] ? rtnetlink_rcv_msg+0x208/0x1180 [ 1154.342522][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 1154.348065][ C0] ? __local_bh_enable_ip+0x168/0x200 [ 1154.353479][ C0] ? lockdep_hardirqs_on+0x99/0x150 [ 1154.358770][ C0] ? __local_bh_enable_ip+0x168/0x200 [ 1154.364230][ C0] ? dev_hard_start_xmit+0x773/0x7e0 [ 1154.369607][ C0] ? __dev_queue_xmit+0x2da/0x3e90 [ 1154.374774][ C0] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 1154.380601][ C0] ? __dev_queue_xmit+0x2da/0x3e90 [ 1154.385770][ C0] ? __dev_queue_xmit+0x1763/0x3e90 [ 1154.391060][ C0] ? kasan_save_track+0x51/0x80 [ 1154.395981][ C0] ? do_syscall_64+0xf3/0x230 [ 1154.400754][ C0] ? __dev_queue_xmit+0x2da/0x3e90 [ 1154.405917][ C0] ? __pfx___dev_queue_xmit+0x10/0x10 [ 1154.411400][ C0] ? ref_tracker_free+0x643/0x7e0 [ 1154.416513][ C0] netlink_rcv_skb+0x1e3/0x430 [ 1154.421351][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 1154.426889][ C0] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1154.432249][ C0] ? netlink_deliver_tap+0x2e/0x1b0 [ 1154.437516][ C0] netlink_unicast+0x7f0/0x990 [ 1154.442339][ C0] ? __pfx_netlink_unicast+0x10/0x10 [ 1154.447780][ C0] ? __virt_addr_valid+0x183/0x530 [ 1154.452947][ C0] ? __check_object_size+0x49c/0x900 [ 1154.458326][ C0] ? bpf_lsm_netlink_send+0x9/0x10 [ 1154.463500][ C0] netlink_sendmsg+0x8e4/0xcb0 [ 1154.468358][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1154.473680][ C0] ? __import_iovec+0x536/0x820 [ 1154.478602][ C0] ? aa_sock_msg_perm+0x91/0x160 [ 1154.483767][ C0] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 1154.489147][ C0] ? security_socket_sendmsg+0x87/0xb0 [ 1154.494673][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1154.500036][ C0] __sock_sendmsg+0x221/0x270 [ 1154.504790][ C0] ____sys_sendmsg+0x525/0x7d0 [ 1154.509840][ C0] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1154.515383][ C0] __sys_sendmsg+0x2b0/0x3a0 [ 1154.520254][ C0] ? __pfx___sys_sendmsg+0x10/0x10 [ 1154.525459][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 1154.531895][ C0] ? do_syscall_64+0x100/0x230 [ 1154.536733][ C0] ? do_syscall_64+0xb6/0x230 [ 1154.541454][ C0] do_syscall_64+0xf3/0x230 [ 1154.546003][ C0] ? clear_bhb_loop+0x35/0x90 [ 1154.550822][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1154.556797][ C0] RIP: 0033:0x7f934e975bd9 [ 1154.561255][ C0] RSP: 002b:00007f934f6b1048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1154.569797][ C0] RAX: ffffffffffffffda RBX: 00007f934eb03f60 RCX: 00007f934e975bd9 [ 1154.577866][ C0] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 000000000000000d [ 1154.585975][ C0] RBP: 00007f934e9e4e60 R08: 0000000000000000 R09: 0000000000000000 [ 1154.594025][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1154.602090][ C0] R13: 000000000000000b R14: 00007f934eb03f60 R15: 00007ffc07333cc8 [ 1154.610183][ C0] [ 1154.613254][ C0] [ 1154.613254][ C0] Showing all locks held in the system: [ 1154.621033][ C0] 3 locks held by kworker/u8:2/35: [ 1154.626184][ C0] 5 locks held by kworker/u8:3/52: [ 1154.631378][ C0] #0: ffff888015edd948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 1154.642439][ C0] #1: ffffc90000bc7d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 1154.653098][ C0] #2: ffffffff8f5f2c10 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0 [ 1154.662989][ C0] #3: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: default_device_exit_batch+0xe9/0xa90 [ 1154.673244][ C0] #4: ffffffff8e33ac38 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x381/0x830 [ 1154.684314][ C0] 2 locks held by getty/4852: [ 1154.689065][ C0] #0: ffff88802b12e0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 1154.698947][ C0] #1: ffffc90002f062f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10 [ 1154.709194][ C0] 3 locks held by kworker/0:3/5151: [ 1154.714471][ C0] #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 1154.725663][ C0] #1: ffffc9000385fd00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 1154.736748][ C0] #2: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60 [ 1154.745819][ C0] 1 lock held by syz.2.3112/15394: [ 1154.751008][ C0] 1 lock held by syz.4.3660/17087: [ 1154.756151][ C0] #0: ffff88801b6a8578 (&hugetlb_fault_mutex_table[i]){+.+.}-{3:3}, at: remove_inode_hugepages+0x38e/0x1520 [ 1154.767951][ C0] 3 locks held by syz.4.3804/17539: [ 1154.773193][ C0] #0: ffff88805f9bbdf0 (&vma->vm_lock->lock){++++}-{3:3}, at: uffd_lock_vma+0x22d/0x2e0 [ 1154.783192][ C0] #1: ffff888050d16df8 (&ctx->map_changing_lock){++++}-{3:3}, at: mfill_atomic_poison+0x2af/0x1780 [ 1154.794193][ C0] #2: ffff88801b6a8578 (&hugetlb_fault_mutex_table[i]){+.+.}-{3:3}, at: mfill_atomic_poison+0x10a6/0x1780 [ 1154.805723][ C0] 2 locks held by syz-executor/17830: [ 1154.811250][ C0] #0: ffffffff8f5f2c10 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c6/0x7b0 [ 1154.820772][ C0] #1: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock_killable+0x26/0x150 [ 1154.830370][ C0] 3 locks held by syz.4.3899/17889: [ 1154.835595][ C0] #0: ffffffff8f668fb0 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40 [ 1154.843984][ C0] #1: ffffffff8f668e68 (genl_mutex){+.+.}-{3:3}, at: genl_rcv_msg+0x121/0xec0 [ 1154.853171][ C0] #2: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: ieee80211_register_hw+0x2b85/0x3d30 [ 1154.863224][ C0] 1 lock held by syz.3.3902/17898: [ 1154.868403][ C0] #0: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x847/0x1180 [ 1154.878124][ C0] 1 lock held by syz.1.3915/17938: [ 1154.883270][ C0] #0: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x847/0x1180 [ 1154.892887][ C0] 3 locks held by syz.2.3916/17941: [ 1154.898149][ C0] #0: ffff88805c946d80 (&u->iolock){+.+.}-{3:3}, at: __unix_dgram_recvmsg+0x246/0x12f0 [ 1154.908014][ C0] #1: ffffc90000007c00 (net/core/rtnetlink.c:83){+.-.}-{0:0}, at: call_timer_fn+0xc0/0x650 [ 1154.918231][ C0] #2: ffffffff8e335860 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0 [ 1154.928179][ C0] [ 1154.930525][ C0] ============================================= [ 1154.930525][ C0] [ 1156.145834][T17830] chnl_net:caif_netlink_parms(): no params data found [ 1156.528532][T17965] loop4: detected capacity change from 0 to 22 [ 1156.562519][T17965] MTD: Attempt to mount non-MTD device "/dev/loop4" [ 1156.618550][T17965] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 1156.661807][T15019] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0 [ 1156.670018][T15019] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0 [ 1156.677722][T15019] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0 [ 1156.685165][T15019] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0 [ 1156.694276][T15019] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0 [ 1156.702975][T15019] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0 [ 1156.710871][T15019] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0 [ 1156.721895][T15019] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0 [ 1156.729489][T15019] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0 [ 1156.737226][T15019] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0 [ 1156.756645][T15019] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0 [ 1156.764290][T15019] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0 [ 1156.786792][T15019] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0 [ 1156.794271][T15019] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0 [ 1156.827042][T15019] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0 [ 1156.857482][T15019] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0 [ 1156.865035][T15019] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0 [ 1156.886895][T15019] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0 [ 1156.889525][T17830] bridge0: port 1(bridge_slave_0) entered blocking state [ 1156.894339][T15019] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0 [ 1156.927021][T15042] usb 2-1: new high-speed USB device number 29 using dummy_hcd [ 1156.946636][T17830] bridge0: port 1(bridge_slave_0) entered disabled state [ 1156.956680][T15019] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0 [ 1156.964254][T17830] bridge_slave_0: entered allmulticast mode [ 1156.965939][T17830] bridge_slave_0: entered promiscuous mode [ 1156.986888][T15019] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0 [ 1157.006778][T15019] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0 [ 1157.009824][T17830] bridge0: port 2(bridge_slave_1) entered blocking state [ 1157.014232][T15019] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0 [ 1157.067078][T17830] bridge0: port 2(bridge_slave_1) entered disabled state [ 1157.081877][T15019] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0 [ 1157.084733][T17830] bridge_slave_1: entered allmulticast mode [ 1157.099907][T15019] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0 [ 1157.125290][T15019] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0 [ 1157.127276][T17830] bridge_slave_1: entered promiscuous mode [ 1157.157001][T15019] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0 [ 1157.177594][T15042] usb 2-1: config 0 has no interfaces? [ 1157.183164][T15042] usb 2-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00 [ 1157.192864][T15019] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0 [ 1157.200502][T15042] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1157.209177][T17980] loop3: detected capacity change from 0 to 512 [ 1157.217385][T15019] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0 [ 1157.243349][T17980] EXT4-fs (loop3): Test dummy encryption mode enabled [ 1157.244416][T15042] usb 2-1: config 0 descriptor?? [ 1157.266132][T15019] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0 [ 1157.277553][T17980] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 1157.281742][T15019] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0 [ 1157.305320][T15019] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0 [ 1157.317786][T17830] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1157.351984][T15019] hid-generic 0000:0000:0000.0013: hidraw0: HID v0.00 Device [syz0] on syz0 [ 1157.371770][T17980] EXT4-fs (loop3): 1 truncate cleaned up [ 1157.373933][T17830] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1157.379284][T17980] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1157.436723][T17980] EXT4-fs error (device loop3): ext4_search_dir:1504: inode #2: block 13: comm syz.3.3929: bad entry in directory: rec_len is smaller than minimal - offset=76, inode=16, rec_len=0, size=1024 fake=0 [ 1157.498142][T17830] team0: Port device team_slave_0 added [ 1157.508712][T17980] EXT4-fs (loop3): Remounting filesystem read-only [ 1157.585742][T17703] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1157.621145][T17830] team0: Port device team_slave_1 added [ 1157.754681][T15019] usb 2-1: USB disconnect, device number 29 [ 1157.779261][T17830] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1157.797927][T17830] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1157.865408][T17830] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1157.889500][T17830] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1157.911495][T17830] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1157.993379][T17830] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1158.817095][ T54] Bluetooth: hci8: command 0x0406 tx timeout [ 1159.105567][T17996] can: request_module (can-proto-0) failed. [ 1159.201325][T17830] hsr_slave_0: entered promiscuous mode [ 1159.222724][T18005] program syz.3.3937 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1159.257167][T17830] hsr_slave_1: entered promiscuous mode [ 1159.298579][T17830] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1159.306216][T17830] Cannot create hsr debugfs directory [ 1159.418316][T18006] loop2: detected capacity change from 0 to 22 [ 1159.441036][T18006] MTD: Attempt to mount non-MTD device "/dev/loop2" [ 1159.484606][T18006] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 1160.711801][ T29] audit: type=1326 audit(1720442549.852:999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18025 comm="syz.1.3945" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f702e775bd9 code=0x0 [ 1160.724245][T18032] loop3: detected capacity change from 0 to 512 [ 1160.767640][T18032] EXT4-fs: Ignoring removed bh option [ 1160.796439][T18032] EXT4-fs error (device loop3): __ext4_iget:4980: inode #12: block 2: comm syz.3.3946: invalid block [ 1160.842328][T18032] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz.3.3946: couldn't read orphan inode 12 (err -117) [ 1160.890073][T18032] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1160.945021][T18038] macsec1: entered promiscuous mode [ 1160.968687][ T29] audit: type=1800 audit(1720442550.122:1000): pid=18032 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.3946" name="bus" dev="loop3" ino=18 res=0 errno=0 [ 1161.019908][T18038] macvlan1: entered promiscuous mode [ 1161.025689][T18038] macsec1: entered allmulticast mode [ 1161.069766][T18038] macvlan1: entered allmulticast mode [ 1161.079245][T18043] program syz.4.3950 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1161.095471][T18038] veth1_vlan: entered allmulticast mode [ 1161.166432][T18038] macvlan1: left allmulticast mode [ 1161.240315][T18038] veth1_vlan: left allmulticast mode [ 1161.265753][T17703] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1161.299245][T18038] macvlan1: left promiscuous mode [ 1161.345910][T18044] can: request_module (can-proto-0) failed. [ 1161.621124][T18054] loop4: detected capacity change from 0 to 22 [ 1161.647433][T18054] MTD: Attempt to mount non-MTD device "/dev/loop4" [ 1161.688725][T18054] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 1162.339089][T17830] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 1162.804075][T17830] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 1162.839930][T18069] loop4: detected capacity change from 0 to 512 [ 1162.911846][T17830] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 1162.957072][T17830] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 1163.017063][ T29] audit: type=1326 audit(1720442552.162:1001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18068 comm="syz.4.3959" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4279f75bd9 code=0x0 [ 1163.219964][T17830] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1163.284940][T17830] 8021q: adding VLAN 0 to HW filter on device team0 [ 1163.341802][T15019] bridge0: port 1(bridge_slave_0) entered blocking state [ 1163.349085][T15019] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1163.398107][T15042] bridge0: port 2(bridge_slave_1) entered blocking state [ 1163.398209][T15042] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1163.819640][T18085] loop4: detected capacity change from 0 to 1024 [ 1163.892939][T18087] loop3: detected capacity change from 0 to 512 [ 1163.963472][T18087] EXT4-fs error (device loop3): ext4_orphan_get:1394: inode #15: comm syz.3.3965: casefold flag without casefold feature [ 1163.963801][T18087] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz.3.3965: couldn't read orphan inode 15 (err -117) [ 1163.965510][T18087] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1164.455843][T17703] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1164.663302][T18099] macsec1: entered promiscuous mode [ 1164.689103][T18099] macvlan1: entered promiscuous mode [ 1164.715206][T18099] macsec1: entered allmulticast mode [ 1164.741289][T18099] macvlan1: entered allmulticast mode [ 1164.761365][T18099] veth1_vlan: entered allmulticast mode [ 1164.778687][T18099] macvlan1: left allmulticast mode [ 1164.794526][T18099] veth1_vlan: left allmulticast mode [ 1164.806987][T18099] macvlan1: left promiscuous mode [ 1165.095366][T17830] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1165.188515][T18114] loop4: detected capacity change from 0 to 512 [ 1165.269000][T17830] veth0_vlan: entered promiscuous mode [ 1165.305751][T17830] veth1_vlan: entered promiscuous mode [ 1165.308599][ T29] audit: type=1326 audit(1720442554.452:1002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18113 comm="syz.4.3975" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4279f75bd9 code=0x0 [ 1165.333243][ C1] vkms_vblank_simulate: vblank timer overrun [ 1165.462323][T17830] veth0_macvtap: entered promiscuous mode [ 1165.502380][T17830] veth1_macvtap: entered promiscuous mode [ 1165.561508][T17830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1165.616869][T17830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1165.642849][T17830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1165.662268][T17830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1165.673618][T17830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1165.684355][T17830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1165.694672][T17830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1165.716210][T17830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1165.745955][T17830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1165.766075][T17830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1165.786621][T17830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1165.808509][T17830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1165.833285][T17830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1165.855851][T17830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1165.878511][T17830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1165.904345][T17830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1165.934915][T17830] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1166.011343][T17830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1166.033447][T17830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1166.038352][T18124] loop2: detected capacity change from 0 to 8192 [ 1166.061670][T17830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1166.072455][T17830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1166.082440][T17830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1166.096667][T18124] REISERFS warning (device loop2): super-6515 reiserfs_parse_options: journaled quota format not specified. [ 1166.108987][T17830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1166.119195][T17830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1166.125614][T18135] loop3: detected capacity change from 0 to 128 [ 1166.166556][T17830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1166.176433][T17830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1166.238637][T18135] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1166.254222][T17830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1166.285154][T18135] ext4 filesystem being mounted at /22/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 1166.326748][T17830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1166.376588][T17830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1166.410210][T17830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1166.486643][T17830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1166.508417][T17830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1166.536732][T17830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1166.571101][T17830] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1166.604552][T17830] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1166.625098][T17830] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1166.637826][T17830] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1166.661728][T17830] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1166.903010][T17703] EXT4-fs error (device loop3): ext4_readdir:220: inode #11: comm syz-executor: path (unknown): directory fails checksum at offset 1024 [ 1166.948845][T17703] EXT4-fs error (device loop3): ext4_readdir:220: inode #11: comm syz-executor: path (unknown): directory fails checksum at offset 8192 [ 1166.986887][T17703] EXT4-fs error (device loop3): ext4_empty_dir:3071: inode #11: block 1: comm syz-executor: Directory block failed checksum [ 1167.019055][ T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1167.043890][ T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1167.051701][T18144] xt_recent: Unsupported userspace flags (00000076) [ 1167.068075][T17703] EXT4-fs error (device loop3): ext4_readdir:220: inode #11: comm syz-executor: path (unknown): directory fails checksum at offset 1024 [ 1167.140955][T17703] EXT4-fs error (device loop3): ext4_readdir:220: inode #11: comm syz-executor: path (unknown): directory fails checksum at offset 8192 [ 1167.204237][T17703] EXT4-fs error (device loop3): ext4_empty_dir:3071: inode #11: block 1: comm syz-executor: Directory block failed checksum [ 1167.232746][T16777] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1167.269888][T16777] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1167.301073][T17703] EXT4-fs error (device loop3): ext4_readdir:220: inode #11: comm syz-executor: path (unknown): directory fails checksum at offset 1024 [ 1167.335784][T18152] loop4: detected capacity change from 0 to 128 [ 1167.357692][T17703] EXT4-fs error (device loop3): ext4_readdir:220: inode #11: comm syz-executor: path (unknown): directory fails checksum at offset 8192 [ 1167.421809][T17703] EXT4-fs error (device loop3): ext4_empty_dir:3071: inode #11: block 1: comm syz-executor: Directory block failed checksum [ 1167.471336][T17703] EXT4-fs error (device loop3): ext4_readdir:220: inode #11: comm syz-executor: path (unknown): directory fails checksum at offset 1024 [ 1168.568785][T17703] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1169.468192][T16777] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1169.930614][T16777] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1170.064540][T18175] xt_recent: Unsupported userspace flags (00000076) [ 1170.102430][T16777] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1170.329651][T16777] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1170.422547][ T54] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 1170.440912][ T54] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 1170.472824][ T54] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 1170.495561][ T54] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 1170.505558][ T54] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 1170.515818][ T54] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 1170.735276][T18187] can: request_module (can-proto-0) failed. [ 1170.816289][T16777] bridge_slave_1: left allmulticast mode [ 1170.823553][T16777] bridge_slave_1: left promiscuous mode [ 1170.829530][T16777] bridge0: port 2(bridge_slave_1) entered disabled state [ 1170.853604][T16777] bridge_slave_0: left allmulticast mode [ 1170.862047][T16777] bridge_slave_0: left promiscuous mode [ 1170.872027][T16777] bridge0: port 1(bridge_slave_0) entered disabled state [ 1171.827127][ T54] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 1171.847456][ T54] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 1171.862157][ T54] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 1171.881431][ T54] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 1171.891813][ T54] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 1171.900722][ T54] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 1172.618138][ T54] Bluetooth: hci4: command tx timeout [ 1173.947420][T16777] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1173.977789][ T54] Bluetooth: hci6: command tx timeout [ 1174.010899][T16777] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1174.042700][T16777] bond0 (unregistering): Released all slaves [ 1174.266819][T18216] xt_recent: Unsupported userspace flags (00000076) [ 1174.696653][ T54] Bluetooth: hci4: command tx timeout [ 1176.056713][ T54] Bluetooth: hci6: command tx timeout [ 1176.168102][T18241] loop4: detected capacity change from 0 to 1024 [ 1176.269013][T18185] chnl_net:caif_netlink_parms(): no params data found [ 1176.377644][T16777] hsr_slave_0: left promiscuous mode [ 1176.388978][T16777] hsr_slave_1: left promiscuous mode [ 1176.405035][T16777] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1176.417451][T16777] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1176.447586][T16777] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1176.467771][T16777] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1176.545803][T16777] veth1_macvtap: left promiscuous mode [ 1176.556694][T16777] veth0_macvtap: left promiscuous mode [ 1176.565073][T16777] veth1_vlan: left promiscuous mode [ 1176.574692][T16777] veth0_vlan: left promiscuous mode [ 1176.711703][T18248] sctp: [Deprecated]: syz.2.4022 (pid 18248) Use of int in max_burst socket option deprecated. [ 1176.711703][T18248] Use struct sctp_assoc_value instead [ 1176.767229][ T54] Bluetooth: hci4: command tx timeout [ 1177.066959][ T8997] hfsplus: b-tree write err: -5, ino 4 [ 1177.478587][T18262] loop2: detected capacity change from 0 to 1024 [ 1177.586333][T18260] loop4: detected capacity change from 0 to 4096 [ 1177.594949][T18260] ntfs3: loop4: Different NTFS sector size (4096) and media sector size (512). [ 1177.630105][T18260] ntfs3: loop4: It is recommened to use chkdsk. [ 1177.738126][ T1053] hfsplus: b-tree write err: -5, ino 4 [ 1177.783112][T18260] ntfs3: loop4: failed to convert "076c" to cp852 [ 1178.139362][ T54] Bluetooth: hci6: command tx timeout [ 1178.383758][T18265] loop2: detected capacity change from 0 to 4096 [ 1179.046762][ T54] Bluetooth: hci4: command tx timeout [ 1179.121366][ T30] INFO: task syz.4.3660:17087 blocked for more than 143 seconds. [ 1179.146610][ T30] Not tainted 6.10.0-rc6-next-20240703-syzkaller #0 [ 1179.175213][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1179.202304][ T30] task:syz.4.3660 state:D stack:24672 pid:17087 tgid:17087 ppid:16538 flags:0x00000004 [ 1179.234064][ T30] Call Trace: [ 1179.251350][ T30] [ 1179.261740][ T30] __schedule+0x1800/0x4a60 [ 1179.266343][ T30] ? __pfx___schedule+0x10/0x10 [ 1179.271333][ T30] ? __pfx_lock_release+0x10/0x10 [ 1179.276421][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 1179.282558][ T30] ? schedule+0x90/0x320 [ 1179.286928][ T30] schedule+0x14b/0x320 [ 1179.291220][ T30] io_schedule+0x8d/0x110 [ 1179.295651][ T30] folio_wait_bit_common+0x882/0x12b0 [ 1179.301137][ T30] ? __pfx_folio_wait_bit_common+0x10/0x10 [ 1179.307070][ T30] ? __pfx_wake_page_function+0x10/0x10 [ 1179.312685][ T30] remove_inode_hugepages+0x508/0x1520 [ 1179.318261][ T30] ? __pfx_remove_inode_hugepages+0x10/0x10 [ 1179.324210][ T30] ? do_raw_spin_lock+0x14f/0x370 [ 1179.329841][ T30] ? __pfx_inode_wait_for_writeback+0x10/0x10 [ 1179.336628][ T30] ? __pfx_wake_bit_function+0x10/0x10 [ 1179.342154][ T30] ? do_raw_spin_unlock+0x13c/0x8b0 [ 1179.357315][ T30] ? __pfx_hugetlbfs_evict_inode+0x10/0x10 [ 1179.363294][ T30] hugetlbfs_evict_inode+0x23/0x70 [ 1179.375412][ T30] ? __pfx_hugetlbfs_evict_inode+0x10/0x10 [ 1179.385868][ T30] evict+0x2a8/0x630 [ 1179.398210][ T30] __dentry_kill+0x20d/0x630 [ 1179.408336][ T30] ? dput+0x37/0x2b0 [ 1179.416579][ T30] dput+0x19f/0x2b0 [ 1179.425138][ T30] __fput+0x5f8/0x8a0 [ 1179.434163][ T30] task_work_run+0x24f/0x310 [ 1179.439998][ T30] ? __pfx_task_work_run+0x10/0x10 [ 1179.450888][ T30] ? syscall_exit_to_user_mode+0xa3/0x370 [ 1179.456890][ T30] syscall_exit_to_user_mode+0x168/0x370 [ 1179.462754][ T30] do_syscall_64+0x100/0x230 [ 1179.475273][ T30] ? clear_bhb_loop+0x35/0x90 [ 1179.480618][T18265] overlayfs: upper fs does not support tmpfile. [ 1179.491987][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1179.498089][ T30] RIP: 0033:0x7f4a97775bd9 [ 1179.502635][ T30] RSP: 002b:00007ffd20ca0e48 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 1179.514743][T18270] overlayfs: upper fs does not support tmpfile. [ 1179.518789][ T30] RAX: 0000000000000000 RBX: 00000000000f9ac4 RCX: 00007f4a97775bd9 [ 1179.535314][T18265] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 1179.542497][ T30] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003 [ 1179.544556][T18270] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 1179.553365][ T30] RBP: ffffffffffffffff R08: 0000000000000001 R09: 0000000420ca116f [ 1179.575618][ T30] R10: 00007f4a97600000 R11: 0000000000000246 R12: 00007f4a97903f6c [ 1179.577895][T18271] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection. [ 1179.588125][ T30] R13: 0000000000000032 R14: 00007f4a97905a60 R15: 00007f4a97903f60 [ 1179.611354][ T30] [ 1179.630690][ T30] [ 1179.630690][ T30] Showing all locks held in the system: [ 1179.641031][ T30] 1 lock held by khungtaskd/30: [ 1179.645925][ T30] #0: ffffffff8e335860 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0 [ 1179.659107][ T30] 3 locks held by kworker/1:1/46: [ 1179.664288][ T30] #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 1179.675740][ T30] #1: ffffc90000b67d00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 1179.688434][T18270] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection. [ 1179.702922][ T30] #2: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60 [ 1179.712171][ T30] 2 locks held by getty/4852: [ 1179.720591][ T30] #0: ffff88802b12e0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 1179.733468][ T30] #1: ffffc90002f062f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10 [ 1179.744494][ T30] 1 lock held by syz.2.3112/15394: [ 1179.751522][ T30] 5 locks held by kworker/u8:1/16777: [ 1179.759862][ T30] #0: ffff888015edd948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 1179.771062][ T30] #1: ffffc900095dfd00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 1179.781923][ T30] #2: ffffffff8f5f2c10 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0 [ 1179.791548][ T30] #3: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: default_device_exit_batch+0xe9/0xa90 [ 1179.801961][ T30] #4: ffffffff8e33ac38 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x381/0x830 [ 1179.813256][ T30] 1 lock held by syz.4.3660/17087: [ 1179.818553][ T30] #0: ffff88801b6a8578 (&hugetlb_fault_mutex_table[i]){+.+.}-{3:3}, at: remove_inode_hugepages+0x38e/0x1520 [ 1179.832672][ T30] 3 locks held by syz.4.3804/17539: [ 1179.840303][ T30] #0: ffff88805f9bbdf0 (&vma->vm_lock->lock){++++}-{3:3}, at: uffd_lock_vma+0x22d/0x2e0 [ 1179.850446][ T30] #1: ffff888050d16df8 (&ctx->map_changing_lock){++++}-{3:3}, at: mfill_atomic_poison+0x2af/0x1780 [ 1179.865556][ T30] #2: ffff88801b6a8578 (&hugetlb_fault_mutex_table[i]){+.+.}-{3:3}, at: mfill_atomic_poison+0x10a6/0x1780 [ 1179.877337][ T30] 1 lock held by syz-executor/18185: [ 1179.882738][ T30] #0: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x847/0x1180 [ 1179.894546][ T30] 1 lock held by syz-executor/18200: [ 1179.900189][ T30] #0: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x847/0x1180 [ 1179.910013][ T30] 1 lock held by syz.1.4021/18245: [ 1179.915237][ T30] #0: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x847/0x1180 [ 1179.925021][ T30] 1 lock held by syz.2.4029/18270: [ 1179.930329][ T30] #0: ffff888055c500e0 (&type->s_umount_key#52/1){+.+.}-{3:3}, at: alloc_super+0x221/0x9d0 [ 1179.944375][ T30] 2 locks held by syz.2.4029/18271: [ 1179.955758][ T30] #0: ffff8880660f20e0 (&type->s_umount_key#52/1){+.+.}-{3:3}, at: alloc_super+0x221/0x9d0 [ 1179.982106][ T30] #1: ffffffff8e33ac38 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x451/0x830 [ 1180.005627][ T30] [ 1180.010579][ T30] ============================================= [ 1180.010579][ T30] [ 1180.053740][ T30] NMI backtrace for cpu 0 [ 1180.058248][ T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.10.0-rc6-next-20240703-syzkaller #0 [ 1180.068301][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 1180.078382][ T30] Call Trace: [ 1180.081772][ T30] [ 1180.084724][ T30] dump_stack_lvl+0x241/0x360 [ 1180.089446][ T30] ? __pfx_dump_stack_lvl+0x10/0x10 [ 1180.094681][ T30] ? __pfx__printk+0x10/0x10 [ 1180.099341][ T30] ? __pfx_vprintk_emit+0x10/0x10 [ 1180.104400][ T30] nmi_cpu_backtrace+0x49c/0x4d0 [ 1180.109391][ T30] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 1180.114863][ T30] ? _printk+0xd5/0x120 [ 1180.119035][ T30] ? __pfx__printk+0x10/0x10 [ 1180.123640][ T30] ? __wake_up_klogd+0x109/0x140 [ 1180.128588][ T30] ? __pfx__printk+0x10/0x10 [ 1180.133191][ T30] ? __rcu_read_unlock+0xa1/0x110 [ 1180.138224][ T30] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 1180.144217][ T30] nmi_trigger_cpumask_backtrace+0x198/0x320 [ 1180.150206][ T30] watchdog+0xfee/0x1030 [ 1180.154457][ T30] ? watchdog+0x1ea/0x1030 [ 1180.159241][ T30] ? __pfx_watchdog+0x10/0x10 [ 1180.164024][ T30] kthread+0x2f0/0x390 [ 1180.168115][ T30] ? __pfx_watchdog+0x10/0x10 [ 1180.172809][ T30] ? __pfx_kthread+0x10/0x10 [ 1180.177414][ T30] ret_from_fork+0x4b/0x80 [ 1180.181844][ T30] ? __pfx_kthread+0x10/0x10 [ 1180.186446][ T30] ret_from_fork_asm+0x1a/0x30 [ 1180.191265][ T30] [ 1180.197400][ T30] Sending NMI from CPU 0 to CPUs 1: [ 1180.202669][ C1] NMI backtrace for cpu 1 [ 1180.202683][ C1] CPU: 1 UID: 0 PID: 8997 Comm: kworker/u8:12 Not tainted 6.10.0-rc6-next-20240703-syzkaller #0 [ 1180.202705][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 1180.202717][ C1] Workqueue: bat_events batadv_nc_worker [ 1180.202748][ C1] RIP: 0010:kasan_check_range+0x1ba/0x290 [ 1180.202775][ C1] Code: fb 48 8d 5d 07 48 85 ed 48 0f 49 dd 48 83 e3 f8 48 29 dd 74 12 41 80 3b 00 0f 85 a6 00 00 00 49 ff c3 48 ff cd 75 ee 5b 41 5c <41> 5e 41 5f 5d c3 cc cc cc cc 40 84 ed 75 5f f7 c5 00 ff 00 00 75 [ 1180.202795][ C1] RSP: 0018:ffffc9000d13fa00 EFLAGS: 00000256 [ 1180.202811][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffff816f8d70 [ 1180.202824][ C1] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff8faf7a68 [ 1180.202837][ C1] RBP: 0000000000000000 R08: ffffffff8faf7a6f R09: 1ffffffff1f5ef4d [ 1180.202850][ C1] R10: dffffc0000000000 R11: fffffbfff1f5ef4e R12: 1ffff92001a27f50 [ 1180.202864][ C1] R13: ffffffff8b5b9e2b R14: dffffc0000000001 R15: fffffbfff1f5ef4e [ 1180.202879][ C1] FS: 0000000000000000(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000 [ 1180.202894][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1180.202907][ C1] CR2: 0000001b31101ff8 CR3: 000000000e132000 CR4: 00000000003506f0 [ 1180.202924][ C1] Call Trace: [ 1180.202932][ C1] [ 1180.202940][ C1] ? nmi_cpu_backtrace+0x3c2/0x4d0 [ 1180.202963][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 1180.202989][ C1] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 1180.203010][ C1] ? nmi_handle+0x2a/0x5a0 [ 1180.203037][ C1] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 1180.203060][ C1] ? nmi_handle+0x14f/0x5a0 [ 1180.203077][ C1] ? nmi_handle+0x2a/0x5a0 [ 1180.203095][ C1] ? kasan_check_range+0x1ba/0x290 [ 1180.203117][ C1] ? default_do_nmi+0x63/0x160 [ 1180.203140][ C1] ? exc_nmi+0x123/0x1f0 [ 1180.203161][ C1] ? end_repeat_nmi+0xf/0x53 [ 1180.203184][ C1] ? batadv_nc_worker+0xcb/0x610 [ 1180.203211][ C1] ? lock_release+0xb0/0x9f0 [ 1180.203234][ C1] ? kasan_check_range+0x1ba/0x290 [ 1180.203257][ C1] ? kasan_check_range+0x1ba/0x290 [ 1180.203281][ C1] ? kasan_check_range+0x1ba/0x290 [ 1180.203304][ C1] [ 1180.203311][ C1] [ 1180.203318][ C1] lock_release+0xb0/0x9f0 [ 1180.203342][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 1180.203367][ C1] ? batadv_nc_worker+0xcb/0x610 [ 1180.203391][ C1] ? __pfx_lock_release+0x10/0x10 [ 1180.203417][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 1180.203443][ C1] ? batadv_nc_worker+0xcb/0x610 [ 1180.203468][ C1] batadv_nc_worker+0x28b/0x610 [ 1180.203492][ C1] ? batadv_nc_worker+0xcb/0x610 [ 1180.203518][ C1] ? process_scheduled_works+0x945/0x1830 [ 1180.203541][ C1] process_scheduled_works+0xa2c/0x1830 [ 1180.203581][ C1] ? __pfx_process_scheduled_works+0x10/0x10 [ 1180.203609][ C1] ? assign_work+0x364/0x3d0 [ 1180.203634][ C1] worker_thread+0x86d/0xd40 [ 1180.203666][ C1] ? __kthread_parkme+0x169/0x1d0 [ 1180.203693][ C1] ? __pfx_worker_thread+0x10/0x10 [ 1180.203716][ C1] kthread+0x2f0/0x390 [ 1180.203740][ C1] ? __pfx_worker_thread+0x10/0x10 [ 1180.203762][ C1] ? __pfx_kthread+0x10/0x10 [ 1180.203795][ C1] ret_from_fork+0x4b/0x80 [ 1180.203819][ C1] ? __pfx_kthread+0x10/0x10 [ 1180.203845][ C1] ret_from_fork_asm+0x1a/0x30 [ 1180.203880][ C1] [ 1180.238245][T17616] ntfs3: loop2: failed to convert "0000" to iso8859-15 [ 1180.306984][ T54] Bluetooth: hci6: command tx timeout [ 1180.322242][T17616] ntfs3: loop2: failed to convert name for inode 1e. [ 1180.353184][ T30] Kernel panic - not syncing: hung_task: blocked tasks [ 1180.353208][ T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.10.0-rc6-next-20240703-syzkaller #0 [ 1180.353238][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 1180.353254][ T30] Call Trace: [ 1180.353267][ T30] [ 1180.353279][ T30] dump_stack_lvl+0x241/0x360 [ 1180.353327][ T30] ? __pfx_dump_stack_lvl+0x10/0x10 [ 1180.353365][ T30] ? __pfx__printk+0x10/0x10 [ 1180.353397][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 1180.353440][ T30] ? vscnprintf+0x5d/0x90 [ 1180.353470][ T30] panic+0x349/0x870 [ 1180.353508][ T30] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 1180.353539][ T30] ? __pfx_panic+0x10/0x10 [ 1180.353570][ T30] ? tick_nohz_tick_stopped+0x82/0xb0 [ 1180.353601][ T30] ? __irq_work_queue_local+0x137/0x410 [ 1180.353637][ T30] ? preempt_schedule_thunk+0x1a/0x30 [ 1180.353665][ T30] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 1180.353694][ T30] ? nmi_trigger_cpumask_backtrace+0x2d4/0x320 [ 1180.353726][ T30] ? nmi_trigger_cpumask_backtrace+0x2d9/0x320 [ 1180.353759][ T30] watchdog+0x102d/0x1030 [ 1180.353805][ T30] ? watchdog+0x1ea/0x1030 [ 1180.353846][ T30] ? __pfx_watchdog+0x10/0x10 [ 1180.353881][ T30] kthread+0x2f0/0x390 [ 1180.353926][ T30] ? __pfx_watchdog+0x10/0x10 [ 1180.353958][ T30] ? __pfx_kthread+0x10/0x10 [ 1180.353992][ T30] ret_from_fork+0x4b/0x80 [ 1180.354024][ T30] ? __pfx_kthread+0x10/0x10 [ 1180.354061][ T30] ret_from_fork_asm+0x1a/0x30 [ 1180.354110][ T30] [ 1180.358808][ T30] Kernel Offset: disabled