[ OK ] Started Getty on tty4. [ OK ] Started Getty on tty3. [ OK ] Started Getty on tty2. [ OK ] Started Getty on tty1. [ OK ] Started Serial Getty on ttyS0. [ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.1.28' (ECDSA) to the list of known hosts. 2020/05/27 23:52:02 fuzzer started 2020/05/27 23:52:02 dialing manager at 10.128.0.26:46843 2020/05/27 23:52:02 syscalls: 3055 2020/05/27 23:52:02 code coverage: enabled 2020/05/27 23:52:02 comparison tracing: enabled 2020/05/27 23:52:02 extra coverage: enabled 2020/05/27 23:52:02 setuid sandbox: enabled 2020/05/27 23:52:02 namespace sandbox: enabled 2020/05/27 23:52:02 Android sandbox: /sys/fs/selinux/policy does not exist 2020/05/27 23:52:02 fault injection: enabled 2020/05/27 23:52:02 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2020/05/27 23:52:02 net packet injection: enabled 2020/05/27 23:52:02 net device setup: enabled 2020/05/27 23:52:02 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2020/05/27 23:52:02 devlink PCI setup: PCI device 0000:00:10.0 is not available 2020/05/27 23:52:02 USB emulation: enabled 23:53:38 executing program 0: r0 = socket$inet6(0xa, 0x1, 0x8010000000000084) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x400004e21, 0x0, @empty}, 0x1c) syz_genetlink_get_family_id$nl80211(0x0) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e21, 0x4, @loopback}, 0x1c) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x133) write(r0, &(0x7f00000001c0)='s', 0xffcf) syzkaller login: [ 161.670813][ T6899] IPVS: ftp: loaded support on port[0] = 21 23:53:38 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000880)='/dev/loop#\x00', 0x0, 0x0) r1 = memfd_create(&(0x7f0000000240)='.^\xc5', 0x0) pwritev(r1, 0x0, 0x0, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) ioctl$LOOP_SET_FD(r0, 0x4c06, r1) [ 161.830848][ T6899] chnl_net:caif_netlink_parms(): no params data found [ 161.909358][ T6899] bridge0: port 1(bridge_slave_0) entered blocking state [ 161.918355][ T6899] bridge0: port 1(bridge_slave_0) entered disabled state [ 161.927791][ T6899] device bridge_slave_0 entered promiscuous mode [ 161.938876][ T6899] bridge0: port 2(bridge_slave_1) entered blocking state [ 161.947863][ T6899] bridge0: port 2(bridge_slave_1) entered disabled state [ 161.957631][ T6899] device bridge_slave_1 entered promiscuous mode [ 161.989385][ T6899] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 162.005856][ T6899] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 162.048294][ T6899] team0: Port device team_slave_0 added [ 162.063600][ T6899] team0: Port device team_slave_1 added [ 162.083189][ T7045] IPVS: ftp: loaded support on port[0] = 21 [ 162.121533][ T6899] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 162.129877][ T6899] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 162.157829][ T6899] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active 23:53:39 executing program 2: perf_event_open(&(0x7f0000000300)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) dup(0xffffffffffffffff) getpeername$packet(0xffffffffffffffff, 0x0, &(0x7f0000000040)) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) getitimer(0x1, &(0x7f00000000c0)) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000040)='tls\x00', 0x13) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) socket$unix(0x1, 0x2, 0x0) ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000140)={'syz_tun\x00', &(0x7f0000000040)=@ethtool_rxfh={0x0, 0x0, 0x0, 0x0, 0x0, "a0d5d2"}}) ioctl$KVM_GET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee2, 0x0) getsockopt$IP_SET_OP_VERSION(0xffffffffffffffff, 0x1, 0x53, 0x0, 0x0) r1 = add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) keyctl$setperm(0x5, r1, 0x0) add_key$keyring(&(0x7f0000000000)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x5a, 0xfffffffffffffffd) [ 162.192769][ T6899] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 162.200322][ T6899] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 162.227784][ T6899] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 162.378338][ T6899] device hsr_slave_0 entered promiscuous mode [ 162.425849][ T6899] device hsr_slave_1 entered promiscuous mode [ 162.520319][ T7087] IPVS: ftp: loaded support on port[0] = 21 23:53:39 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000040)) ioctl$TIOCPKT(r0, 0x5420, &(0x7f00000002c0)=0x400000005) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETS(r1, 0x5402, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "b7b5a5e7d62d7865be967dbf6ac7a5a333f434"}) [ 162.780024][ T7045] chnl_net:caif_netlink_parms(): no params data found [ 162.979434][ T7087] chnl_net:caif_netlink_parms(): no params data found 23:53:39 executing program 4: r0 = bpf$MAP_CREATE(0x1000000000000, &(0x7f00000000c0)={0x2, 0x800000000000004, 0x400000, 0x1}, 0x40) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000040)={r0, &(0x7f0000000000), &(0x7f00000001c0)}, 0x20) [ 163.137254][ T6899] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 163.252554][ T6899] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 163.297209][ T6899] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 163.366994][ T7045] bridge0: port 1(bridge_slave_0) entered blocking state [ 163.374419][ T7045] bridge0: port 1(bridge_slave_0) entered disabled state [ 163.382580][ T7045] device bridge_slave_0 entered promiscuous mode 23:53:40 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="5c0000001000011821f6a0b235000000000000b1", @ANYRES32=r1, @ANYBLOB="00000000000000003c001280110001006272696467655f736c617665000000002400058005001e00010000000500190003"], 0x5c}}, 0x0) r2 = socket(0x10, 0x8000000000000003, 0x0) sendmmsg(r2, &(0x7f0000000000), 0x40000000000024a, 0x0) [ 163.413615][ T7332] IPVS: ftp: loaded support on port[0] = 21 [ 163.420058][ T6899] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 163.433790][ T7345] IPVS: ftp: loaded support on port[0] = 21 [ 163.483040][ T7045] bridge0: port 2(bridge_slave_1) entered blocking state [ 163.490361][ T7045] bridge0: port 2(bridge_slave_1) entered disabled state [ 163.502736][ T7045] device bridge_slave_1 entered promiscuous mode [ 163.646529][ T7045] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 163.660838][ T7045] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 163.686616][ T7087] bridge0: port 1(bridge_slave_0) entered blocking state [ 163.696552][ T7087] bridge0: port 1(bridge_slave_0) entered disabled state [ 163.705500][ T7087] device bridge_slave_0 entered promiscuous mode [ 163.734204][ T7045] team0: Port device team_slave_0 added [ 163.755718][ T7087] bridge0: port 2(bridge_slave_1) entered blocking state [ 163.763076][ T7087] bridge0: port 2(bridge_slave_1) entered disabled state [ 163.772984][ T7087] device bridge_slave_1 entered promiscuous mode [ 163.782322][ T7045] team0: Port device team_slave_1 added [ 163.803275][ T7394] IPVS: ftp: loaded support on port[0] = 21 [ 163.866380][ T7087] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 163.891593][ T7045] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 163.902142][ T7045] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 163.932476][ T7045] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 163.973254][ T7087] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 163.983385][ T7045] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 163.991626][ T7045] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 164.020231][ T7045] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 164.149680][ T7045] device hsr_slave_0 entered promiscuous mode [ 164.204828][ T7045] device hsr_slave_1 entered promiscuous mode [ 164.244176][ T7045] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 164.252811][ T7045] Cannot create hsr debugfs directory [ 164.356606][ T7087] team0: Port device team_slave_0 added [ 164.379781][ T7345] chnl_net:caif_netlink_parms(): no params data found [ 164.396749][ T7332] chnl_net:caif_netlink_parms(): no params data found [ 164.420284][ T7087] team0: Port device team_slave_1 added [ 164.512078][ T7087] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 164.520041][ T7087] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 164.548031][ T7087] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 164.563825][ T7087] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 164.572152][ T7087] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 164.600665][ T7087] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 164.676934][ T7087] device hsr_slave_0 entered promiscuous mode [ 164.714464][ T7087] device hsr_slave_1 entered promiscuous mode [ 164.754088][ T7087] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 164.762236][ T7087] Cannot create hsr debugfs directory [ 164.811604][ T7332] bridge0: port 1(bridge_slave_0) entered blocking state [ 164.821171][ T7332] bridge0: port 1(bridge_slave_0) entered disabled state [ 164.830274][ T7332] device bridge_slave_0 entered promiscuous mode [ 164.872527][ T7332] bridge0: port 2(bridge_slave_1) entered blocking state [ 164.880325][ T7332] bridge0: port 2(bridge_slave_1) entered disabled state [ 164.889965][ T7332] device bridge_slave_1 entered promiscuous mode [ 164.940062][ T7345] bridge0: port 1(bridge_slave_0) entered blocking state [ 164.956184][ T7345] bridge0: port 1(bridge_slave_0) entered disabled state [ 164.966914][ T7345] device bridge_slave_0 entered promiscuous mode [ 165.017021][ T6899] 8021q: adding VLAN 0 to HW filter on device bond0 [ 165.029067][ T7345] bridge0: port 2(bridge_slave_1) entered blocking state [ 165.039296][ T7345] bridge0: port 2(bridge_slave_1) entered disabled state [ 165.048619][ T7345] device bridge_slave_1 entered promiscuous mode [ 165.075655][ T7332] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 165.145224][ T7332] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 165.186240][ T7394] chnl_net:caif_netlink_parms(): no params data found [ 165.211675][ T7345] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 165.227938][ T7345] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 165.265783][ T6899] 8021q: adding VLAN 0 to HW filter on device team0 [ 165.305942][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 165.321921][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 165.361823][ T7332] team0: Port device team_slave_0 added [ 165.380742][ T2474] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 165.391883][ T2474] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 165.405441][ T2474] bridge0: port 1(bridge_slave_0) entered blocking state [ 165.415167][ T2474] bridge0: port 1(bridge_slave_0) entered forwarding state [ 165.424887][ T2474] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 165.444819][ T7045] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 165.489197][ T7345] team0: Port device team_slave_0 added [ 165.501304][ T7332] team0: Port device team_slave_1 added [ 165.540593][ T7045] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 165.597910][ T7345] team0: Port device team_slave_1 added [ 165.611517][ T2473] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 165.621956][ T2473] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 165.635672][ T2473] bridge0: port 2(bridge_slave_1) entered blocking state [ 165.643388][ T2473] bridge0: port 2(bridge_slave_1) entered forwarding state [ 165.665641][ T7332] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 165.673575][ T7332] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 165.702855][ T7332] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 165.724451][ T7045] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 165.765957][ T7045] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 165.823626][ T2474] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 165.835783][ T7332] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 165.843811][ T7332] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 165.878765][ T7332] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 165.936326][ T7394] bridge0: port 1(bridge_slave_0) entered blocking state [ 165.945685][ T7394] bridge0: port 1(bridge_slave_0) entered disabled state [ 165.958086][ T7394] device bridge_slave_0 entered promiscuous mode [ 165.972136][ T7394] bridge0: port 2(bridge_slave_1) entered blocking state [ 165.980309][ T7394] bridge0: port 2(bridge_slave_1) entered disabled state [ 165.990925][ T7394] device bridge_slave_1 entered promiscuous mode [ 166.028182][ T7345] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 166.036890][ T7345] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 166.072354][ T7345] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 166.084615][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 166.126656][ T7394] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 166.145760][ T7394] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 166.156048][ T7345] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 166.166311][ T7345] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 166.196932][ T7345] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 166.212368][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 166.222640][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 166.233220][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 166.244453][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 166.318469][ T7332] device hsr_slave_0 entered promiscuous mode [ 166.375199][ T7332] device hsr_slave_1 entered promiscuous mode [ 166.414361][ T7332] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 166.425151][ T7332] Cannot create hsr debugfs directory [ 166.455862][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 166.548095][ T7345] device hsr_slave_0 entered promiscuous mode [ 166.586580][ T7345] device hsr_slave_1 entered promiscuous mode [ 166.644164][ T7345] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 166.653518][ T7345] Cannot create hsr debugfs directory [ 166.660070][ T7087] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 166.698650][ T7087] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 166.757654][ T7087] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 166.819159][ T7394] team0: Port device team_slave_0 added [ 166.840928][ T7394] team0: Port device team_slave_1 added [ 166.852691][ T2474] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 166.862629][ T2474] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 166.887317][ T7087] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 167.013685][ T7394] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 167.025846][ T7394] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 167.061630][ T7394] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 167.078769][ T7394] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 167.096476][ T7394] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 167.138785][ T7394] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 167.171201][ T3280] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 167.189788][ T3280] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 167.358002][ T7394] device hsr_slave_0 entered promiscuous mode [ 167.414460][ T7394] device hsr_slave_1 entered promiscuous mode [ 167.467810][ T7394] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 167.480633][ T7394] Cannot create hsr debugfs directory [ 167.608629][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 167.624040][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 167.751683][ T6899] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 167.763667][ T7332] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 167.853432][ T7332] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 167.907909][ T7332] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 167.992706][ T7332] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 168.047490][ T7087] 8021q: adding VLAN 0 to HW filter on device bond0 [ 168.058948][ T7345] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 168.118720][ T7345] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 168.250612][ T7345] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 168.307693][ T7345] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 168.407003][ T7394] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 168.457892][ T7394] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 168.522639][ T3280] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 168.535394][ T3280] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 168.568799][ T7087] 8021q: adding VLAN 0 to HW filter on device team0 [ 168.587718][ T7394] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 168.627296][ T3280] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 168.645586][ T3280] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 168.686725][ T7394] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 168.770246][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 168.790442][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 168.805448][ T2569] bridge0: port 1(bridge_slave_0) entered blocking state [ 168.815357][ T2569] bridge0: port 1(bridge_slave_0) entered forwarding state [ 168.826679][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 168.841641][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 168.853711][ T2569] bridge0: port 2(bridge_slave_1) entered blocking state [ 168.864939][ T2569] bridge0: port 2(bridge_slave_1) entered forwarding state [ 168.882654][ T7045] 8021q: adding VLAN 0 to HW filter on device bond0 [ 168.912599][ T6899] device veth0_vlan entered promiscuous mode [ 168.934251][ T6899] device veth1_vlan entered promiscuous mode [ 168.943440][ T2776] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 168.957731][ T2776] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 168.973058][ T2776] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 168.986628][ T2776] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 169.000479][ T2776] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 169.020130][ T2776] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 169.031102][ T2776] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 169.049604][ T7045] 8021q: adding VLAN 0 to HW filter on device team0 [ 169.090725][ T2776] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 169.103181][ T2776] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 169.116354][ T2776] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 169.127951][ T2776] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 169.143530][ T2776] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 169.159639][ T2776] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 169.174894][ T2776] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 169.240722][ T3280] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 169.255374][ T3280] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 169.269925][ T3280] bridge0: port 1(bridge_slave_0) entered blocking state [ 169.278711][ T3280] bridge0: port 1(bridge_slave_0) entered forwarding state [ 169.288909][ T3280] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 169.313606][ T7087] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 169.331869][ T7087] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 169.362914][ T7332] 8021q: adding VLAN 0 to HW filter on device bond0 [ 169.375758][ T3280] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 169.389433][ T3280] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 169.400472][ T3280] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 169.417021][ T3280] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 169.430902][ T3280] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 169.442849][ T3280] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 169.456130][ T3280] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 169.469795][ T3280] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 169.487471][ T3280] bridge0: port 2(bridge_slave_1) entered blocking state [ 169.499222][ T3280] bridge0: port 2(bridge_slave_1) entered forwarding state [ 169.508693][ T3280] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 169.565055][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 169.577755][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 169.588756][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 169.611705][ T6899] device veth0_macvtap entered promiscuous mode [ 169.629747][ T6899] device veth1_macvtap entered promiscuous mode [ 169.675589][ T2473] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 169.696072][ T2473] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 169.712958][ T2473] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 169.725766][ T2473] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 169.748188][ T2473] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 169.762144][ T2473] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 169.779190][ T2473] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 169.792739][ T2473] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 169.803358][ T2473] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 169.813240][ T2473] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 169.826833][ T2473] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 169.849197][ T7332] 8021q: adding VLAN 0 to HW filter on device team0 [ 169.874401][ T2473] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 169.884757][ T2473] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 169.896211][ T2473] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 169.931921][ T7345] 8021q: adding VLAN 0 to HW filter on device bond0 [ 169.949061][ T7045] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 169.965829][ T7045] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 169.977896][ T2473] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 169.992642][ T2473] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 170.007981][ T2473] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 170.020798][ T2473] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 170.033472][ T2473] bridge0: port 1(bridge_slave_0) entered blocking state [ 170.043055][ T2473] bridge0: port 1(bridge_slave_0) entered forwarding state [ 170.052722][ T2473] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 170.069469][ T2473] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 170.081034][ T2473] bridge0: port 2(bridge_slave_1) entered blocking state [ 170.090097][ T2473] bridge0: port 2(bridge_slave_1) entered forwarding state [ 170.108389][ T6899] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 170.128064][ T3280] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 170.138841][ T3280] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 170.157246][ T3280] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 170.188862][ T7087] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 170.209964][ T6899] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 170.241353][ T2776] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 170.260739][ T2776] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 170.276195][ T2776] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 170.288992][ T2776] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 170.329979][ T7345] 8021q: adding VLAN 0 to HW filter on device team0 [ 170.356866][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 170.374507][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 170.391546][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 170.404917][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 170.417340][ T2498] bridge0: port 1(bridge_slave_0) entered blocking state [ 170.428250][ T2498] bridge0: port 1(bridge_slave_0) entered forwarding state [ 170.440838][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 170.453477][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 170.467160][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 170.480523][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 170.514074][ T2776] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 170.529925][ T2776] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 170.560167][ T7394] 8021q: adding VLAN 0 to HW filter on device bond0 [ 170.614266][ T2776] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 170.630063][ T2776] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 170.643210][ T2776] bridge0: port 2(bridge_slave_1) entered blocking state [ 170.653612][ T2776] bridge0: port 2(bridge_slave_1) entered forwarding state [ 170.666739][ T2776] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 170.679754][ T2776] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 170.690377][ T2776] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 170.702912][ T2776] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 170.719901][ T2776] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 170.734826][ T2776] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 170.747685][ T2776] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 170.759469][ T2776] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 170.770857][ T2776] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 170.793031][ T7394] 8021q: adding VLAN 0 to HW filter on device team0 [ 170.876693][ T7045] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 170.893014][ T2473] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 170.906954][ T2473] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 170.928168][ T7332] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 170.972368][ T7087] device veth0_vlan entered promiscuous mode [ 170.983621][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 170.999493][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 171.020484][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 171.039683][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 171.055482][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 171.069122][ T2569] bridge0: port 1(bridge_slave_0) entered blocking state [ 171.081477][ T2569] bridge0: port 1(bridge_slave_0) entered forwarding state [ 171.205522][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 171.228211][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 171.278953][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 171.290633][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 171.308565][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 171.381848][ T7087] device veth1_vlan entered promiscuous mode [ 171.451051][ T2779] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 171.476942][ T2779] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 171.492561][ T2779] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 171.507978][ T2779] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 171.532097][ T2779] bridge0: port 2(bridge_slave_1) entered blocking state [ 171.541602][ T2779] bridge0: port 2(bridge_slave_1) entered forwarding state [ 171.563290][ T2779] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 171.583479][ T2779] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 171.605624][ T2779] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 171.629960][ T2779] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready 23:53:48 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000400)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=@ipv4_newaddr={0x20, 0x14, 0x121, 0x0, 0x0, {0x2, 0x1, 0x0, 0x0, r2}, [@IFA_LOCAL={0x8, 0x2, @local}]}, 0x20}}, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv4_newaddr={0x28, 0x14, 0x121, 0x0, 0x0, {0x2, 0x1, 0x0, 0x0, r2}, [@IFA_LOCAL={0x8, 0x2, @multicast2}, @IFA_BROADCAST={0x8, 0x4, @broadcast}]}, 0x28}}, 0x0) [ 171.645273][ T2779] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 171.716185][ T7332] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 171.748105][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 171.776032][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 171.792934][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 171.810410][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 171.826805][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 171.838104][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 171.849517][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 171.861542][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 171.874423][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 171.925522][ T7345] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 171.941335][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 171.956102][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 171.970095][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 171.985297][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 171.997002][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 172.022033][ T7045] device veth0_vlan entered promiscuous mode [ 172.040657][ T7087] device veth0_macvtap entered promiscuous mode [ 172.062957][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready 23:53:49 executing program 0: perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, 0x0) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/seq\x00', 0x2) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue1\x00'}) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/amemthresh\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$BATADV_CMD_GET_HARDIF(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000540)=ANY=[@ANYBLOB], 0x4c}}, 0x0) write$sndseq(r0, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time={0x4}, {}, {}, @raw8={"a357b6b140cbb6215dd33459"}}], 0xfffffee4) [ 172.079815][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 172.100937][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 172.120580][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 172.150892][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 172.192247][ T7394] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 172.220423][ T7394] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 172.241207][ T7087] device veth1_macvtap entered promiscuous mode [ 172.272519][ T7045] device veth1_vlan entered promiscuous mode [ 172.283275][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 172.296536][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 172.310534][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 172.321746][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 172.332766][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 172.354160][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 172.377014][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 172.389615][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 172.437703][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 172.461578][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 172.483253][ T7345] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 172.585636][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 172.603337][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready 23:53:49 executing program 0: perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, 0x0) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/seq\x00', 0x2) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue1\x00'}) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/amemthresh\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$BATADV_CMD_GET_HARDIF(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000540)=ANY=[@ANYBLOB], 0x4c}}, 0x0) write$sndseq(r0, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time={0x4}, {}, {}, @raw8={"a357b6b140cbb6215dd33459"}}], 0xfffffee4) [ 172.619688][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 172.640201][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 172.684949][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 172.706355][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 172.734878][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 172.772320][ T7332] device veth0_vlan entered promiscuous mode [ 172.817527][ T7087] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 172.841986][ T7087] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 172.872050][ T7087] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 172.903275][ T7394] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 172.947982][ T2779] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 172.966844][ T2779] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready 23:53:49 executing program 0: socketpair$unix(0x1, 0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) madvise(&(0x7f0000000000/0x600000)=nil, 0x602000, 0x9) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)) [ 172.994819][ T2779] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 173.009566][ T2779] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 173.036041][ T7087] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 173.061246][ T7087] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 173.078268][ T7087] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 173.110446][ T7045] device veth0_macvtap entered promiscuous mode [ 173.151824][ T2779] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 173.176421][ T2779] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 173.203112][ T2779] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 173.276067][ T7045] device veth1_macvtap entered promiscuous mode [ 173.355307][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 173.367246][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 173.384170][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 173.425895][ T7332] device veth1_vlan entered promiscuous mode [ 173.534397][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 173.545304][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 173.574367][ T7345] device veth0_vlan entered promiscuous mode 23:53:50 executing program 0: r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0) bind$llc(r0, &(0x7f0000000100)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x10) [ 173.640845][ T7045] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 173.654807][ T7045] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 173.671604][ T7045] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 173.692490][ T7045] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 173.707000][ T7045] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 173.724779][ T2779] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready 23:53:50 executing program 0: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000540)={0x5c, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8}]}, @IPSET_ATTR_TYPENAME={0x16, 0x3, 'hash:net,port,net\x00'}]}, 0x5c}}, 0x0) [ 173.748111][ T2779] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 173.758625][ T2779] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 173.770445][ T2779] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 173.822800][ C1] hrtimer: interrupt took 54098 ns [ 173.847200][ T7045] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 173.914043][ T7045] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! 23:53:50 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000005c000/0x18000)=nil, &(0x7f0000000280)=[@text32={0x20, &(0x7f00000000c0)="b9800000c00f3235010000000f309a090000006500660f3882af724d00002ed8dd65660f382201c7442402c43a727fc7442406000000000f011424f30f090f013a360f06c4c18d72d6830f01caed", 0x14}], 0x1, 0x0, 0x0, 0x25a) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) perf_event_open(&(0x7f0000000000)={0x0, 0x70, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0xec100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x0, 0x80000000000000}, 0xb20}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0xd8d0668c81aa2fa3) openat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000049000/0x18000)=nil, &(0x7f0000000080)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0xffffffffffffff11) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 173.957596][ T7045] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 173.970745][ T7045] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 173.989280][ T7045] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 174.002159][ T7345] device veth1_vlan entered promiscuous mode [ 174.035153][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 174.045604][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 174.066739][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 174.097338][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 174.108404][ T8207] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 174.110820][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 174.137879][ T2569] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 174.200642][ T7332] device veth0_macvtap entered promiscuous mode [ 174.230634][ T2474] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 174.248409][ T2474] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 174.263559][ T2474] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 174.283475][ T2474] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 174.301736][ T2474] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 174.340700][ T7394] device veth0_vlan entered promiscuous mode [ 174.393462][ T7332] device veth1_macvtap entered promiscuous mode [ 174.459327][ T7394] device veth1_vlan entered promiscuous mode [ 174.573051][ T7332] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 174.586643][ T7332] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 174.598798][ T7332] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 174.612228][ T7332] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 174.623426][ T7332] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 174.634590][ T7332] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 174.648230][ T7332] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 174.702965][ T7345] device veth0_macvtap entered promiscuous mode [ 174.735278][ T2474] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 174.760420][ T2474] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 174.770631][ T2474] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 174.788685][ T2474] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 174.802205][ T2474] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 174.821214][ T2474] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 174.833590][ T2474] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 174.856975][ T7332] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 174.873897][ T7332] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 174.884286][ T7332] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 174.896085][ T7332] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 174.906423][ T7332] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 23:53:51 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000880)='/dev/loop#\x00', 0x0, 0x0) r1 = memfd_create(&(0x7f0000000240)='.^\xc5', 0x0) pwritev(r1, 0x0, 0x0, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) ioctl$LOOP_SET_FD(r0, 0x4c06, r1) 23:53:51 executing program 2: perf_event_open(&(0x7f0000000400)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(0xffffffffffffffff, 0x8982, 0x0) r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000640)='/dev/ttyS3\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000600)=0x1b) ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x890b, 0x0) [ 174.917511][ T7332] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 174.930849][ T7332] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 174.944826][ T2474] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 174.953040][ T2474] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 174.965752][ T2474] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 175.008423][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 175.025509][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 175.039776][ T7345] device veth1_macvtap entered promiscuous mode [ 175.061653][ T7394] device veth0_macvtap entered promiscuous mode [ 175.105429][ T7394] device veth1_macvtap entered promiscuous mode [ 175.200453][ T7345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 175.223845][ T7345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 175.244546][ T7345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 175.264756][ T7345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 175.289589][ T7345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 175.305802][ T7345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 175.316863][ T7345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 175.330531][ T7345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 175.344538][ T7345] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 175.396701][ T7394] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 175.422690][ T7394] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 175.433615][ T7394] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 175.449171][ T7394] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 175.459152][ T7394] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 175.469993][ T7394] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 175.479958][ T7394] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 175.491312][ T7394] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 175.501774][ T7394] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 175.512633][ T7394] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 175.525084][ T7394] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 175.532833][ T2474] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 175.542481][ T2474] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 175.555899][ T2474] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 175.566095][ T2474] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 175.575497][ T2474] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 175.584389][ T2474] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 175.597280][ T7345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 175.609411][ T7345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 175.620012][ T7345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 175.630797][ T7345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 175.642504][ T7345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 175.654398][ T7345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 175.664345][ T7345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 175.675093][ T7345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 175.687186][ T7345] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 175.750618][ T7394] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 175.768807][ T7394] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 175.781508][ T7394] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 175.804132][ T7394] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 175.818404][ T7394] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 175.828974][ T7394] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 175.841496][ T7394] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 175.852685][ T7394] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 175.884792][ T7394] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 23:53:52 executing program 3: [ 175.897191][ T7394] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 175.910034][ T7394] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 175.925618][ T2474] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 175.954673][ T2474] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 175.973576][ T2474] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 175.991356][ T2474] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready 23:53:53 executing program 4: mbind(&(0x7f0000012000/0xc00000)=nil, 0xc00007, 0x0, 0x0, 0x0, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) readv(0xffffffffffffffff, &(0x7f0000000040)=[{&(0x7f0000000240)=""/205, 0xcd}], 0x1) r0 = syz_open_dev$loop(&(0x7f0000000880)='/dev/loop#\x00', 0x0, 0x182) inotify_init1(0x800) r1 = memfd_create(&(0x7f0000000240)='.^\xc5', 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) sendfile(r0, r0, 0x0, 0x24000000) ioctl$LOOP_CLR_FD(r0, 0x4c01) ioctl$LOOP_SET_FD(r0, 0x4c00, r1) [ 176.499706][ T8245] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.5'. 23:53:53 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="5c0000001000011821f6a0b235000000000000b1", @ANYRES32=r1, @ANYBLOB="00000000000000003c001280110001006272696467655f736c617665000000002400058005001e00010000000500190003"], 0x5c}}, 0x0) r2 = socket(0x10, 0x8000000000000003, 0x0) sendmmsg(r2, &(0x7f0000000000), 0x40000000000024a, 0x0) [ 176.545740][ T8247] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.5'. 23:53:53 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000880)='/dev/loop#\x00', 0x0, 0x0) r1 = memfd_create(&(0x7f0000000240)='.^\xc5', 0x0) pwritev(r1, 0x0, 0x0, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) ioctl$LOOP_SET_FD(r0, 0x4c06, r1) 23:53:53 executing program 0: 23:53:53 executing program 2: 23:53:53 executing program 3: 23:53:53 executing program 3: socket$nl_generic(0x10, 0x3, 0x10) socket$inet6_udp(0xa, 0x2, 0x0) r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000640)='/dev/ttyS3\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000600)=0x1b) 23:53:53 executing program 0: 23:53:53 executing program 2: 23:53:53 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000880)='/dev/loop#\x00', 0x0, 0x0) r1 = memfd_create(&(0x7f0000000240)='.^\xc5', 0x0) pwritev(r1, 0x0, 0x0, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) ioctl$LOOP_SET_FD(r0, 0x4c06, r1) [ 176.798706][ T8258] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.5'. 23:53:53 executing program 0: 23:53:53 executing program 2: [ 176.919866][ T2424] blk_update_request: I/O error, dev loop0, sector 768 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 176.934016][ T2424] Buffer I/O error on dev loop0, logical block 192, async page read [ 176.943138][ T2424] blk_update_request: I/O error, dev loop0, sector 772 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 176.954345][ T2424] Buffer I/O error on dev loop0, logical block 193, async page read 23:53:53 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="5c0000001000011821f6a0b235000000000000b1", @ANYRES32=r1, @ANYBLOB="00000000000000003c001280110001006272696467655f736c617665000000002400058005001e00010000000500190003"], 0x5c}}, 0x0) r2 = socket(0x10, 0x8000000000000003, 0x0) sendmmsg(r2, &(0x7f0000000000), 0x40000000000024a, 0x0) 23:53:53 executing program 4: 23:53:53 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000880)='/dev/loop#\x00', 0x0, 0x0) r1 = memfd_create(&(0x7f0000000240)='.^\xc5', 0x0) pwritev(r1, 0x0, 0x0, 0x0) ioctl$LOOP_SET_FD(r0, 0x4c06, r1) 23:53:53 executing program 0: 23:53:54 executing program 4: 23:53:54 executing program 2: 23:53:54 executing program 3: [ 177.125311][ T8275] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.5'. 23:53:54 executing program 2: 23:53:54 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000880)='/dev/loop#\x00', 0x0, 0x0) r1 = memfd_create(&(0x7f0000000240)='.^\xc5', 0x0) pwritev(r1, 0x0, 0x0, 0x0) ioctl$LOOP_SET_FD(r0, 0x4c06, r1) 23:53:54 executing program 0: 23:53:54 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="5c0000001000011821f6a0b235000000000000b1", @ANYRES32=r1, @ANYBLOB="00000000000000003c001280110001006272696467655f736c617665000000002400058005001e00010000000500190003"], 0x5c}}, 0x0) r2 = socket(0x10, 0x8000000000000003, 0x0) sendmmsg(r2, &(0x7f0000000000), 0x40000000000024a, 0x0) 23:53:54 executing program 4: 23:53:54 executing program 3: 23:53:54 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000880)='/dev/loop#\x00', 0x0, 0x0) r1 = memfd_create(&(0x7f0000000240)='.^\xc5', 0x0) pwritev(r1, 0x0, 0x0, 0x0) ioctl$LOOP_SET_FD(r0, 0x4c06, r1) 23:53:54 executing program 0: 23:53:54 executing program 2: 23:53:54 executing program 4: [ 177.431489][ T8289] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.5'. 23:53:54 executing program 3: 23:53:54 executing program 0: 23:53:54 executing program 2: pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) sendmsg$unix(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="340004000000000000", @ANYRES64], 0x18}, 0x0) writev(r1, &(0x7f0000000080)=[{&(0x7f00000000c0)="580000001400ad", 0x7}], 0x1) write$binfmt_elf64(r1, &(0x7f0000000640)=ANY=[], 0xa) close(r2) socket(0x10, 0x3, 0x6) writev(r1, &(0x7f0000000600)=[{&(0x7f0000000380)="f98ac693ce6908", 0x7}], 0x1) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="5c010000100013070000000000000000ac1e0001000000000000000000000000ff01000000000000000000000400000100"/64, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000000000000000000000000000032000000ff020000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000d20000000000000048000200656362286369706865725f6e756c6c2900000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000240017"], 0x15c}}, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xfef0) splice(r0, 0x0, r2, 0x0, 0x80000001, 0x0) 23:53:54 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="5c0000001000011821f6a0b235000000000000b1", @ANYRES32=r1, @ANYBLOB="00000000000000003c001280110001006272696467655f736c617665000000002400058005001e00010000000500190003"], 0x5c}}, 0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000000000), 0x40000000000024a, 0x0) 23:53:54 executing program 4: 23:53:54 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000880)='/dev/loop#\x00', 0x0, 0x0) r1 = memfd_create(&(0x7f0000000240)='.^\xc5', 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) ioctl$LOOP_SET_FD(r0, 0x4c06, r1) 23:53:54 executing program 0: 23:53:54 executing program 3: [ 177.719475][ T8302] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'. 23:53:54 executing program 4: 23:53:54 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="5c0000001000011821f6a0b235000000000000b1", @ANYRES32=r1, @ANYBLOB="00000000000000003c001280110001006272696467655f736c617665000000002400058005001e00010000000500190003"], 0x5c}}, 0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000000000), 0x40000000000024a, 0x0) 23:53:54 executing program 3: 23:53:54 executing program 0: 23:53:54 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000880)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, 0xffffffffffffffff) ioctl$LOOP_SET_FD(r0, 0x4c06, 0xffffffffffffffff) 23:53:54 executing program 4: 23:53:54 executing program 2: 23:53:54 executing program 3: 23:53:54 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="5c0000001000011821f6a0b235000000000000b1", @ANYRES32=r1, @ANYBLOB="00000000000000003c001280110001006272696467655f736c617665000000002400058005001e00010000000500190003"], 0x5c}}, 0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000000000), 0x40000000000024a, 0x0) 23:53:55 executing program 0: 23:53:55 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000880)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, 0xffffffffffffffff) ioctl$LOOP_SET_FD(r0, 0x4c06, 0xffffffffffffffff) 23:53:55 executing program 4: 23:53:55 executing program 3: 23:53:55 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00'}) r1 = socket(0x10, 0x8000000000000003, 0x0) sendmmsg(r1, &(0x7f0000000000), 0x40000000000024a, 0x0) 23:53:55 executing program 2: 23:53:55 executing program 4: 23:53:55 executing program 0: 23:53:55 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000880)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, 0xffffffffffffffff) ioctl$LOOP_SET_FD(r0, 0x4c06, 0xffffffffffffffff) 23:53:55 executing program 3: 23:53:55 executing program 2: 23:53:55 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00'}) r1 = socket(0x10, 0x8000000000000003, 0x0) sendmmsg(r1, &(0x7f0000000000), 0x40000000000024a, 0x0) 23:53:55 executing program 4: 23:53:55 executing program 0: 23:53:55 executing program 3: 23:53:55 executing program 1: r0 = memfd_create(&(0x7f0000000240)='.^\xc5', 0x0) ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c00, r0) ioctl$LOOP_SET_FD(0xffffffffffffffff, 0x4c06, r0) 23:53:55 executing program 2: 23:53:55 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00'}) r1 = socket(0x10, 0x8000000000000003, 0x0) sendmmsg(r1, &(0x7f0000000000), 0x40000000000024a, 0x0) 23:53:55 executing program 4: 23:53:55 executing program 0: 23:53:55 executing program 3: 23:53:55 executing program 1: r0 = memfd_create(&(0x7f0000000240)='.^\xc5', 0x0) ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c00, r0) ioctl$LOOP_SET_FD(0xffffffffffffffff, 0x4c06, r0) 23:53:55 executing program 4: 23:53:55 executing program 2: 23:53:55 executing program 0: 23:53:55 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="5c0000001000011821f6a0b235000000000000b1", @ANYRES32, @ANYBLOB="00000000000000003c001280110001006272696467655f736c617665000000002400058005001e00010000000500190003"], 0x5c}}, 0x0) r0 = socket(0x10, 0x8000000000000003, 0x0) sendmmsg(r0, &(0x7f0000000000), 0x40000000000024a, 0x0) 23:53:55 executing program 3: 23:53:55 executing program 4: 23:53:55 executing program 1: r0 = memfd_create(&(0x7f0000000240)='.^\xc5', 0x0) ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c00, r0) ioctl$LOOP_SET_FD(0xffffffffffffffff, 0x4c06, r0) 23:53:55 executing program 2: 23:53:55 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="5c0000001000011821f6a0b235000000000000b1", @ANYRES32, @ANYBLOB="00000000000000003c001280110001006272696467655f736c617665000000002400058005001e00010000000500190003"], 0x5c}}, 0x0) r0 = socket(0x10, 0x8000000000000003, 0x0) sendmmsg(r0, &(0x7f0000000000), 0x40000000000024a, 0x0) 23:53:55 executing program 4: 23:53:55 executing program 3: 23:53:55 executing program 0: 23:53:55 executing program 2: 23:53:55 executing program 1: r0 = syz_open_dev$loop(0x0, 0x0, 0x0) r1 = memfd_create(&(0x7f0000000240)='.^\xc5', 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) ioctl$LOOP_SET_FD(r0, 0x4c06, r1) 23:53:56 executing program 3: 23:53:56 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="5c0000001000011821f6a0b235000000000000b1", @ANYRES32, @ANYBLOB="00000000000000003c001280110001006272696467655f736c617665000000002400058005001e00010000000500190003"], 0x5c}}, 0x0) r0 = socket(0x10, 0x8000000000000003, 0x0) sendmmsg(r0, &(0x7f0000000000), 0x40000000000024a, 0x0) 23:53:56 executing program 4: 23:53:56 executing program 2: 23:53:56 executing program 0: 23:53:56 executing program 1: r0 = syz_open_dev$loop(0x0, 0x0, 0x0) r1 = memfd_create(&(0x7f0000000240)='.^\xc5', 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) ioctl$LOOP_SET_FD(r0, 0x4c06, r1) 23:53:56 executing program 3: 23:53:56 executing program 2: 23:53:56 executing program 4: 23:53:56 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="5c0000001000011821f6a0b235000000000000b1", @ANYRES32=r0, @ANYBLOB="00000000000000003c001280110001006272696467655f736c617665000000002400058005001e00010000000500190003"], 0x5c}}, 0x0) r1 = socket(0x10, 0x8000000000000003, 0x0) sendmmsg(r1, &(0x7f0000000000), 0x40000000000024a, 0x0) 23:53:56 executing program 0: 23:53:56 executing program 3: 23:53:56 executing program 4: 23:53:56 executing program 1: r0 = syz_open_dev$loop(0x0, 0x0, 0x0) r1 = memfd_create(&(0x7f0000000240)='.^\xc5', 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) ioctl$LOOP_SET_FD(r0, 0x4c06, r1) 23:53:56 executing program 0: 23:53:56 executing program 2: 23:53:56 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="5c0000001000011821f6a0b235000000000000b1", @ANYRES32=r0, @ANYBLOB="00000000000000003c001280110001006272696467655f736c617665000000002400058005001e00010000000500190003"], 0x5c}}, 0x0) r1 = socket(0x10, 0x8000000000000003, 0x0) sendmmsg(r1, &(0x7f0000000000), 0x40000000000024a, 0x0) 23:53:56 executing program 3: 23:53:56 executing program 2: r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000200)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000049000/0x18000)=nil, 0x0, 0xfffffffffffffdc3, 0x0, 0x0, 0xe) 23:53:56 executing program 0: syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x200, 0x0) r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$uhid(0xffffffffffffff9c, &(0x7f0000000280)='/dev/uhid\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x2b, 0x1, 0x0) r1 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0) ioctl$int_in(r0, 0x800000c004500a, 0x0) pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 23:53:56 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000880)='/dev/loop#\x00', 0x0, 0x0) r1 = memfd_create(0x0, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) ioctl$LOOP_SET_FD(r0, 0x4c06, r1) 23:53:56 executing program 4: 23:53:56 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="5c0000001000011821f6a0b235000000000000b1", @ANYRES32=r0, @ANYBLOB="00000000000000003c001280110001006272696467655f736c617665000000002400058005001e00010000000500190003"], 0x5c}}, 0x0) r1 = socket(0x10, 0x8000000000000003, 0x0) sendmmsg(r1, &(0x7f0000000000), 0x40000000000024a, 0x0) 23:53:56 executing program 3: [ 179.809601][ T8410] QAT: Invalid ioctl 23:53:56 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000880)='/dev/loop#\x00', 0x0, 0x0) r1 = memfd_create(0x0, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) ioctl$LOOP_SET_FD(r0, 0x4c06, r1) [ 179.839327][ T8410] QAT: Invalid ioctl 23:53:56 executing program 3: [ 179.863921][ T8410] QAT: Invalid ioctl 23:53:56 executing program 4: [ 179.893277][ T8410] QAT: Invalid ioctl 23:53:56 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="5c0000001000011821f6a0b235000000000000b1", @ANYRES32=r1, @ANYBLOB="00000000000000003c001280110001006272696467655f736c617665000000002400058005001e00010000000500190003"], 0x5c}}, 0x0) r2 = socket(0x10, 0x8000000000000003, 0x0) sendmmsg(r2, &(0x7f0000000000), 0x40000000000024a, 0x0) [ 179.917692][ T8410] QAT: Invalid ioctl [ 179.932887][ T8410] QAT: Invalid ioctl [ 179.946947][ T8410] QAT: Invalid ioctl [ 179.961508][ T8410] QAT: Invalid ioctl 23:53:56 executing program 4: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000040)=@raw={'raw\x00', 0x2, 0x3, 0x208, 0x6, 0x0, 0x48, 0x0, 0x0, 0x170, 0x170, 0x170, 0x170, 0x170, 0x3, 0x0, {[{{@uncond=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7], 0x0, 0x70, 0x98, 0x0, {0x6020000}}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0x170}}, {{@uncond, 0x0, 0xb0, 0xd8, 0x0, {}, [@common=@set={{0x40, 'set\x00'}}]}, @common=@unspec=@NFQUEUE3={0x28, 'NFQUEUE\x00'}}], {{[], 0x0, 0x70, 0x98}, {0x28}}}}, 0x268) [ 179.981824][ T8410] QAT: Invalid ioctl [ 179.999996][ T8426] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.5'. [ 180.005078][ T8410] QAT: Invalid ioctl [ 180.032017][ T8410] QAT: Invalid ioctl [ 180.056717][ T8410] QAT: Invalid ioctl 23:53:57 executing program 3: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/seq\x00', 0x0) read(r0, &(0x7f0000000080)=""/241, 0xf1) [ 180.077014][ T8410] QAT: Invalid ioctl [ 180.091681][ T8410] QAT: Invalid ioctl [ 180.107599][ T8410] QAT: Invalid ioctl [ 180.121598][ T8410] QAT: Invalid ioctl [ 180.139294][ T8410] QAT: Invalid ioctl [ 180.152803][ T8429] Cannot find set identified by id 0 to match [ 180.161732][ T8410] QAT: Invalid ioctl [ 180.178702][ T8410] QAT: Invalid ioctl [ 180.192601][ T8410] QAT: Invalid ioctl [ 180.201226][ T8410] QAT: Invalid ioctl [ 180.221688][ T8410] QAT: Invalid ioctl [ 180.227671][ T8410] QAT: Invalid ioctl [ 180.231898][ T8410] QAT: Invalid ioctl [ 180.244826][ T8410] QAT: Invalid ioctl 23:53:57 executing program 2: r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000200)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000049000/0x18000)=nil, 0x0, 0xfffffffffffffdc3, 0x0, 0x0, 0xe) [ 180.304811][ T8438] QAT: Invalid ioctl [ 180.309096][ T8438] QAT: Invalid ioctl [ 180.313320][ T8438] QAT: Invalid ioctl [ 180.324370][ T8438] QAT: Invalid ioctl [ 180.334399][ T8438] QAT: Invalid ioctl [ 180.338503][ T8438] QAT: Invalid ioctl [ 180.342542][ T8438] QAT: Invalid ioctl [ 180.463829][ T8445] [ 180.466234][ T8445] ============================= [ 180.471088][ T8445] WARNING: suspicious RCU usage [ 180.475964][ T8445] 5.7.0-rc7-next-20200526-syzkaller #0 Not tainted [ 180.482553][ T8445] ----------------------------- [ 180.487417][ T8445] kernel/rcu/tree.c:715 RCU dynticks_nesting counter underflow/zero!! [ 180.495579][ T8445] [ 180.495579][ T8445] other info that might help us debug this: [ 180.495579][ T8445] [ 180.505823][ T8445] [ 180.505823][ T8445] RCU used illegally from idle CPU! [ 180.505823][ T8445] rcu_scheduler_active = 2, debug_locks = 1 [ 180.519086][ T8445] RCU used illegally from extended quiescent state! [ 180.525687][ T8445] no locks held by syz-executor.2/8445. [ 180.531218][ T8445] [ 180.531218][ T8445] stack backtrace: [ 180.537100][ T8445] CPU: 0 PID: 8445 Comm: syz-executor.2 Not tainted 5.7.0-rc7-next-20200526-syzkaller #0 [ 180.547121][ T8445] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 180.557185][ T8445] Call Trace: [ 180.560668][ T8445] dump_stack+0x18f/0x20d [ 180.565078][ T8445] rcu_irq_exit_preempt+0x1fa/0x250 [ 180.570345][ T8445] idtentry_exit+0x9e/0xc0 [ 180.574791][ T8445] exc_general_protection+0x23d/0x520 [ 180.580295][ T8445] ? exc_bounds+0x1c0/0x1c0 [ 180.584795][ T8445] ? __debug_object_init+0x4ae/0xdd0 [ 180.590080][ T8445] ? allocate_vpid.part.0+0x53/0x90 [ 180.595378][ T8445] asm_exc_general_protection+0x1e/0x30 [ 180.600911][ T8445] RIP: 0010:kvm_fastop_exception+0xb68/0xfe8 [ 180.606875][ T8445] Code: f2 ff ff ff 48 31 db e9 cb c9 2a f9 b8 f2 ff ff ff 48 31 f6 e9 cf c9 2a f9 31 c0 e9 bc 2c 2b f9 b8 fb ff ff ff e9 13 a9 31 f9 fb ff ff ff 31 c0 31 d2 e9 33 a9 31 f9 31 db e9 2a 0b 42 f9 31 [ 180.626564][ T8445] RSP: 0018:ffffc90018217a30 EFLAGS: 00010216 [ 180.632619][ T8445] RAX: 0000000000040000 RBX: ffff888057a8c0c0 RCX: 0000000000000122 [ 180.640577][ T8445] RDX: 000000000000624c RSI: ffffc90018217a98 RDI: 0000000000000122 [ 180.648536][ T8445] RBP: 0000000000000122 R08: ffff8880578c81c0 R09: fffffbfff131f481 [ 180.656514][ T8445] R10: ffffffff898fa403 R11: fffffbfff131f480 R12: 0000000000000122 [ 180.664485][ T8445] R13: 0000000000000078 R14: 0000000000000006 R15: ffffffff88244b5c [ 180.672514][ T8445] vmx_create_vcpu+0x184/0x2b40 [ 180.677405][ T8445] ? vmx_exec_control+0x1f0/0x1f0 [ 180.682547][ T8445] ? memset+0x20/0x40 [ 180.686828][ T8445] kvm_arch_vcpu_create+0x6a8/0xb30 [ 180.692029][ T8445] kvm_vm_ioctl+0x15b7/0x2460 [ 180.696745][ T8445] ? lock_downgrade+0x840/0x840 [ 180.701623][ T8445] ? kvm_unregister_device_ops+0x60/0x60 [ 180.707260][ T8445] ? tomoyo_path_number_perm+0x238/0x4d0 [ 180.712883][ T8445] ? tomoyo_execute_permission+0x470/0x470 [ 180.718829][ T8445] ? lockdep_hardirqs_on_prepare+0x590/0x590 [ 180.724928][ T8445] ? __sanitizer_cov_trace_switch+0x45/0x70 [ 180.730834][ T8445] ? do_vfs_ioctl+0x27d/0x1090 [ 180.735614][ T8445] ? ioctl_file_clone+0x180/0x180 [ 180.740658][ T8445] ? check_preemption_disabled+0x38/0x220 [ 180.746397][ T8445] ? __fget_files+0x299/0x400 [ 180.751099][ T8445] ? kvm_unregister_device_ops+0x60/0x60 [ 180.756746][ T8445] ksys_ioctl+0x11a/0x180 [ 180.761093][ T8445] __x64_sys_ioctl+0x6f/0xb0 [ 180.765669][ T8445] do_syscall_64+0x60/0xe0 [ 180.770099][ T8445] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 180.778594][ T8445] RIP: 0033:0x45ca29 [ 180.782497][ T8445] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 180.802206][ T8445] RSP: 002b:00007f4bd78d8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 180.810634][ T8445] RAX: ffffffffffffffda RBX: 00000000004e73c0 RCX: 000000000045ca29 [ 180.818612][ T8445] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 180.826684][ T8445] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 180.834737][ T8445] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 180.842716][ T8445] R13: 0000000000000396 R14: 00000000004c62c6 R15: 00007f4bd78d96d4 [ 180.850711][ T8445] [ 180.853027][ T8445] ============================= [ 180.859013][ T8445] WARNING: suspicious RCU usage [ 180.863863][ T8445] 5.7.0-rc7-next-20200526-syzkaller #0 Not tainted [ 180.870426][ T8445] ----------------------------- [ 180.875280][ T8445] kernel/rcu/tree.c:717 RCU in extended quiescent state!! [ 180.882390][ T8445] [ 180.882390][ T8445] other info that might help us debug this: [ 180.882390][ T8445] [ 180.892616][ T8445] [ 180.892616][ T8445] RCU used illegally from idle CPU! [ 180.892616][ T8445] rcu_scheduler_active = 2, debug_locks = 1 [ 180.905693][ T8445] RCU used illegally from extended quiescent state! [ 180.912283][ T8445] no locks held by syz-executor.2/8445. [ 180.917897][ T8445] [ 180.917897][ T8445] stack backtrace: [ 180.923788][ T8445] CPU: 0 PID: 8445 Comm: syz-executor.2 Not tainted 5.7.0-rc7-next-20200526-syzkaller #0 [ 180.933587][ T8445] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 180.943634][ T8445] Call Trace: [ 180.946924][ T8445] dump_stack+0x18f/0x20d [ 180.951420][ T8445] idtentry_exit+0x9e/0xc0 [ 180.955839][ T8445] exc_general_protection+0x23d/0x520 [ 180.961199][ T8445] ? exc_bounds+0x1c0/0x1c0 [ 180.965866][ T8445] ? __debug_object_init+0x4ae/0xdd0 [ 180.971162][ T8445] ? allocate_vpid.part.0+0x53/0x90 [ 180.976375][ T8445] asm_exc_general_protection+0x1e/0x30 [ 180.981930][ T8445] RIP: 0010:kvm_fastop_exception+0xb68/0xfe8 [ 180.987919][ T8445] Code: f2 ff ff ff 48 31 db e9 cb c9 2a f9 b8 f2 ff ff ff 48 31 f6 e9 cf c9 2a f9 31 c0 e9 bc 2c 2b f9 b8 fb ff ff ff e9 13 a9 31 f9 fb ff ff ff 31 c0 31 d2 e9 33 a9 31 f9 31 db e9 2a 0b 42 f9 31 [ 181.007514][ T8445] RSP: 0018:ffffc90018217a30 EFLAGS: 00010216 [ 181.013753][ T8445] RAX: 0000000000040000 RBX: ffff888057a8c0c0 RCX: 0000000000000122 [ 181.021721][ T8445] RDX: 000000000000624c RSI: ffffc90018217a98 RDI: 0000000000000122 [ 181.029953][ T8445] RBP: 0000000000000122 R08: ffff8880578c81c0 R09: fffffbfff131f481 [ 181.037922][ T8445] R10: ffffffff898fa403 R11: fffffbfff131f480 R12: 0000000000000122 [ 181.045887][ T8445] R13: 0000000000000078 R14: 0000000000000006 R15: ffffffff88244b5c [ 181.053991][ T8445] vmx_create_vcpu+0x184/0x2b40 [ 181.058862][ T8445] ? vmx_exec_control+0x1f0/0x1f0 [ 181.063896][ T8445] ? memset+0x20/0x40 [ 181.067895][ T8445] kvm_arch_vcpu_create+0x6a8/0xb30 [ 181.073115][ T8445] kvm_vm_ioctl+0x15b7/0x2460 [ 181.077784][ T8445] ? lock_downgrade+0x840/0x840 [ 181.082623][ T8445] ? kvm_unregister_device_ops+0x60/0x60 [ 181.088268][ T8445] ? tomoyo_path_number_perm+0x238/0x4d0 [ 181.094600][ T8445] ? tomoyo_execute_permission+0x470/0x470 [ 181.100412][ T8445] ? lockdep_hardirqs_on_prepare+0x590/0x590 [ 181.106440][ T8445] ? __sanitizer_cov_trace_switch+0x45/0x70 [ 181.112358][ T8445] ? do_vfs_ioctl+0x27d/0x1090 [ 181.117205][ T8445] ? ioctl_file_clone+0x180/0x180 [ 181.122251][ T8445] ? check_preemption_disabled+0x38/0x220 [ 181.127994][ T8445] ? __fget_files+0x299/0x400 [ 181.132704][ T8445] ? kvm_unregister_device_ops+0x60/0x60 [ 181.138444][ T8445] ksys_ioctl+0x11a/0x180 [ 181.142873][ T8445] __x64_sys_ioctl+0x6f/0xb0 [ 181.147477][ T8445] do_syscall_64+0x60/0xe0 [ 181.152057][ T8445] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 181.157943][ T8445] RIP: 0033:0x45ca29 [ 181.161842][ T8445] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 181.181535][ T8445] RSP: 002b:00007f4bd78d8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 181.189959][ T8445] RAX: ffffffffffffffda RBX: 00000000004e73c0 RCX: 000000000045ca29 [ 181.197917][ T8445] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 181.205875][ T8445] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 181.213837][ T8445] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 181.221816][ T8445] R13: 0000000000000396 R14: 00000000004c62c6 R15: 00007f4bd78d96d4 [ 181.229857][ C0] [ 181.229862][ C0] ============================= [ 181.229865][ C0] WARNING: suspicious RCU usage [ 181.229870][ C0] 5.7.0-rc7-next-20200526-syzkaller #0 Not tainted [ 181.229874][ C0] ----------------------------- [ 181.229879][ C0] include/linux/rcupdate.h:635 rcu_read_lock() used illegally while idle! [ 181.229881][ C0] [ 181.229886][ C0] other info that might help us debug this: [ 181.229888][ C0] [ 181.229890][ C0] [ 181.229894][ C0] RCU used illegally from idle CPU! [ 181.229898][ C0] rcu_scheduler_active = 2, debug_locks = 1 [ 181.229903][ C0] RCU used illegally from extended quiescent state! [ 181.229906][ C0] 2 locks held by syz-executor.2/8445: [ 181.229909][ C0] #0: ffffffff899b47b8 (logbuf_lock){-.-.}-{2:2}, at: vprintk_emit+0x11a/0x720 [ 181.229925][ C0] #1: ffffffff899bfd00 (rcu_read_lock){....}-{1:2}, at: __bpf_address_lookup+0x0/0x290 [ 181.229941][ C0] [ 181.229944][ C0] stack backtrace: [ 181.229950][ C0] CPU: 0 PID: 8445 Comm: syz-executor.2 Not tainted 5.7.0-rc7-next-20200526-syzkaller #0 [ 181.229955][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 181.229958][ C0] Call Trace: [ 181.229961][ C0] dump_stack+0x18f/0x20d [ 181.229964][ C0] __bpf_address_lookup+0x23a/0x290 [ 181.229968][ C0] kallsyms_lookup+0x234/0x2d0 [ 181.229971][ C0] ? widen_string+0xdd/0x2a0 [ 181.229974][ C0] __sprint_symbol+0x9c/0x1c0 [ 181.229978][ C0] ? kallsyms_lookup+0x2d0/0x2d0 [ 181.229981][ C0] ? mark_lock+0x11f/0xdd0 [ 181.229984][ C0] ? string_nocheck+0x1a9/0x220 [ 181.229988][ C0] ? print_usage_bug+0x240/0x240 [ 181.229991][ C0] symbol_string+0x14f/0x200 [ 181.229995][ C0] ? ptr_to_id+0x3e0/0x3e0 [ 181.229998][ C0] ? mark_lock+0x11f/0xdd0 [ 181.230001][ C0] ? widen_string+0xdd/0x2a0 [ 181.230004][ C0] ? set_precision+0x170/0x170 [ 181.230007][ C0] ? print_usage_bug+0x240/0x240 [ 181.230011][ C0] ? string_nocheck+0x1a9/0x220 [ 181.230014][ C0] ? number+0x82a/0xb00 [ 181.230017][ C0] pointer+0x15e/0x7c0 [ 181.230021][ C0] ? file_dentry_name+0x120/0x120 [ 181.230024][ C0] ? hex_string+0x4c0/0x4c0 [ 181.230027][ C0] vsnprintf+0x5ac/0x14f0 [ 181.230031][ C0] ? pointer+0x7c0/0x7c0 [ 181.230034][ C0] ? lock_release+0x800/0x800 [ 181.230038][ C0] ? lock_downgrade+0x840/0x840 [ 181.230042][ C0] vscnprintf+0x29/0x80 [ 181.230045][ C0] vprintk_store+0x40/0x4b0 [ 181.230049][ C0] vprintk_emit+0x139/0x720 [ 181.230052][ C0] vprintk_func+0x8f/0x1a6 [ 181.230055][ C0] ? irq_work_queue+0x2b/0x80 [ 181.230057][ C0] printk+0xba/0xed [ 181.230060][ C0] ? log_store.cold+0x16/0x16 [ 181.230064][ C0] ? unwind_next_frame+0x105a/0x1df0 [ 181.230067][ C0] show_ip+0x22/0x30 [ 181.230070][ C0] show_iret_regs+0x10/0x32 [ 181.230073][ C0] __show_regs+0x18/0x50 [ 181.230077][ C0] ? rcu_nmi_exit+0x214/0x2c0 [ 181.230081][ C0] show_trace_log_lvl+0x25f/0x2b5 [ 181.230085][ C0] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 181.230088][ C0] dump_stack+0x18f/0x20d [ 181.230092][ C0] rcu_irq_exit_preempt+0x1fa/0x250 [ 181.230095][ C0] idtentry_exit+0x9e/0xc0 [ 181.230099][ C0] exc_general_protection+0x23d/0x520 [ 181.230102][ C0] ? exc_bounds+0x1c0/0x1c0 [ 181.230105][ C0] ? __debug_object_init+0x4ae/0xdd0 [ 181.230109][ C0] ? allocate_vpid.part.0+0x53/0x90 [ 181.230113][ C0] asm_exc_general_protection+0x1e/0x30 [ 181.230117][ C0] RIP: 0010:kvm_fastop_exception+0xb68/0xfe8 [ 181.230135][ C0] Code: f2 ff ff ff 48 31 db e9 cb c9 2a f9 b8 f2 ff ff ff 48 31 f6 e9 cf c9 2a f9 31 c0 e9 bc 2c 2b f9 b8 fb ff ff ff e9 13 a9 31 f9 fb ff ff ff 31 c0 31 d2 e9 33 a9 31 f9 31 db e9 2a 0b 42 f9 31 [ 181.230140][ C0] RSP: 0018:ffffc90018217a30 EFLAGS: 00010216 [ 181.230147][ C0] RAX: 0000000000040000 RBX: ffff888057a8c0c0 RCX: 0000000000000122 [ 181.230151][ C0] RDX: 000000000000624c RSI: ffffc90018217a98 RDI: 0000000000000122 [ 181.230156][ C0] RBP: 0000000000000122 R08: ffff8880578c81c0 R09: fffffbfff131f481 [ 181.230162][ C0] R10: ffffffff898fa403 R11: fffffbfff131f480 R12: 0000000000000122 [ 181.230168][ C0] R13: 0000000000000078 R14: 0000000000000006 R15: ffffffff88244b5c [ 181.230171][ C0] vmx_create_vcpu+0x184/0x2b40 [ 181.230175][ C0] ? vmx_exec_control+0x1f0/0x1f0 [ 181.230177][ C0] ? memset+0x20/0x40 [ 181.230181][ C0] kvm_arch_vcpu_create+0x6a8/0xb30 [ 181.230184][ C0] kvm_vm_ioctl+0x15b7/0x2460 [ 181.230187][ C0] ? lock_downgrade+0x840/0x840 [ 181.230191][ C0] ? kvm_unregister_device_ops+0x60/0x60 [ 181.230195][ C0] ? tomoyo_path_number_perm+0x238/0x4d0 [ 181.230199][ C0] ? tomoyo_execute_permission+0x470/0x470 [ 181.230203][ C0] ? lockdep_hardirqs_on_prepare+0x590/0x590 [ 181.230207][ C0] ? __sanitizer_cov_trace_switch+0x45/0x70 [ 181.230210][ C0] ? do_vfs_ioctl+0x27d/0x1090 [ 181.230213][ C0] ? ioctl_file_clone+0x180/0x180 [ 181.230217][ C0] ? check_preemption_disabled+0x38/0x220 [ 181.230220][ C0] ? __fget_files+0x299/0x400 [ 181.230223][ C0] ? kvm_unregister_device_ops+0x60/0x60 [ 181.230226][ C0] ksys_ioctl+0x11a/0x180 [ 181.230230][ C0] __x64_sys_ioctl+0x6f/0xb0 [ 181.230233][ C0] do_syscall_64+0x60/0xe0 [ 181.230236][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 181.230239][ C0] [ 181.230242][ C0] =====0x45ca29 [ 181.230247][ C0] WARNING: suspicious RCU usage [ 181.230252][ C0] 5.7.0-rc7-next-20200526-syzkaller #0 Not tainted [ 181.230255][ C0] ----------------------------- [ 181.230260][ C0] include/linux/rcupdate.h:684 rcu_read_unlock() used illegally while idle! [ 181.230262][ C0] [ 181.230266][ C0] other info that might help us debug this: [ 181.230269][ C0] [ 181.230271][ C0] [ 181.230275][ C0] RCU used illegally from idle CPU! [ 181.230279][ C0] rcu_scheduler_active = 2, debug_locks = 1 [ 181.230284][ C0] RCU used illegally from extended quiescent state! [ 181.230288][ C0] 3 locks held by syz-executor.2/8445: [ 181.230290][ C0] #0: ffffffff899b47b8 (logbuf_lock){-.-.}-{2:2}, at: vprintk_emit+0x11a/0x720 [ 181.230308][ C0] #1: ffffffff899bfd00 (rcu_read_lock){....}-{1:2}, at: __bpf_address_lookup+0x0/0x290 [ 181.230326][ C0] #2: ffffffff899bfd00 (rcu_read_lock){....}-{1:2}, at: __bpf_address_lookup+0x0/0x290 [ 181.230342][ C0] [ 181.230349][ C0] stack backtrace: [ 181.230355][ C0] CPU: 0 PID: 8445 Comm: syz-executor.2 Not tainted 5.7.0-rc7-next-20200526-syzkaller #0 [ 181.230367][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 181.230371][ C0] Call Trace: [ 181.230374][ C0] dump_stack+0x18f/0x20d [ 181.230378][ C0] __bpf_address_lookup+0x1f5/0x290 [ 181.230381][ C0] kallsyms_lookup+0x234/0x2d0 [ 181.230385][ C0] __sprint_symbol+0x9c/0x1c0 [ 181.230389][ C0] ? kallsyms_lookup+0x2d0/0x2d0 [ 181.230393][ C0] ? set_precision+0x170/0x170 [ 181.230397][ C0] symbol_string+0x14f/0x200 [ 181.230400][ C0] ? ptr_to_id+0x3e0/0x3e0 [ 181.230404][ C0] ? string_nocheck+0x220/0x220 [ 181.230408][ C0] ? widen_string+0xdd/0x2a0 [ 181.230413][ C0] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 181.230417][ C0] ? set_precision+0x170/0x170 [ 181.230420][ C0] ? string_nocheck+0x1a9/0x220 [ 181.230423][ C0] ? number+0x82a/0xb00 [ 181.230426][ C0] pointer+0x15e/0x7c0 [ 181.230430][ C0] ? file_dentry_name+0x120/0x120 [ 181.230433][ C0] ? hex_string+0x4c0/0x4c0 [ 181.230437][ C0] ? enable_ptr_key_workfn+0x30/0x30 [ 181.230441][ C0] vsnprintf+0x5ac/0x14f0 [ 181.230444][ C0] ? pointer+0x7c0/0x7c0 [ 181.230448][ C0] ? vsnprintf+0x2c6/0x14f0 [ 181.230451][ C0] vscnprintf+0x29/0x80 [ 181.230455][ C0] printk_safe_log_store+0xf5/0x250 [ 181.230459][ C0] ? printk_deferred+0xed/0xed [ 181.230462][ C0] ? irq_work_queue+0x2b/0x80 [ 181.230466][ C0] ? printk_safe_log_store+0x1b7/0x250 [ 181.230470][ C0] vprintk_func+0xef/0x1a6 [ 181.230473][ C0] printk+0xba/0xed [ 181.230477][ C0] ? log_store.cold+0x16/0x16 [ 181.230481][ C0] ? unwind_next_frame+0x105a/0x1df0 [ 181.230485][ C0] show_ip+0x22/0x30 [ 181.230488][ C0] show_iret_regs+0x10/0x32 [ 181.230492][ C0] __show_regs+0x18/0x50 [ 181.230495][ C0] ? rcu_nmi_exit+0x214/0x2c0 [ 181.230499][ C0] show_trace_log_lvl+0x25f/0x2b5 [ 181.230504][ C0] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 181.230508][ C0] dump_stack+0x18f/0x20d [ 181.230511][ C0] __bpf_address_lookup+0x23a/0x290 [ 181.230515][ C0] kallsyms_lookup+0x234/0x2d0 [ 181.230518][ C0] ? widen_string+0xdd/0x2a0 [ 181.230521][ C0] __sprint_symbol+0x9c/0x1c0 [ 181.230525][ C0] ? kallsyms_lookup+0x2d0/0x2d0 [ 181.230528][ C0] ? mark_lock+0x11f/0xdd0 [ 181.230532][ C0] ? string_nocheck+0x1a9/0x220 [ 181.230536][ C0] ? print_usage_bug+0x240/0x240 [ 181.230539][ C0] symbol_string+0x14f/0x200 [ 181.230543][ C0] ? ptr_to_id+0x3e0/0x3e0 [ 181.230547][ C0] ? mark_lock+0x11f/0xdd0 [ 181.230550][ C0] ? widen_string+0xdd/0x2a0 [ 181.230554][ C0] ? set_precision+0x170/0x170 [ 181.230558][ C0] ? print_usage_bug+0x240/0x240 [ 181.230562][ C0] ? string_nocheck+0x1a9/0x220 [ 181.230565][ C0] ? number+0x82a/0xb00 [ 181.230568][ C0] pointer+0x15e/0x7c0 [ 181.230572][ C0] ? file_dentry_name+0x120/0x120 [ 181.230576][ C0] ? hex_string+0x4c0/0x4c0 [ 181.230580][ C0] vsnprintf+0x5ac/0x14f0 [ 181.230583][ C0] ? pointer+0x7c0/0x7c0 [ 181.230586][ C0] ? lock_release+0x800/0x800 [ 181.230590][ C0] ? lock_downgrade+0x840/0x840 [ 181.230593][ C0] vscnprintf+0x29/0x80 [ 181.230597][ C0] vprintk_store+0x40/0x4b0 [ 181.230600][ C0] vprintk_emit+0x139/0x720 [ 181.230603][ C0] vprintk_func+0x8f/0x1a6 [ 181.230607][ C0] ? irq_work_queue+0x2b/0x80 [ 181.230610][ C0] printk+0xba/0xed [ 181.230613][ C0] ? log_store.cold+0x16/0x16 [ 181.230616][ C0] ? unwind_next_frame+0x105a/0x1df0 [ 181.230620][ C0] show_ip+0x22/0x30 [ 181.230624][ C0] show_iret_regs+0x10/0x32 [ 181.230627][ C0] __show_regs+0x18/0x50 [ 181.230631][ C0] ? rcu_nmi_exit+0x214/0x2c0 [ 181.230634][ C0] show_trace_log_lvl+0x25f/0x2b5 [ 181.230638][ C0] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 181.230641][ C0] dump_stack+0x18f/0x20d [ 181.230645][ C0] rcu_irq_exit_preempt+0x1fa/0x250 [ 181.230648][ C0] idtentry_exit+0x9e/0xc0 [ 181.230652][ C0] exc_general_protection+0x23d/0x520 [ 181.230656][ C0] ? exc_bounds+0x1c0/0x1c0 [ 181.230660][ C0] ? __debug_object_init+0x4ae/0xdd0 [ 181.230663][ C0] ? allocate_vpid.part.0+0x53/0x90 [ 181.230668][ C0] asm_exc_general_protection+0x1e/0x30 [ 181.230672][ C0] RIP: 0010:kvm_fastop_exception+0xb68/0xfe8 [ 181.230682][ C0] Code: f2 ff ff ff 48 31 db e9 cb c9 2a f9 b8 f2 ff ff ff 48 31 f6 e9 cf c9 2a f9 31 c0 e9 bc 2c 2b f9 b8 fb ff ff ff e9 13 a9 31 f9 fb ff ff ff 31 c0 31 d2 e9 33 a9 31 f9 31 db e9 2a 0b 42 f9 31 [ 181.230686][ C0] RSP: 0018:ffffc90018217a30 EFLAGS: 00010216 [ 181.230695][ C0] RAX: 0000000000040000 RBX: ffff888057a8c0c0 RCX: 0000000000000122 [ 181.230700][ C0] RDX: 000000000000624c RSI: ffffc90018217a98 RDI: 0000000000000122 [ 181.230706][ C0] RBP: 0000000000000122 R08: ffff8880578c81c0 R09: fffffbfff131f481 [ 181.230712][ C0] R10: ffffffff898fa403 R11: fffffbfff131f480 R12: 0000000000000122 [ 181.230717][ C0] R13: 0000000000000078 R14: 0000000000000006 R15: ffffffff88244b5c [ 181.230721][ C0] vmx_create_vcpu+0x184/0x2b40 [ 181.230725][ C0] ? vmx_exec_control+0x1f0/0x1f0 [ 181.230729][ C0] ? memset+0x20/0x40 [ 181.230733][ C0] kvm_arch_vcpu_create+0x6a8/0xb30 [ 181.230737][ C0] kvm_vm_ioctl+0x15b7/0x2460 [ 181.230740][ C0] ? lock_downgrade+0x840/0x840 [ 181.230745][ C0] ? kvm_unregister_device_ops+0x60/0x60 [ 181.230749][ C0] ? tomoyo_path_number_perm+0x238/0x4d0 [ 181.230753][ C0] ? tomoyo_execute_permission+0x470/0x470 [ 181.230757][ C0] ? lockdep_hardirqs_on_prepare+0x590/0x590 [ 181.230762][ C0] ? __sanitizer_cov_trace_switch+0x45/0x70 [ 181.230765][ C0] ? do_vfs_ioctl+0x27d/0x1090 [ 181.230769][ C0] ? ioctl_file_clone+0x180/0x180 [ 181.230773][ C0] ? check_preemption_disabled+0x38/0x220 [ 181.230777][ C0] ? __fget_files+0x299/0x400 [ 181.230781][ C0] ? kvm_unregister_device_ops+0x60/0x60 [ 181.230784][ C0] ksys_ioctl+0x11a/0x180 [ 181.230788][ C0] __x64_sys_ioctl+0x6f/0xb0 [ 181.230792][ C0] do_syscall_64+0x60/0xe0 [ 181.230796][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 181.230800][ C0] RIP: 0033:0x45ca29 [ 181.230812][ C0] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 181.230814][ C0] RSP: 002b:00 [ 181.230822][ C0] Lost 15 message(s)! [ 181.295257][ T8448] QAT: Invalid ioctl [ 181.302901][ T8445] [ 181.322062][ T8448] QAT: Invalid ioctl [ 181.323585][ T8445] ============================= [ 181.323590][ T8445] WARNING: suspicious RCU usage [ 181.323599][ T8445] 5.7.0-rc7-next-20200526-syzkaller #0 Not tainted [ 181.323602][ T8445] ----------------------------- [ 181.323611][ T8445] include/trace/events/rcu.h:27 suspicious rcu_dereference_check() usage! [ 181.323616][ T8445] [ 181.323616][ T8445] other info that might help us debug this: [ 181.323616][ T8445] [ 181.323625][ T8445] [ 181.323625][ T8445] RCU used illegally from idle CPU! [ 181.323625][ T8445] rcu_scheduler_active = 2, debug_locks = 1 [ 181.323629][ T8445] RCU used illegally from extended quiescent state! [ 181.323635][ T8445] no locks held by syz-executor.2/8445. [ 181.323639][ T8445] [ 181.323639][ T8445] stack backtrace: [ 181.323653][ T8445] CPU: 0 PID: 8445 Comm: syz-executor.2 Not tainted 5.7.0-rc7-next-20200526-syzkaller #0 [ 181.323661][ T8445] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 181.323666][ T8445] Call Trace: [ 181.323686][ T8445] dump_stack+0x18f/0x20d [ 181.323707][ T8445] rcu_note_context_switch+0x113d/0x1b20 [ 181.323722][ T8445] ? lockdep_hardirqs_on_prepare+0x3a2/0x590 [ 181.323738][ T8445] ? retint_kernel+0x2b/0x2b [ 181.323752][ T8445] ? trace_hardirqs_on_caller+0x64/0x230 [ 181.323774][ T8445] __schedule+0x22b/0x1fa0 [ 181.323790][ T8445] ? check_preemption_disabled+0x38/0x220 [ 181.323807][ T8445] ? firmware_map_remove+0x19e/0x19e [ 181.323831][ T8445] preempt_schedule_irq+0xb0/0x150 [ 181.323846][ T8445] idtentry_exit+0xb9/0xc0 [ 181.323861][ T8445] exc_general_protection+0x23d/0x520 [ 181.323876][ T8445] ? exc_bounds+0x1c0/0x1c0 [ 181.323890][ T8445] ? __debug_object_init+0x4ae/0xdd0 [ 181.323919][ T8445] ? allocate_vpid.part.0+0x53/0x90 [ 181.323939][ T8445] asm_exc_general_protection+0x1e/0x30 [ 181.323952][ T8445] RIP: 0010:kvm_fastop_exception+0xb68/0xfe8 [ 181.323966][ T8445] Code: f2 ff ff ff 48 31 db e9 cb c9 2a f9 b8 f2 ff ff ff 48 31 f6 e9 cf c9 2a f9 31 c0 e9 bc 2c 2b f9 b8 fb ff ff ff e9 13 a9 31 f9 fb ff ff ff 31 c0 31 d2 e9 33 a9 31 f9 31 db e9 2a 0b 42 f9 31 [ 181.323973][ T8445] RSP: 0018:ffffc90018217a30 EFLAGS: 00010216 [ 181.323984][ T8445] RAX: 0000000000040000 RBX: ffff888057a8c0c0 RCX: 0000000000000122 [ 181.323992][ T8445] RDX: 000000000000624c RSI: ffffc90018217a98 RDI: 0000000000000122 [ 181.324001][ T8445] RBP: 0000000000000122 R08: ffff8880578c81c0 R09: fffffbfff131f481 [ 181.324009][ T8445] R10: ffffffff898fa403 R11: fffffbfff131f480 R12: 0000000000000122 [ 181.324017][ T8445] R13: 0000000000000078 R14: 0000000000000006 R15: ffffffff88244b5c [ 181.324047][ T8445] vmx_create_vcpu+0x184/0x2b40 [ 181.324068][ T8445] ? vmx_exec_control+0x1f0/0x1f0 [ 181.324086][ T8445] ? memset+0x20/0x40 [ 181.324112][ T8445] kvm_arch_vcpu_create+0x6a8/0xb30 [ 181.324137][ T8445] kvm_vm_ioctl+0x15b7/0x2460 [ 181.324156][ T8445] ? lock_downgrade+0x840/0x840 [ 181.324175][ T8445] ? kvm_unregister_device_ops+0x60/0x60 [ 181.324203][ T8445] ? tomoyo_path_number_perm+0x238/0x4d0 [ 181.324220][ T8445] ? tomoyo_execute_permission+0x470/0x470 [ 181.324241][ T8445] ? lockdep_hardirqs_on_prepare+0x590/0x590 [ 181.389178][ T8448] QAT: Invalid ioctl [ 181.390874][ T8445] ? __sanitizer_cov_trace_switch+0x45/0x70 [ 181.390897][ T8445] ? do_vfs_ioctl+0x27d/0x1090 [ 181.399706][ T8448] QAT: Invalid ioctl [ 181.399891][ T8445] ? ioctl_file_clone+0x180/0x180 [ 181.421220][ T8448] QAT: Invalid ioctl [ 181.423644][ T8445] ? check_preemption_disabled+0x38/0x220 [ 181.423669][ T8445] ? __fget_files+0x299/0x400 [ 181.423695][ T8445] ? kvm_unregister_device_ops+0x60/0x60 [ 181.423711][ T8445] ksys_ioctl+0x11a/0x180 [ 181.423730][ T8445] __x64_sys_ioctl+0x6f/0xb0 [ 181.423744][ T8445] do_syscall_64+0x60/0xe0 [ 181.423762][ T8445] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 181.423774][ T8445] RIP: 0033:0x45ca29 [ 181.423789][ T8445] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 181.423796][ T8445] RSP: 002b:00007f4bd78d8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 181.423809][ T8445] RAX: ffffffffffffffda RBX: 00000000004e73c0 RCX: 000000000045ca29 [ 181.423816][ T8445] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 181.423823][ T8445] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 181.423831][ T8445] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 181.423839][ T8445] R13: 0000000000000396 R14: 00000000004c62c6 R15: 00007f4bd78d96d4 [ 181.424326][ T8445] [ 181.432699][ T8448] QAT: Invalid ioctl [ 181.437143][ T8445] ============================= [ 181.437146][ T8445] WARNING: suspicious RCU usage [ 181.437154][ T8445] 5.7.0-rc7-next-20200526-syzkaller #0 Not tainted [ 181.437157][ T8445] ----------------------------- [ 181.437167][ T8445] include/trace/events/sched.h:629 suspicious rcu_dereference_check() usage! [ 181.437170][ T8445] [ 181.437170][ T8445] other info that might help us debug this: [ 181.437170][ T8445] [ 181.437178][ T8445] [ 181.437178][ T8445] RCU used illegally from idle CPU! [ 181.437178][ T8445] rcu_scheduler_active = 2, debug_locks = 0 [ 181.437181][ T8445] RCU used illegally from extended quiescent state! [ 181.437188][ T8445] 1 lock held by syz-executor.2/8445: [ 181.437191][ T8445] #0: ffff8880ae637d58 (&rq->lock){-.-.}-{2:2}, at: __schedule+0x233/0x1fa0 [ 181.437221][ T8445] [ 181.437221][ T8445] stack backtrace: [ 181.437234][ T8445] CPU: 0 PID: 8445 Comm: syz-executor.2 Not tainted 5.7.0-rc7-next-20200526-syzkaller #0 [ 181.437240][ T8445] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 181.437251][ T8445] Call Trace: [ 183.009439][ T8445] dump_stack+0x18f/0x20d [ 183.013751][ T8445] __update_load_avg_se+0x75a/0xc90 [ 183.018950][ T8445] update_load_avg+0x178/0x1c60 [ 183.023794][ T8445] ? update_curr+0x28d/0x8a0 [ 183.028387][ T8445] put_prev_entity+0xc1/0x2a0 [ 183.033062][ T8445] pick_next_task_fair+0x65f/0xc70 [ 183.038263][ T8445] __schedule+0x375/0x1fa0 [ 183.042909][ T8445] ? firmware_map_remove+0x19e/0x19e [ 183.048278][ T8445] preempt_schedule_irq+0xb0/0x150 [ 183.053397][ T8445] idtentry_exit+0xb9/0xc0 [ 183.057799][ T8445] exc_general_protection+0x23d/0x520 [ 183.063165][ T8445] ? exc_bounds+0x1c0/0x1c0 [ 183.067732][ T8445] ? __debug_object_init+0x4ae/0xdd0 [ 183.073013][ T8445] ? allocate_vpid.part.0+0x53/0x90 [ 183.078208][ T8445] asm_exc_general_protection+0x1e/0x30 [ 183.083729][ T8445] RIP: 0010:kvm_fastop_exception+0xb68/0xfe8 [ 183.089822][ T8445] Code: f2 ff ff ff 48 31 db e9 cb c9 2a f9 b8 f2 ff ff ff 48 31 f6 e9 cf c9 2a f9 31 c0 e9 bc 2c 2b f9 b8 fb ff ff ff e9 13 a9 31 f9 fb ff ff ff 31 c0 31 d2 e9 33 a9 31 f9 31 db e9 2a 0b 42 f9 31 [ 183.109595][ T8445] RSP: 0018:ffffc90018217a30 EFLAGS: 00010216 [ 183.115667][ T8445] RAX: 0000000000040000 RBX: ffff888057a8c0c0 RCX: 0000000000000122 [ 183.123657][ T8445] RDX: 000000000000624c RSI: ffffc90018217a98 RDI: 0000000000000122 [ 183.131841][ T8445] RBP: 0000000000000122 R08: ffff8880578c81c0 R09: fffffbfff131f481 [ 183.140525][ T8445] R10: ffffffff898fa403 R11: fffffbfff131f480 R12: 0000000000000122 [ 183.148784][ T8445] R13: 0000000000000078 R14: 0000000000000006 R15: ffffffff88244b5c [ 183.156775][ T8445] vmx_create_vcpu+0x184/0x2b40 [ 183.161630][ T8445] ? vmx_exec_control+0x1f0/0x1f0 [ 183.166770][ T8445] ? memset+0x20/0x40 [ 183.170740][ T8445] kvm_arch_vcpu_create+0x6a8/0xb30 [ 183.176002][ T8445] kvm_vm_ioctl+0x15b7/0x2460 [ 183.181046][ T8445] ? lock_downgrade+0x840/0x840 [ 183.186015][ T8445] ? kvm_unregister_device_ops+0x60/0x60 [ 183.191792][ T8445] ? tomoyo_path_number_perm+0x238/0x4d0 [ 183.197413][ T8445] ? tomoyo_execute_permission+0x470/0x470 [ 183.203219][ T8445] ? lockdep_hardirqs_on_prepare+0x590/0x590 [ 183.209219][ T8445] ? __sanitizer_cov_trace_switch+0x45/0x70 [ 183.215112][ T8445] ? do_vfs_ioctl+0x27d/0x1090 [ 183.220067][ T8445] ? ioctl_file_clone+0x180/0x180 [ 183.225083][ T8445] ? check_preemption_disabled+0x38/0x220 [ 183.230787][ T8445] ? __fget_files+0x299/0x400 [ 183.235465][ T8445] ? kvm_unregister_device_ops+0x60/0x60 [ 183.241117][ T8445] ksys_ioctl+0x11a/0x180 [ 183.245461][ T8445] __x64_sys_ioctl+0x6f/0xb0 [ 183.250174][ T8445] do_syscall_64+0x60/0xe0 [ 183.254606][ T8445] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 183.260551][ T8445] RIP: 0033:0x45ca29 [ 183.264438][ T8445] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 183.284050][ T8445] RSP: 002b:00007f4bd78d8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 183.292440][ T8445] RAX: ffffffffffffffda RBX: 00000000004e73c0 RCX: 000000000045ca29 [ 183.300906][ T8445] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 183.308857][ T8445] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 183.316826][ T8445] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 183.324789][ T8445] R13: 0000000000000396 R14: 00000000004c62c6 R15: 00007f4bd78d96d4 [ 183.332793][ C0] [ 183.332798][ C0] ====================================================== [ 183.332802][ C0] WARNING: possible circular locking dependency detected [ 183.332805][ C0] 5.7.0-rc7-next-20200526-syzkaller #0 Not tainted [ 183.332809][ C0] ------------------------------------------------------ [ 183.332813][ C0] syz-executor.2/8445 is trying to acquire lock: [ 183.332816][ C0] ffffffff899b48f8 ((console_sem).lock){-.-.}-{2:2}, at: down_trylock+0xe/0x60 [ 183.332826][ C0] [ 183.332829][ C0] but task is already holding lock: [ 183.332831][ C0] ffff8880ae637d58 (&rq->lock){-.-.}-{2:2}, at: __schedule+0x233/0x1fa0 [ 183.332841][ C0] [ 183.332845][ C0] which lock already depends on the new lock. [ 183.332846][ C0] [ 183.332848][ C0] [ 183.332852][ C0] the existing dependency chain (in reverse order) is: [ 183.332854][ C0] [ 183.332855][ C0] -> #2 (&rq->lock){-.-.}-{2:2}: [ 183.332865][ C0] _raw_spin_lock+0x2a/0x40 [ 183.332868][ C0] task_fork_fair+0x6a/0x520 [ 183.332871][ C0] sched_fork+0x3a7/0x8b0 [ 183.332874][ C0] copy_process+0x1d31/0x7130 [ 183.332877][ C0] _do_fork+0x12d/0x1000 [ 183.332879][ C0] kernel_thread+0xb5/0xf0 [ 183.332882][ C0] rest_init+0x23/0x365 [ 183.332885][ C0] start_kernel+0x9be/0x9fb [ 183.332888][ C0] secondary_startup_64+0xa4/0xb0 [ 183.332890][ C0] [ 183.332891][ C0] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 183.332902][ C0] _raw_spin_lock_irqsave+0x8c/0xbf [ 183.332905][ C0] try_to_wake_up+0xa4/0x15e0 [ 183.332908][ C0] up+0x92/0xe0 [ 183.332910][ C0] __up_console_sem+0xad/0x1b0 [ 183.332913][ C0] console_unlock+0x685/0xef0 [ 183.332917][ C0] con_install+0x4ad/0x610 [ 183.332920][ C0] tty_init_dev+0xf5/0x460 [ 183.332923][ C0] tty_open+0x48b/0xb40 [ 183.332925][ C0] chrdev_open+0x219/0x5c0 [ 183.332928][ C0] do_dentry_open+0x4b6/0x11a0 [ 183.332931][ C0] path_openat+0x1e9e/0x27d0 [ 183.332934][ C0] do_filp_open+0x192/0x260 [ 183.332938][ C0] do_sys_openat2+0x585/0x7a0 [ 183.332940][ C0] do_sys_open+0xc3/0x140 [ 183.332944][ C0] do_syscall_64+0x60/0xe0 [ 183.332947][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 183.332949][ C0] [ 183.332951][ C0] -> #0 ((console_sem).lock){-.-.}-{2:2}: [ 183.332962][ C0] __lock_acquire+0x2a9a/0x48b0 [ 183.332965][ C0] lock_acquire+0x1f2/0x8f0 23:54:00 executing program 0: syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x200, 0x0) r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$uhid(0xffffffffffffff9c, &(0x7f0000000280)='/dev/uhid\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x2b, 0x1, 0x0) r1 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0) ioctl$int_in(r0, 0x800000c004500a, 0x0) pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 23:54:00 executing program 5: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="5c0000001000011821f6a0b235000000000000b1", @ANYRES32=r1, @ANYBLOB="00000000000000003c001280110001006272696467655f736c617665000000002400058005001e00010000000500190003"], 0x5c}}, 0x0) r2 = socket(0x10, 0x8000000000000003, 0x0) sendmmsg(r2, &(0x7f0000000000), 0x40000000000024a, 0x0) 23:54:00 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000880)='/dev/loop#\x00', 0x0, 0x0) r1 = memfd_create(0x0, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) ioctl$LOOP_SET_FD(r0, 0x4c06, r1) 23:54:00 executing program 3: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/seq\x00', 0x0) read(r0, &(0x7f0000000080)=""/241, 0xf1) 23:54:00 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x0, 0x0) ioctl$int_in(r2, 0x800000c0045005, &(0x7f00000004c0)=0x100040000) close(r2) [ 183.332968][ C0] _raw_spin_lock_irqsave+0x8c/0xbf [ 183.332971][ C0] down_trylock+0xe/0x60 [ 183.332975][ C0] __down_trylock_console_sem+0xa3/0x210 [ 183.332978][ C0] console_trylock+0x12/0x90 [ 183.332981][ C0] vprintk_emit+0x2a7/0x720 [ 183.332984][ C0] vprintk_func+0x8f/0x1a6 [ 183.332987][ C0] printk+0xba/0xed [ 183.332989][ C0] lockdep_rcu_suspicious+0x1c/0x155 [ 183.332993][ C0] __update_load_avg_se+0x75a/0xc90 [ 183.332996][ C0] update_load_avg+0x178/0x1c60 [ 183.332999][ C0] put_prev_entity+0xc1/0x2a0 [ 183.333002][ C0] pick_next_task_fair+0x65f/0xc70 [ 183.333005][ C0] __schedule+0x375/0x1fa0 [ 183.333008][ C0] preempt_schedule_irq+0xb0/0x150 [ 183.333011][ C0] idtentry_exit+0xb9/0xc0 [ 183.333015][ C0] exc_general_protection+0x23d/0x520 [ 183.333020][ C0] asm_exc_general_protection+0x1e/0x30 [ 183.333024][ C0] kvm_fastop_exception+0xb68/0xfe8 [ 183.333028][ C0] vmx_create_vcpu+0x184/0x2b40 [ 183.333031][ C0] kvm_arch_vcpu_create+0x6a8/0xb30 [ 183.333034][ C0] kvm_vm_ioctl+0x15b7/0x2460 [ 183.333036][ C0] ksys_ioctl+0x11a/0x180 [ 183.333040][ C0] __x64_sys_ioctl+0x6f/0xb0 [ 183.333043][ C0] do_syscall_64+0x60/0xe0 [ 183.333047][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 183.333048][ C0] [ 183.333053][ C0] other info that might help us debug this: [ 183.333055][ C0] [ 183.333058][ C0] Chain exists of: [ 183.333060][ C0] (console_sem).lock --> &p->pi_lock --> &rq->lock [ 183.333072][ C0] [ 183.333075][ C0] Possible unsafe locking scenario: [ 183.333077][ C0] [ 183.333080][ C0] CPU0 CPU1 [ 183.333083][ C0] ---- ---- [ 183.333085][ C0] lock(&rq->lock); [ 183.333091][ C0] lock(&p->pi_lock); [ 183.333098][ C0] lock(&rq->lock); [ 183.333104][ C0] lock((console_sem).lock); [ 183.333110][ C0] [ 183.333113][ C0] *** DEADLOCK *** [ 183.333115][ C0] [ 183.333118][ C0] 1 lock held by syz-executor.2/8445: [ 183.333120][ C0] #0: ffff8880ae637d58 (&rq->lock){-.-.}-{2:2}, at: __schedule+0x233/0x1fa0 [ 183.333136][ C0] [ 183.333138][ C0] stack backtrace: [ 183.333143][ C0] CPU: 0 PID: 8445 Comm: syz-executor.2 Not tainted 5.7.0-rc7-next-20200526-syzkaller #0 [ 183.333148][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 183.333151][ C0] Call Trace: [ 183.333154][ C0] dump_stack+0x18f/0x20d [ 183.333157][ C0] check_noncircular+0x32e/0x3e0 [ 183.333161][ C0] ? print_circular_bug.isra.0+0x3a0/0x3a0 [ 183.333164][ C0] ? print_usage_bug+0x240/0x240 [ 183.333194][ C0] ? print_circular_bug.isra.0+0x3a0/0x3a0 [ 183.333198][ C0] ? mark_lock+0x11f/0xdd0 [ 183.333201][ C0] __lock_acquire+0x2a9a/0x48b0 [ 183.333206][ C0] ? lockdep_hardirqs_on_prepare+0x590/0x590 [ 183.333210][ C0] ? enable_ptr_key_workfn+0x30/0x30 [ 183.333213][ C0] lock_acquire+0x1f2/0x8f0 [ 183.333216][ C0] ? down_trylock+0xe/0x60 [ 183.333219][ C0] ? lock_release+0x800/0x800 [ 183.333223][ C0] ? find_held_lock+0x2d/0x110 [ 183.333226][ C0] ? vprintk_emit+0x152/0x720 [ 183.333229][ C0] ? log_store+0x3d2/0x570 [ 183.333233][ C0] _raw_spin_lock_irqsave+0x8c/0xbf [ 183.333236][ C0] ? down_trylock+0xe/0x60 [ 183.333239][ C0] down_trylock+0xe/0x60 [ 183.333243][ C0] ? vprintk_emit+0x2a7/0x720 [ 183.333246][ C0] __down_trylock_console_sem+0xa3/0x210 [ 183.333249][ C0] console_trylock+0x12/0x90 23:54:00 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x0, 0x0) ioctl$int_in(r2, 0x800000c0045005, &(0x7f00000004c0)=0x100040000) close(r2) [ 183.333252][ C0] vprintk_emit+0x2a7/0x720 [ 183.333255][ C0] vprintk_func+0x8f/0x1a6 [ 183.333258][ C0] printk+0xba/0xed [ 183.333262][ C0] ? log_store.cold+0x16/0x16 [ 183.333265][ C0] ? rcu_is_watching+0x56/0xc0 [ 183.333269][ C0] ? rcu_read_lock_held_common+0x3f/0xa0 [ 183.333273][ C0] ? rcu_read_lock_sched_held+0x5a/0xd0 [ 183.333277][ C0] lockdep_rcu_suspicious+0x1c/0x155 [ 183.333281][ C0] __update_load_avg_se+0x75a/0xc90 [ 183.333284][ C0] update_load_avg+0x178/0x1c60 [ 183.333288][ C0] ? update_curr+0x28d/0x8a0 [ 183.333291][ C0] put_prev_entity+0xc1/0x2a0 [ 183.333295][ C0] pick_next_task_fair+0x65f/0xc70 [ 183.333298][ C0] __schedule+0x375/0x1fa0 [ 183.333302][ C0] ? firmware_map_remove+0x19e/0x19e [ 183.333305][ C0] preempt_schedule_irq+0xb0/0x150 [ 183.333308][ C0] idtentry_exit+0xb9/0xc0 [ 183.333311][ C0] exc_general_protection+0x23d/0x520 [ 183.333315][ C0] ? exc_bounds+0x1c0/0x1c0 [ 183.333318][ C0] ? __debug_object_init+0x4ae/0xdd0 23:54:01 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x0, 0x0) ioctl$int_in(r2, 0x800000c0045005, &(0x7f00000004c0)=0x100040000) close(r2) [ 183.333322][ C0] ? allocate_vpid.part.0+0x53/0x90 [ 183.333326][ C0] asm_exc_general_protection+0x1e/0x30 [ 183.333331][ C0] RIP: 0010:kvm_fastop_exception+0xb68/0xfe8 [ 183.333342][ C0] Code: f2 ff ff ff 48 31 db e9 cb c9 2a f9 b8 f2 ff ff ff 48 31 f6 e9 cf c9 2a f9 31 c0 e9 bc 2c 2b f9 b8 fb ff ff ff e9 13 a9 31 f9 fb ff ff ff 31 c0 31 d2 e9 33 a9 31 f9 31 db e9 2a 0b 42 f9 31 [ 183.333346][ C0] RSP: 0018:ffffc90018217a30 EFLAGS: 00010216 [ 183.333353][ C0] RAX: 0000000000040000 RBX: ffff888057a8c0c0 RCX: 0000000000000122 [ 183.333359][ C0] RDX: 000000000000624c RSI: ffffc90018217a98 RDI: 0000000000000122 [ 183.333364][ C0] RBP: 0000000000000122 R08: ffff8880578c81c0 R09: fffffbfff131f481 [ 183.333368][ C0] R10: ffffffff898fa403 R11: fffffbfff131f480 R12: 0000000000000122 [ 183.333373][ C0] R13: 0000000000000078 R14: 0000000000000006 R15: ffffffff88244b5c [ 183.333377][ C0] vmx_create_vcpu+0x184/0x2b40 [ 183.333380][ C0] ? vmx_exec_control+0x1f0/0x1f0 [ 183.333383][ C0] ? memset+0x20/0x40 [ 183.333387][ C0] kvm_arch_vcpu_create+0x6a8/0xb30 23:54:01 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x0, 0x0) ioctl$int_in(r2, 0x800000c0045005, &(0x7f00000004c0)=0x100040000) close(r2) [ 183.333391][ C0] kvm_vm_ioctl+0x15b7/0x2460 [ 183.333394][ C0] ? lock_downgrade+0x840/0x840 [ 183.333398][ C0] ? kvm_unregister_device_ops+0x60/0x60 [ 183.333402][ C0] ? tomoyo_path_number_perm+0x238/0x4d0 [ 183.333406][ C0] ? tomoyo_execute_permission+0x470/0x470 [ 183.333410][ C0] ? lockdep_hardirqs_on_prepare+0x590/0x590 [ 183.333415][ C0] ? __sanitizer_cov_trace_switch+0x45/0x70 [ 183.333418][ C0] ? do_vfs_ioctl+0x27d/0x1090 [ 183.333422][ C0] ? ioctl_file_clone+0x180/0x180 [ 183.333426][ C0] ? check_preemption_disabled+0x38/0x220 [ 183.333429][ C0] ? __fget_files+0x299/0x400 [ 183.333432][ C0] ? kvm_unregister_device_ops+0x60/0x60 [ 183.333435][ C0] ksys_ioctl+0x11a/0x180 [ 183.333439][ C0] __x64_sys_ioctl+0x6f/0xb0 [ 183.333442][ C0] do_syscall_64+0x60/0xe0 [ 183.333446][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 183.333449][ C0] RIP: 0033:0x45ca29 23:54:01 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x0, 0x0) close(r2) [ 183.333461][ C0] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 183.333464][ C0] RSP: 002b:00007f4bd78d8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 183.333473][ C0] RAX: ffffffffffffffda RBX: 00000000004e73c0 RCX: 000000000045ca29 [ 183.333478][ C0] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 183.333484][ C0] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 183.333489][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 183.333494][ C0] R13: 0000000000000396 R14: 00000000004c62c6 R15: 00007f4bd78d96d4 [ 183.385717][ T8448] QAT: Invalid ioctl [ 183.401796][ T6565] BUG: using smp_processor_id() in preemptible [00000000] code: in:imklog/6565 [ 183.439229][ T8448] QAT: Invalid ioctl [ 183.442317][ T6565] caller is rcu_nmi_enter+0x19/0x200 [ 183.442331][ T6565] CPU: 0 PID: 6565 Comm: in:imklog Not tainted 5.7.0-rc7-next-20200526-syzkaller #0 [ 183.442345][ T6565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 184.327886][ T6565] Call Trace: 23:54:01 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x0, 0x0) close(r2) [ 184.331217][ T6565] dump_stack+0x18f/0x20d [ 184.335571][ T6565] check_preemption_disabled+0x20d/0x220 [ 184.341214][ T6565] rcu_nmi_enter+0x19/0x200 [ 184.345732][ T6565] kernel_text_address+0x99/0xe0 [ 184.350724][ T6565] __kernel_text_address+0x9/0x30 [ 184.355775][ T6565] unwind_get_return_address+0x5a/0xa0 [ 184.361333][ T6565] ? profile_setup.cold+0xc1/0xc1 [ 184.366397][ T6565] arch_stack_walk+0x97/0xf0 [ 184.371006][ T6565] stack_trace_save+0x8c/0xc0 [ 184.375705][ T6565] ? stack_trace_consume_entry+0x160/0x160 [ 184.381528][ T6565] ? trace_hardirqs_on+0x5f/0x220 [ 184.386575][ T6565] save_stack+0x1b/0x40 [ 184.390745][ T6565] ? save_stack+0x1b/0x40 [ 184.395096][ T6565] ? __kasan_kmalloc.constprop.0+0xbf/0xd0 [ 184.400915][ T6565] ? kmem_cache_alloc_trace+0x13d/0x7d0 [ 184.406549][ T6565] ? do_syslog+0x5b0/0x16d0 [ 184.411096][ T6565] ? kmsg_read+0x90/0xb0 [ 184.415723][ T6565] ? proc_reg_read+0x117/0x290 [ 184.420544][ T6565] ? __vfs_read+0x76/0x100 [ 184.425069][ T6565] ? vfs_read+0x1f0/0x420 23:54:01 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000880)='/dev/loop#\x00', 0x0, 0x0) r1 = memfd_create(&(0x7f0000000240)='.^\xc5', 0x0) ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c00, r1) ioctl$LOOP_SET_FD(r0, 0x4c06, r1) [ 184.429406][ T6565] ? ksys_read+0x12d/0x250 [ 184.433836][ T6565] ? do_syscall_64+0x60/0xe0 [ 184.438460][ T6565] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 184.444560][ T6565] ? lockdep_hardirqs_on_prepare+0x590/0x590 [ 184.450653][ T6565] ? lockdep_hardirqs_on_prepare+0x590/0x590 [ 184.456791][ T6565] ? lockdep_hardirqs_on_prepare+0x590/0x590 [ 184.463277][ T6565] ? lock_acquire+0x1f2/0x8f0 [ 184.467977][ T6565] ? arch_local_irq_restore+0x60/0x60 [ 184.473507][ T6565] ? lock_downgrade+0x840/0x840 [ 184.479043][ T6565] ? kasan_unpoison_shadow+0x30/0x40 [ 184.484433][ T6565] __kasan_kmalloc.constprop.0+0xbf/0xd0 [ 184.490435][ T6565] kmem_cache_alloc_trace+0x13d/0x7d0 [ 184.496172][ T6565] ? _raw_spin_lock_irqsave+0x94/0xbf [ 184.501563][ T6565] ? trace_hardirqs_on+0x5f/0x220 [ 184.506709][ T6565] do_syslog+0x5b0/0x16d0 [ 184.511252][ T6565] ? fsnotify+0x7df/0xb40 [ 184.515639][ T6565] ? fsnotify_parent+0xbf/0x2d0 [ 184.520507][ T6565] ? log_buf_vmcoreinfo_setup+0x140/0x140 [ 184.526284][ T6565] ? finish_wait+0x260/0x260 [ 184.530894][ T6565] ? mutex_trylock+0x2c0/0x2c0 [ 184.535678][ T6565] kmsg_read+0x90/0xb0 [ 184.539764][ T6565] ? kmsg_release+0x20/0x20 [ 184.544391][ T6565] proc_reg_read+0x117/0x290 [ 184.548996][ T6565] ? proc_reg_llseek+0x280/0x280 [ 184.553957][ T6565] __vfs_read+0x76/0x100 [ 184.558226][ T6565] vfs_read+0x1f0/0x420 [ 184.562396][ T6565] ksys_read+0x12d/0x250 [ 184.567382][ T6565] ? kernel_write+0x120/0x120 [ 184.572081][ T6565] ? fpregs_assert_state_consistent+0xbc/0xe0 [ 184.578444][ T6565] do_syscall_64+0x60/0xe0 [ 184.582963][ T6565] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 184.588869][ T6565] RIP: 0033:0x7f5289b5022d [ 184.593324][ T6565] Code: c1 20 00 00 75 10 b8 00 00 00 00 0f 05 48 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 4e fc ff ff 48 89 04 24 b8 00 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 97 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01 [ 184.612948][ T6565] RSP: 002b:00007f52874ec580 EFLAGS: 00000293 ORIG_RAX: 0000000000000000 [ 184.621610][ T6565] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f5289b5022d [ 184.629809][ T6565] RDX: 0000000000001fa0 RSI: 00007f52874ecda0 RDI: 0000000000000004 [ 184.637877][ T6565] RBP: 000055a6c1b169d0 R08: 0000000000000000 R09: 0000000000000000 [ 184.647508][ T6565] R10: 2ce33e6c02ce33e7 R11: 0000000000000293 R12: 00007f52874ecda0 [ 184.655853][ T6565] R13: 0000000000001fa0 R14: 0000000000001f9f R15: 00007f52874eec09 [ 184.663894][ T6565] BUG: using smp_processor_id() in preemptible [00000000] code: in:imklog/6565 [ 184.672864][ T6565] caller is rcu_nmi_enter+0x7b/0x200 [ 184.678296][ T6565] CPU: 0 PID: 6565 Comm: in:imklog Not tainted 5.7.0-rc7-next-20200526-syzkaller #0 [ 184.687662][ T6565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 184.698038][ T6565] Call Trace: [ 184.701567][ T6565] dump_stack+0x18f/0x20d [ 184.705919][ T6565] check_preemption_disabled+0x20d/0x220 [ 184.711675][ T6565] rcu_nmi_enter+0x7b/0x200 [ 184.716208][ T6565] kernel_text_address+0x99/0xe0 [ 184.721343][ T6565] __kernel_text_address+0x9/0x30 [ 184.726404][ T6565] unwind_get_return_address+0x5a/0xa0 [ 184.732151][ T6565] ? profile_setup.cold+0xc1/0xc1 [ 184.737291][ T6565] arch_stack_walk+0x97/0xf0 [ 184.741912][ T6565] stack_trace_save+0x8c/0xc0 [ 184.747308][ T6565] ? stack_trace_consume_entry+0x160/0x160 [ 184.753172][ T6565] ? trace_hardirqs_on+0x5f/0x220 [ 184.758238][ T6565] save_stack+0x1b/0x40 [ 184.762406][ T6565] ? save_stack+0x1b/0x40 [ 184.766746][ T6565] ? __kasan_kmalloc.constprop.0+0xbf/0xd0 [ 184.772583][ T6565] ? kmem_cache_alloc_trace+0x13d/0x7d0 [ 184.778139][ T6565] ? do_syslog+0x5b0/0x16d0 [ 184.782649][ T6565] ? kmsg_read+0x90/0xb0 [ 184.786897][ T6565] ? proc_reg_read+0x117/0x290 [ 184.791666][ T6565] ? __vfs_read+0x76/0x100 [ 184.796089][ T6565] ? vfs_read+0x1f0/0x420 [ 184.800422][ T6565] ? ksys_read+0x12d/0x250 [ 184.804845][ T6565] ? do_syscall_64+0x60/0xe0 [ 184.809449][ T6565] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 184.815535][ T6565] ? lockdep_hardirqs_on_prepare+0x590/0x590 [ 184.821533][ T6565] ? lockdep_hardirqs_on_prepare+0x590/0x590 [ 184.827576][ T6565] ? lockdep_hardirqs_on_prepare+0x590/0x590 [ 184.833576][ T6565] ? lock_acquire+0x1f2/0x8f0 [ 184.838290][ T6565] ? arch_local_irq_restore+0x60/0x60 [ 184.843681][ T6565] ? lock_downgrade+0x840/0x840 [ 184.848545][ T6565] ? kasan_unpoison_shadow+0x30/0x40 [ 184.853858][ T6565] __kasan_kmalloc.constprop.0+0xbf/0xd0 [ 184.859513][ T6565] kmem_cache_alloc_trace+0x13d/0x7d0 [ 184.864901][ T6565] ? _raw_spin_lock_irqsave+0x94/0xbf [ 184.870286][ T6565] ? trace_hardirqs_on+0x5f/0x220 [ 184.875320][ T6565] do_syslog+0x5b0/0x16d0 [ 184.879664][ T6565] ? fsnotify+0x7df/0xb40 [ 184.883999][ T6565] ? fsnotify_parent+0xbf/0x2d0 [ 184.888874][ T6565] ? log_buf_vmcoreinfo_setup+0x140/0x140 [ 184.894606][ T6565] ? finish_wait+0x260/0x260 [ 184.899234][ T6565] ? mutex_trylock+0x2c0/0x2c0 [ 184.904040][ T6565] kmsg_read+0x90/0xb0 [ 184.908201][ T6565] ? kmsg_release+0x20/0x20 [ 184.912742][ T6565] proc_reg_read+0x117/0x290 [ 184.917341][ T6565] ? proc_reg_llseek+0x280/0x280 [ 184.922284][ T6565] __vfs_read+0x76/0x100 [ 184.926624][ T6565] vfs_read+0x1f0/0x420 [ 184.931315][ T6565] ksys_read+0x12d/0x250 [ 184.935567][ T6565] ? kernel_write+0x120/0x120 [ 184.940257][ T6565] ? fpregs_assert_state_consistent+0xbc/0xe0 [ 184.946342][ T6565] do_syscall_64+0x60/0xe0 [ 184.950801][ T6565] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 184.956704][ T6565] RIP: 0033:0x7f5289b5022d [ 184.961126][ T6565] Code: c1 20 00 00 75 10 b8 00 00 00 00 0f 05 48 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 4e fc ff ff 48 89 04 24 b8 00 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 97 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01 [ 184.980847][ T6565] RSP: 002b:00007f52874ec580 EFLAGS: 00000293 ORIG_RAX: 0000000000000000 [ 184.989264][ T6565] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f5289b5022d [ 184.997277][ T6565] RDX: 0000000000001fa0 RSI: 00007f52874ecda0 RDI: 0000000000000004 [ 185.005253][ T6565] RBP: 000055a6c1b169d0 R08: 0000000000000000 R09: 0000000000000000 [ 185.013400][ T6565] R10: 2ce33e6c02ce33e7 R11: 0000000000000293 R12: 00007f52874ecda0 [ 185.021384][ T6565] R13: 0000000000001fa0 R14: 0000000000001f9f R15: 00007f52874eec09 [ 185.029428][ T6565] BUG: using smp_processor_id() in preemptible [00000000] code: in:imklog/6565 [ 185.038408][ T6565] caller is rcu_dynticks_eqs_enter+0x11/0x70 [ 185.044429][ T6565] CPU: 0 PID: 6565 Comm: in:imklog Not tainted 5.7.0-rc7-next-20200526-syzkaller #0 [ 185.053802][ T6565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 185.063866][ T6565] Call Trace: [ 185.067199][ T6565] dump_stack+0x18f/0x20d [ 185.071568][ T6565] check_preemption_disabled+0x20d/0x220 [ 185.077210][ T6565] rcu_dynticks_eqs_enter+0x11/0x70 [ 185.082437][ T6565] rcu_nmi_enter+0x185/0x200 [ 185.087051][ T6565] kernel_text_address+0x99/0xe0 [ 185.092016][ T6565] __kernel_text_address+0x9/0x30 [ 185.097060][ T6565] unwind_get_return_address+0x5a/0xa0 [ 185.102528][ T6565] ? profile_setup.cold+0xc1/0xc1 [ 185.107608][ T6565] arch_stack_walk+0x97/0xf0 [ 185.112236][ T6565] stack_trace_save+0x8c/0xc0 [ 185.116927][ T6565] ? stack_trace_consume_entry+0x160/0x160 [ 185.122778][ T6565] ? trace_hardirqs_on+0x5f/0x220 [ 185.127817][ T6565] save_stack+0x1b/0x40 [ 185.131990][ T6565] ? save_stack+0x1b/0x40 [ 185.136346][ T6565] ? __kasan_kmalloc.constprop.0+0xbf/0xd0 [ 185.142160][ T6565] ? kmem_cache_alloc_trace+0x13d/0x7d0 [ 185.147715][ T6565] ? do_syslog+0x5b0/0x16d0 [ 185.152229][ T6565] ? kmsg_read+0x90/0xb0 [ 185.156485][ T6565] ? proc_reg_read+0x117/0x290 [ 185.161267][ T6565] ? __vfs_read+0x76/0x100 [ 185.165692][ T6565] ? vfs_read+0x1f0/0x420 [ 185.170029][ T6565] ? ksys_read+0x12d/0x250 [ 185.174499][ T6565] ? do_syscall_64+0x60/0xe0 [ 185.179212][ T6565] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 185.185286][ T6565] ? lockdep_hardirqs_on_prepare+0x590/0x590 [ 185.191280][ T6565] ? lockdep_hardirqs_on_prepare+0x590/0x590 [ 185.197307][ T6565] ? lockdep_hardirqs_on_prepare+0x590/0x590 [ 185.203311][ T6565] ? lock_acquire+0x1f2/0x8f0 [ 185.207997][ T6565] ? arch_local_irq_restore+0x60/0x60 [ 185.213442][ T6565] ? lock_downgrade+0x840/0x840 [ 185.218306][ T6565] ? kasan_unpoison_shadow+0x30/0x40 [ 185.223622][ T6565] __kasan_kmalloc.constprop.0+0xbf/0xd0 [ 185.229263][ T6565] kmem_cache_alloc_trace+0x13d/0x7d0 [ 185.234647][ T6565] ? _raw_spin_lock_irqsave+0x94/0xbf [ 185.240026][ T6565] ? trace_hardirqs_on+0x5f/0x220 [ 185.245107][ T6565] do_syslog+0x5b0/0x16d0 [ 185.249447][ T6565] ? fsnotify+0x7df/0xb40 [ 185.253872][ T6565] ? fsnotify_parent+0xbf/0x2d0 [ 185.258920][ T6565] ? log_buf_vmcoreinfo_setup+0x140/0x140 [ 185.264691][ T6565] ? finish_wait+0x260/0x260 [ 185.269331][ T6565] ? mutex_trylock+0x2c0/0x2c0 [ 185.274113][ T6565] kmsg_read+0x90/0xb0 [ 185.278186][ T6565] ? kmsg_release+0x20/0x20 [ 185.282720][ T6565] proc_reg_read+0x117/0x290 [ 185.287495][ T6565] ? proc_reg_llseek+0x280/0x280 [ 185.292453][ T6565] __vfs_read+0x76/0x100 [ 185.296720][ T6565] vfs_read+0x1f0/0x420 [ 185.300902][ T6565] ksys_read+0x12d/0x250 [ 185.305152][ T6565] ? kernel_write+0x120/0x120 [ 185.309843][ T6565] ? fpregs_assert_state_consistent+0xbc/0xe0 [ 185.315916][ T6565] do_syscall_64+0x60/0xe0 [ 185.320340][ T6565] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 185.326220][ T6565] RIP: 0033:0x7f5289b5022d [ 185.330623][ T6565] Code: c1 20 00 00 75 10 b8 00 00 00 00 0f 05 48 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 4e fc ff ff 48 89 04 24 b8 00 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 97 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01 [ 185.350325][ T6565] RSP: 002b:00007f52874ec580 EFLAGS: 00000293 ORIG_RAX: 0000000000000000 [ 185.358737][ T6565] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f5289b5022d [ 185.366695][ T6565] RDX: 0000000000001fa0 RSI: 00007f52874ecda0 RDI: 0000000000000004 [ 185.374671][ T6565] RBP: 000055a6c1b169d0 R08: 0000000000000000 R09: 0000000000000000 [ 185.382628][ T6565] R10: 2ce33e6c02ce33e7 R11: 0000000000000293 R12: 00007f52874ecda0 [ 185.390581][ T6565] R13: 0000000000001fa0 R14: 0000000000001f9f R15: 00007f52874eec09 [ 185.447834][ T8485] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.5'. 23:54:02 executing program 2: r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000200)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000049000/0x18000)=nil, 0x0, 0xfffffffffffffdc3, 0x0, 0x0, 0xe) 23:54:02 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000880)='/dev/loop#\x00', 0x0, 0x0) r1 = memfd_create(&(0x7f0000000240)='.^\xc5', 0x0) ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c00, r1) ioctl$LOOP_SET_FD(r0, 0x4c06, r1) 23:54:02 executing program 0: syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x200, 0x0) r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$uhid(0xffffffffffffff9c, &(0x7f0000000280)='/dev/uhid\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x2b, 0x1, 0x0) r1 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0) ioctl$int_in(r0, 0x800000c004500a, 0x0) pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 23:54:02 executing program 3: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/seq\x00', 0x0) read(r0, &(0x7f0000000080)=""/241, 0xf1) 23:54:02 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x0, 0x0) close(r2) 23:54:02 executing program 5: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="5c0000001000011821f6a0b235000000000000b1", @ANYRES32=r1, @ANYBLOB="00000000000000003c001280110001006272696467655f736c617665000000002400058005001e00010000000500190003"], 0x5c}}, 0x0) r2 = socket(0x10, 0x8000000000000003, 0x0) sendmmsg(r2, &(0x7f0000000000), 0x40000000000024a, 0x0) 23:54:02 executing program 3: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/seq\x00', 0x0) read(r0, &(0x7f0000000080)=""/241, 0xf1) 23:54:02 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$int_in(0xffffffffffffffff, 0x800000c0045005, &(0x7f00000004c0)=0x100040000) close(0xffffffffffffffff) 23:54:02 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000880)='/dev/loop#\x00', 0x0, 0x0) r1 = memfd_create(&(0x7f0000000240)='.^\xc5', 0x0) ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c00, r1) ioctl$LOOP_SET_FD(r0, 0x4c06, r1) 23:54:02 executing program 5: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="5c0000001000011821f6a0b235000000000000b1", @ANYRES32=r1, @ANYBLOB="00000000000000003c001280110001006272696467655f736c617665000000002400058005001e00010000000500190003"], 0x5c}}, 0x0) r2 = socket(0x10, 0x8000000000000003, 0x0) sendmmsg(r2, &(0x7f0000000000), 0x40000000000024a, 0x0) 23:54:02 executing program 3: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) read(0xffffffffffffffff, &(0x7f0000000080)=""/241, 0xf1) [ 185.652955][ T8500] QAT: Invalid ioctl [ 185.658335][ T8500] QAT: Invalid ioctl [ 185.668953][ T8500] QAT: Invalid ioctl [ 185.678149][ T8500] QAT: Invalid ioctl [ 185.688920][ T8500] QAT: Invalid ioctl [ 185.691608][ T6565] BUG: using smp_processor_id() in preemptible [00000000] code: in:imklog/6565 [ 185.702103][ T6565] caller is rcu_nmi_exit+0x19/0x2c0 [ 185.703476][ T8500] QAT: Invalid ioctl [ 185.707370][ T6565] CPU: 1 PID: 6565 Comm: in:imklog Not tainted 5.7.0-rc7-next-20200526-syzkaller #0 [ 185.707378][ T6565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 185.707382][ T6565] Call Trace: [ 185.707401][ T6565] dump_stack+0x18f/0x20d [ 185.707429][ T6565] check_preemption_disabled+0x20d/0x220 [ 185.721862][ T8500] QAT: Invalid ioctl [ 185.730788][ T6565] rcu_nmi_exit+0x19/0x2c0 [ 185.730804][ T6565] kernel_text_address+0xb3/0xe0 [ 185.730816][ T6565] __kernel_text_address+0x9/0x30 [ 185.730832][ T6565] unwind_get_return_address+0x5a/0xa0 [ 185.730847][ T6565] ? profile_setup.cold+0xc1/0xc1 [ 185.730867][ T6565] arch_stack_walk+0x97/0xf0 [ 185.771807][ T8500] QAT: Invalid ioctl [ 185.772913][ T6565] stack_trace_save+0x8c/0xc0 [ 185.772934][ T6565] ? stack_trace_consume_entry+0x160/0x160 [ 185.789878][ T8500] QAT: Invalid ioctl [ 185.791986][ T6565] ? trace_hardirqs_on+0x5f/0x220 [ 185.792008][ T6565] save_stack+0x1b/0x40 [ 185.803855][ T8500] QAT: Invalid ioctl [ 185.805097][ T6565] ? save_stack+0x1b/0x40 [ 185.805111][ T6565] ? __kasan_kmalloc.constprop.0+0xbf/0xd0 [ 185.805129][ T6565] ? kmem_cache_alloc_trace+0x13d/0x7d0 [ 185.811704][ T8500] QAT: Invalid ioctl [ 185.813539][ T6565] ? do_syslog+0x5b0/0x16d0 [ 185.813554][ T6565] ? kmsg_read+0x90/0xb0 [ 185.813564][ T6565] ? proc_reg_read+0x117/0x290 [ 185.813578][ T6565] ? __vfs_read+0x76/0x100 [ 185.813590][ T6565] ? vfs_read+0x1f0/0x420 [ 185.813607][ T6565] ? ksys_read+0x12d/0x250 [ 185.825983][ T8500] QAT: Invalid ioctl [ 185.826307][ T6565] ? do_syscall_64+0x60/0xe0 [ 185.835557][ T8500] QAT: Invalid ioctl [ 185.839000][ T6565] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 185.839022][ T6565] ? lockdep_hardirqs_on_prepare+0x590/0x590 [ 185.853897][ T8500] QAT: Invalid ioctl [ 185.856991][ T6565] ? lockdep_hardirqs_on_prepare+0x590/0x590 [ 185.857007][ T6565] ? lockdep_hardirqs_on_prepare+0x590/0x590 [ 185.857023][ T6565] ? lock_acquire+0x1f2/0x8f0 [ 185.857044][ T6565] ? arch_local_irq_restore+0x60/0x60 [ 185.866454][ T8500] QAT: Invalid ioctl [ 185.869394][ T6565] ? lock_downgrade+0x840/0x840 [ 185.869410][ T6565] ? kasan_unpoison_shadow+0x30/0x40 [ 185.869430][ T6565] __kasan_kmalloc.constprop.0+0xbf/0xd0 [ 185.886981][ T8500] QAT: Invalid ioctl [ 185.891361][ T6565] kmem_cache_alloc_trace+0x13d/0x7d0 [ 185.891377][ T6565] ? _raw_spin_lock_irqsave+0x94/0xbf [ 185.891396][ T6565] ? trace_hardirqs_on+0x5f/0x220 [ 185.918658][ T8500] QAT: Invalid ioctl [ 185.921632][ T6565] do_syslog+0x5b0/0x16d0 [ 185.921648][ T6565] ? fsnotify+0x7df/0xb40 [ 185.921666][ T6565] ? fsnotify_parent+0xbf/0x2d0 [ 185.959076][ T8500] QAT: Invalid ioctl [ 185.959851][ T6565] ? log_buf_vmcoreinfo_setup+0x140/0x140 [ 185.974294][ T6565] ? finish_wait+0x260/0x260 [ 185.978910][ T6565] ? mutex_trylock+0x2c0/0x2c0 [ 185.982545][ T8500] QAT: Invalid ioctl [ 185.983693][ T6565] kmsg_read+0x90/0xb0 [ 185.983706][ T6565] ? kmsg_release+0x20/0x20 [ 185.983718][ T6565] proc_reg_read+0x117/0x290 [ 185.983730][ T6565] ? proc_reg_llseek+0x280/0x280 [ 185.983750][ T6565] __vfs_read+0x76/0x100 [ 185.995891][ T8500] QAT: Invalid ioctl [ 185.996196][ T6565] vfs_read+0x1f0/0x420 [ 186.008899][ T8500] QAT: Invalid ioctl [ 186.010004][ T6565] ksys_read+0x12d/0x250 [ 186.010016][ T6565] ? kernel_write+0x120/0x120 [ 186.010039][ T6565] ? fpregs_assert_state_consistent+0xbc/0xe0 [ 186.020911][ T8500] QAT: Invalid ioctl [ 186.021942][ T6565] do_syscall_64+0x60/0xe0 [ 186.021965][ T6565] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 186.034108][ T8500] QAT: Invalid ioctl [ 186.036903][ T6565] RIP: 0033:0x7f5289b5022d [ 186.036917][ T6565] Code: c1 20 00 00 75 10 b8 00 00 00 00 0f 05 48 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 4e fc ff ff 48 89 04 24 b8 00 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 97 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01 [ 186.036923][ T6565] RSP: 002b:00007f52874ec580 EFLAGS: 00000293 ORIG_RAX: 0000000000000000 [ 186.043223][ T8500] QAT: Invalid ioctl [ 186.045250][ T6565] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f5289b5022d [ 186.045257][ T6565] RDX: 0000000000001fa0 RSI: 00007f52874ecda0 RDI: 0000000000000004 [ 186.045264][ T6565] RBP: 000055a6c1b169d0 R08: 0000000000000000 R09: 0000000000000000 [ 186.045270][ T6565] R10: 2ce33e6c02ce33e7 R11: 0000000000000293 R12: 00007f52874ecda0 [ 186.045278][ T6565] R13: 0000000000001fa0 R14: 0000000000001f9f R15: 00007f52874eec09 [ 186.045336][ T6565] BUG: using smp_processor_id() in preemptible [00000000] code: in:imklog/6565 [ 186.071427][ T8500] QAT: Invalid ioctl [ 186.080069][ T6565] caller is rcu_nmi_exit+0x7b/0x2c0 [ 186.080084][ T6565] CPU: 1 PID: 6565 Comm: in:imklog Not tainted 5.7.0-rc7-next-20200526-syzkaller #0 [ 186.080091][ T6565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 186.080102][ T6565] Call Trace: [ 186.174335][ T6565] dump_stack+0x18f/0x20d [ 186.178702][ T6565] check_preemption_disabled+0x20d/0x220 [ 186.184353][ T6565] rcu_nmi_exit+0x7b/0x2c0 [ 186.188772][ T6565] kernel_text_address+0xb3/0xe0 [ 186.193692][ T6565] __kernel_text_address+0x9/0x30 [ 186.198705][ T6565] unwind_get_return_address+0x5a/0xa0 [ 186.204162][ T6565] ? profile_setup.cold+0xc1/0xc1 [ 186.209170][ T6565] arch_stack_walk+0x97/0xf0 [ 186.213948][ T6565] stack_trace_save+0x8c/0xc0 [ 186.218632][ T6565] ? stack_trace_consume_entry+0x160/0x160 [ 186.224437][ T6565] ? trace_hardirqs_on+0x5f/0x220 [ 186.229472][ T6565] save_stack+0x1b/0x40 [ 186.233617][ T6565] ? save_stack+0x1b/0x40 [ 186.237928][ T6565] ? __kasan_kmalloc.constprop.0+0xbf/0xd0 [ 186.243715][ T6565] ? kmem_cache_alloc_trace+0x13d/0x7d0 [ 186.249240][ T6565] ? do_syslog+0x5b0/0x16d0 [ 186.253847][ T6565] ? kmsg_read+0x90/0xb0 [ 186.258210][ T6565] ? proc_reg_read+0x117/0x290 [ 186.262980][ T6565] ? __vfs_read+0x76/0x100 [ 186.267415][ T6565] ? vfs_read+0x1f0/0x420 [ 186.271746][ T6565] ? ksys_read+0x12d/0x250 [ 186.276404][ T6565] ? do_syscall_64+0x60/0xe0 [ 186.281024][ T6565] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 186.287087][ T6565] ? lockdep_hardirqs_on_prepare+0x590/0x590 [ 186.293104][ T6565] ? lockdep_hardirqs_on_prepare+0x590/0x590 [ 186.299099][ T6565] ? lockdep_hardirqs_on_prepare+0x590/0x590 [ 186.305223][ T6565] ? lock_acquire+0x1f2/0x8f0 [ 186.309898][ T6565] ? arch_local_irq_restore+0x60/0x60 [ 186.315272][ T6565] ? lock_downgrade+0x840/0x840 [ 186.320113][ T6565] ? kasan_unpoison_shadow+0x30/0x40 [ 186.325396][ T6565] __kasan_kmalloc.constprop.0+0xbf/0xd0 [ 186.331018][ T6565] kmem_cache_alloc_trace+0x13d/0x7d0 [ 186.336374][ T6565] ? _raw_spin_lock_irqsave+0x94/0xbf [ 186.341747][ T6565] ? trace_hardirqs_on+0x5f/0x220 [ 186.346839][ T6565] do_syslog+0x5b0/0x16d0 [ 186.351196][ T6565] ? fsnotify+0x7df/0xb40 [ 186.355517][ T6565] ? fsnotify_parent+0xbf/0x2d0 [ 186.360398][ T6565] ? log_buf_vmcoreinfo_setup+0x140/0x140 [ 186.366100][ T6565] ? finish_wait+0x260/0x260 [ 186.370676][ T6565] ? mutex_trylock+0x2c0/0x2c0 [ 186.375423][ T6565] kmsg_read+0x90/0xb0 [ 186.379474][ T6565] ? kmsg_release+0x20/0x20 [ 186.384085][ T6565] proc_reg_read+0x117/0x290 [ 186.388671][ T6565] ? proc_reg_llseek+0x280/0x280 [ 186.393616][ T6565] __vfs_read+0x76/0x100 [ 186.397988][ T6565] vfs_read+0x1f0/0x420 [ 186.402574][ T6565] ksys_read+0x12d/0x250 [ 186.406819][ T6565] ? kernel_write+0x120/0x120 [ 186.411482][ T6565] ? fpregs_assert_state_consistent+0xbc/0xe0 [ 186.417532][ T6565] do_syscall_64+0x60/0xe0 [ 186.421931][ T6565] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 186.427832][ T6565] RIP: 0033:0x7f5289b5022d [ 186.432236][ T6565] Code: c1 20 00 00 75 10 b8 00 00 00 00 0f 05 48 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 4e fc ff ff 48 89 04 24 b8 00 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 97 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01 23:54:03 executing program 5: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="5c0000001000011821f6a0b235000000000000b1", @ANYRES32=r1, @ANYBLOB="00000000000000003c001280110001006272696467655f736c617665000000002400058005001e00010000000500190003"], 0x5c}}, 0x0) r2 = socket(0x10, 0x8000000000000003, 0x0) sendmmsg(r2, &(0x7f0000000000), 0x40000000000024a, 0x0) [ 186.451838][ T6565] RSP: 002b:00007f52874ec580 EFLAGS: 00000293 ORIG_RAX: 0000000000000000 [ 186.460255][ T6565] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f5289b5022d [ 186.468214][ T6565] RDX: 0000000000001fa0 RSI: 00007f52874ecda0 RDI: 0000000000000004 [ 186.476270][ T6565] RBP: 000055a6c1b169d0 R08: 0000000000000000 R09: 0000000000000000 [ 186.484225][ T6565] R10: 2ce33e6c02ce33e7 R11: 0000000000000293 R12: 00007f52874ecda0 [ 186.492264][ T6565] R13: 0000000000001fa0 R14: 0000000000001f9f R15: 00007f52874eec09 23:54:03 executing program 2: r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000200)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000049000/0x18000)=nil, 0x0, 0xfffffffffffffdc3, 0x0, 0x0, 0xe) 23:54:03 executing program 3: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) read(0xffffffffffffffff, &(0x7f0000000080)=""/241, 0xf1) 23:54:03 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$int_in(0xffffffffffffffff, 0x800000c0045005, &(0x7f00000004c0)=0x100040000) close(0xffffffffffffffff) 23:54:03 executing program 5: socketpair$unix(0x1, 0x5, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="5c0000001000011821f6a0b235000000000000b1", @ANYRES32=r0, @ANYBLOB="00000000000000003c001280110001006272696467655f736c617665000000002400058005001e00010000000500190003"], 0x5c}}, 0x0) r1 = socket(0x10, 0x8000000000000003, 0x0) sendmmsg(r1, &(0x7f0000000000), 0x40000000000024a, 0x0) 23:54:03 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000880)='/dev/loop#\x00', 0x0, 0x0) r1 = memfd_create(&(0x7f0000000240)='.^\xc5', 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, 0xffffffffffffffff) ioctl$LOOP_SET_FD(r0, 0x4c06, r1) 23:54:03 executing program 0: syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x200, 0x0) r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$uhid(0xffffffffffffff9c, &(0x7f0000000280)='/dev/uhid\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x2b, 0x1, 0x0) r1 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0) ioctl$int_in(r0, 0x800000c004500a, 0x0) pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 23:54:03 executing program 3: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) read(0xffffffffffffffff, &(0x7f0000000080)=""/241, 0xf1) 23:54:03 executing program 5: socketpair$unix(0x1, 0x5, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="5c0000001000011821f6a0b235000000000000b1", @ANYRES32=r0, @ANYBLOB="00000000000000003c001280110001006272696467655f736c617665000000002400058005001e00010000000500190003"], 0x5c}}, 0x0) r1 = socket(0x10, 0x8000000000000003, 0x0) sendmmsg(r1, &(0x7f0000000000), 0x40000000000024a, 0x0) 23:54:03 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000880)='/dev/loop#\x00', 0x0, 0x0) r1 = memfd_create(&(0x7f0000000240)='.^\xc5', 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, 0xffffffffffffffff) ioctl$LOOP_SET_FD(r0, 0x4c06, r1) 23:54:03 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$int_in(0xffffffffffffffff, 0x800000c0045005, &(0x7f00000004c0)=0x100040000) close(0xffffffffffffffff) 23:54:03 executing program 3: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/seq\x00', 0x0) read(r0, &(0x7f0000000080)=""/241, 0xf1) [ 186.806092][ T8540] QAT: Invalid ioctl [ 186.821425][ T8540] QAT: Invalid ioctl 23:54:03 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r0) r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x0, 0x0) ioctl$int_in(r1, 0x800000c0045005, &(0x7f00000004c0)=0x100040000) close(r1) [ 186.847144][ T8540] QAT: Invalid ioctl [ 186.860849][ T8540] QAT: Invalid ioctl [ 186.883179][ T8540] QAT: Invalid ioctl [ 186.892945][ T8540] QAT: Invalid ioctl [ 186.902119][ T8540] QAT: Invalid ioctl [ 186.911997][ T8540] QAT: Invalid ioctl [ 186.925925][ T8540] QAT: Invalid ioctl [ 186.930183][ T8540] QAT: Invalid ioctl [ 186.935166][ T8540] QAT: Invalid ioctl [ 186.939345][ T8540] QAT: Invalid ioctl [ 186.944571][ T8540] QAT: Invalid ioctl [ 186.948718][ T8540] QAT: Invalid ioctl [ 186.954756][ T8540] QAT: Invalid ioctl [ 186.958937][ T8540] QAT: Invalid ioctl [ 186.963147][ T8540] QAT: Invalid ioctl [ 186.968379][ T8540] QAT: Invalid ioctl [ 186.972636][ T8540] QAT: Invalid ioctl [ 186.979669][ T8540] QAT: Invalid ioctl [ 186.984590][ T8540] QAT: Invalid ioctl [ 186.988764][ T8540] QAT: Invalid ioctl [ 186.993035][ T8540] QAT: Invalid ioctl [ 186.998306][ T8540] QAT: Invalid ioctl [ 187.002466][ T8540] QAT: Invalid ioctl 23:54:04 executing program 2: r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000200)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000049000/0x18000)=nil, 0x0, 0xfffffffffffffdc3, 0x0, 0x0, 0xe) 23:54:04 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000880)='/dev/loop#\x00', 0x0, 0x0) r1 = memfd_create(&(0x7f0000000240)='.^\xc5', 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, 0xffffffffffffffff) ioctl$LOOP_SET_FD(r0, 0x4c06, r1) 23:54:04 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r0) r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x0, 0x0) ioctl$int_in(r1, 0x800000c0045005, &(0x7f00000004c0)=0x100040000) close(r1) 23:54:04 executing program 5: socketpair$unix(0x1, 0x5, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="5c0000001000011821f6a0b235000000000000b1", @ANYRES32=r0, @ANYBLOB="00000000000000003c001280110001006272696467655f736c617665000000002400058005001e00010000000500190003"], 0x5c}}, 0x0) r1 = socket(0x10, 0x8000000000000003, 0x0) sendmmsg(r1, &(0x7f0000000000), 0x40000000000024a, 0x0) 23:54:04 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r0) r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x0, 0x0) ioctl$int_in(r1, 0x800000c0045005, &(0x7f00000004c0)=0x100040000) close(r1) [ 187.162923][ T8566] QAT: Invalid ioctl [ 187.176712][ T8566] QAT: Invalid ioctl [ 187.191334][ T8566] QAT: Invalid ioctl [ 187.201361][ T8566] QAT: Invalid ioctl [ 187.213259][ T8566] QAT: Invalid ioctl [ 187.219704][ T8566] QAT: Invalid ioctl [ 187.224401][ T8566] QAT: Invalid ioctl [ 187.228953][ T8566] QAT: Invalid ioctl [ 187.233111][ T8566] QAT: Invalid ioctl [ 187.239044][ T8566] QAT: Invalid ioctl [ 187.243387][ T8566] QAT: Invalid ioctl [ 187.251530][ T8566] QAT: Invalid ioctl [ 187.256338][ T8566] QAT: Invalid ioctl [ 187.260819][ T8566] QAT: Invalid ioctl [ 187.265894][ T8566] QAT: Invalid ioctl [ 187.270199][ T8566] QAT: Invalid ioctl [ 187.275552][ T8566] QAT: Invalid ioctl [ 187.279702][ T8566] QAT: Invalid ioctl [ 187.284725][ T8566] QAT: Invalid ioctl [ 187.289259][ T8566] QAT: Invalid ioctl [ 187.294504][ T8566] QAT: Invalid ioctl [ 187.298660][ T8566] QAT: Invalid ioctl [ 187.303101][ T8566] QAT: Invalid ioctl [ 187.308471][ T8566] QAT: Invalid ioctl [ 187.312786][ T8566] QAT: Invalid ioctl 23:54:04 executing program 0: syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x200, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$uhid(0xffffffffffffff9c, &(0x7f0000000280)='/dev/uhid\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x2b, 0x1, 0x0) r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x0) pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 23:54:04 executing program 5: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="5c0000001000011821f6a0b235000000000000b1", @ANYRES32=r0, @ANYBLOB="00000000000000003c001280110001006272696467655f736c617665000000002400058005001e00010000000500190003"], 0x5c}}, 0x0) r1 = socket(0x10, 0x8000000000000003, 0x0) sendmmsg(r1, &(0x7f0000000000), 0x40000000000024a, 0x0) 23:54:04 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000880)='/dev/loop#\x00', 0x0, 0x0) r1 = memfd_create(&(0x7f0000000240)='.^\xc5', 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) ioctl$LOOP_SET_FD(0xffffffffffffffff, 0x4c06, r1) 23:54:04 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x0, 0x0) ioctl$int_in(r0, 0x800000c0045005, &(0x7f00000004c0)=0x100040000) close(r0) 23:54:04 executing program 2: r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000200)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000049000/0x18000)=nil, 0x0, 0xfffffffffffffdc3, 0x0, 0x0, 0xe) [ 187.595354][ T8585] QAT: Invalid ioctl [ 187.609122][ T8585] QAT: Invalid ioctl [ 187.621971][ T8585] QAT: Invalid ioctl [ 187.630377][ T8585] QAT: Invalid ioctl [ 187.635689][ T8585] QAT: Invalid ioctl [ 187.639816][ T8585] QAT: Invalid ioctl [ 187.654572][ T8585] QAT: Invalid ioctl [ 187.659218][ T8585] QAT: Invalid ioctl [ 187.663477][ T8585] QAT: Invalid ioctl [ 187.673130][ T8585] QAT: Invalid ioctl [ 187.679861][ T8585] QAT: Invalid ioctl [ 187.687002][ T8585] QAT: Invalid ioctl [ 187.691295][ T8585] QAT: Invalid ioctl 23:54:04 executing program 3: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/seq\x00', 0x0) read(r0, &(0x7f0000000080)=""/241, 0xf1) 23:54:04 executing program 5: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="5c0000001000011821f6a0b235000000000000b1", @ANYRES32=r0, @ANYBLOB="00000000000000003c001280110001006272696467655f736c617665000000002400058005001e00010000000500190003"], 0x5c}}, 0x0) r1 = socket(0x10, 0x8000000000000003, 0x0) sendmmsg(r1, &(0x7f0000000000), 0x40000000000024a, 0x0) 23:54:04 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000880)='/dev/loop#\x00', 0x0, 0x0) r1 = memfd_create(&(0x7f0000000240)='.^\xc5', 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) ioctl$LOOP_SET_FD(0xffffffffffffffff, 0x4c06, r1) 23:54:04 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x0, 0x0) ioctl$int_in(r0, 0x800000c0045005, &(0x7f00000004c0)=0x100040000) close(r0) [ 187.732633][ T8585] QAT: Invalid ioctl [ 187.764638][ T8585] QAT: Invalid ioctl 23:54:04 executing program 5: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="5c0000001000011821f6a0b235000000000000b1", @ANYRES32=r0, @ANYBLOB="00000000000000003c001280110001006272696467655f736c617665000000002400058005001e00010000000500190003"], 0x5c}}, 0x0) r1 = socket(0x10, 0x8000000000000003, 0x0) sendmmsg(r1, &(0x7f0000000000), 0x40000000000024a, 0x0) [ 187.790805][ T8585] QAT: Invalid ioctl [ 187.806377][ T8585] QAT: Invalid ioctl [ 187.810873][ T8585] QAT: Invalid ioctl [ 187.818119][ T8585] QAT: Invalid ioctl [ 187.822439][ T8585] QAT: Invalid ioctl [ 187.828687][ T8585] QAT: Invalid ioctl [ 187.832934][ T8585] QAT: Invalid ioctl 23:54:04 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x0, 0x0) ioctl$int_in(r0, 0x800000c0045005, &(0x7f00000004c0)=0x100040000) close(r0) 23:54:04 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000880)='/dev/loop#\x00', 0x0, 0x0) r1 = memfd_create(&(0x7f0000000240)='.^\xc5', 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) ioctl$LOOP_SET_FD(0xffffffffffffffff, 0x4c06, r1) [ 187.841497][ T8585] QAT: Invalid ioctl [ 187.860579][ T8585] QAT: Invalid ioctl [ 187.868212][ T8585] QAT: Invalid ioctl 23:54:05 executing program 0: syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x200, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$uhid(0xffffffffffffff9c, &(0x7f0000000280)='/dev/uhid\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x2b, 0x1, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 23:54:05 executing program 2: r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000200)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000049000/0x18000)=nil, 0x0, 0xfffffffffffffdc3, 0x0, 0x0, 0xe) 23:54:05 executing program 5: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="5c0000001000011821f6a0b235000000000000b1", @ANYRES32, @ANYBLOB="00000000000000003c001280110001006272696467655f736c617665000000002400058005001e00010000000500190003"], 0x5c}}, 0x0) r1 = socket(0x10, 0x8000000000000003, 0x0) sendmmsg(r1, &(0x7f0000000000), 0x40000000000024a, 0x0) 23:54:05 executing program 4: r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x0, 0x0) ioctl$int_in(r1, 0x800000c0045005, &(0x7f00000004c0)=0x100040000) close(r1) 23:54:05 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000880)='/dev/loop#\x00', 0x0, 0x0) r1 = memfd_create(&(0x7f0000000240)='.^\xc5', 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) ioctl$LOOP_SET_FD(r0, 0x4c06, 0xffffffffffffffff) [ 188.444944][ T8624] QAT: Invalid ioctl [ 188.452840][ T8624] QAT: Invalid ioctl [ 188.465968][ T8624] QAT: Invalid ioctl [ 188.476676][ T8624] QAT: Invalid ioctl [ 188.510846][ T8624] QAT: Invalid ioctl [ 188.541908][ T8624] QAT: Invalid ioctl [ 188.556571][ T8624] QAT: Invalid ioctl [ 188.569076][ T8624] QAT: Invalid ioctl [ 188.576020][ T8624] QAT: Invalid ioctl [ 188.580835][ T8624] QAT: Invalid ioctl [ 188.588595][ T8624] QAT: Invalid ioctl [ 188.593385][ T8624] QAT: Invalid ioctl [ 188.598254][ T8624] QAT: Invalid ioctl [ 188.602969][ T8624] QAT: Invalid ioctl 23:54:05 executing program 5: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="5c0000001000011821f6a0b235000000000000b1", @ANYRES32, @ANYBLOB="00000000000000003c001280110001006272696467655f736c617665000000002400058005001e00010000000500190003"], 0x5c}}, 0x0) r1 = socket(0x10, 0x8000000000000003, 0x0) sendmmsg(r1, &(0x7f0000000000), 0x40000000000024a, 0x0) 23:54:05 executing program 4: r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x0, 0x0) ioctl$int_in(r1, 0x800000c0045005, &(0x7f00000004c0)=0x100040000) close(r1) 23:54:05 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000880)='/dev/loop#\x00', 0x0, 0x0) r1 = memfd_create(&(0x7f0000000240)='.^\xc5', 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) ioctl$LOOP_SET_FD(r0, 0x4c06, 0xffffffffffffffff) 23:54:05 executing program 3: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/seq\x00', 0x0) read(r0, &(0x7f0000000080)=""/241, 0xf1) [ 188.636517][ T8624] QAT: Invalid ioctl [ 188.640624][ T8624] QAT: Invalid ioctl [ 188.657498][ T8624] QAT: Invalid ioctl [ 188.671671][ T8624] QAT: Invalid ioctl [ 188.683731][ T8624] QAT: Invalid ioctl [ 188.697807][ T8624] QAT: Invalid ioctl [ 188.708685][ T8624] QAT: Invalid ioctl [ 188.725186][ T8624] QAT: Invalid ioctl [ 188.733101][ T8624] QAT: Invalid ioctl 23:54:05 executing program 5: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="5c0000001000011821f6a0b235000000000000b1", @ANYRES32, @ANYBLOB="00000000000000003c001280110001006272696467655f736c617665000000002400058005001e00010000000500190003"], 0x5c}}, 0x0) r1 = socket(0x10, 0x8000000000000003, 0x0) sendmmsg(r1, &(0x7f0000000000), 0x40000000000024a, 0x0) 23:54:05 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000880)='/dev/loop#\x00', 0x0, 0x0) r1 = memfd_create(&(0x7f0000000240)='.^\xc5', 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) ioctl$LOOP_SET_FD(r0, 0x4c06, 0xffffffffffffffff) [ 188.737966][ T8624] QAT: Invalid ioctl [ 188.742271][ T8624] QAT: Invalid ioctl 23:54:05 executing program 2: r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000200)='/dev/qat_adf_ctl\x00', 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000049000/0x18000)=nil, 0x0, 0xfffffffffffffdc3, 0x0, 0x0, 0xe) [ 188.830114][ T8649] QAT: Invalid ioctl [ 188.834444][ T8649] QAT: Invalid ioctl [ 188.838747][ T8649] QAT: Invalid ioctl [ 188.845393][ T8649] QAT: Invalid ioctl [ 188.851442][ T8649] QAT: Invalid ioctl [ 188.874912][ T8649] QAT: Invalid ioctl [ 188.888143][ T8649] QAT: Invalid ioctl [ 188.896362][ T8649] QAT: Invalid ioctl [ 188.900633][ T8649] QAT: Invalid ioctl [ 188.905180][ T8649] QAT: Invalid ioctl [ 188.909433][ T8649] QAT: Invalid ioctl [ 188.915409][ T8649] QAT: Invalid ioctl [ 188.925457][ T8649] QAT: Invalid ioctl [ 188.935235][ T8649] QAT: Invalid ioctl [ 188.944235][ T8649] QAT: Invalid ioctl [ 188.952442][ T8649] QAT: Invalid ioctl [ 188.957026][ T8649] QAT: Invalid ioctl [ 188.961262][ T8649] QAT: Invalid ioctl [ 188.965748][ T8649] QAT: Invalid ioctl [ 188.969972][ T8649] QAT: Invalid ioctl [ 188.974523][ T8649] QAT: Invalid ioctl [ 188.978850][ T8649] QAT: Invalid ioctl [ 188.986417][ T8649] QAT: Invalid ioctl [ 188.996381][ T8649] QAT: Invalid ioctl [ 189.005163][ T8649] QAT: Invalid ioctl 23:54:06 executing program 0: syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x200, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$uhid(0xffffffffffffff9c, &(0x7f0000000280)='/dev/uhid\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x2b, 0x1, 0x0) pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 23:54:06 executing program 4: r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x0, 0x0) ioctl$int_in(r1, 0x800000c0045005, &(0x7f00000004c0)=0x100040000) close(r1) 23:54:06 executing program 5: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00'}) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) r1 = socket(0x10, 0x8000000000000003, 0x0) sendmmsg(r1, &(0x7f0000000000), 0x40000000000024a, 0x0) 23:54:06 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) semctl$SETALL(0x0, 0x0, 0x13, &(0x7f00000000c0)) 23:54:06 executing program 2: r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000200)='/dev/qat_adf_ctl\x00', 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000049000/0x18000)=nil, 0x0, 0xfffffffffffffdc3, 0x0, 0x0, 0xe) 23:54:06 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$sock_SIOCGIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(0xffffffffffffffff, 0x8982, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000440)=[@textreal={0x8, 0x0}], 0x1, 0xee89b2ec2c489164, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x10000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_PCM_IOCTL_WRITEN_FRAMES(0xffffffffffffffff, 0x40184152, &(0x7f0000000400)={0x0, &(0x7f00000003c0)=[&(0x7f0000000180), 0x0, 0x0]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 23:54:06 executing program 4: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x0, 0x0) ioctl$int_in(r2, 0x800000c0045005, &(0x7f00000004c0)=0x100040000) close(r2) 23:54:06 executing program 5: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00'}) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) r1 = socket(0x10, 0x8000000000000003, 0x0) sendmmsg(r1, &(0x7f0000000000), 0x40000000000024a, 0x0) [ 189.356603][ T8666] QAT: Invalid ioctl [ 189.360864][ T8666] QAT: Invalid ioctl [ 189.380899][ T8666] QAT: Invalid ioctl [ 189.395179][ T8666] QAT: Invalid ioctl [ 189.400057][ T8666] QAT: Invalid ioctl [ 189.420101][ T8666] QAT: Invalid ioctl [ 189.444066][ T8666] QAT: Invalid ioctl [ 189.452055][ T8666] QAT: Invalid ioctl [ 189.481711][ T8666] QAT: Invalid ioctl [ 189.504493][ T8666] QAT: Invalid ioctl [ 189.520384][ T8666] QAT: Invalid ioctl [ 189.529114][ T8666] QAT: Invalid ioctl [ 189.541188][ T8666] QAT: Invalid ioctl 23:54:06 executing program 3: clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/seq\x00', 0x0) read(r0, &(0x7f0000000080)=""/241, 0xf1) 23:54:06 executing program 0: syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x200, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$uhid(0xffffffffffffff9c, &(0x7f0000000280)='/dev/uhid\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x2b, 0x1, 0x0) pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 23:54:06 executing program 4: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x0, 0x0) ioctl$int_in(r2, 0x800000c0045005, &(0x7f00000004c0)=0x100040000) close(r2) 23:54:06 executing program 5: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00'}) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) r1 = socket(0x10, 0x8000000000000003, 0x0) sendmmsg(r1, &(0x7f0000000000), 0x40000000000024a, 0x0) [ 189.557810][ T8666] QAT: Invalid ioctl [ 189.562291][ T8666] QAT: Invalid ioctl [ 189.597995][ T8666] QAT: Invalid ioctl [ 189.613229][ T8666] QAT: Invalid ioctl [ 189.654422][ T8666] QAT: Invalid ioctl 23:54:06 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$sock_SIOCGIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(0xffffffffffffffff, 0x8982, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000440)=[@textreal={0x8, 0x0}], 0x1, 0xee89b2ec2c489164, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x10000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_PCM_IOCTL_WRITEN_FRAMES(0xffffffffffffffff, 0x40184152, &(0x7f0000000400)={0x0, &(0x7f00000003c0)=[&(0x7f0000000180), 0x0, 0x0]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 23:54:06 executing program 4: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x0, 0x0) ioctl$int_in(r2, 0x800000c0045005, &(0x7f00000004c0)=0x100040000) close(r2) 23:54:06 executing program 0: syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x200, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$uhid(0xffffffffffffff9c, &(0x7f0000000280)='/dev/uhid\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$kcm(0x2b, 0x1, 0x0) pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) [ 189.690967][ T8666] QAT: Invalid ioctl 23:54:06 executing program 5: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00'}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0) r1 = socket(0x10, 0x8000000000000003, 0x0) sendmmsg(r1, &(0x7f0000000000), 0x40000000000024a, 0x0) [ 189.730416][ T8666] QAT: Invalid ioctl [ 189.757139][ T8666] QAT: Invalid ioctl [ 189.761257][ T8666] QAT: Invalid ioctl [ 189.792195][ T8666] QAT: Invalid ioctl [ 189.819645][ T8666] QAT: Invalid ioctl [ 189.832862][ T8666] QAT: Invalid ioctl 23:54:06 executing program 2: r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000200)='/dev/qat_adf_ctl\x00', 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000049000/0x18000)=nil, 0x0, 0xfffffffffffffdc3, 0x0, 0x0, 0xe) 23:54:06 executing program 4: socketpair$unix(0x1, 0x5, 0x0, 0x0) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x0, 0x0) ioctl$int_in(r1, 0x800000c0045005, &(0x7f00000004c0)=0x100040000) close(r1) 23:54:06 executing program 0: syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x200, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$uhid(0xffffffffffffff9c, &(0x7f0000000280)='/dev/uhid\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 23:54:06 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$sock_SIOCGIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(0xffffffffffffffff, 0x8982, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000440)=[@textreal={0x8, 0x0}], 0x1, 0xee89b2ec2c489164, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x10000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_PCM_IOCTL_WRITEN_FRAMES(0xffffffffffffffff, 0x40184152, &(0x7f0000000400)={0x0, &(0x7f00000003c0)=[&(0x7f0000000180), 0x0, 0x0]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 189.966857][ T8715] QAT: Invalid ioctl [ 189.998441][ T8715] QAT: Invalid ioctl [ 190.016724][ T8715] QAT: Invalid ioctl [ 190.031843][ T8715] QAT: Invalid ioctl [ 190.041208][ T8715] QAT: Invalid ioctl [ 190.058171][ T8715] QAT: Invalid ioctl [ 190.062288][ T8715] QAT: Invalid ioctl [ 190.068083][ T8715] QAT: Invalid ioctl [ 190.072216][ T8715] QAT: Invalid ioctl [ 190.079748][ T8715] QAT: Invalid ioctl [ 190.084761][ T8715] QAT: Invalid ioctl [ 190.088835][ T8715] QAT: Invalid ioctl [ 190.092876][ T8715] QAT: Invalid ioctl [ 190.098047][ T8715] QAT: Invalid ioctl [ 190.102123][ T8715] QAT: Invalid ioctl [ 190.107782][ T8715] QAT: Invalid ioctl [ 190.111837][ T8715] QAT: Invalid ioctl [ 190.116652][ T8715] QAT: Invalid ioctl [ 190.120706][ T8715] QAT: Invalid ioctl [ 190.125838][ T8715] QAT: Invalid ioctl [ 190.129900][ T8715] QAT: Invalid ioctl [ 190.134765][ T8715] QAT: Invalid ioctl [ 190.139015][ T8715] QAT: Invalid ioctl [ 190.143157][ T8715] QAT: Invalid ioctl [ 190.148527][ T8715] QAT: Invalid ioctl 23:54:07 executing program 0: syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x200, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$uhid(0xffffffffffffff9c, &(0x7f0000000280)='/dev/uhid\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 23:54:07 executing program 5: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00'}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0) r1 = socket(0x10, 0x8000000000000003, 0x0) sendmmsg(r1, &(0x7f0000000000), 0x40000000000024a, 0x0) 23:54:07 executing program 4: socketpair$unix(0x1, 0x5, 0x0, 0x0) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x0, 0x0) ioctl$int_in(r1, 0x800000c0045005, &(0x7f00000004c0)=0x100040000) close(r1) 23:54:07 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$sock_SIOCGIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(0xffffffffffffffff, 0x8982, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000440)=[@textreal={0x8, 0x0}], 0x1, 0xee89b2ec2c489164, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x10000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_PCM_IOCTL_WRITEN_FRAMES(0xffffffffffffffff, 0x40184152, &(0x7f0000000400)={0x0, &(0x7f00000003c0)=[&(0x7f0000000180), 0x0, 0x0]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 23:54:07 executing program 2: r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000200)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, r2, &(0x7f0000049000/0x18000)=nil, 0x0, 0xfffffffffffffdc3, 0x0, 0x0, 0xe) 23:54:07 executing program 3: clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/seq\x00', 0x0) read(r0, &(0x7f0000000080)=""/241, 0xf1)