last executing test programs: 54.088044242s ago: executing program 0: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0x3, 0x1, 0x1}, 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x0, r0}, 0x38) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'veth1_to_bridge\x00', 0x0}) sendmsg$nl_route(r1, &(0x7f0000000340)={0x0, 0x2000000, &(0x7f0000000300)={&(0x7f0000000240)=ANY=[@ANYBLOB="2000000011000100"/20, @ANYRES32=r3], 0x20}}, 0x0) 53.102650614s ago: executing program 0: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0x3, 0x1, 0x1}, 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x0, r0}, 0x38) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'veth1_to_bridge\x00', 0x0}) sendmsg$nl_route(r1, &(0x7f0000000340)={0x0, 0x2000000, &(0x7f0000000300)={&(0x7f0000000240)=ANY=[@ANYBLOB="2000000011000100"/20, @ANYRES32=r3], 0x20}}, 0x0) 52.975336463s ago: executing program 0: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000180)='ext4_evict_inode\x00', r1}, 0x10) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x0, 0xff, 0x0, 0x1}, 0x48) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'team0\x00', 0x0}) r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='hrtimer_init\x00', r6}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000300)='hrtimer_init\x00', r7}, 0x10) r8 = openat$tun(0xffffffffffffff9c, &(0x7f00000013c0), 0x0, 0x0) ioctl$TUNSETIFF(r8, 0x400454ca, &(0x7f00000016c0)={'pimreg0\x00', 0x41}) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r4}, 0x90) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r2, 0x89f0, &(0x7f0000000040)={'ip6gre0\x00', &(0x7f0000000240)={'syztnl1\x00', r4, 0x2f, 0x3, 0x6, 0x20, 0x10, @mcast1, @dev={0xfe, 0x80, '\x00', 0x3c}, 0x20, 0x20, 0x6, 0x85}}) mkdir(&(0x7f00000001c0)='./bus\x00', 0xd4) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) 52.889969936s ago: executing program 0: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r3, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) syz_emit_ethernet(0x120, &(0x7f0000000100)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xeb, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @multicast1}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@response={0x2, 0x0, 0x0, "82d18160f7d8dda36479a6b179161b4bbff2d0508977b3928ebd2dee05607d17", "0194bd7b1b0303c5ba7f602606a285b3", {"30da2d58da817f8a5f77a23de36a2164", "3b33cfa231a427159c7b9f0eceb155f0"}}}}}}}, 0x0) recvfrom(r3, 0x0, 0x0, 0x2, 0x0, 0x2) 51.917500375s ago: executing program 0: bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b708000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000004c0)={{r0}, &(0x7f0000000380), &(0x7f00000003c0)}, 0x20) r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000001180)=ANY=[@ANYBLOB="12010000090003206d0414c340000000000109022400010400a000090400000103010100093700086ce82201000905815f"], 0x0) syz_usb_control_io$hid(r1, &(0x7f00000001c0)={0x24, &(0x7f0000000dc0)=ANY=[@ANYBLOB="00020c0000000c0002"], 0x0, 0x0, 0x0}, 0x0) ptrace(0x10, 0x1) socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000540)=""/254, 0xfe}], 0x1}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000000)={'veth0_vlan\x00', @remote}) r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000840)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000fcae68da850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004b74ffec8500000008000000850000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000000)='mm_page_free_batched\x00', r7}, 0x10) syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000000c0)='./bus\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="696f636861727365743d6d616363726f617469616e2c73686f72746e616d653d77696e39352c636f6465706167653d313235352c636f6465706167653d3733372c73686f72746e616d653d6c6f7765722c53512a935ee56c9581ad0d03f557401d0b006e756d7461696c3d302c877466383d302c73686f72746e616d653d6d6978616d653d77696e39352c756e695f786c6174653d312cb8000000000000000000"], 0x1, 0x217, &(0x7f00000004c0)="$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") bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x10) r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000640)=ANY=[@ANYBLOB="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"/2566], &(0x7f0000000340)='syzkaller\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000001080)={r8, 0x18000000000002a0, 0xfe, 0x0, &(0x7f0000000100)="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", 0x0, 0x8, 0x60000000}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=@framed={{}, [@ringbuf_output={{0x18, 0x2, 0x1, 0x0, r4}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x43}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r9}, 0x10) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)) r10 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r10}, 0x10) 36.76763509s ago: executing program 3: r0 = socket$pptp(0x18, 0x1, 0x2) bind$pptp(r0, &(0x7f0000000000)={0x18, 0x2, {0x0, @dev={0xac, 0x14, 0x14, 0x2c}}}, 0x1e) connect$pptp(r0, &(0x7f0000000040)={0x18, 0x2, {0x0, @multicast1}}, 0x1e) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0}, 0x90) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7020000020000008500000086000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000700)={&(0x7f00000006c0)='kmem_cache_free\x00', r3}, 0x10) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getresuid(&(0x7f00000000c0), &(0x7f0000000000), &(0x7f0000000080)) ioctl$EVIOCGPROP(r1, 0x40047438, &(0x7f0000000180)=""/246) writev(r1, &(0x7f0000000440)=[{&(0x7f0000000280)="c021", 0x2}], 0x1) 36.756288831s ago: executing program 3: sendmmsg(0xffffffffffffffff, &(0x7f0000002f00)=[{{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000d40)="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", 0x2ab}], 0x1}}], 0x1, 0x4040000) prctl$PR_SET_IO_FLUSHER(0x39, 0x1) bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000110020850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) bpf$MAP_CREATE(0x141e000000000000, &(0x7f00000000c0)=@base={0x5, 0x4, 0x6c03, 0xee}, 0x48) 36.742294353s ago: executing program 3: r0 = socket$inet6(0x10, 0x2, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x16}]}, 0x10) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x5}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000fcffffffb703000008000000b704000000000000850000000500000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000004c0)='memory.current\x00', 0x275a, 0x0) write$cgroup_int(r3, &(0x7f0000000100), 0x12) ioctl$SIOCSIFHWADDR(r3, 0x4030582b, &(0x7f0000000280)={'lo\x00', @link_local={0x1, 0x80, 0xc2, 0xc}}) getdents64(r3, &(0x7f0000000080)=""/6, 0x6) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10) sendto$inet6(r0, &(0x7f00000002c0)="1c0000001200050f0c1000000049b23e9b200a0008000ac000000001", 0x1c, 0x0, 0x0, 0x0) socket$inet6(0x10, 0x2, 0x0) (async) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x16}]}, 0x10) (async) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x5}, 0x48) (async) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000fcffffffb703000008000000b704000000000000850000000500000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000004c0)='memory.current\x00', 0x275a, 0x0) (async) write$cgroup_int(r3, &(0x7f0000000100), 0x12) (async) ioctl$SIOCSIFHWADDR(r3, 0x4030582b, &(0x7f0000000280)={'lo\x00', @link_local={0x1, 0x80, 0xc2, 0xc}}) (async) getdents64(r3, &(0x7f0000000080)=""/6, 0x6) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10) (async) sendto$inet6(r0, &(0x7f00000002c0)="1c0000001200050f0c1000000049b23e9b200a0008000ac000000001", 0x1c, 0x0, 0x0, 0x0) (async) 36.722138807s ago: executing program 3: r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=@framed={{}, [@printk={@p, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x83000000}, {0x85, 0x0, 0x0, 0x71}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = dup2(r0, r0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10) creat(&(0x7f0000000280)='./file0\x00', 0x1) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x20002}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed0040, &(0x7f0000000200)={[{@noblock_validity}, {@resgid={'resgid', 0x3d, 0xee00}}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x7f}}, {@noload}, {@nobarrier}, {@nodiscard}]}, 0xfe, 0x472, &(0x7f0000000940)="$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") r4 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000200), 0x0, 0x0, 0x0, r4) keyctl$read(0x1d, 0x0, 0x0, 0x0) keyctl$KEYCTL_MOVE(0x1e, r4, 0xfffffffffffffffe, r4, 0x0) r5 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$read(0x1d, r5, 0x0, 0x0) keyctl$KEYCTL_MOVE(0x1e, r5, 0xfffffffffffffffe, r5, 0x0) add_key$fscrypt_v1(&(0x7f0000000080), &(0x7f00000000c0)={'fscrypt:', @auto=[0x36, 0x34, 0x0, 0x0, 0x33, 0x64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x64, 0x62, 0x33]}, &(0x7f0000000100)={0x0, "b957e10d094d9cb7d695a839c3b3c5aed2c3b55a953ea812d31b0e9f5c7e33ca34239073506deefd2be32f474dce5153388b717095e1db9e72e30c9be32fea24", 0x3c}, 0x48, 0xfffffffffffffffb) r6 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$read(0x1d, r6, 0x0, 0x0) keyctl$KEYCTL_MOVE(0x1e, r6, 0xfffffffffffffffe, r6, 0x0) add_key$keyring(&(0x7f0000000180), &(0x7f00000001c0)={'syz', 0x1}, 0x0, 0x0, r6) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10) r7 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r8}, 0x10) ppoll(&(0x7f0000000180)=[{}, {r7}], 0x2, 0x0, 0x0, 0x0) r9 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r9, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) 35.875990866s ago: executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000001700)) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0x8}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x100002, 0x0) r5 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$RTC_PIE_ON(r5, 0x7005) ioctl$RTC_IRQP_SET(r5, 0x40087602, 0x722) 35.023111567s ago: executing program 3: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={0x0, r1}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r3, 0x5423, &(0x7f00000000c0)=0xf) ioctl$TCFLSH(r3, 0x400455c8, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='kfree_skb\x00', r2}, 0x10) r4 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f00000004c0)={{{@in=@empty, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0xa}}, {{@in6=@dev, 0x0, 0x2b}, 0x0, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x3}}, 0xe8) sendmsg$key(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000240)=ANY=[@ANYBLOB="0212"], 0x10}}, 0x0) r5 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000240)=ANY=[], 0x10}}, 0x0) 33.040067662s ago: executing program 2: mkdir(0x0, 0x0) (async) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x0, 0x8b}, 0x0) (async) sched_setscheduler(0x0, 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00'}, 0x10) getpid() (async) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x9, 0x4, 0x8, 0x8}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0x5, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x5}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xe, &(0x7f00000004c0)=@raw=[@map_idx={0x18, 0x5, 0x5, 0x0, 0x9}, @printk={@u, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x7fff}}, @map_val={0x18, 0x8, 0x2, 0x0, r1, 0x0, 0x0, 0x0, 0x2}, @generic={0x3f, 0xf, 0x8, 0x8, 0x1}, @alu={0x7, 0x0, 0x8, 0x3, 0x7, 0x0, 0x4}], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff}) close(r2) (async) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) close(r2) (async) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000000)={0xffffffffffffffff, 0xe0, &(0x7f0000000880)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r4, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r4}, 0x0, 0x0}, 0x20) (async) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000740)={r4, &(0x7f0000000000), &(0x7f00000000c0)=""/109}, 0x20) socket$key(0xf, 0x3, 0x2) r5 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="88010000100013070000000000000000ac1414aa000000000000000000000000ac14140900000000000000000000000100"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="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"], 0x188}}, 0x0) (async) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r3}, &(0x7f00000002c0), &(0x7f0000000340)}, 0x20) (async) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) 33.025423674s ago: executing program 2: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYRES32=r0], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000080)='mm_page_alloc\x00', r2}, 0x10) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x9d, 0x10001, 0x9, 0x1}, 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r3, &(0x7f0000000080), &(0x7f0000001540)=""/155}, 0x20) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000080)={r3, &(0x7f0000000540)="17b4659148b57aa2ce234f3285a4711263bfac4f76549219e3c01be007797885acf16d6eaf75584f5dc77aedf3daece4c3236f768054c984e823858c648afaadabfdf53cacbfe302671fe3d81709a4420dad0200000000000000eec4e072c564f9f47d19be685214f14b812603e77cdf11846b1c019a6718cb72836a", 0x0}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000110000001914959c26e2b2ffffffffff", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000820000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0}, 0x90) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x10) r5 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x1a, &(0x7f0000000100)={0x1, &(0x7f0000000000)=[{0x6}]}, 0x10) r6 = dup2(r5, r5) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_MPATH(r6, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r7, @ANYBLOB="2107000000000000000015"], 0x14}}, 0x0) r8 = syz_usb_connect(0x0, 0x10b, &(0x7f0000000000)=ANY=[@ANYBLOB="05010900b24b6a10e6040300770100000001090224000b010000000904000302ccd4280009050b02000000040009058a02"], 0x0) syz_usb_control_io(r8, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1800"/12], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='ext4_fc_commit_stop\x00', r9}, 0x10) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r10, 0x0, 0x0) bpf$ENABLE_STATS(0x20, &(0x7f0000000040), 0x4) syz_usb_control_io$cdc_ecm(r8, 0x0, 0x0) r11 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000001c000000000000002300850000000700000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) dup2(r11, r11) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000005c0)='mm_vmscan_lru_shrink_active\x00', r9}, 0xfffffffffffffe8c) socketpair(0xa, 0x4, 0x0, &(0x7f0000000000)) 30.24501956s ago: executing program 2: bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10) r2 = socket$inet_tcp(0x2, 0x1, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]}) close_range(r2, 0xffffffffffffffff, 0x0) 30.18115764s ago: executing program 2: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r1, &(0x7f0000000180), 0x2000) bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r1}, &(0x7f0000000040), &(0x7f0000000080)=r0}, 0x20) socket$nl_generic(0x10, 0x3, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='kmem_cache_free\x00'}, 0x10) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x10) unshare(0x4000400) unshare(0x64000600) r5 = epoll_create1(0x0) r6 = socket$unix(0x1, 0x2, 0x0) epoll_ctl$EPOLL_CTL_ADD(r5, 0x300, r6, &(0x7f0000000000)={0x30000000}) sync() 30.013639226s ago: executing program 2: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x0, 0x4, 0x7fe2, 0x4, 0x1034}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b708000000000000ea05077b8af8ff0000003700bfa200000000000007020000f8ffffffb703000008000000b70450a2cd870a0000000085000015030000009500000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="b400007e000000007910080000000000db0a00ff000000009500740000000000b8abe8c966c44a99fe0da071ed43e87ec541f946676ed9549ea3726ef9dc0722232e0dbbf82746"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x19}, 0x90) r2 = open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x7800007, 0x12, r2, 0x0) r3 = creat(&(0x7f0000000000)='./bus\x00', 0x0) ftruncate(r3, 0x81fd) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='mm_page_free_batched\x00', r1}, 0x10) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.throttle.io_serviced_recursive\x00', 0x275a, 0x0) r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8}, 0x48) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10) r6 = syz_open_dev$tty20(0xc, 0x4, 0x1) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000000c0)) bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1}, 0x48) ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000000)=0xf) ioctl$TCFLSH(r6, 0x400455c8, 0x40000000004) ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000180)=0x33) 29.794508419s ago: executing program 1: r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000a999850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='mm_page_alloc\x00', r0}, 0x10) r1 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r2, 0x5452, &(0x7f0000b28000)=0x3) fcntl$setsig(r2, 0xa, 0x12) poll(0x0, 0x0, 0xffffffffffbffff8) dup2(r2, r3) fcntl$setown(r2, 0x8, r1) tkill(r1, 0x16) 27.664845476s ago: executing program 4: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x5}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r2 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x802) write$evdev(r2, &(0x7f0000000000), 0x100000008) ioctl$EXT4_IOC_GROUP_EXTEND(r2, 0x80044501, 0x0) 27.31535608s ago: executing program 4: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000fb00000085000000430000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10) syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x40, &(0x7f0000001300), 0x1, 0x784, &(0x7f00000007c0)="$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") r2 = open(&(0x7f0000000100)='./bus\x00', 0x143142, 0x0) write$FUSE_INIT(r2, &(0x7f0000000000)={0x50}, 0x50) 27.287263244s ago: executing program 4: r0 = socket$pptp(0x18, 0x1, 0x2) bind$pptp(r0, &(0x7f0000000000)={0x18, 0x2, {0x0, @dev={0xac, 0x14, 0x14, 0x2c}}}, 0x1e) connect$pptp(r0, &(0x7f0000000040)={0x18, 0x2, {0x0, @multicast1}}, 0x1e) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0}, 0x90) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000700)={&(0x7f00000006c0)='kmem_cache_free\x00', r2}, 0x10) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getresuid(&(0x7f00000000c0), &(0x7f0000000000), &(0x7f0000000080)) ioctl$EVIOCGPROP(r1, 0x40047438, &(0x7f0000000180)=""/246) writev(r1, &(0x7f0000000440)=[{&(0x7f0000000280)="c021", 0x2}], 0x1) 27.277084826s ago: executing program 4: bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCL_GETMOUSEREPORTING(r1, 0x5412, &(0x7f0000000400)=0x13) ioctl$TCSETSW(r1, 0x5403, &(0x7f0000000040)={0x8e8e, 0x0, 0x0, 0x0, 0x0, "7e12105588e633bbb1df022dace17a32d211ee"}) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r2}, 0x10) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000002000021850000008600000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000080)='sys_enter\x00', r4}, 0x10) getgid() ioctl$TIOCL_GETMOUSEREPORTING(r1, 0x5412, &(0x7f00000006c0)=0xa) 27.263539367s ago: executing program 4: r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000800000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000000c0)=0xf) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0xa, 0x2, 0x9, 0x8}, 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0) write$cgroup_pid(r5, &(0x7f0000000980), 0x12) sendto$inet6(r5, &(0x7f0000000840)="bf75302fb62c0e444ad77c8de1a8507dffea7b0f79dd97541ac9326520eb2f4db16343c859b76fe2631fcc0f7ee8b9e19146a2d544250148645d513b2adb7a9573ccba1dd27e8591930f9da51a67ffb22d04135f071bf5ba46a0b1374238644c78341498561ffed2a40fbc105477470798ecd300d641e94247e888282414932fc5458d11d719bba2f93678907eb81aa8b64f795e771875053a0780de84fe8e85f5027d08612bc7bbc4b6a357581bc4a5138bfede4812a12a7d2b1932797cefc1ff7b28149141eec24f8c9bb2577a0debf38a5d49c31907cdfdc1b2535a", 0xdd, 0x20000810, &(0x7f00000002c0)={0xa, 0x4e23, 0x40, @dev={0xfe, 0x80, '\x00', 0x26}, 0xffffffc1}, 0x1c) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10) syz_emit_ethernet(0x83, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaa79ff030486dd601b8b97004d88c19e9ace00000000000000002100000002ff02000000000000000000000000000104004e200008b0"], 0x0) ioctl$TCFLSH(r2, 0x400455c8, 0x0) ioctl$KDFONTOP_COPY(r2, 0x4b72, &(0x7f0000000280)={0x3, 0x1, 0x1e, 0x12, 0x5b, &(0x7f0000000440)}) 26.850416831s ago: executing program 0: socket$netlink(0x10, 0x3, 0x0) r0 = socket(0x10, 0x803, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, 0x0, 0x0, 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10) sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x218}}, 0x0) getsockname$packet(r0, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040020000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) socket$nl_route(0x10, 0x3, 0x0) getsockname$packet(r0, &(0x7f0000000500)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000200)=@delchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0xc}}}, 0x24}}, 0x20048000) 26.785449681s ago: executing program 1: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000005640)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) r1 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_buf(r1, 0x29, 0x39, &(0x7f0000e86000)="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", 0x118) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000080)=0x1, 0x4) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback={0xfec0ffff00000000}}, 0x1c) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000040)=0x54010000, 0x52) 26.766677954s ago: executing program 1: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000005f00)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='mm_page_alloc\x00', r0}, 0x10) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000140)='sit0\x00', 0x10) setsockopt$inet_mtu(r1, 0x0, 0xa, 0x0, 0x0) sendmsg$inet(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000600)}, 0x24024090) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000005f00)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='mm_page_alloc\x00', r0}, 0x10) (async) socket$inet(0x2, 0x4000000000000001, 0x0) (async) bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10) (async) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000140)='sit0\x00', 0x10) (async) setsockopt$inet_mtu(r1, 0x0, 0xa, 0x0, 0x0) (async) sendmsg$inet(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000600)}, 0x24024090) (async) 26.73074432s ago: executing program 1: bpf$PROG_LOAD(0x5, 0x0, 0x0) ioctl$int_in(0xffffffffffffffff, 0x0, 0x0) syz_mount_image$fuse(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r0 = socket$igmp(0x2, 0x3, 0x2) setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000380)={'filter\x00', 0x7, 0x4, 0x3c8, 0x0, 0xe8, 0x0, 0x2e0, 0x2e0, 0x2e0, 0x4, &(0x7f0000000280), {[{{@arp={@broadcast, @empty, 0xff000000, 0xff, 0xa, 0x8, {@mac=@remote, {[0xff, 0x0, 0xff, 0x0, 0x0, 0xff]}}, {@empty, {[0x0, 0xff, 0xff, 0x0, 0xff, 0xff]}}, 0x3, 0x8, 0x4000, 0x1, 0x7f, 0x6, 'veth1_macvtap\x00', 'syzkaller1\x00', {0xff}, {}, 0x0, 0x200}, 0xc0, 0xe8}, @unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00', 0x0, {0x5}}}, {{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @remote, @loopback, 0xf}}}, {{@arp={@rand_addr=0x64010101, @empty, 0xffffff00, 0xffffffff, 0x0, 0x10, {@mac=@broadcast, {[0xff, 0xff, 0x0, 0xff, 0x0, 0xff]}}, {@empty, {[0xff, 0xd263c907cd50a01, 0x0, 0xff, 0xff]}}, 0x8d7, 0x6, 0xcff7, 0x2, 0x7, 0x101, 'ip6gretap0\x00', 'lo\x00', {}, {0xff}, 0x0, 0x301}, 0xc0, 0xe8}, @unspec=@CLASSIFY={0x28, 'CLASSIFY\x00', 0x0, {0x8}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x418) pipe2$9p(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000340)=ANY=[@ANYRESOCT=r1], 0x15) r2 = dup(r1) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000002300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{}, &(0x7f0000000080), &(0x7f0000000840)}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, 0x1c, 0x0, 0x41000, 0xf84eda135809423a, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000)={0x0, 0x0, 0x2, 0x800089}, 0x10}, 0x90) ioctl$TUNSETOFFLOAD(r5, 0xc004743e, 0x20001400) r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0xfff, 0x5}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000020000000000000000018190000", @ANYRES32=r6], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x2, 0xc, &(0x7f00000007c0)=ANY=[@ANYRES32=r4, @ANYBLOB="e436d98b2d2524a699ca629ae2749c4a4681"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xe, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r7}, 0x10) ioctl$TUNSETOFFLOAD(r5, 0x40047451, 0x2000000c) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) syz_open_procfs(0x0, &(0x7f00000002c0)='net/snmp6\x00') r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0) r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000380)='ext4_ext_handle_unwritten_extents\x00', r9}, 0x9) ioctl$SIOCSIFHWADDR(r8, 0x40305839, &(0x7f0000000540)={'\x00', @link_local={0x1, 0x80, 0xc2, 0x5}}) waitid(0x0, 0x0, 0x0, 0x0, 0x0) 26.388253732s ago: executing program 1: bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$MAP_CREATE(0x0, 0x0, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10) bpf$MAP_CREATE(0x1700, &(0x7f0000000000)=@base={0x10, 0x4, 0x4, 0x2, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0xffffffff}, 0x48) 26.374723104s ago: executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) (async, rerun: 64) mount$tmpfs(0x0, 0x0, 0x0, 0x0, 0x0) (rerun: 64) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) r1 = syz_mount_image$fuse(0x0, &(0x7f0000000080)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) (async) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) write$binfmt_aout(r3, &(0x7f00000000c0)=ANY=[], 0xff2e) ioctl$TCXONC(r3, 0x540a, 0x2) (async) ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000100)) renameat2(r0, &(0x7f0000000100)='./file1\x00', r0, &(0x7f0000000140)='./file0\x00', 0x5) (async) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000004000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r4}, 0x0, &(0x7f0000000040)}, 0x20) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r5}, 0x10) setresgid(0x0, 0x0, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) (async) bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='bcache_journal_write\x00'}, 0x10) socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$tipc(r7, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000340)="7102b87fd4a29eb711d3d8dd9d30af2321e6f6e273aa268bf88d9b6b401a48d9897f02e252e0882cc55d14a5949d5eb3fa8e0fdefbdb9d5f2b2402455bb8ea9669c041e99a804b3a84e5be4329c6ac5ccfd26d65bf13d7dc9ce767be3e7d49acf525dca7123b6bc44d49b40ce48bd93b8cb32004f23c12750711d0858c8d0d41dc8700148a722a3cbc6abb644537cc9988c84675409be1b18298b0ec383bda34bfbcca2d71d63e2f097fc59fe25c27c8dd1d893dd361b0fee1", 0xb9}, {&(0x7f0000001c80)="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", 0x4f0}], 0x2}, 0x0) (async) setsockopt$sock_attach_bpf(r6, 0x1, 0x21, &(0x7f0000000540), 0x4) (async, rerun: 32) sendmsg$inet(r7, &(0x7f0000001c40)={0x0, 0x0, 0x0}, 0x0) (async, rerun: 32) sendmsg$tipc(r6, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0) (async) r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90) r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYRES64=r1], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x28, 0x0, 0x0, 0x0, 0xfc40, 0x0, 0x0, 0x0, 0x0, r8, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000200)='sched_switch\x00', r9}, 0x10) (async, rerun: 64) bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x4, 0x3, 0x4, 0x10000, 0x808, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0xffffffff}, 0x48) (async, rerun: 64) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) 16.685525801s ago: executing program 4: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x5}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r2 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x802) write$evdev(r2, &(0x7f0000000000), 0x100000008) ioctl$EXT4_IOC_GROUP_EXTEND(r2, 0x80044501, 0x0) 0s ago: executing program 2: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000fb00000085000000430000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10) syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x40, &(0x7f0000001300), 0x1, 0x784, &(0x7f00000007c0)="$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") r2 = open(&(0x7f0000000100)='./bus\x00', 0x143142, 0x0) write$FUSE_INIT(r2, &(0x7f0000000000)={0x50}, 0x50) kernel console output (not intermixed with test programs): id=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13544 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1f03564ee9 code=0x7ffc0000 [ 495.650774][ T24] audit: type=1326 audit(2268436892.592:29885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13544 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f03564ee9 code=0x7ffc0000 [ 495.676031][ T8661] usbhid 2-1:0.0: can't add hid device: -71 [ 495.676121][ T2939] device bridge_slave_1 left promiscuous mode [ 495.685630][ T8661] usbhid: probe of 2-1:0.0 failed with error -71 [ 495.687910][ T2939] bridge0: port 2(bridge_slave_1) entered disabled state [ 495.702312][ T2939] device bridge_slave_0 left promiscuous mode [ 495.704667][ T8661] usb 2-1: USB disconnect, device number 83 [ 495.714072][ T2939] bridge0: port 1(bridge_slave_0) entered disabled state [ 495.715606][ T24] audit: type=1326 audit(2268436892.592:29886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13544 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1f03564ee9 code=0x7ffc0000 [ 495.746353][ T2939] device veth1_macvtap left promiscuous mode [ 495.752540][ T24] audit: type=1326 audit(2268436892.612:29887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13544 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f03564ee9 code=0x7ffc0000 [ 495.777119][ T2939] device veth0_vlan left promiscuous mode [ 495.783141][ T24] audit: type=1326 audit(2268436892.612:29888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13544 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f1f03564ee9 code=0x7ffc0000 [ 496.084157][ T5707] hid (null): bogus close delimiter [ 496.303603][ T5707] usb 5-1: language id specifier not provided by device, defaulting to English [ 496.821959][ T5707] uclogic 0003:256C:006D.009F: interface is invalid, ignoring [ 496.864456][T13585] overlayfs: './bus' not a directory [ 496.882090][T13582] bpf_get_probe_write_proto: 2 callbacks suppressed [ 496.882116][T13582] syz-executor.3[13582] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 496.889012][T13582] syz-executor.3[13582] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 496.907528][T13582] syz-executor.3[13582] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 496.919435][T13582] syz-executor.3[13582] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 496.933494][T13582] 9pnet: Insufficient options for proto=fd [ 497.171840][ T7398] usb 1-1: new high-speed USB device number 104 using dummy_hcd [ 497.303897][ T7397] usb 5-1: USB disconnect, device number 83 [ 497.441801][ T7398] usb 1-1: device descriptor read/64, error -71 [ 497.513112][T13602] device pim6reg1 entered promiscuous mode [ 498.091821][ T7398] usb 1-1: device descriptor read/64, error -71 [ 498.361810][ T7398] usb 1-1: new high-speed USB device number 105 using dummy_hcd [ 498.502151][ T7397] usb 5-1: new high-speed USB device number 84 using dummy_hcd [ 498.641786][ T7398] usb 1-1: device descriptor read/64, error -71 [ 498.791841][ T5707] usb 4-1: new high-speed USB device number 58 using dummy_hcd [ 498.861996][ T7397] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 498.872908][ T7397] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 498.882732][ T7397] usb 5-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00 [ 498.891824][ T7397] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 498.904285][ T7397] usb 5-1: config 0 descriptor?? [ 498.947153][T13629] Module has invalid ELF structures [ 499.031785][ T7398] usb 1-1: device descriptor read/64, error -71 [ 499.099217][T13634] syz-executor.1[13634] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 499.099276][T13634] syz-executor.1[13634] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 499.113169][T13634] syz-executor.1[13634] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 499.125047][T13634] syz-executor.1[13634] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 499.139937][T13634] 9pnet: Insufficient options for proto=fd [ 499.151972][ T7398] usb usb1-port1: attempt power cycle [ 499.221884][ T5707] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 499.232671][ T5707] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 499.247381][ T5707] usb 4-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00 [ 499.256706][ T5707] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 499.265150][ T5707] usb 4-1: config 0 descriptor?? [ 499.382059][ T7397] hid (null): bogus close delimiter [ 499.571833][ T7398] usb 1-1: new high-speed USB device number 106 using dummy_hcd [ 499.601826][ T7397] usb 5-1: language id specifier not provided by device, defaulting to English [ 499.742126][ T7398] usb 1-1: device descriptor read/8, error -71 [ 499.742460][ T5707] hid (null): bogus close delimiter [ 499.951849][ T7398] usb 1-1: device descriptor read/8, error -71 [ 499.951990][ T5707] usb 4-1: language id specifier not provided by device, defaulting to English [ 500.081982][ T7397] uclogic 0003:256C:006D.00A0: interface is invalid, ignoring [ 500.153079][ T2939] tipc: Left network mode [ 500.199685][T13648] bridge0: port 1(bridge_slave_0) entered blocking state [ 500.206951][T13648] bridge0: port 1(bridge_slave_0) entered disabled state [ 500.214715][T13648] device bridge_slave_0 entered promiscuous mode [ 500.225232][T13648] bridge0: port 2(bridge_slave_1) entered blocking state [ 500.232492][T13648] bridge0: port 2(bridge_slave_1) entered disabled state [ 500.240265][T13648] device bridge_slave_1 entered promiscuous mode [ 500.295634][T13658] Module has invalid ELF structures [ 500.310751][T13648] bridge0: port 2(bridge_slave_1) entered blocking state [ 500.317949][T13648] bridge0: port 2(bridge_slave_1) entered forwarding state [ 500.325066][T13648] bridge0: port 1(bridge_slave_0) entered blocking state [ 500.331961][T13648] bridge0: port 1(bridge_slave_0) entered forwarding state [ 500.361511][T10207] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 500.370085][T10207] bridge0: port 1(bridge_slave_0) entered disabled state [ 500.378269][T10207] bridge0: port 2(bridge_slave_1) entered disabled state [ 500.392902][ T8661] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 500.401299][ T8661] bridge0: port 1(bridge_slave_0) entered blocking state [ 500.408340][ T8661] bridge0: port 1(bridge_slave_0) entered forwarding state [ 500.416376][ T8661] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 500.424953][ T8661] bridge0: port 2(bridge_slave_1) entered blocking state [ 500.432073][ T8661] bridge0: port 2(bridge_slave_1) entered forwarding state [ 500.441845][ T5707] uclogic 0003:256C:006D.00A1: interface is invalid, ignoring [ 500.457330][ T308] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 500.465461][ T308] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 500.531164][T13648] device veth0_vlan entered promiscuous mode [ 500.538270][ T8663] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 500.547288][ T8663] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 500.556206][ T8663] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 500.564118][ T8663] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 500.577470][T13648] device veth1_macvtap entered promiscuous mode [ 500.593596][ T5668] usb 5-1: USB disconnect, device number 84 [ 500.599954][T13669] syz-executor.0[13669] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 500.600019][T13669] syz-executor.0[13669] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 500.612772][ T8661] usb 2-1: new high-speed USB device number 84 using dummy_hcd [ 500.632943][ T7452] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 500.642884][ T7452] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 500.652379][ T7452] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 500.663778][T13669] 9pnet: Insufficient options for proto=fd [ 500.674058][ T24] kauditd_printk_skb: 11 callbacks suppressed [ 500.674073][ T24] audit: type=1400 audit(2268436897.682:29900): avc: denied { write } for pid=13648 comm="syz-executor.2" name="cgroup.procs" dev="cgroup" ino=213 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object_r:logrotate_var_lib_t:s0" [ 500.709023][ T24] audit: type=1400 audit(2268436897.682:29901): avc: denied { open } for pid=13648 comm="syz-executor.2" path="/syzcgroup/cpu/syz2/cgroup.procs" dev="cgroup" ino=213 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object_r:logrotate_var_lib_t:s0" [ 500.872696][ T2939] device bridge_slave_1 left promiscuous mode [ 500.879374][ T2939] bridge0: port 2(bridge_slave_1) entered disabled state [ 500.888586][ T2939] device bridge_slave_0 left promiscuous mode [ 500.895375][ T2939] bridge0: port 1(bridge_slave_0) entered disabled state [ 500.907139][ T2939] device veth1_macvtap left promiscuous mode [ 500.919306][ T2939] device veth0_vlan left promiscuous mode [ 500.945451][ T5707] usb 4-1: USB disconnect, device number 58 [ 501.051761][ T8661] usb 2-1: Using ep0 maxpacket: 32 [ 501.092857][ T5668] usb 5-1: new high-speed USB device number 85 using dummy_hcd [ 501.172226][ T8661] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11 [ 501.183462][ T8661] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024 [ 501.194893][ T8661] usb 2-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 501.204291][ T8661] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 501.213454][ T8661] usb 2-1: config 0 descriptor?? [ 501.231867][T13660] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 501.252466][ T8661] hub 2-1:0.0: USB hub found [ 501.370439][T13680] device syzkaller0 entered promiscuous mode [ 501.381401][ T24] audit: type=1326 audit(2268436898.382:29902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13679 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f03564ee9 code=0x7ffc0000 [ 501.406172][ T24] audit: type=1326 audit(2268436898.382:29903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13679 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f03564ee9 code=0x7ffc0000 [ 501.430661][ T24] audit: type=1326 audit(2268436898.382:29904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13679 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1f03564ee9 code=0x7ffc0000 [ 501.455145][ T24] audit: type=1326 audit(2268436898.392:29905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13679 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f03564ee9 code=0x7ffc0000 [ 501.461925][ T5668] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 501.479260][ T24] audit: type=1326 audit(2268436898.392:29906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13679 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f03564ee9 code=0x7ffc0000 [ 501.489973][ T8661] hub 2-1:0.0: 2 ports detected [ 501.514467][ T24] audit: type=1326 audit(2268436898.392:29907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13679 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1f03564ee9 code=0x7ffc0000 [ 501.514485][ T24] audit: type=1326 audit(2268436898.392:29908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13679 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f03564ee9 code=0x7ffc0000 [ 501.514503][ T24] audit: type=1326 audit(2268436898.392:29909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13679 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f03564ee9 code=0x7ffc0000 [ 501.551834][ T5707] usb 4-1: new high-speed USB device number 59 using dummy_hcd [ 501.578739][ T5668] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 501.611317][ T5668] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 501.624492][ T5668] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 501.634397][ T5668] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 501.651164][ T5668] usb 5-1: config 0 descriptor?? [ 501.697984][T13686] Module has invalid ELF structures [ 501.702699][T13684] bridge0: port 2(bridge_slave_1) entered disabled state [ 501.902365][ T5707] usb 4-1: Using ep0 maxpacket: 8 [ 502.021934][ T5707] usb 4-1: config 1 interface 0 altsetting 32 bulk endpoint 0x82 has invalid maxpacket 8 [ 502.033570][ T5707] usb 4-1: config 1 interface 0 altsetting 32 bulk endpoint 0x3 has invalid maxpacket 32 [ 502.043655][ T5707] usb 4-1: config 1 interface 0 altsetting 32 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 502.058073][ T5707] usb 4-1: config 1 interface 0 has no altsetting 0 [ 502.151824][ T8661] hub 2-1:0.0: set hub depth failed [ 502.193268][ T8661] usb 2-1: USB disconnect, device number 84 [ 502.223860][ T5707] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 502.233065][ T5707] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 502.241665][ T5707] usb 4-1: Product: syz [ 502.245875][ T5707] usb 4-1: Manufacturer: syz [ 502.251550][ T5707] usb 4-1: SerialNumber: syz [ 502.271863][T13678] raw-gadget.2 gadget: fail, usb_ep_enable returned -22 [ 502.279366][T13678] raw-gadget.2 gadget: fail, usb_ep_enable returned -22 [ 502.626255][T13540] ------------[ cut here ]------------ [ 502.632802][T13540] WARNING: CPU: 0 PID: 13540 at fs/overlayfs/util.c:450 ovl_dir_modified+0x2f4/0x3e0 [ 502.644172][T13540] Modules linked in: [ 502.648222][T13540] CPU: 0 PID: 13540 Comm: syz-executor.0 Tainted: G W 5.10.214-syzkaller-00044-g22b064ea5cbc #0 [ 502.661083][T13540] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 502.672643][T13540] RIP: 0010:ovl_dir_modified+0x2f4/0x3e0 [ 502.678475][T13540] Code: 48 c1 e8 03 42 80 3c 38 00 74 08 4c 89 f7 e8 63 64 a1 ff 49 ff 06 48 83 c4 20 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 dc d2 63 ff <0f> 0b e9 14 ff ff ff e8 d0 d2 63 ff 0f 0b e9 4e ff ff ff 44 89 f9 [ 502.699364][T13540] RSP: 0018:ffffc900015e7b88 EFLAGS: 00010293 [ 502.705853][T13540] RAX: ffffffff8206dca4 RBX: 0000000000000000 RCX: ffff88810b2262c0 [ 502.714312][T13540] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 502.722642][T13540] RBP: ffffc900015e7bd0 R08: ffffffff8206dbb1 R09: ffffed10268a825d [ 502.730750][T13540] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff888137182ad0 [ 502.739295][T13540] R13: 1ffff11026e3055a R14: ffff888134541240 R15: dffffc0000000000 [ 502.747612][T13540] FS: 00005555567f5480(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 502.756751][T13540] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 502.763975][T13540] CR2: 00007ffc9374afd8 CR3: 000000012ae5f000 CR4: 00000000003506b0 [ 502.772321][T13540] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 502.780255][T13540] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 502.788958][T13540] Call Trace: [ 502.792546][T13540] ? show_regs+0x58/0x60 [ 502.797520][T13540] ? __warn+0x160/0x2f0 [ 502.801963][T13540] ? ovl_dir_modified+0x2f4/0x3e0 [ 502.807011][T13540] ? report_bug+0x3d9/0x5b0 [ 502.812335][T13540] ? ovl_dir_modified+0x2f4/0x3e0 [ 502.817595][T13540] ? handle_bug+0x41/0x70 [ 502.822206][T13540] ? exc_invalid_op+0x1b/0x50 [ 502.826901][T13540] ? asm_exc_invalid_op+0x12/0x20 [ 502.831967][T13540] ? ovl_dir_modified+0x201/0x3e0 [ 502.837270][T13540] ? ovl_dir_modified+0x2f4/0x3e0 [ 502.842567][T13540] ? ovl_dir_modified+0x2f4/0x3e0 [ 502.847495][T13540] ? ovl_dir_modified+0x2f4/0x3e0 [ 502.852680][T13540] ovl_do_remove+0x656/0xc90 [ 502.857203][T13540] ? ovl_set_redirect+0x630/0x630 [ 502.862400][T13540] ? down_write+0xd7/0x150 [ 502.866834][T13540] ? selinux_inode_rmdir+0x22/0x30 [ 502.872283][T13540] ovl_rmdir+0x1a/0x20 [ 502.876511][T13540] vfs_rmdir+0x2b7/0x3f0 [ 502.880688][T13540] incfs_kill_sb+0x108/0x220 [ 502.885717][T13540] deactivate_locked_super+0xad/0x110 [ 502.891147][T13540] deactivate_super+0xbe/0xf0 [ 502.896165][T13540] cleanup_mnt+0x45c/0x510 [ 502.900719][T13540] __cleanup_mnt+0x19/0x20 [ 502.905648][T13540] task_work_run+0x129/0x190 [ 502.910763][T13540] exit_to_user_mode_loop+0xbf/0xd0 [ 502.916433][T13540] syscall_exit_to_user_mode+0xc5/0x1d0 [ 502.922084][T13540] do_syscall_64+0x40/0x70 [ 502.926287][T13540] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 502.932034][T13540] RIP: 0033:0x7f1f03566217 [ 502.936253][T13540] Code: b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 b0 ff ff ff f7 d8 64 89 02 b8 [ 502.955935][T13540] RSP: 002b:00007ffcb068c858 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 502.964221][T13540] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f1f03566217 [ 502.972314][T13540] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffcb068c910 [ 502.980345][T13540] RBP: 00007ffcb068c910 R08: 0000000000000000 R09: 0000000000000000 [ 502.988411][T13540] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffcb068d9d0 [ 502.996408][T13540] R13: 00007f1f035b0336 R14: 000000000007ab37 R15: 0000000000000007 [ 503.005029][T13540] ---[ end trace 3e19a28d77d1687d ]--- [ 503.011303][T13540] ------------[ cut here ]------------ [ 503.016952][T13540] WARNING: CPU: 0 PID: 13540 at fs/overlayfs/util.c:450 ovl_dir_modified+0x2f4/0x3e0 [ 503.027583][T13540] Modules linked in: [ 503.031485][T13540] CPU: 0 PID: 13540 Comm: syz-executor.0 Tainted: G W 5.10.214-syzkaller-00044-g22b064ea5cbc #0 [ 503.043440][T13540] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 503.055889][T13540] RIP: 0010:ovl_dir_modified+0x2f4/0x3e0 [ 503.061898][T13540] Code: 48 c1 e8 03 42 80 3c 38 00 74 08 4c 89 f7 e8 63 64 a1 ff 49 ff 06 48 83 c4 20 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 dc d2 63 ff <0f> 0b e9 14 ff ff ff e8 d0 d2 63 ff 0f 0b e9 4e ff ff ff 44 89 f9 [ 503.082265][T13540] RSP: 0018:ffffc900015e7b88 EFLAGS: 00010293 [ 503.088259][T13540] RAX: ffffffff8206dca4 RBX: 0000000000000000 RCX: ffff88810b2262c0 [ 503.096537][T13540] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 503.104567][T13540] RBP: ffffc900015e7bd0 R08: ffffffff8206dbb1 R09: ffffed10268a825d [ 503.112540][T13540] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff888137182ad0 [ 503.120595][T13540] R13: 1ffff11026e3055a R14: ffff888134541240 R15: dffffc0000000000 [ 503.128514][T13540] FS: 00005555567f5480(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 503.137528][T13540] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 503.144755][T13540] CR2: 0000001b2be2b000 CR3: 000000012ae5f000 CR4: 00000000003506a0 [ 503.153153][T13540] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 503.161013][T13540] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 503.169205][T13540] Call Trace: [ 503.172543][T13540] ? show_regs+0x58/0x60 [ 503.176952][T13540] ? __warn+0x160/0x2f0 [ 503.180989][T13540] ? ovl_dir_modified+0x2f4/0x3e0 [ 503.186148][T13540] ? report_bug+0x3d9/0x5b0 [ 503.190692][T13540] ? ovl_dir_modified+0x2f4/0x3e0 [ 503.195563][T13540] ? handle_bug+0x41/0x70 [ 503.199709][T13540] ? exc_invalid_op+0x1b/0x50 [ 503.204466][T13540] ? asm_exc_invalid_op+0x12/0x20 [ 503.209419][T13540] ? ovl_dir_modified+0x201/0x3e0 [ 503.214604][T13540] ? ovl_dir_modified+0x2f4/0x3e0 [ 503.219493][T13540] ? ovl_dir_modified+0x2f4/0x3e0 [ 503.224836][T13540] ? ovl_dir_modified+0x2f4/0x3e0 [ 503.229731][T13540] ovl_do_remove+0x656/0xc90 [ 503.234250][T13540] ? ovl_set_redirect+0x630/0x630 [ 503.239093][T13540] ? down_write+0xd7/0x150 [ 503.243963][T13540] ? selinux_inode_rmdir+0x22/0x30 [ 503.249146][T13540] ovl_rmdir+0x1a/0x20 [ 503.253093][T13540] vfs_rmdir+0x2b7/0x3f0 [ 503.257154][T13540] incfs_kill_sb+0x1a2/0x220 [ 503.261642][T13540] deactivate_locked_super+0xad/0x110 [ 503.267838][T13540] deactivate_super+0xbe/0xf0 [ 503.272762][T13540] cleanup_mnt+0x45c/0x510 [ 503.277124][T13540] __cleanup_mnt+0x19/0x20 [ 503.281431][T13540] task_work_run+0x129/0x190 [ 503.286354][T13540] exit_to_user_mode_loop+0xbf/0xd0 [ 503.291379][T13540] syscall_exit_to_user_mode+0xc5/0x1d0 [ 503.297200][T13540] do_syscall_64+0x40/0x70 [ 503.301598][T13540] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 503.307771][T13540] RIP: 0033:0x7f1f03566217 [ 503.312246][T13540] Code: b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 b0 ff ff ff f7 d8 64 89 02 b8 [ 503.332823][T13540] RSP: 002b:00007ffcb068c858 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 503.341950][T13540] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f1f03566217 [ 503.350406][T13540] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffcb068c910 [ 503.358556][T13540] RBP: 00007ffcb068c910 R08: 0000000000000000 R09: 0000000000000000 [ 503.366515][T13540] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffcb068d9d0 [ 503.374590][T13540] R13: 00007f1f035b0336 R14: 000000000007ab37 R15: 0000000000000007 [ 503.382796][T13540] ---[ end trace 3e19a28d77d1687e ]--- [ 503.573825][T13711] bridge0: port 1(bridge_slave_0) entered blocking state [ 503.580774][T13711] bridge0: port 1(bridge_slave_0) entered disabled state [ 503.589000][T13711] device bridge_slave_0 entered promiscuous mode [ 503.603772][T13711] bridge0: port 2(bridge_slave_1) entered blocking state [ 503.611154][T13711] bridge0: port 2(bridge_slave_1) entered disabled state [ 503.613346][T13716] Module has invalid ELF structures [ 503.619121][T13711] device bridge_slave_1 entered promiscuous mode [ 503.685018][T13711] bridge0: port 2(bridge_slave_1) entered blocking state [ 503.692311][T13711] bridge0: port 2(bridge_slave_1) entered forwarding state [ 503.699549][T13711] bridge0: port 1(bridge_slave_0) entered blocking state [ 503.701934][ T5668] usbhid 5-1:0.0: can't add hid device: -71 [ 503.706339][T13711] bridge0: port 1(bridge_slave_0) entered forwarding state [ 503.719297][ T5668] usbhid: probe of 5-1:0.0 failed with error -71 [ 503.727161][ T5668] usb 5-1: USB disconnect, device number 85 [ 503.747724][T10211] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 503.756623][T10211] bridge0: port 1(bridge_slave_0) entered disabled state [ 503.765330][T10211] bridge0: port 2(bridge_slave_1) entered disabled state [ 503.781400][T10211] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 503.789788][T10211] bridge0: port 1(bridge_slave_0) entered blocking state [ 503.797046][T10211] bridge0: port 1(bridge_slave_0) entered forwarding state [ 503.813331][T10207] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 503.822284][T10207] bridge0: port 2(bridge_slave_1) entered blocking state [ 503.829314][T10207] bridge0: port 2(bridge_slave_1) entered forwarding state [ 503.845457][T10211] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 503.858108][T10211] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 503.879001][ T7398] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 503.898960][ T8661] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 503.907453][ T8661] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 503.916438][ T8661] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 503.925284][T13711] device veth0_vlan entered promiscuous mode [ 503.942486][ T8661] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 503.953052][T13711] device veth1_macvtap entered promiscuous mode [ 503.966797][ T308] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 503.993095][ T8661] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 504.001922][ T5707] cdc_ether: probe of 4-1:1.0 failed with error -71 [ 504.011992][ T5707] usb 4-1: USB disconnect, device number 59 [ 504.023433][ T2939] device bridge_slave_1 left promiscuous mode [ 504.029657][ T2939] bridge0: port 2(bridge_slave_1) entered disabled state [ 504.053070][ T2939] device bridge_slave_0 left promiscuous mode [ 504.071843][ T2939] bridge0: port 1(bridge_slave_0) entered disabled state [ 504.086328][ T2939] device veth1_macvtap left promiscuous mode [ 504.102493][ T2939] device veth0_vlan left promiscuous mode [ 504.111892][ T5668] usb 5-1: new high-speed USB device number 86 using dummy_hcd [ 504.260450][T13740] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb [ 504.270411][T13740] tipc: Enabled bearer , priority 10 [ 504.294158][T13742] Module has invalid ELF structures [ 504.351785][ T5668] usb 5-1: Using ep0 maxpacket: 32 [ 504.462078][ T5707] usb 4-1: new high-speed USB device number 60 using dummy_hcd [ 504.477389][ T5668] usb 5-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 504.488355][ T5668] usb 5-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 504.612394][T13750] xt_bpf: check failed: parse error [ 504.622241][ T5668] usb 5-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 504.631383][ T5668] usb 5-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0 [ 504.639757][ T5668] usb 5-1: Product: syz [ 504.643808][ T5668] usb 5-1: Manufacturer: syz [ 504.702446][ T5668] hub 5-1:4.0: USB hub found [ 504.711754][ T5707] usb 4-1: Using ep0 maxpacket: 32 [ 504.841833][T10208] usb 2-1: new high-speed USB device number 85 using dummy_hcd [ 504.931914][ T5668] hub 5-1:4.0: 2 ports detected [ 504.991884][ T5707] usb 4-1: New USB device found, idVendor=1557, idProduct=8150, bcdDevice=29.ed [ 505.002297][ T5707] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 505.010896][ T5707] usb 4-1: Product: syz [ 505.011200][T13711] ------------[ cut here ]------------ [ 505.016059][ T5707] usb 4-1: Manufacturer: syz [ 505.021698][T13711] WARNING: CPU: 0 PID: 13711 at fs/overlayfs/util.c:450 ovl_dir_modified+0x2f4/0x3e0 [ 505.027280][ T5707] usb 4-1: SerialNumber: syz [ 505.036312][T13711] Modules linked in: [ 505.042299][ T5707] usb 4-1: config 0 descriptor?? [ 505.045023][T13711] CPU: 0 PID: 13711 Comm: syz-executor.0 Tainted: G W 5.10.214-syzkaller-00044-g22b064ea5cbc #0 [ 505.061990][T13711] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 505.073179][T13711] RIP: 0010:ovl_dir_modified+0x2f4/0x3e0 [ 505.078746][T13711] Code: 48 c1 e8 03 42 80 3c 38 00 74 08 4c 89 f7 e8 63 64 a1 ff 49 ff 06 48 83 c4 20 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 dc d2 63 ff <0f> 0b e9 14 ff ff ff e8 d0 d2 63 ff 0f 0b e9 4e ff ff ff 44 89 f9 [ 505.098400][T13711] RSP: 0018:ffffc90000bf7b88 EFLAGS: 00010293 [ 505.104256][T13711] RAX: ffffffff8206dca4 RBX: 0000000000000000 RCX: ffff888119190000 [ 505.113871][T13711] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 505.122287][T13711] RBP: ffffc90000bf7bd0 R08: ffffffff8206dbb1 R09: ffffed102657b3b9 [ 505.130186][T13711] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff8881329cc470 [ 505.138641][T13711] R13: 1ffff1102653988e R14: ffff888132bd9d20 R15: dffffc0000000000 [ 505.147287][T13711] FS: 0000555555ab8480(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 505.156333][T13711] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 505.162871][T13711] CR2: 00007fff13adcb98 CR3: 000000012fc6e000 CR4: 00000000003506b0 [ 505.170959][T13711] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 505.179121][T13711] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 505.187160][T13711] Call Trace: [ 505.190345][T13711] ? show_regs+0x58/0x60 [ 505.194625][T13711] ? __warn+0x160/0x2f0 [ 505.198511][T13711] ? ovl_dir_modified+0x2f4/0x3e0 [ 505.203847][T10208] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 505.203869][T10208] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 32 [ 505.203884][T10208] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 16 [ 505.234485][T13711] ? report_bug+0x3d9/0x5b0 [ 505.239022][T13711] ? ovl_dir_modified+0x2f4/0x3e0 [ 505.244140][T13711] ? handle_bug+0x41/0x70 [ 505.248500][T13711] ? exc_invalid_op+0x1b/0x50 [ 505.253157][T13711] ? asm_exc_invalid_op+0x12/0x20 [ 505.258095][T13711] ? ovl_dir_modified+0x201/0x3e0 [ 505.261885][ T5668] hub 5-1:4.0: hub_hub_status failed (err = -71) [ 505.264705][T13711] ? ovl_dir_modified+0x2f4/0x3e0 [ 505.269387][ T5668] hub 5-1:4.0: config failed, can't get hub status (err -71) [ 505.282263][T13711] ? ovl_dir_modified+0x2f4/0x3e0 [ 505.287463][T13711] ? ovl_dir_modified+0x2f4/0x3e0 [ 505.292462][T13711] ovl_do_remove+0x656/0xc90 [ 505.292962][ T5668] usb 5-1: USB disconnect, device number 86 [ 505.297120][T13711] ? ovl_set_redirect+0x630/0x630 [ 505.307946][T13711] ? down_write+0xd7/0x150 [ 505.312426][T13711] ? selinux_inode_rmdir+0x22/0x30 [ 505.317335][T13711] ovl_rmdir+0x1a/0x20 [ 505.321216][T13711] vfs_rmdir+0x2b7/0x3f0 [ 505.325832][T13711] incfs_kill_sb+0x108/0x220 [ 505.330432][T13711] deactivate_locked_super+0xad/0x110 [ 505.336504][T13711] deactivate_super+0xbe/0xf0 [ 505.341360][T13711] cleanup_mnt+0x45c/0x510 [ 505.345672][T13711] __cleanup_mnt+0x19/0x20 [ 505.350105][T13711] task_work_run+0x129/0x190 [ 505.354828][T13711] exit_to_user_mode_loop+0xbf/0xd0 [ 505.360037][T13711] syscall_exit_to_user_mode+0xc5/0x1d0 [ 505.365453][T13711] do_syscall_64+0x40/0x70 [ 505.370400][T13711] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 505.376794][T13711] RIP: 0033:0x7fbc0669f217 [ 505.376838][T10208] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 505.381439][T13711] Code: b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 b0 ff ff ff f7 d8 64 89 02 b8 [ 505.391632][T10208] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 505.410681][T13711] RSP: 002b:00007fff13add348 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 505.418706][T10208] usb 2-1: Product: syz [ 505.427814][T13711] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007fbc0669f217 [ 505.431060][T10208] usb 2-1: Manufacturer: syz [ 505.438934][T13711] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff13add400 [ 505.443417][T10208] usb 2-1: SerialNumber: syz [ 505.455990][T13711] RBP: 00007fff13add400 R08: 0000000000000000 R09: 0000000000000000 [ 505.463813][T13711] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff13ade4c0 [ 505.471586][T13711] R13: 00007fbc066e9336 R14: 000000000007b47e R15: 0000000000000007 [ 505.479614][T13711] ---[ end trace 3e19a28d77d1687f ]--- [ 505.485290][T13711] ------------[ cut here ]------------ [ 505.490748][T13711] WARNING: CPU: 0 PID: 13711 at fs/overlayfs/util.c:450 ovl_dir_modified+0x2f4/0x3e0 [ 505.500441][T13711] Modules linked in: [ 505.505543][T13711] CPU: 1 PID: 13711 Comm: syz-executor.0 Tainted: G W 5.10.214-syzkaller-00044-g22b064ea5cbc #0 [ 505.518117][T13711] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 505.528482][T13711] RIP: 0010:ovl_dir_modified+0x2f4/0x3e0 [ 505.534394][T13711] Code: 48 c1 e8 03 42 80 3c 38 00 74 08 4c 89 f7 e8 63 64 a1 ff 49 ff 06 48 83 c4 20 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 dc d2 63 ff <0f> 0b e9 14 ff ff ff e8 d0 d2 63 ff 0f 0b e9 4e ff ff ff 44 89 f9 [ 505.555708][T13711] RSP: 0018:ffffc90000bf7b88 EFLAGS: 00010293 [ 505.561830][T13711] RAX: ffffffff8206dca4 RBX: 0000000000000000 RCX: ffff888119190000 [ 505.569752][T13711] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 505.578119][T13711] RBP: ffffc90000bf7bd0 R08: ffffffff8206dbb1 R09: ffffed102657b3b9 [ 505.586738][T13711] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff8881329cc470 [ 505.595948][T13711] R13: 1ffff1102653988e R14: ffff888132bd9d20 R15: dffffc0000000000 [ 505.604249][T13711] FS: 0000555555ab8480(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 505.613557][T13711] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 505.619954][T13711] CR2: 0000000000000000 CR3: 000000012fc6e000 CR4: 00000000003506a0 [ 505.628043][T13711] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 505.636060][T13711] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 505.643829][T13711] Call Trace: [ 505.646921][T13711] ? show_regs+0x58/0x60 [ 505.651178][T13711] ? __warn+0x160/0x2f0 [ 505.655365][T13711] ? ovl_dir_modified+0x2f4/0x3e0 [ 505.660196][T13711] ? report_bug+0x3d9/0x5b0 [ 505.665109][T13711] ? ovl_dir_modified+0x2f4/0x3e0 [ 505.669947][T13711] ? handle_bug+0x41/0x70 [ 505.674191][T13711] ? exc_invalid_op+0x1b/0x50 [ 505.678630][T13711] ? asm_exc_invalid_op+0x12/0x20 [ 505.683701][T13711] ? ovl_dir_modified+0x201/0x3e0 [ 505.688816][T13711] ? ovl_dir_modified+0x2f4/0x3e0 [ 505.693854][T13711] ? ovl_dir_modified+0x2f4/0x3e0 [ 505.694442][T13749] raw-gadget.2 gadget: fail, usb_ep_enable returned -22 [ 505.699000][T13711] ? ovl_dir_modified+0x2f4/0x3e0 [ 505.705924][T13749] raw-gadget.2 gadget: fail, usb_ep_enable returned -22 [ 505.710584][T13711] ovl_do_remove+0x656/0xc90 [ 505.722047][T13711] ? ovl_set_redirect+0x630/0x630 [ 505.727081][T13711] ? down_write+0xd7/0x150 [ 505.731398][T13711] ? selinux_inode_rmdir+0x22/0x30 [ 505.736422][T13711] ovl_rmdir+0x1a/0x20 [ 505.740394][T13711] vfs_rmdir+0x2b7/0x3f0 [ 505.744516][T13711] incfs_kill_sb+0x1a2/0x220 [ 505.749120][T13711] deactivate_locked_super+0xad/0x110 [ 505.754436][ T5707] rtl8150 4-1:0.0: eth1: rtl8150 is detected [ 505.760276][T13711] deactivate_super+0xbe/0xf0 [ 505.764900][T13711] cleanup_mnt+0x45c/0x510 [ 505.769126][T13711] __cleanup_mnt+0x19/0x20 [ 505.773606][T13711] task_work_run+0x129/0x190 [ 505.777978][T13711] exit_to_user_mode_loop+0xbf/0xd0 [ 505.783153][T13711] syscall_exit_to_user_mode+0xc5/0x1d0 [ 505.788475][T13711] do_syscall_64+0x40/0x70 [ 505.793179][T13711] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 505.798854][T13711] RIP: 0033:0x7fbc0669f217 [ 505.803322][T13711] Code: b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 b0 ff ff ff f7 d8 64 89 02 b8 [ 505.823750][T13711] RSP: 002b:00007fff13add348 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 505.832033][T13711] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007fbc0669f217 [ 505.839820][T13711] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff13add400 [ 505.847709][T13711] RBP: 00007fff13add400 R08: 0000000000000000 R09: 0000000000000000 [ 505.855601][T13711] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff13ade4c0 [ 505.863899][T13711] R13: 00007fbc066e9336 R14: 000000000007b47e R15: 0000000000000007 [ 505.871886][T13711] ---[ end trace 3e19a28d77d16880 ]--- [ 505.983579][T13759] fuse: Bad value for 'fd' [ 506.004104][T10207] usb 4-1: USB disconnect, device number 60 [ 506.072943][T13762] bridge0: port 1(bridge_slave_0) entered blocking state [ 506.080607][T13762] bridge0: port 1(bridge_slave_0) entered disabled state [ 506.088472][T13762] device bridge_slave_0 entered promiscuous mode [ 506.099876][T13762] bridge0: port 2(bridge_slave_1) entered blocking state [ 506.107513][T13762] bridge0: port 2(bridge_slave_1) entered disabled state [ 506.115480][T13762] device bridge_slave_1 entered promiscuous mode [ 506.196090][T13762] bridge0: port 2(bridge_slave_1) entered blocking state [ 506.203476][T13762] bridge0: port 2(bridge_slave_1) entered forwarding state [ 506.210584][T13762] bridge0: port 1(bridge_slave_0) entered blocking state [ 506.217468][T13762] bridge0: port 1(bridge_slave_0) entered forwarding state [ 506.247102][ T5668] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 506.255120][ T5668] bridge0: port 1(bridge_slave_0) entered disabled state [ 506.262981][ T5668] bridge0: port 2(bridge_slave_1) entered disabled state [ 506.276925][ T5668] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 506.285407][ T5668] bridge0: port 1(bridge_slave_0) entered blocking state [ 506.292466][ T5668] bridge0: port 1(bridge_slave_0) entered forwarding state [ 506.300461][ T5668] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 506.309223][ T5668] bridge0: port 2(bridge_slave_1) entered blocking state [ 506.316128][ T5668] bridge0: port 2(bridge_slave_1) entered forwarding state [ 506.333292][ T308] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 506.356622][ T8663] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 506.382367][T13749] raw-gadget.2 gadget: fail, usb_ep_enable returned -22 [ 506.389486][T13749] raw-gadget.2 gadget: fail, usb_ep_enable returned -22 [ 506.399168][ T308] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 506.408410][ T308] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 506.418451][ T308] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 506.426606][ T308] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 506.438053][T13762] device veth0_vlan entered promiscuous mode [ 506.452026][ T308] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 506.461383][T13762] device veth1_macvtap entered promiscuous mode [ 506.472091][T13779] bpf_get_probe_write_proto: 2 callbacks suppressed [ 506.472103][T13779] syz-executor.2[13779] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 506.479810][ T2939] device bridge_slave_1 left promiscuous mode [ 506.498901][ T2939] bridge0: port 2(bridge_slave_1) entered disabled state [ 506.507092][T13779] syz-executor.2[13779] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 506.518980][ T2939] device bridge_slave_0 left promiscuous mode [ 506.542717][ T2939] bridge0: port 1(bridge_slave_0) entered disabled state [ 506.557907][ T24] kauditd_printk_skb: 7 callbacks suppressed [ 506.557923][ T24] audit: type=1326 audit(2268436903.562:29917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13775 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd38196ee9 code=0x7ffc0000 [ 506.592368][ T2939] device veth1_macvtap left promiscuous mode [ 506.611036][ T2939] device veth0_vlan left promiscuous mode [ 506.625329][ T24] audit: type=1326 audit(2268436903.602:29918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13775 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdd38196ee9 code=0x7ffc0000 [ 506.658842][ T24] audit: type=1326 audit(2268436903.602:29919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13775 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd38196ee9 code=0x7ffc0000 [ 506.662263][T10208] cdc_ncm 2-1:1.0: MAC-Address: 42:42:42:42:42:42 [ 506.683946][ T24] audit: type=1326 audit(2268436903.602:29920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13775 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdd38196ee9 code=0x7ffc0000 [ 506.714552][ T24] audit: type=1326 audit(2268436903.602:29921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13775 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd38196ee9 code=0x7ffc0000 [ 506.727550][T10208] cdc_ncm 2-1:1.0: setting rx_max = 16384 [ 506.747653][ T24] audit: type=1326 audit(2268436903.602:29922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13775 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fdd38196ee9 code=0x7ffc0000 [ 506.777096][ T24] audit: type=1326 audit(2268436903.602:29923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13775 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd38196ee9 code=0x7ffc0000 [ 506.801830][ T24] audit: type=1326 audit(2268436903.602:29924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13775 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fdd38196ee9 code=0x7ffc0000 [ 506.829946][ T24] audit: type=1326 audit(2268436903.602:29925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13775 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd38196ee9 code=0x7ffc0000 [ 506.854730][ T24] audit: type=1326 audit(2268436903.602:29926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13775 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=285 compat=0 ip=0x7fdd38196ee9 code=0x7ffc0000 [ 506.886154][ T8661] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 506.901165][ T8661] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 506.910735][ T8661] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 506.930168][T10208] cdc_ncm 2-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.1-1, CDC NCM, 42:42:42:42:42:42 [ 506.950023][T13789] bridge0: port 2(bridge_slave_1) entered disabled state [ 506.953692][T10208] usb 2-1: USB disconnect, device number 85 [ 506.965267][T10208] cdc_ncm 2-1:1.0 usb0: unregister 'cdc_ncm' usb-dummy_hcd.1-1, CDC NCM [ 506.970543][T13789] device bridge_slave_1 left promiscuous mode [ 506.981108][T13789] bridge0: port 2(bridge_slave_1) entered disabled state [ 507.514971][T13830] xt_SECMARK: invalid security context 'system_u:object_r:devicekit_exec_t:s0' [ 508.145804][T13842] ipt_REJECT: ECHOREPLY no longer supported. [ 508.153221][T13842] 9pnet: Insufficient options for proto=fd [ 508.282415][T13848] tmpfs: Unknown parameter 'Y‹eL±#±Õ^' [ 508.391788][ T7398] usb 1-1: new high-speed USB device number 108 using dummy_hcd [ 508.391799][T10208] usb 4-1: new high-speed USB device number 61 using dummy_hcd [ 508.641753][ T7398] usb 1-1: Using ep0 maxpacket: 32 [ 508.761846][T10208] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 508.761860][ T7398] usb 1-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 508.761883][ T7398] usb 1-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 508.776345][T10208] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 508.784880][ T7398] usb 1-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 508.801899][T10208] usb 4-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00 [ 508.804094][ T7398] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 508.818402][T10208] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 508.839032][T10208] usb 4-1: config 0 descriptor?? [ 508.872226][ T7398] hub 1-1:4.0: USB hub found [ 509.091863][ T7398] hub 1-1:4.0: 2 ports detected [ 509.416881][T13873] Module has invalid ELF structures [ 509.771770][ T8661] usb 3-1: new high-speed USB device number 88 using dummy_hcd [ 509.907150][T13880] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 509.953817][T13880] syz-executor.3[13880] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 509.953887][T13880] syz-executor.3[13880] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 510.041813][ T8661] usb 3-1: device descriptor read/64, error -71 [ 510.231988][ T7398] hub 1-1:4.0: hub_hub_status failed (err = -32) [ 510.240554][ T7398] hub 1-1:4.0: config failed, can't get hub status (err -32) [ 510.321859][T10208] usb 4-1: string descriptor 0 read error: -71 [ 510.341843][T10208] uclogic 0003:256C:006D.00A2: failed retrieving string descriptor #200: -71 [ 510.351348][T10208] uclogic 0003:256C:006D.00A2: failed retrieving pen parameters: -71 [ 510.359745][T10208] uclogic 0003:256C:006D.00A2: failed probing pen v2 parameters: -71 [ 510.367766][T10208] uclogic 0003:256C:006D.00A2: failed probing parameters: -71 [ 510.375386][T10208] uclogic: probe of 0003:256C:006D.00A2 failed with error -71 [ 510.384872][T10208] usb 4-1: USB disconnect, device number 61 [ 510.431790][ T8663] usb 5-1: new high-speed USB device number 87 using dummy_hcd [ 510.471863][ T8661] usb 3-1: device descriptor read/64, error -71 [ 510.702499][ T8663] usb 5-1: device descriptor read/64, error -71 [ 510.741786][ T8661] usb 3-1: new high-speed USB device number 89 using dummy_hcd [ 511.011798][ T8661] usb 3-1: device descriptor read/64, error -71 [ 511.091811][ T8663] usb 5-1: device descriptor read/64, error -71 [ 511.112123][ T5668] usb 4-1: new high-speed USB device number 62 using dummy_hcd [ 511.351782][ T5668] usb 4-1: Using ep0 maxpacket: 32 [ 511.361762][ T8663] usb 5-1: new high-speed USB device number 88 using dummy_hcd [ 511.401851][ T8661] usb 3-1: device descriptor read/64, error -71 [ 511.471849][ T5668] usb 4-1: config 128 has an invalid descriptor of length 0, skipping remainder of the config [ 511.482446][ T5668] usb 4-1: config 128 has 0 interfaces, different from the descriptor's value: 4 [ 511.491600][ T5668] usb 4-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 511.500758][ T5668] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 511.521928][ T8661] usb usb3-port1: attempt power cycle [ 511.631808][ T8663] usb 5-1: device descriptor read/64, error -71 [ 511.742127][T13890] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. [ 511.751377][T13890] tipc: Started in network mode [ 511.756164][T13890] tipc: Own node identity 6, cluster identity 4711 [ 511.762493][T13890] tipc: 32-bit node address hash set to 6 [ 511.802325][ T5668] usb 4-1: string descriptor 0 read error: -71 [ 511.808947][ T5668] usb 4-1: USB disconnect, device number 62 [ 511.931856][ T8661] usb 3-1: new high-speed USB device number 90 using dummy_hcd [ 512.018431][T13902] Module has invalid ELF structures [ 512.031837][ T8663] usb 5-1: device descriptor read/64, error -71 [ 512.107790][T13907] netlink: 256 bytes leftover after parsing attributes in process `syz-executor.1'. [ 512.121843][ T8661] usb 3-1: device descriptor read/8, error -71 [ 512.161871][ T8663] usb usb5-port1: attempt power cycle [ 512.401875][ T8661] usb 3-1: device descriptor read/8, error -71 [ 512.408993][T13927] 9pnet: Insufficient options for proto=fd [ 512.414909][T13928] 9pnet: Insufficient options for proto=fd [ 512.491921][T10211] usb 1-1: USB disconnect, device number 108 [ 512.594042][ T8663] usb 5-1: new high-speed USB device number 89 using dummy_hcd [ 512.649853][T13935] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 512.801806][ T8663] usb 5-1: device descriptor read/8, error -71 [ 513.072059][ T8663] usb 5-1: device descriptor read/8, error -71 [ 513.170937][T13946] netlink: 256 bytes leftover after parsing attributes in process `syz-executor.4'. [ 513.238641][T13944] incfs: Can't find or create .index dir in ./file0 [ 513.245781][T13944] incfs: mount failed -5 [ 513.465908][ T24] kauditd_printk_skb: 33 callbacks suppressed [ 513.465932][ T24] audit: type=1400 audit(2268436910.472:29960): avc: denied { unmount } for pid=13648 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1 [ 513.641759][ T8663] usb 5-1: new high-speed USB device number 90 using dummy_hcd [ 513.731863][ T8663] usb 5-1: Using ep0 maxpacket: 32 [ 513.776329][T13983] netlink: 256 bytes leftover after parsing attributes in process `syz-executor.2'. [ 513.862043][ T8663] usb 5-1: config 128 has an invalid descriptor of length 0, skipping remainder of the config [ 513.873225][ T8663] usb 5-1: config 128 has 0 interfaces, different from the descriptor's value: 4 [ 513.882444][ T8663] usb 5-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 513.891555][ T8663] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 514.132273][T13955] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'. [ 514.145143][T13955] tipc: Started in network mode [ 514.150060][T13955] tipc: Own node identity 6, cluster identity 4711 [ 514.161175][T13955] tipc: 32-bit node address hash set to 6 [ 514.211795][ T8663] usb 5-1: string descriptor 0 read error: -71 [ 514.242124][ T8663] usb 5-1: USB disconnect, device number 90 [ 514.254020][T14008] incfs: Error accessing: ./file0. [ 514.260227][T14008] incfs: mount failed -20 [ 514.435357][ T24] audit: type=1400 audit(2268436911.442:29961): avc: denied { checkpoint_restore } for pid=14025 comm="syz-executor.3" capability=40 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 514.517817][T14033] tmpfs: Unknown parameter 'rdev/input/event#' [ 514.791806][ T8663] usb 4-1: new high-speed USB device number 63 using dummy_hcd [ 514.801010][T14046] incfs: Error accessing: ./file0. [ 514.806230][T14046] incfs: mount failed -20 [ 514.977735][T14058] device pim6reg1 entered promiscuous mode [ 515.041763][ T8663] usb 4-1: Using ep0 maxpacket: 32 [ 515.161887][ T8663] usb 4-1: config 128 has an invalid descriptor of length 0, skipping remainder of the config [ 515.172493][ T8663] usb 4-1: config 128 has 0 interfaces, different from the descriptor's value: 4 [ 515.182063][ T8663] usb 4-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 515.190997][ T8663] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 515.422014][ T7398] usb 2-1: new high-speed USB device number 86 using dummy_hcd [ 515.492385][ T8663] usb 4-1: string descriptor 0 read error: -71 [ 515.499139][ T8663] usb 4-1: USB disconnect, device number 63 [ 515.811859][ T7398] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 515.813890][T14072] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 515.822760][ T7398] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 32 [ 515.822777][ T7398] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 16 [ 516.001877][ T7398] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 516.014107][ T7398] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 516.028861][ T7398] usb 2-1: Product: syz [ 516.033088][ T7398] usb 2-1: Manufacturer: syz [ 516.037567][ T7398] usb 2-1: SerialNumber: syz [ 516.282675][T14070] raw-gadget.1 gadget: fail, usb_ep_enable returned -22 [ 516.289975][T14070] raw-gadget.1 gadget: fail, usb_ep_enable returned -22 [ 516.761831][ T5702] usb 4-1: new high-speed USB device number 64 using dummy_hcd [ 516.927734][T14104] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'. [ 516.937576][T14104] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 516.946947][T14070] raw-gadget.1 gadget: fail, usb_ep_enable returned -22 [ 516.954202][T14070] raw-gadget.1 gadget: fail, usb_ep_enable returned -22 [ 517.151931][ T5702] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 517.164438][ T5702] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 517.174537][ T5702] usb 4-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00 [ 517.183464][ T5702] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 517.191836][ T7398] cdc_ncm 2-1:1.0: MAC-Address: 42:42:42:42:42:42 [ 517.192177][ T5702] usb 4-1: config 0 descriptor?? [ 517.198223][ T7398] cdc_ncm 2-1:1.0: setting rx_max = 16384 [ 517.281880][T10208] usb 3-1: new high-speed USB device number 92 using dummy_hcd [ 517.433249][ T7398] cdc_ncm 2-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.1-1, CDC NCM, 42:42:42:42:42:42 [ 517.444967][ T7398] usb 2-1: USB disconnect, device number 86 [ 517.451054][ T7398] cdc_ncm 2-1:1.0 usb0: unregister 'cdc_ncm' usb-dummy_hcd.1-1, CDC NCM [ 517.541832][T10208] usb 3-1: Using ep0 maxpacket: 32 [ 517.681979][T10208] usb 3-1: config 128 has an invalid descriptor of length 0, skipping remainder of the config [ 517.692468][T10208] usb 3-1: config 128 has 0 interfaces, different from the descriptor's value: 4 [ 517.704500][T10208] usb 3-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 517.713871][T10208] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 518.011796][T10208] usb 3-1: string descriptor 0 read error: -71 [ 518.019952][T10208] usb 3-1: USB disconnect, device number 92 [ 518.336281][T14118] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 518.376547][T14118] syz-executor.3[14118] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 518.376604][T14118] syz-executor.3[14118] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 518.791092][T14132] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'. [ 518.813003][T14132] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 518.946574][T14163] selinux_netlink_send: 23 callbacks suppressed [ 518.946590][T14163] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=14163 comm=syz-executor.2 [ 519.014270][T14167] ªªªªªª: renamed from vlan0 [ 519.053671][T14170] Bluetooth: received HCILL_WAKE_UP_ACK in state 2 [ 519.231787][T14173] bridge0: port 1(bridge_slave_0) entered blocking state [ 519.238746][T14173] bridge0: port 1(bridge_slave_0) entered disabled state [ 519.246416][T14173] device bridge_slave_0 entered promiscuous mode [ 519.256343][T14173] bridge0: port 2(bridge_slave_1) entered blocking state [ 519.263362][T14173] bridge0: port 2(bridge_slave_1) entered disabled state [ 519.270676][T14173] device bridge_slave_1 entered promiscuous mode [ 519.332086][T14173] bridge0: port 2(bridge_slave_1) entered blocking state [ 519.338960][T14173] bridge0: port 2(bridge_slave_1) entered forwarding state [ 519.346189][T14173] bridge0: port 1(bridge_slave_0) entered blocking state [ 519.353285][T14173] bridge0: port 1(bridge_slave_0) entered forwarding state [ 519.384586][ T8661] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 519.393265][ T8661] bridge0: port 1(bridge_slave_0) entered disabled state [ 519.400661][ T8661] bridge0: port 2(bridge_slave_1) entered disabled state [ 519.418288][ T8661] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 519.427785][ T8661] bridge0: port 1(bridge_slave_0) entered blocking state [ 519.434999][ T8661] bridge0: port 1(bridge_slave_0) entered forwarding state [ 519.442495][ T8661] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 519.450648][ T8661] bridge0: port 2(bridge_slave_1) entered blocking state [ 519.457512][ T8661] bridge0: port 2(bridge_slave_1) entered forwarding state [ 519.468079][T14182] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'. [ 519.478232][T14182] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 519.493407][ T5707] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 519.501920][ T5707] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 519.522557][ T8663] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 519.536060][T14173] device veth0_vlan entered promiscuous mode [ 519.542812][ T8663] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 519.551376][ T8663] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 519.558918][ T8663] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 519.575523][T10208] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 519.584909][T14173] device veth1_macvtap entered promiscuous mode [ 519.598461][T10208] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 519.609144][ T8661] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 519.713048][ T2939] device bridge_slave_1 left promiscuous mode [ 519.724619][ T2939] bridge0: port 2(bridge_slave_1) entered disabled state [ 519.740357][ T2939] device bridge_slave_0 left promiscuous mode [ 519.747237][ T2939] bridge0: port 1(bridge_slave_0) entered disabled state [ 519.755440][ T24] audit: type=1326 audit(2268436916.772:29962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14192 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa45cb51ee9 code=0x7ffc0000 [ 519.781010][ T2939] device veth1_macvtap left promiscuous mode [ 519.786859][ T5702] usb 4-1: string descriptor 0 read error: -71 [ 519.787320][ T2939] device veth0_vlan left promiscuous mode [ 519.799831][ T24] audit: type=1326 audit(2268436916.772:29963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14192 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa45cb51ee9 code=0x7ffc0000 [ 519.801776][ T5707] usb 2-1: new high-speed USB device number 87 using dummy_hcd [ 519.855707][ T24] audit: type=1326 audit(2268436916.792:29964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14192 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa45cb51ee9 code=0x7ffc0000 [ 519.862002][ T5702] uclogic 0003:256C:006D.00A3: failed retrieving string descriptor #200: -71 [ 519.880737][ T24] audit: type=1326 audit(2268436916.792:29965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14192 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa45cb51ee9 code=0x7ffc0000 [ 519.913818][ T24] audit: type=1326 audit(2268436916.792:29966): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14192 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa45cb51ee9 code=0x7ffc0000 [ 519.939776][ T24] audit: type=1326 audit(2268436916.792:29967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14192 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa45cb51ee9 code=0x7ffc0000 [ 519.940111][ T5702] uclogic 0003:256C:006D.00A3: failed retrieving pen parameters: -71 [ 519.967222][ T24] audit: type=1326 audit(2268436916.812:29968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14192 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa45cb51ee9 code=0x7ffc0000 [ 519.996029][ T5702] uclogic 0003:256C:006D.00A3: failed probing pen v2 parameters: -71 [ 519.996054][ T5702] uclogic 0003:256C:006D.00A3: failed probing parameters: -71 [ 519.996133][ T5702] uclogic: probe of 0003:256C:006D.00A3 failed with error -71 [ 520.020908][ T5702] usb 4-1: USB disconnect, device number 64 [ 520.027888][ T24] audit: type=1326 audit(2268436916.812:29969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14192 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa45cb4f667 code=0x7ffc0000 [ 520.052914][ T24] audit: type=1326 audit(2268436916.812:29970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14192 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa45cb15329 code=0x7ffc0000 [ 520.088790][ T24] audit: type=1326 audit(2268436916.812:29971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14192 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa45cb4f667 code=0x7ffc0000 [ 520.271843][ T5707] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 520.288341][ T5707] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 520.309297][ T5707] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00 [ 520.321794][ T5707] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 520.330525][ T5707] usb 2-1: config 0 descriptor?? [ 520.822284][ T5707] hid (null): bogus close delimiter [ 521.031825][ T5707] usb 2-1: language id specifier not provided by device, defaulting to English [ 521.101782][ T8661] Bluetooth: hci0: command 0x1003 tx timeout [ 521.107937][ T411] Bluetooth: hci0: sending frame failed (-49) [ 521.391830][T10211] usb 4-1: new high-speed USB device number 65 using dummy_hcd [ 521.492071][ T5707] uclogic 0003:256C:006D.00A4: interface is invalid, ignoring [ 521.761883][T10211] usb 4-1: config 0 interface 0 altsetting 255 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 521.772998][T10211] usb 4-1: config 0 interface 0 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 521.785903][T10211] usb 4-1: config 0 interface 0 has no altsetting 0 [ 521.792538][T10211] usb 4-1: New USB device found, idVendor=056a, idProduct=0017, bcdDevice= 0.00 [ 521.801296][T10211] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 521.809710][T10211] usb 4-1: config 0 descriptor?? [ 521.989680][ T5707] usb 2-1: USB disconnect, device number 87 [ 522.351803][T10211] usb 4-1: string descriptor 0 read error: -71 [ 522.451853][T10211] usbhid 4-1:0.0: can't add hid device: -71 [ 522.457787][T10211] usbhid: probe of 4-1:0.0 failed with error -71 [ 522.464926][T10211] usb 4-1: USB disconnect, device number 65 [ 523.181947][ T8661] Bluetooth: hci0: command 0x1001 tx timeout [ 523.187807][ T411] Bluetooth: hci0: sending frame failed (-49) [ 523.208466][T14251] ªªªªªª: renamed from vlan0 [ 523.226156][T14253] syz-executor.3[14253] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 523.226212][T14253] syz-executor.3[14253] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 523.240208][T14253] fscrypt: key with description 'fscrypt:0000111122223333' is too short (got 57 bytes, need 64+ bytes) [ 524.161811][T10211] usb 2-1: new high-speed USB device number 88 using dummy_hcd [ 524.521879][T10211] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 524.540263][T10211] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 524.559962][T10211] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00 [ 524.578686][T10211] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 524.595140][T10211] usb 2-1: config 0 descriptor?? [ 524.931766][ T5668] usb 3-1: new high-speed USB device number 93 using dummy_hcd [ 525.022881][ T2939] Bluetooth: hci1: Frame reassembly failed (-84) [ 525.072182][T10211] hid (null): bogus close delimiter [ 525.261821][ T8661] Bluetooth: hci0: command 0x1009 tx timeout [ 525.291911][T10211] usb 2-1: language id specifier not provided by device, defaulting to English [ 525.311860][ T5668] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 525.322714][ T5668] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 525.332450][ T5668] usb 3-1: New USB device found, idVendor=1fd2, idProduct=6007, bcdDevice= 0.00 [ 525.341607][ T5668] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 525.350284][ T5668] usb 3-1: config 0 descriptor?? [ 525.771878][T10211] uclogic 0003:256C:006D.00A5: interface is invalid, ignoring [ 525.822847][ T5668] hid-multitouch 0003:1FD2:6007.00A6: unknown main item tag 0x0 [ 525.831277][ T5668] hid-multitouch 0003:1FD2:6007.00A6: hidraw0: USB HID v0.00 Device [HID 1fd2:6007] on usb-dummy_hcd.2-1/input0 [ 526.022791][T10211] usb 3-1: USB disconnect, device number 93 [ 526.255754][ T5668] usb 2-1: USB disconnect, device number 88 [ 527.101857][ T8663] Bluetooth: hci1: command 0x1003 tx timeout [ 527.107725][ T8946] Bluetooth: hci1: sending frame failed (-49) [ 527.281782][ T5668] usb 3-1: new high-speed USB device number 94 using dummy_hcd [ 527.521816][ T5668] usb 3-1: Using ep0 maxpacket: 16 [ 527.641882][ T5668] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 11 [ 527.650746][ T5668] usb 3-1: config 1 interface 0 altsetting 3 endpoint 0xB has invalid wMaxPacketSize 0 [ 527.660273][ T5668] usb 3-1: config 1 interface 0 altsetting 3 bulk endpoint 0xB has invalid maxpacket 0 [ 527.669798][ T5668] usb 3-1: config 1 interface 0 altsetting 3 endpoint 0x8A has invalid wMaxPacketSize 0 [ 527.679511][ T5668] usb 3-1: config 1 interface 0 altsetting 3 bulk endpoint 0x8A has invalid maxpacket 0 [ 527.689074][ T5668] usb 3-1: config 1 interface 0 has no altsetting 0 [ 527.695607][ T5668] usb 3-1: New USB device found, idVendor=04e6, idProduct=0003, bcdDevice= 1.77 [ 527.704444][ T5668] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 527.752279][ T5668] ums-sddr09 3-1:1.0: USB Mass Storage device detected [ 527.972625][ T5668] scsi host1: usb-storage 3-1:1.0 [ 529.022454][ T5668] scsi 1:0:0:0: Direct-Access Sandisk ImageMate SDDR09 0177 PQ: 0 ANSI: 0 [ 529.181782][ T7398] Bluetooth: hci1: command 0x1001 tx timeout [ 529.187646][ T8946] Bluetooth: hci1: sending frame failed (-49) [ 529.274229][ T7398] usb 3-1: USB disconnect, device number 94 [ 529.291836][T14316] sddr09: could not read card info [ 529.297110][ T2939] sd 1:0:0:0: [sdb] 0 512-byte logical blocks: (0 B/0 B) [ 529.304618][ T2939] sd 1:0:0:0: [sdb] 0-byte physical blocks [ 529.311285][ T2939] sd 1:0:0:0: [sdb] Write Protect is off [ 529.317091][ T2939] sd 1:0:0:0: [sdb] Asking for cache data failed [ 529.324304][ T2939] sd 1:0:0:0: [sdb] Assuming drive cache: write through [ 529.335983][ T2939] sd 1:0:0:0: [sdb] Attached SCSI removable disk [ 529.621795][T10211] usb 5-1: new high-speed USB device number 91 using dummy_hcd [ 529.709237][T14341] fuse: Unknown parameter 'group?' [ 529.861802][T10211] usb 5-1: Using ep0 maxpacket: 32 [ 529.981879][T10211] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 529.998116][T10211] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 530.008194][T10211] usb 5-1: New USB device found, idVendor=1294, idProduct=1320, bcdDevice= 0.00 [ 530.026444][T10211] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 530.037385][T10211] usb 5-1: config 0 descriptor?? [ 530.046856][T14351] Bluetooth: received HCILL_WAKE_UP_ACK in state 2 [ 530.523632][T10211] hid-led 0003:1294:1320.00A7: hidraw0: USB HID v0.00 Device [HID 1294:1320] on usb-dummy_hcd.4-1/input0 [ 530.535779][T10211] hid-led 0003:1294:1320.00A7: Riso Kagaku Webmail Notifier initialized [ 530.723321][T10211] usb 5-1: USB disconnect, device number 91 [ 530.730301][T10213] leds riso_kagaku0:blue: Setting an LED's brightness failed (-38) [ 530.738412][T10213] leds riso_kagaku0:green: Setting an LED's brightness failed (-38) [ 530.746500][T10213] leds riso_kagaku0:red: Setting an LED's brightness failed (-38) [ 531.235996][T14360] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 531.248052][T14360] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 531.261745][ T5668] Bluetooth: hci1: command 0x1009 tx timeout [ 531.400266][T14367] device syzkaller0 entered promiscuous mode [ 532.061810][ T8663] Bluetooth: hci0: command 0x1003 tx timeout [ 532.067829][ T8946] Bluetooth: hci0: sending frame failed (-49) [ 532.221038][T14370] usb usb5: usbfs: process 14370 (syz-executor.4) did not claim interface 4 before use [ 532.248703][T14375] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 532.785147][ T2939] Bluetooth: hci2: Frame reassembly failed (-84) [ 533.282057][T14400] bridge0: port 1(bridge_slave_0) entered blocking state [ 533.288916][T14400] bridge0: port 1(bridge_slave_0) entered disabled state [ 533.296521][T14400] device bridge_slave_0 entered promiscuous mode [ 533.307857][T14400] bridge0: port 2(bridge_slave_1) entered blocking state [ 533.312471][T14415] x_tables: duplicate underflow at hook 1 [ 533.315192][T14400] bridge0: port 2(bridge_slave_1) entered disabled state [ 533.327725][ T24] kauditd_printk_skb: 138 callbacks suppressed [ 533.327739][ T24] audit: type=1326 audit(2268436930.332:30110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14414 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c84948ee9 code=0x7ffc0000 [ 533.330732][T14400] device bridge_slave_1 entered promiscuous mode [ 533.333966][ T24] audit: type=1326 audit(2268436930.332:30111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14414 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5c84948ee9 code=0x7ffc0000 [ 533.391255][ T24] audit: type=1326 audit(2268436930.332:30112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14414 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c84948ee9 code=0x7ffc0000 [ 533.415399][ T24] audit: type=1326 audit(2268436930.332:30113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14414 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5c84948ee9 code=0x7ffc0000 [ 533.439442][ T24] audit: type=1326 audit(2268436930.332:30114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14414 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c84948ee9 code=0x7ffc0000 [ 533.468105][ T24] audit: type=1326 audit(2268436930.332:30115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14414 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5c84948ee9 code=0x7ffc0000 [ 533.492563][ T24] audit: type=1326 audit(2268436930.332:30116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14414 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c84948ee9 code=0x7ffc0000 [ 533.518170][ T24] audit: type=1326 audit(2268436930.332:30117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14414 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5c84948ee9 code=0x7ffc0000 [ 533.542801][ T24] audit: type=1326 audit(2268436930.332:30118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14414 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c84948ee9 code=0x7ffc0000 [ 533.567302][ T24] audit: type=1326 audit(2268436930.332:30119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14414 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5c84948ee9 code=0x7ffc0000 [ 533.608219][T14400] bridge0: port 2(bridge_slave_1) entered blocking state [ 533.615196][T14400] bridge0: port 2(bridge_slave_1) entered forwarding state [ 533.622300][T14400] bridge0: port 1(bridge_slave_0) entered blocking state [ 533.629051][T14400] bridge0: port 1(bridge_slave_0) entered forwarding state [ 533.655740][ T8663] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 533.663712][ T8663] bridge0: port 1(bridge_slave_0) entered disabled state [ 533.672202][ T8663] bridge0: port 2(bridge_slave_1) entered disabled state [ 533.702695][T10213] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 533.710679][T10213] bridge0: port 1(bridge_slave_0) entered blocking state [ 533.717518][T10213] bridge0: port 1(bridge_slave_0) entered forwarding state [ 533.724842][T10213] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 533.733353][T10213] bridge0: port 2(bridge_slave_1) entered blocking state [ 533.740197][T10213] bridge0: port 2(bridge_slave_1) entered forwarding state [ 533.747744][T10213] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 534.141893][ T7398] Bluetooth: hci0: command 0x1001 tx timeout [ 534.148615][ T410] Bluetooth: hci0: sending frame failed (-49) [ 536.221744][ T308] Bluetooth: hci0: command 0x1009 tx timeout [ 633.751657][ C1] rcu: INFO: rcu_preempt self-detected stall on CPU [ 633.758254][ C1] rcu: 1-....: (10000 ticks this GP) idle=446/1/0x4000000000000000 softirq=50974/50987 fqs=4990 last_accelerate: 5afb/8211 dyntick_enabled: 1 [ 633.772755][ C1] (t=10001 jiffies g=73309 q=468) [ 633.777683][ C1] NMI backtrace for cpu 1 [ 633.781911][ C1] CPU: 1 PID: 14423 Comm: syz-executor.1 Tainted: G W 5.10.214-syzkaller-00044-g22b064ea5cbc #0 [ 633.793427][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 633.803407][ C1] Call Trace: [ 633.806519][ C1] [ 633.809280][ C1] dump_stack_lvl+0x1e2/0x24b [ 633.813749][ C1] ? panic+0x80b/0x80b [ 633.817650][ C1] ? bfq_pos_tree_add_move+0x43b/0x43b [ 633.823113][ C1] ? _raw_spin_lock_irqsave+0xf9/0x210 [ 633.828424][ C1] ? vprintk_func+0x19d/0x1e0 [ 633.832926][ C1] ? _raw_spin_lock+0x1b0/0x1b0 [ 633.837605][ C1] ? printk+0xd1/0x111 [ 633.841655][ C1] ? arch_trigger_cpumask_backtrace+0x20/0x20 [ 633.847604][ C1] dump_stack+0x15/0x17 [ 633.851587][ C1] nmi_trigger_cpumask_backtrace+0x2b5/0x300 [ 633.857951][ C1] ? arch_trigger_cpumask_backtrace+0x20/0x20 [ 633.863946][ C1] arch_trigger_cpumask_backtrace+0x10/0x20 [ 633.869749][ C1] rcu_dump_cpu_stacks+0x199/0x2b0 [ 633.874603][ C1] rcu_sched_clock_irq+0xf8a/0x1890 [ 633.879635][ C1] ? rcutree_dead_cpu+0x340/0x340 [ 633.884503][ C1] ? hrtimer_run_queues+0x15f/0x440 [ 633.889631][ C1] update_process_times+0x198/0x200 [ 633.894651][ C1] tick_sched_timer+0x188/0x240 [ 633.899338][ C1] ? tick_setup_sched_timer+0x480/0x480 [ 633.904720][ C1] __hrtimer_run_queues+0x3d7/0xa50 [ 633.909984][ C1] ? hrtimer_interrupt+0x8b0/0x8b0 [ 633.914871][ C1] ? clockevents_program_event+0x214/0x2c0 [ 633.920605][ C1] ? ktime_get_update_offsets_now+0x266/0x280 [ 633.926600][ C1] hrtimer_interrupt+0x39a/0x8b0 [ 633.931381][ C1] __sysvec_apic_timer_interrupt+0xfd/0x3c0 [ 633.937100][ C1] asm_call_irq_on_stack+0xf/0x20 [ 633.941955][ C1] [ 633.944743][ C1] sysvec_apic_timer_interrupt+0x85/0xe0 [ 633.950204][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 633.956077][ C1] RIP: 0010:tipc_sk_rcv+0x17a3/0x1e30 [ 633.961245][ C1] Code: c3 fd fe ff 48 8b 7c 24 28 48 83 ef 80 48 89 7c 24 28 be 04 00 00 00 e8 2b 10 10 fd bb ff ff ff ff f0 41 0f c1 9d 80 00 00 00 01 00 00 00 89 de e8 51 80 d2 fc 83 fb 01 75 0f e8 97 7c d2 fc [ 633.980755][ C1] RSP: 0018:ffffc90000b76900 EFLAGS: 00000213 [ 633.986655][ C1] RAX: 0000000000000001 RBX: 0000000000000005 RCX: ffffffff849832c5 [ 633.994589][ C1] RDX: 0000000000000001 RSI: 0000000000000004 RDI: ffff88810e3a0580 [ 634.002548][ C1] RBP: ffffc90000b76b90 R08: dffffc0000000000 R09: ffffed1021c740b1 [ 634.010453][ C1] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000 [ 634.018255][ C1] R13: ffff88810e3a0500 R14: 00000000998c8ee5 R15: ffffc90000b76d80 [ 634.026357][ C1] ? tipc_sk_rcv+0x1795/0x1e30 [ 634.030956][ C1] ? _raw_spin_unlock_irqrestore+0x5b/0x80 [ 634.036594][ C1] ? __stack_depot_save+0x468/0x4d0 [ 634.041642][ C1] ? kmem_cache_free+0xa9/0x1e0 [ 634.046731][ C1] ? kasan_set_free_info+0x23/0x40 [ 634.051629][ C1] ? ____kasan_slab_free+0x121/0x160 [ 634.057100][ C1] ? __kasan_slab_free+0x11/0x20 [ 634.062045][ C1] ? slab_free_freelist_hook+0xc0/0x190 [ 634.067643][ C1] ? kfree_skbmem+0x104/0x170 [ 634.072168][ C1] ? kfree_skb+0xc1/0x320 [ 634.076279][ C1] ? tipc_sk_rcv+0x8a1/0x1e30 [ 634.080876][ C1] ? tipc_node_xmit+0x34b/0xe30 [ 634.085567][ C1] ? __skb_queue_purge+0x180/0x180 [ 634.090546][ C1] ? htab_map_hash+0x320/0x7e0 [ 634.095142][ C1] ? kfree_skbmem+0x104/0x170 [ 634.099634][ C1] ? htab_lru_percpu_map_lookup_elem+0x1cf/0x390 [ 634.105875][ C1] ? kfree_skbmem+0x104/0x170 [ 634.110399][ C1] tipc_node_xmit+0x34b/0xe30 [ 634.114943][ C1] ? bpf_trace_run1+0x210/0x210 [ 634.119587][ C1] ? kfree_skbmem+0x104/0x170 [ 634.124158][ C1] ? ____kasan_slab_free+0x12c/0x160 [ 634.129223][ C1] ? tipc_node_get_linkname+0x190/0x190 [ 634.134602][ C1] ? kfree_skbmem+0x104/0x170 [ 634.139151][ C1] ? __bpf_trace_kmem_free+0x6f/0x90 [ 634.144250][ C1] tipc_node_distr_xmit+0x36a/0x4d0 [ 634.149271][ C1] ? tipc_node_xmit_skb+0x1b0/0x1b0 [ 634.154310][ C1] ? trace_tipc_sk_rej_msg+0x2b/0x6f0 [ 634.159690][ C1] tipc_sk_rcv+0x177d/0x1e30 [ 634.164320][ C1] ? __skb_queue_purge+0x180/0x180 [ 634.169237][ C1] tipc_node_xmit+0x34b/0xe30 [ 634.174018][ C1] ? stack_trace_save+0x1c0/0x1c0 [ 634.178965][ C1] ? __kernel_text_address+0x9b/0x110 [ 634.184369][ C1] ? tipc_node_get_linkname+0x190/0x190 [ 634.189771][ C1] ? __kasan_check_write+0x14/0x20 [ 634.194705][ C1] ? _raw_spin_lock_irqsave+0xf9/0x210 [ 634.199985][ C1] ? _raw_spin_lock+0x1b0/0x1b0 [ 634.204854][ C1] tipc_sk_filter_rcv+0x1da8/0x3e00 [ 634.209890][ C1] ? tipc_sk_dump+0xf50/0xf50 [ 634.215520][ C1] ? __kasan_check_write+0x14/0x20 [ 634.220814][ C1] ? _raw_spin_lock_bh+0xa4/0x1b0 [ 634.225738][ C1] ? kmem_cache_free+0xa9/0x1e0 [ 634.230517][ C1] tipc_sk_rcv+0x8a1/0x1e30 [ 634.234847][ C1] ? __bpf_trace_kmem_free+0x6f/0x90 [ 634.239988][ C1] ? __skb_queue_purge+0x180/0x180 [ 634.245248][ C1] ? tipc_sk_filter_rcv+0x3583/0x3e00 [ 634.250727][ C1] tipc_node_xmit+0x34b/0xe30 [ 634.255346][ C1] ? tipc_node_get_linkname+0x190/0x190 [ 634.260704][ C1] tipc_node_distr_xmit+0x36a/0x4d0 [ 634.265747][ C1] ? tipc_node_xmit_skb+0x1b0/0x1b0 [ 634.270854][ C1] tipc_sk_backlog_rcv+0x18b/0x210 [ 634.275889][ C1] ? tipc_sk_timeout+0xab0/0xab0 [ 634.280713][ C1] ? __local_bh_enable_ip+0x53/0x80 [ 634.285701][ C1] ? lock_sock_nested+0x26a/0x300 [ 634.290639][ C1] __release_sock+0x148/0x410 [ 634.295241][ C1] sock_setsockopt+0x1e3b/0x2e00 [ 634.300013][ C1] ? __sock_set_mark+0x160/0x160 [ 634.304996][ C1] ? selinux_socket_getsockopt+0x340/0x340 [ 634.310639][ C1] ? security_socket_setsockopt+0x82/0xb0 [ 634.316188][ C1] __sys_setsockopt+0x441/0x870 [ 634.320912][ C1] ? __ia32_sys_recv+0xb0/0xb0 [ 634.325587][ C1] ? __kasan_check_write+0x14/0x20 [ 634.330690][ C1] ? switch_fpu_return+0x1e4/0x3c0 [ 634.335581][ C1] __x64_sys_setsockopt+0xbf/0xd0 [ 634.340680][ C1] do_syscall_64+0x34/0x70 [ 634.345036][ C1] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 634.352117][ C1] RIP: 0033:0x7f5c84948ee9 [ 634.356412][ C1] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 634.376430][ C1] RSP: 002b:00007f5c8365a0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 634.384887][ C1] RAX: ffffffffffffffda RBX: 00007f5c84a80210 RCX: 00007f5c84948ee9 [ 634.393143][ C1] RDX: 0000000000000021 RSI: 0000000000000001 RDI: 0000000000000009 [ 634.400950][ C1] RBP: 00007f5c8499547f R08: 0000000000000004 R09: 0000000000000000 [ 634.408761][ C1] R10: 0000000020000540 R11: 0000000000000246 R12: 0000000000000000 [ 634.416909][ C1] R13: 000000000000006e R14: 00007f5c84a80210 R15: 00007ffc9374c5b8 [ 638.702262][ T8663] rcu: INFO: rcu_preempt detected expedited stalls on CPUs/tasks: { 1-... } 10495 jiffies s: 49985 root: 0x2/. [ 638.714217][ T8663] rcu: blocking rcu_node structures: [ 638.719316][ T8663] Task dump for CPU 1: [ 638.723239][ T8663] task:syz-executor.1 state:R running task stack: 0 pid:14423 ppid: 12547 flags:0x0000000c [ 638.733925][ T8663] Call Trace: [ 638.737031][ T8663] ? do_syscall_64+0x34/0x70 [ 638.741456][ T8663] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 638.747284][ T8663] RIP: 0033:0x7f5c84948ee9 [ 638.751603][ T8663] RSP: 002b:00007f5c8365a0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 638.760037][ T8663] RAX: ffffffffffffffda RBX: 00007f5c84a80210 RCX: 00007f5c84948ee9 [ 638.767950][ T8663] RDX: 0000000000000021 RSI: 0000000000000001 RDI: 0000000000000009 [ 638.776164][ T8663] RBP: 00007f5c8499547f R08: 0000000000000004 R09: 0000000000000000 [ 638.783991][ T8663] R10: 0000000020000540 R11: 0000000000000246 R12: 0000000000000000 [ 638.791799][ T8663] R13: 000000000000006e R14: 00007f5c84a80210 R15: 00007ffc9374c5b8 [ 655.981836][ T25] INFO: task syz-executor.2:14350 blocked for more than 122 seconds. [ 655.989929][ T25] Tainted: G W 5.10.214-syzkaller-00044-g22b064ea5cbc #0 [ 655.999344][ T25] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 656.008023][ T25] task:syz-executor.2 state:D stack: 0 pid:14350 ppid: 14173 flags:0x00004004 [ 656.017294][ T25] Call Trace: [ 656.020439][ T25] __schedule+0xbe6/0x1330 [ 656.024701][ T25] ? release_firmware_map_entry+0x192/0x192 [ 656.030557][ T25] ? try_invoke_on_locked_down_task+0x280/0x280 [ 656.036630][ T25] schedule+0x13d/0x1d0 [ 656.040557][ T25] schedule_timeout+0xa9/0x360 [ 656.045256][ T25] ? swake_up_one+0x152/0x170 [ 656.049932][ T25] ? console_conditional_schedule+0x10/0x10 [ 656.056013][ T25] ? __prepare_to_swait+0xac/0x130 [ 656.061112][ T25] wait_for_common+0x2a9/0x440 [ 656.065947][ T25] ? wait_for_completion+0x20/0x20 [ 656.070891][ T25] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 656.075862][ T25] ? preempt_schedule_thunk+0x16/0x18 [ 656.081003][ T25] wait_for_completion+0x18/0x20 [ 656.085792][ T25] __flush_work+0x558/0x650 [ 656.090114][ T25] ? flush_work+0x20/0x20 [ 656.094337][ T25] ? try_to_grab_pending+0x1de/0x5c0 [ 656.099399][ T25] ? move_linked_works+0x260/0x260 [ 656.104375][ T25] __cancel_work_timer+0x4cb/0x610 [ 656.109303][ T25] ? cancel_work_sync+0x20/0x20 [ 656.114051][ T25] ? __kasan_check_write+0x14/0x20 [ 656.119204][ T25] ? _raw_write_lock+0xa4/0x170 [ 656.124170][ T25] ? _raw_write_trylock+0x1a0/0x1a0 [ 656.129247][ T25] cancel_work_sync+0x17/0x20 [ 656.134106][ T25] hci_unregister_dev+0x138/0x440 [ 656.138977][ T25] hci_uart_tty_close+0x1b1/0x240 [ 656.143901][ T25] ? hci_uart_tty_open+0x320/0x320 [ 656.148891][ T25] tty_ldisc_kill+0x10b/0x220 [ 656.153517][ T25] tty_ldisc_release+0x168/0x1f0 [ 656.158222][ T25] tty_release_struct+0x2a/0xe0 [ 656.162938][ T25] tty_release+0xdf4/0x1070 [ 656.167253][ T25] ? tty_release_struct+0xe0/0xe0 [ 656.172169][ T25] __fput+0x309/0x760 [ 656.175931][ T25] ____fput+0x15/0x20 [ 656.179757][ T25] task_work_run+0x129/0x190 [ 656.184203][ T25] exit_to_user_mode_loop+0xbf/0xd0 [ 656.189230][ T25] syscall_exit_to_user_mode+0xc5/0x1d0 [ 656.195102][ T25] do_syscall_64+0x40/0x70 [ 656.199284][ T25] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 656.205155][ T25] RIP: 0033:0x7fa45cb50dda [ 656.209344][ T25] RSP: 002b:00007ffcfcb13920 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 656.218086][ T25] RAX: 0000000000000000 RBX: 0000000000000008 RCX: 00007fa45cb50dda [ 656.225864][ T25] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000007 [ 656.233711][ T25] RBP: ffffffffffffffff R08: 00007fa45cad5000 R09: 0000000000000001 [ 656.241509][ T25] R10: 0000000000000001 R11: 0000000000000293 R12: 00007fa45cc88fa0 [ 656.249375][ T25] R13: 00007fa45cc88fac R14: 0000000000000032 R15: 00007fa45cc8a9a0 [ 656.257268][ T25] NMI backtrace for cpu 0 [ 656.261339][ T25] CPU: 0 PID: 25 Comm: khungtaskd Tainted: G W 5.10.214-syzkaller-00044-g22b064ea5cbc #0 [ 656.272401][ T25] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 656.282292][ T25] Call Trace: [ 656.285432][ T25] dump_stack_lvl+0x1e2/0x24b [ 656.289936][ T25] ? panic+0x80b/0x80b [ 656.293844][ T25] ? bfq_pos_tree_add_move+0x43b/0x43b [ 656.299149][ T25] ? rcu_read_unlock_special+0xd8/0x4c0 [ 656.304528][ T25] ? sched_show_task+0x363/0x540 [ 656.309310][ T25] ? __rcu_read_unlock+0x90/0x90 [ 656.314168][ T25] ? arch_trigger_cpumask_backtrace+0x20/0x20 [ 656.320059][ T25] dump_stack+0x15/0x17 [ 656.324050][ T25] nmi_trigger_cpumask_backtrace+0x2b5/0x300 [ 656.330040][ T25] ? arch_trigger_cpumask_backtrace+0x20/0x20 [ 656.336028][ T25] arch_trigger_cpumask_backtrace+0x10/0x20 [ 656.341761][ T25] watchdog+0xe5d/0xfd0 [ 656.346019][ T25] ? hungtask_pm_notify+0x50/0x50 [ 656.350879][ T25] ? __kasan_check_read+0x11/0x20 [ 656.355745][ T25] ? __kthread_parkme+0xb9/0x1c0 [ 656.360515][ T25] kthread+0x34b/0x3d0 [ 656.364416][ T25] ? hungtask_pm_notify+0x50/0x50 [ 656.369275][ T25] ? kthread_blkcg+0xd0/0xd0 [ 656.373795][ T25] ret_from_fork+0x1f/0x30 [ 656.378274][ T25] Sending NMI from CPU 0 to CPUs 1: [ 656.384259][ C1] NMI backtrace for cpu 1 [ 656.384268][ C1] CPU: 1 PID: 14423 Comm: syz-executor.1 Tainted: G W 5.10.214-syzkaller-00044-g22b064ea5cbc #0 [ 656.384275][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 656.384280][ C1] RIP: 0010:tipc_sk_rcv+0x17cc/0x1e30 [ 656.384293][ C1] Code: 00 bf 01 00 00 00 89 de e8 51 80 d2 fc 83 fb 01 75 0f e8 97 7c d2 fc 4c 89 ef e8 ff 8c 24 ff eb 16 31 ff 89 de e8 34 80 d2 fc <85> db 0f 8e 30 03 00 00 e8 77 7c d2 fc 48 8b 84 24 a8 00 00 00 42 [ 656.384298][ C1] RSP: 0018:ffffc90000b76900 EFLAGS: 00000293 [ 656.384307][ C1] RAX: 0000000000000000 RBX: 0000000000000005 RCX: ffffffff849832c5 [ 656.384313][ C1] RDX: ffff88811fd093c0 RSI: 0000000000000005 RDI: 0000000000000000 [ 656.384319][ C1] RBP: ffffc90000b76b90 R08: ffffffff849832fc R09: ffffed1021c740b1 [ 656.384324][ C1] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000 [ 656.384330][ C1] R13: ffff88810e3a0500 R14: 00000000998c8ee5 R15: ffffc90000b76d80 [ 656.384336][ C1] FS: 00007f5c8365a6c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 656.384340][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 656.384345][ C1] CR2: 0000000020004000 CR3: 0000000129bf8000 CR4: 00000000003506a0 [ 656.384351][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 656.384355][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 656.384358][ C1] Call Trace: [ 656.384360][ C1] [ 656.384364][ C1] ? show_regs+0x58/0x60 [ 656.384367][ C1] ? nmi_cpu_backtrace+0x133/0x160 [ 656.384370][ C1] ? tipc_sk_rcv+0x17cc/0x1e30 [ 656.384374][ C1] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 656.384377][ C1] ? nmi_handle+0xa8/0x280 [ 656.384380][ C1] ? tipc_sk_rcv+0x17cc/0x1e30 [ 656.384384][ C1] ? default_do_nmi+0x69/0x160 [ 656.384387][ C1] ? exc_nmi+0xaf/0x120 [ 656.384390][ C1] ? end_repeat_nmi+0x16/0x31 [ 656.384393][ C1] ? tipc_sk_rcv+0x17cc/0x1e30 [ 656.384397][ C1] ? tipc_sk_rcv+0x1795/0x1e30 [ 656.384400][ C1] ? tipc_sk_rcv+0x17cc/0x1e30 [ 656.384403][ C1] ? tipc_sk_rcv+0x17cc/0x1e30 [ 656.384407][ C1] ? tipc_sk_rcv+0x17cc/0x1e30 [ 656.384409][ C1] [ 656.384413][ C1] ? _raw_spin_unlock_irqrestore+0x5b/0x80 [ 656.384416][ C1] ? __stack_depot_save+0x468/0x4d0 [ 656.384420][ C1] ? kmem_cache_free+0xa9/0x1e0 [ 656.384423][ C1] ? kasan_set_free_info+0x23/0x40 [ 656.384427][ C1] ? ____kasan_slab_free+0x121/0x160 [ 656.384430][ C1] ? __kasan_slab_free+0x11/0x20 [ 656.384434][ C1] ? slab_free_freelist_hook+0xc0/0x190 [ 656.384437][ C1] ? kfree_skbmem+0x104/0x170 [ 656.384440][ C1] ? kfree_skb+0xc1/0x320 [ 656.384444][ C1] ? tipc_sk_rcv+0x8a1/0x1e30 [ 656.384447][ C1] ? tipc_node_xmit+0x34b/0xe30 [ 656.384451][ C1] ? __skb_queue_purge+0x180/0x180 [ 656.384454][ C1] ? htab_map_hash+0x320/0x7e0 [ 656.384457][ C1] ? kfree_skbmem+0x104/0x170 [ 656.384462][ C1] ? htab_lru_percpu_map_lookup_elem+0x1cf/0x390 [ 656.384465][ C1] ? kfree_skbmem+0x104/0x170 [ 656.384468][ C1] tipc_node_xmit+0x34b/0xe30 [ 656.384471][ C1] ? bpf_trace_run1+0x210/0x210 [ 656.384475][ C1] ? kfree_skbmem+0x104/0x170 [ 656.384478][ C1] ? ____kasan_slab_free+0x12c/0x160 [ 656.384482][ C1] ? tipc_node_get_linkname+0x190/0x190 [ 656.384485][ C1] ? kfree_skbmem+0x104/0x170 [ 656.384489][ C1] ? __bpf_trace_kmem_free+0x6f/0x90 [ 656.384492][ C1] tipc_node_distr_xmit+0x36a/0x4d0 [ 656.384496][ C1] ? tipc_node_xmit_skb+0x1b0/0x1b0 [ 656.384499][ C1] ? trace_tipc_sk_rej_msg+0x2b/0x6f0 [ 656.384503][ C1] tipc_sk_rcv+0x177d/0x1e30 [ 656.384506][ C1] ? __skb_queue_purge+0x180/0x180 [ 656.384509][ C1] tipc_node_xmit+0x34b/0xe30 [ 656.384513][ C1] ? stack_trace_save+0x1c0/0x1c0 [ 656.384516][ C1] ? __kernel_text_address+0x9b/0x110 [ 656.384520][ C1] ? tipc_node_get_linkname+0x190/0x190 [ 656.384523][ C1] ? __kasan_check_write+0x14/0x20 [ 656.384527][ C1] ? _raw_spin_lock_irqsave+0xf9/0x210 [ 656.384530][ C1] ? _raw_spin_lock+0x1b0/0x1b0 [ 656.384534][ C1] tipc_sk_filter_rcv+0x1da8/0x3e00 [ 656.384537][ C1] ? tipc_sk_dump+0xf50/0xf50 [ 656.384541][ C1] ? __kasan_check_write+0x14/0x20 [ 656.384544][ C1] ? _raw_spin_lock_bh+0xa4/0x1b0 [ 656.384547][ C1] ? kmem_cache_free+0xa9/0x1e0 [ 656.384551][ C1] tipc_sk_rcv+0x8a1/0x1e30 [ 656.384554][ C1] ? __bpf_trace_kmem_free+0x6f/0x90 [ 656.384558][ C1] ? __skb_queue_purge+0x180/0x180 [ 656.384561][ C1] ? tipc_sk_filter_rcv+0x3583/0x3e00 [ 656.384564][ C1] tipc_node_xmit+0x34b/0xe30 [ 656.384568][ C1] ? tipc_node_get_linkname+0x190/0x190 [ 656.384572][ C1] tipc_node_distr_xmit+0x36a/0x4d0 [ 656.384575][ C1] ? tipc_node_xmit_skb+0x1b0/0x1b0 [ 656.384579][ C1] tipc_sk_backlog_rcv+0x18b/0x210 [ 656.384582][ C1] ? tipc_sk_timeout+0xab0/0xab0 [ 656.384586][ C1] ? __local_bh_enable_ip+0x53/0x80 [ 656.384589][ C1] ? lock_sock_nested+0x26a/0x300 [ 656.384593][ C1] __release_sock+0x148/0x410 [ 656.384597][ C1] sock_setsockopt+0x1e3b/0x2e00 [ 656.384602][ C1] ? __sock_set_mark+0x160/0x160 [ 656.384606][ C1] ? selinux_socket_getsockopt+0x340/0x340 [ 656.384609][ C1] ? security_socket_setsockopt+0x82/0xb0 [ 656.384612][ C1] __sys_setsockopt+0x441/0x870 [ 656.384616][ C1] ? __ia32_sys_recv+0xb0/0xb0 [ 656.384619][ C1] ? __kasan_check_write+0x14/0x20 [ 656.384622][ C1] ? switch_fpu_return+0x1e4/0x3c0 [ 656.384626][ C1] __x64_sys_setsockopt+0xbf/0xd0 [ 656.384629][ C1] do_syscall_64+0x34/0x70 [ 656.384633][ C1] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 656.384636][ C1] RIP: 0033:0x7f5c84948ee9 [ 656.384646][ C1] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 656.384650][ C1] RSP: 002b:00007f5c8365a0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 656.384658][ C1] RAX: ffffffffffffffda RBX: 00007f5c84a80210 RCX: 00007f5c84948ee9 [ 656.384663][ C1] RDX: 0000000000000021 RSI: 0000000000000001 RDI: 0000000000000009 [ 656.384668][ C1] RBP: 00007f5c8499547f R08: 0000000000000004 R09: 0000000000000000 [ 656.384673][ C1] R10: 0000000020000540 R11: 0000000000000246 R12: 0000000000000000 [ 656.384677][ C1] R13: 000000000000006e R14: 00007f5c84a80210 R15: 00007ffc9374c5b8 [ 676.461715][ T25] INFO: task jbd2/sda1-8:57 blocked for more than 122 seconds. [ 676.469194][ T25] Tainted: G W 5.10.214-syzkaller-00044-g22b064ea5cbc #0 [ 676.478006][ T25] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 676.486491][ T25] task:jbd2/sda1-8 state:D stack: 0 pid: 57 ppid: 2 flags:0x00004000 [ 676.495728][ T25] Call Trace: [ 676.498794][ T25] __schedule+0xbe6/0x1330 [ 676.503059][ T25] ? release_firmware_map_entry+0x192/0x192 [ 676.508892][ T25] ? _raw_spin_unlock_irqrestore+0x5b/0x80 [ 676.514583][ T25] ? prepare_to_wait+0x226/0x290 [ 676.519302][ T25] schedule+0x13d/0x1d0 [ 676.523320][ T25] io_schedule+0x8f/0x120 [ 676.527466][ T25] bit_wait_io+0x14/0xd0 [ 676.531534][ T25] __wait_on_bit+0xb0/0x180 [ 676.536018][ T25] ? bit_wait+0xd0/0xd0 [ 676.540001][ T25] out_of_line_wait_on_bit+0x1ab/0x230 [ 676.545383][ T25] ? bit_wait+0xd0/0xd0 [ 676.549360][ T25] ? __wait_on_bit+0x180/0x180 [ 676.554058][ T25] ? bit_waitqueue+0x30/0x30 [ 676.558393][ T25] ? _raw_write_trylock+0x1a0/0x1a0 [ 676.563532][ T25] ? _raw_read_unlock+0x25/0x40 [ 676.568310][ T25] __wait_on_buffer+0x77/0x80 [ 676.573002][ T25] jbd2_journal_commit_transaction+0x3b02/0x6b20 [ 676.579249][ T25] ? jbd2_journal_finish_inode_data_buffers+0xb0/0xb0 [ 676.585855][ T25] ? __kasan_check_write+0x14/0x20 [ 676.590770][ T25] ? _raw_spin_lock_irqsave+0xf9/0x210 [ 676.596295][ T25] ? _raw_spin_lock+0x1b0/0x1b0 [ 676.600897][ T25] ? __kasan_check_write+0x14/0x20 [ 676.605841][ T25] ? _raw_spin_unlock_irqrestore+0x5b/0x80 [ 676.611554][ T25] ? del_timer_sync+0x1bc/0x230 [ 676.616460][ T25] ? __kasan_check_write+0x14/0x20 [ 676.621372][ T25] ? try_to_del_timer_sync+0x150/0x150 [ 676.626797][ T25] ? finish_wait+0x17f/0x190 [ 676.631247][ T25] kjournald2+0x489/0x890 [ 676.635427][ T25] ? __switch_to_asm+0x34/0x60 [ 676.640030][ T25] ? jbd2_seq_info_show+0x620/0x620 [ 676.645092][ T25] ? io_schedule+0x120/0x120 [ 676.649500][ T25] ? __kasan_check_read+0x11/0x20 [ 676.654500][ T25] ? __kthread_parkme+0xb9/0x1c0 [ 676.659348][ T25] kthread+0x34b/0x3d0 [ 676.663281][ T25] ? jbd2_seq_info_show+0x620/0x620 [ 676.668282][ T25] ? kthread_blkcg+0xd0/0xd0 [ 676.672925][ T25] ret_from_fork+0x1f/0x30 [ 676.677169][ T25] INFO: task kworker/u4:2:110 blocked for more than 123 seconds. [ 676.684809][ T25] Tainted: G W 5.10.214-syzkaller-00044-g22b064ea5cbc #0 [ 676.693522][ T25] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 676.702240][ T25] task:kworker/u4:2 state:D stack: 0 pid: 110 ppid: 2 flags:0x00004000 [ 676.711228][ T25] Workqueue: netns cleanup_net [ 676.715941][ T25] Call Trace: [ 676.719072][ T25] __schedule+0xbe6/0x1330 [ 676.723429][ T25] ? release_firmware_map_entry+0x192/0x192 [ 676.729212][ T25] ? kthread_data+0x53/0xc0 [ 676.733684][ T25] ? wq_worker_sleeping+0x63/0x200 [ 676.739661][ T25] schedule+0x13d/0x1d0 [ 676.743849][ T25] synchronize_rcu_expedited+0x503/0x660 [ 676.749294][ T25] ? schedule+0x18a/0x1d0 [ 676.753795][ T25] ? synchronize_rcu+0x120/0x120 [ 676.758561][ T25] ? schedule_timeout+0xa9/0x360 [ 676.763376][ T25] ? __kasan_check_write+0x14/0x20 [ 676.768374][ T25] ? rcu_exp_handler+0x360/0x360 [ 676.773339][ T25] ? __prepare_to_swait+0xac/0x130 [ 676.778197][ T25] ? __kasan_check_write+0x14/0x20 [ 676.783164][ T25] ? _raw_spin_lock+0xa4/0x1b0 [ 676.787920][ T25] ? io_schedule+0x120/0x120 [ 676.792575][ T25] ? __kasan_check_read+0x11/0x20 [ 676.797421][ T25] synchronize_net+0x28/0x40 [ 676.802039][ T25] gro_cells_destroy+0x2da/0x350 [ 676.806888][ T25] ? find_next_bit+0xc7/0x100 [ 676.811353][ T25] ip_tunnel_dev_free+0x19/0x60 [ 676.816097][ T25] ? ip_tunnel_init+0x3f0/0x3f0 [ 676.820796][ T25] netdev_run_todo+0xb7a/0xdc0 [ 676.825344][ T25] ? alloc_netdev_mqs+0xcd0/0xcd0 [ 676.830166][ T25] ? netdev_refcnt_read+0x1e0/0x1e0 [ 676.835282][ T25] ? unregister_netdevice_queue+0x258/0x350 [ 676.840917][ T25] ? list_netdevice+0x4c0/0x4c0 [ 676.845629][ T25] ? unregister_netdevice_queue+0x258/0x350 [ 676.851329][ T25] ? list_netdevice+0x4c0/0x4c0 [ 676.856191][ T25] rtnl_unlock+0xe/0x10 [ 676.862851][ T25] ip_tunnel_delete_nets+0x340/0x380 [ 676.868109][ T25] ? ip_tunnel_bind_dev+0x880/0x880 [ 676.873256][ T25] ? xfrmi6_err+0x640/0x640 [ 676.877613][ T25] ? __kasan_check_read+0x11/0x20 [ 676.882729][ T25] vti_exit_batch_net+0x22/0x30 [ 676.887703][ T25] ? vti_init_net+0x140/0x140 [ 676.892392][ T25] cleanup_net+0x6e9/0xcb0 [ 676.896578][ T25] ? __switch_to_asm+0x34/0x60 [ 676.901163][ T25] ? ops_init+0x4a0/0x4a0 [ 676.905328][ T25] ? read_word_at_a_time+0x12/0x20 [ 676.910345][ T25] ? strscpy+0x9c/0x260 [ 676.914497][ T25] process_one_work+0x6dc/0xbd0 [ 676.919194][ T25] worker_thread+0xaea/0x1510 [ 676.923820][ T25] kthread+0x34b/0x3d0 [ 676.927882][ T25] ? worker_clr_flags+0x180/0x180 [ 676.932809][ T25] ? kthread_blkcg+0xd0/0xd0 [ 676.937167][ T25] ret_from_fork+0x1f/0x30 [ 676.941539][ T25] INFO: task kworker/0:8:5668 blocked for more than 123 seconds. [ 676.949286][ T25] Tainted: G W 5.10.214-syzkaller-00044-g22b064ea5cbc #0 [ 676.957996][ T25] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 676.966531][ T25] task:kworker/0:8 state:D stack: 0 pid: 5668 ppid: 2 flags:0x00004000 [ 676.975731][ T25] Workqueue: ipv6_addrconf addrconf_dad_work [ 676.981450][ T25] Call Trace: [ 676.984597][ T25] __schedule+0xbe6/0x1330 [ 676.988850][ T25] ? release_firmware_map_entry+0x192/0x192 [ 676.994708][ T25] ? wq_worker_sleeping+0x19c/0x200 [ 676.999677][ T25] schedule+0x13d/0x1d0 [ 677.003712][ T25] schedule_preempt_disabled+0x13/0x20 [ 677.009147][ T25] __mutex_lock+0x7b8/0xf20 [ 677.013580][ T25] ? __ww_mutex_lock_interruptible_slowpath+0x20/0x20 [ 677.020179][ T25] ? __mod_timer+0x903/0xcf0 [ 677.024619][ T25] ? mod_timer_pending+0x30/0x30 [ 677.029521][ T25] __mutex_lock_slowpath+0xe/0x10 [ 677.034466][ T25] mutex_lock+0xd6/0x110 [ 677.038461][ T25] ? mutex_trylock+0xa0/0xa0 [ 677.042908][ T25] ? add_timer+0x68/0x80 [ 677.047003][ T25] rtnl_lock+0x15/0x20 [ 677.050876][ T25] addrconf_dad_work+0xdd/0x1700 [ 677.056029][ T25] ? finish_task_switch+0x130/0x5a0 [ 677.061045][ T25] ? ipv6_get_saddr_eval+0xf20/0xf20 [ 677.066216][ T25] ? __kasan_check_write+0x14/0x20 [ 677.071112][ T25] ? __kasan_check_read+0x11/0x20 [ 677.076020][ T25] ? read_word_at_a_time+0x12/0x20 [ 677.081003][ T25] ? strscpy+0x9c/0x260 [ 677.085012][ T25] process_one_work+0x6dc/0xbd0 [ 677.089687][ T25] worker_thread+0xaea/0x1510 [ 677.094279][ T25] kthread+0x34b/0x3d0 [ 677.098103][ T25] ? worker_clr_flags+0x180/0x180 [ 677.103550][ T25] ? kthread_blkcg+0xd0/0xd0 [ 677.107953][ T25] ret_from_fork+0x1f/0x30 [ 677.112308][ T25] INFO: task kworker/1:65:10211 blocked for more than 123 seconds. [ 677.119929][ T25] Tainted: G W 5.10.214-syzkaller-00044-g22b064ea5cbc #0 [ 677.128630][ T25] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 677.137195][ T25] task:kworker/1:65 state:D stack: 0 pid:10211 ppid: 2 flags:0x00004000 [ 677.146425][ T25] Workqueue: ipv6_addrconf addrconf_dad_work [ 677.152286][ T25] Call Trace: [ 677.155345][ T25] __schedule+0xbe6/0x1330 [ 677.159600][ T25] ? release_firmware_map_entry+0x192/0x192 [ 677.165338][ T25] ? wq_worker_sleeping+0x19c/0x200 [ 677.170353][ T25] schedule+0x13d/0x1d0 [ 677.174404][ T25] schedule_preempt_disabled+0x13/0x20 [ 677.179645][ T25] __mutex_lock+0x7b8/0xf20 [ 677.184200][ T25] ? __ww_mutex_lock_interruptible_slowpath+0x20/0x20 [ 677.190775][ T25] ? __kasan_check_write+0x14/0x20 [ 677.195786][ T25] __mutex_lock_slowpath+0xe/0x10 [ 677.200588][ T25] mutex_lock+0xd6/0x110 [ 677.204760][ T25] ? mutex_trylock+0xa0/0xa0 [ 677.209258][ T25] ? compat_start_thread+0x80/0x80 [ 677.214278][ T25] rtnl_lock+0x15/0x20 [ 677.218116][ T25] addrconf_dad_work+0xdd/0x1700 [ 677.222907][ T25] ? finish_task_switch+0x130/0x5a0 [ 677.228129][ T25] ? switch_mm_irqs_off+0x71b/0x9a0 [ 677.233288][ T25] ? ipv6_get_saddr_eval+0xf20/0xf20 [ 677.238338][ T25] ? __kasan_check_read+0x11/0x20 [ 677.243247][ T25] ? read_word_at_a_time+0x12/0x20 [ 677.248592][ T25] ? strscpy+0x9c/0x260 [ 677.252765][ T25] process_one_work+0x6dc/0xbd0 [ 677.257380][ T25] worker_thread+0xaea/0x1510 [ 677.262064][ T25] kthread+0x34b/0x3d0 [ 677.266053][ T25] ? worker_clr_flags+0x180/0x180 [ 677.270967][ T25] ? kthread_blkcg+0xd0/0xd0 [ 677.275393][ T25] ret_from_fork+0x1f/0x30 [ 677.279675][ T25] INFO: task syz-executor.3:13137 blocked for more than 123 seconds. [ 677.287583][ T25] Tainted: G W 5.10.214-syzkaller-00044-g22b064ea5cbc #0 [ 677.296293][ T25] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 677.304894][ T25] task:syz-executor.3 state:D stack: 0 pid:13137 ppid: 1 flags:0x00004006 [ 677.314000][ T25] Call Trace: [ 677.317172][ T25] __schedule+0xbe6/0x1330 [ 677.321594][ T25] ? release_firmware_map_entry+0x192/0x192 [ 677.327465][ T25] ? init_wait_entry+0xe0/0xe0 [ 677.332168][ T25] schedule+0x13d/0x1d0 [ 677.336103][ T25] synchronize_rcu_expedited+0x58b/0x660 [ 677.341762][ T25] ? synchronize_rcu+0x120/0x120 [ 677.346625][ T25] ? io_schedule+0x120/0x120 [ 677.351061][ T25] ? get_signal+0x10a0/0x1410 [ 677.355630][ T25] ? arch_do_signal_or_restart+0xbd/0x17c0 [ 677.361236][ T25] ? _raw_spin_unlock_irqrestore+0x5b/0x80 [ 677.366870][ T25] ? __wake_up+0x120/0x1c0 [ 677.371101][ T25] ? remove_wait_queue+0x140/0x140 [ 677.376113][ T25] ? shrink_dentry_list+0x4c4/0x4e0 [ 677.381081][ T25] ? __kasan_check_write+0x14/0x20 [ 677.386078][ T25] namespace_unlock+0x297/0x4d0 [ 677.390803][ T25] ? umount_tree+0xef0/0xef0 [ 677.395472][ T25] ? __detach_mounts+0x5a0/0x5a0 [ 677.400189][ T25] ? __kasan_check_write+0x14/0x20 [ 677.405135][ T25] ? _raw_spin_lock+0xa4/0x1b0 [ 677.409906][ T25] put_mnt_ns+0xaf/0x1e0 [ 677.414116][ T25] free_nsproxy+0x4c/0x240 [ 677.418404][ T25] exit_task_namespaces+0xb4/0xd0 [ 677.423387][ T25] do_exit+0xc7e/0x2a50 [ 677.427351][ T25] ? put_task_struct+0x80/0x80 [ 677.432004][ T25] ? child_wait_callback+0x200/0x200 [ 677.437067][ T25] ? _raw_spin_unlock_irqrestore+0x5b/0x80 [ 677.442833][ T25] ? __kasan_check_write+0x14/0x20 [ 677.447835][ T25] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 677.452941][ T25] do_group_exit+0x141/0x310 [ 677.457304][ T25] get_signal+0x10a0/0x1410 [ 677.461654][ T25] arch_do_signal_or_restart+0xbd/0x17c0 [ 677.467127][ T25] ? kernel_waitid+0x520/0x520 [ 677.471785][ T25] ? __do_sys_rt_sigreturn+0x1e0/0x1e0 [ 677.476998][ T25] ? kernel_wait+0x230/0x230 [ 677.481435][ T25] exit_to_user_mode_loop+0x9b/0xd0 [ 677.486543][ T25] syscall_exit_to_user_mode+0xc5/0x1d0 [ 677.491993][ T25] do_syscall_64+0x40/0x70 [ 677.496221][ T25] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 677.502011][ T25] RIP: 0033:0x7f97426ae8d3 [ 677.506251][ T25] RSP: 002b:00007ffffe872a38 EFLAGS: 00000202 ORIG_RAX: 000000000000003d [ 677.514920][ T25] RAX: fffffffffffffe00 RBX: 00000000000000ee RCX: 00007f97426ae8d3 [ 677.522666][ T25] RDX: 0000000040000000 RSI: 00007ffffe872a9c RDI: 00000000ffffffff [ 677.530546][ T25] RBP: 00007ffffe872a9c R08: 00007ffffe972080 R09: 00007ffffe9720b0 [ 677.538414][ T25] R10: 0000000000000000 R11: 0000000000000202 R12: 00005555556ed83b [ 677.546201][ T25] R13: 00005555556ed7e0 R14: 00007f9742711838 R15: 0000000000000010 [ 677.554055][ T25] INFO: task syz-executor.4:13461 blocked for more than 123 seconds. [ 677.561908][ T25] Tainted: G W 5.10.214-syzkaller-00044-g22b064ea5cbc #0 [ 677.570595][ T25] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 677.579473][ T25] task:syz-executor.4 state:D stack: 0 pid:13461 ppid: 1 flags:0x00004004 [ 677.588773][ T25] Call Trace: [ 677.592042][ T25] __schedule+0xbe6/0x1330 [ 677.596229][ T25] ? release_firmware_map_entry+0x192/0x192 [ 677.602066][ T25] ? _raw_spin_unlock_irqrestore+0x5b/0x80 [ 677.607684][ T25] ? prepare_to_wait+0x226/0x290 [ 677.612802][ T25] schedule+0x13d/0x1d0 [ 677.616775][ T25] io_schedule+0x8f/0x120 [ 677.621149][ T25] bit_wait_io+0x14/0xd0 [ 677.625259][ T25] __wait_on_bit+0xb0/0x180 [ 677.629642][ T25] ? bit_wait+0xd0/0xd0 [ 677.635477][ T25] out_of_line_wait_on_bit+0x1ab/0x230 [ 677.640770][ T25] ? bit_wait+0xd0/0xd0 [ 677.644778][ T25] ? __wait_on_bit+0x180/0x180 [ 677.649369][ T25] ? bit_waitqueue+0x30/0x30 [ 677.653848][ T25] ? mod_timer_pending+0x30/0x30 [ 677.658562][ T25] do_get_write_access+0x124/0xda0 [ 677.663544][ T25] jbd2_journal_get_write_access+0x195/0x2d0 [ 677.669351][ T25] __ext4_journal_get_write_access+0x22f/0x490 [ 677.675455][ T25] ? ext4_get_inode_loc+0x1d0/0x1d0 [ 677.680456][ T25] ? __ext4_journal_ensure_credits+0x470/0x470 [ 677.686500][ T25] ext4_reserve_inode_write+0x28d/0x380 [ 677.691964][ T25] ? ext4_mark_iloc_dirty+0x3e60/0x3e60 [ 677.697268][ T25] ? ext4_dirty_inode+0xdd/0x120 [ 677.702058][ T25] __ext4_mark_inode_dirty+0x12e/0x7b0 [ 677.707337][ T25] ? jbd2__journal_start+0x150/0x710 [ 677.712522][ T25] ? sb_end_intwrite+0x110/0x110 [ 677.717230][ T25] ? jbd2__journal_start+0x150/0x710 [ 677.722477][ T25] ? jbd2__journal_start+0x3b5/0x710 [ 677.727563][ T25] ? __ext4_journal_start_sb+0x249/0x4a0 [ 677.733524][ T25] ext4_dirty_inode+0xdd/0x120 [ 677.738066][ T25] ? __ext4_expand_extra_isize+0x3f0/0x3f0 [ 677.743764][ T25] __mark_inode_dirty+0xd0/0x9d0 [ 677.748476][ T25] ? memcpy+0x56/0x70 [ 677.752367][ T25] touch_atime+0x2ff/0x4c0 [ 677.756550][ T25] ? current_time+0x2f0/0x2f0 [ 677.761156][ T25] iterate_dir+0x4a1/0x580 [ 677.765424][ T25] ? ext4_dir_llseek+0x4c0/0x4c0 [ 677.770357][ T25] __se_sys_getdents64+0x1c1/0x460 [ 677.775451][ T25] ? __x64_sys_getdents64+0x90/0x90 [ 677.780424][ T25] ? filldir+0x680/0x680 [ 677.784537][ T25] ? debug_smp_processor_id+0x17/0x20 [ 677.789816][ T25] __x64_sys_getdents64+0x7b/0x90 [ 677.794756][ T25] do_syscall_64+0x34/0x70 [ 677.798922][ T25] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 677.804654][ T25] RIP: 0033:0x7fa52b21c3e3 [ 677.809011][ T25] RSP: 002b:00007ffd0e44a218 EFLAGS: 00000293 ORIG_RAX: 00000000000000d9 [ 677.817381][ T25] RAX: ffffffffffffffda RBX: 0000555555dc7810 RCX: 00007fa52b21c3e3 [ 677.825289][ T25] RDX: 0000000000008000 RSI: 0000555555dc7810 RDI: 0000000000000003 [ 677.833334][ T25] RBP: 0000555555dc77e4 R08: 00007ffd0e48e080 R09: 00007ffd0e48e0b0 [ 677.841056][ T25] R10: 0000000000001000 R11: 0000000000000293 R12: ffffffffffffffb0 [ 677.848906][ T25] R13: 0000000000000016 R14: 0000555555dc77e0 R15: 000000000000000e [ 677.856755][ T25] INFO: task syz-executor.3:14284 blocked for more than 124 seconds. [ 677.864948][ T25] Tainted: G W 5.10.214-syzkaller-00044-g22b064ea5cbc #0 [ 677.874087][ T25] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 677.883117][ T25] task:syz-executor.3 state:D stack: 0 pid:14284 ppid: 13137 flags:0x00004006 [ 677.892297][ T25] Call Trace: [ 677.895324][ T25] __schedule+0xbe6/0x1330 [ 677.899574][ T25] ? release_firmware_map_entry+0x192/0x192 [ 677.905383][ T25] ? __mutex_add_waiter+0x1b5/0x310 [ 677.910343][ T25] ? atomic_dec_and_mutex_lock+0x1c0/0x1c0 [ 677.916229][ T25] schedule+0x13d/0x1d0 [ 677.920141][ T25] schedule_preempt_disabled+0x13/0x20 [ 677.925446][ T25] __mutex_lock+0x7b8/0xf20 [ 677.929779][ T25] ? __ww_mutex_lock_interruptible_slowpath+0x20/0x20 [ 677.936659][ T25] ? 0xffffffffa00289b0 [ 677.940592][ T25] ? is_bpf_text_address+0x172/0x190 [ 677.945674][ T25] ? stack_trace_save+0x1c0/0x1c0 [ 677.950520][ T25] ? __kernel_text_address+0x9b/0x110 [ 677.955784][ T25] __mutex_lock_slowpath+0xe/0x10 [ 677.960674][ T25] mutex_lock+0xd6/0x110 [ 677.964778][ T25] ? mutex_trylock+0xa0/0xa0 [ 677.969329][ T25] ? __kasan_check_read+0x11/0x20 [ 677.974211][ T25] synchronize_rcu_expedited+0x2ea/0x660 [ 677.979615][ T25] ? synchronize_rcu+0x120/0x120 [ 677.984576][ T25] ? kasan_set_track+0x5d/0x70 [ 677.989344][ T25] ? kasan_set_track+0x4b/0x70 [ 677.994008][ T25] ? kasan_set_track+0x5d/0x70 [ 677.998625][ T25] ? kasan_set_track+0x4b/0x70 [ 678.003542][ T25] ? kasan_set_free_info+0x23/0x40 [ 678.008561][ T25] ? ____kasan_slab_free+0x121/0x160 [ 678.014126][ T25] ? __kasan_slab_free+0x11/0x20 [ 678.019015][ T25] ? slab_free_freelist_hook+0xc0/0x190 [ 678.025111][ T25] ? kmem_cache_free+0xa9/0x1e0 [ 678.029809][ T25] ? locks_remove_file+0x41a/0x1130 [ 678.034858][ T25] ? do_group_exit+0x141/0x310 [ 678.039404][ T25] ? get_signal+0x10a0/0x1410 [ 678.044020][ T25] ? arch_do_signal_or_restart+0xbd/0x17c0 [ 678.049640][ T25] ? exit_to_user_mode_loop+0x9b/0xd0 [ 678.054918][ T25] ? do_syscall_64+0x40/0x70 [ 678.059469][ T25] ? entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 678.065284][ T25] ? __kasan_check_write+0x14/0x20 [ 678.070250][ T25] ? _raw_spin_lock_irqsave+0xf9/0x210 [ 678.075561][ T25] ? locks_remove_posix+0x610/0x610 [ 678.080587][ T25] synchronize_rcu+0x88/0x120 [ 678.085095][ T25] ? kvfree_call_rcu+0x650/0x650 [ 678.089938][ T25] ? __kasan_check_write+0x14/0x20 [ 678.095218][ T25] ? _raw_write_lock_bh+0xa4/0x170 [ 678.100192][ T25] ? _raw_spin_unlock_irqrestore+0x5b/0x80 [ 678.105910][ T25] ? skb_queue_purge+0x19b/0x1b0 [ 678.110848][ T25] pfkey_release+0x276/0x340 [ 678.115291][ T25] sock_close+0xdf/0x270 [ 678.119292][ T25] ? sock_mmap+0xa0/0xa0 [ 678.123470][ T25] __fput+0x309/0x760 [ 678.127393][ T25] ____fput+0x15/0x20 [ 678.131209][ T25] task_work_run+0x129/0x190 [ 678.135795][ T25] do_exit+0xc83/0x2a50 [ 678.139807][ T25] ? put_task_struct+0x80/0x80 [ 678.144879][ T25] ? __kasan_check_write+0x14/0x20 [ 678.149991][ T25] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 678.154996][ T25] do_group_exit+0x141/0x310 [ 678.159368][ T25] get_signal+0x10a0/0x1410 [ 678.163981][ T25] arch_do_signal_or_restart+0xbd/0x17c0 [ 678.169563][ T25] ? security_file_free+0xc6/0xe0 [ 678.174557][ T25] ? rcu_gp_kthread_wake+0x90/0x90 [ 678.179422][ T25] ? __bpf_trace_kmem_free+0x6f/0x90 [ 678.184568][ T25] ? __do_sys_rt_sigreturn+0x1e0/0x1e0 [ 678.189957][ T25] ? blkcg_maybe_throttle_current+0x17d/0x9e0 [ 678.195991][ T25] ? ____fput+0x15/0x20 [ 678.199906][ T25] exit_to_user_mode_loop+0x9b/0xd0 [ 678.205031][ T25] syscall_exit_to_user_mode+0xc5/0x1d0 [ 678.210315][ T25] do_syscall_64+0x40/0x70 [ 678.214634][ T25] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 678.220383][ T25] RIP: 0033:0x7f97426b0dda [ 678.224847][ T25] RSP: 002b:00007ffffe872840 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 678.233238][ T25] RAX: 0000000000000000 RBX: 0000000000000004 RCX: 00007f97426b0dda [ 678.240978][ T25] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 678.249160][ T25] RBP: ffffffffffffffff R08: 00007f9742635000 R09: 0000000000000001 [ 678.257108][ T25] R10: 0000000000000001 R11: 0000000000000293 R12: 00007f97427e8fa0 [ 678.265225][ T25] R13: 00007f97427e8fac R14: 0000000000000032 R15: 00007f97427ea9a0 [ 678.273118][ T25] INFO: task syz-executor.2:14350 blocked for more than 145 seconds. [ 678.280950][ T25] Tainted: G W 5.10.214-syzkaller-00044-g22b064ea5cbc #0 [ 678.289847][ T25] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 678.298432][ T25] task:syz-executor.2 state:D stack: 0 pid:14350 ppid: 14173 flags:0x00004004 [ 678.307488][ T25] Call Trace: [ 678.310594][ T25] __schedule+0xbe6/0x1330 [ 678.314943][ T25] ? release_firmware_map_entry+0x192/0x192 [ 678.320599][ T25] ? try_invoke_on_locked_down_task+0x280/0x280 [ 678.326701][ T25] schedule+0x13d/0x1d0 [ 678.330719][ T25] schedule_timeout+0xa9/0x360 [ 678.335465][ T25] ? swake_up_one+0x152/0x170 [ 678.339972][ T25] ? console_conditional_schedule+0x10/0x10 [ 678.346324][ T25] ? __prepare_to_swait+0xac/0x130 [ 678.351339][ T25] wait_for_common+0x2a9/0x440 [ 678.356021][ T25] ? wait_for_completion+0x20/0x20 [ 678.360888][ T25] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 678.365850][ T25] ? preempt_schedule_thunk+0x16/0x18 [ 678.371134][ T25] wait_for_completion+0x18/0x20 [ 678.375967][ T25] __flush_work+0x558/0x650 [ 678.380244][ T25] ? flush_work+0x20/0x20 [ 678.384432][ T25] ? try_to_grab_pending+0x1de/0x5c0 [ 678.389531][ T25] ? move_linked_works+0x260/0x260 [ 678.394767][ T25] __cancel_work_timer+0x4cb/0x610 [ 678.399847][ T25] ? cancel_work_sync+0x20/0x20 [ 678.404665][ T25] ? __kasan_check_write+0x14/0x20 [ 678.409539][ T25] ? _raw_write_lock+0xa4/0x170 [ 678.414309][ T25] ? _raw_write_trylock+0x1a0/0x1a0 [ 678.419347][ T25] cancel_work_sync+0x17/0x20 [ 678.423870][ T25] hci_unregister_dev+0x138/0x440 [ 678.428713][ T25] hci_uart_tty_close+0x1b1/0x240 [ 678.433630][ T25] ? hci_uart_tty_open+0x320/0x320 [ 678.438606][ T25] tty_ldisc_kill+0x10b/0x220 [ 678.443150][ T25] tty_ldisc_release+0x168/0x1f0 [ 678.448021][ T25] tty_release_struct+0x2a/0xe0 [ 678.452772][ T25] tty_release+0xdf4/0x1070 [ 678.457129][ T25] ? tty_release_struct+0xe0/0xe0 [ 678.462169][ T25] __fput+0x309/0x760 [ 678.465980][ T25] ____fput+0x15/0x20 [ 678.469841][ T25] task_work_run+0x129/0x190 [ 678.474686][ T25] exit_to_user_mode_loop+0xbf/0xd0 [ 678.479715][ T25] syscall_exit_to_user_mode+0xc5/0x1d0 [ 678.485110][ T25] do_syscall_64+0x40/0x70 [ 678.489373][ T25] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 678.495570][ T25] RIP: 0033:0x7fa45cb50dda [ 678.499757][ T25] RSP: 002b:00007ffcfcb13920 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 678.508203][ T25] RAX: 0000000000000000 RBX: 0000000000000008 RCX: 00007fa45cb50dda [ 678.516915][ T25] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000007 [ 678.524680][ T25] RBP: ffffffffffffffff R08: 00007fa45cad5000 R09: 0000000000000001 [ 678.532623][ T25] R10: 0000000000000001 R11: 0000000000000293 R12: 00007fa45cc88fa0 [ 678.540380][ T25] R13: 00007fa45cc88fac R14: 0000000000000032 R15: 00007fa45cc8a9a0 [ 678.548223][ T25] INFO: task syz-executor.0:14400 blocked for more than 124 seconds. [ 678.556151][ T25] Tainted: G W 5.10.214-syzkaller-00044-g22b064ea5cbc #0 [ 678.564860][ T25] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 678.573490][ T25] task:syz-executor.0 state:D stack: 0 pid:14400 ppid: 1 flags:0x00004004 [ 678.582756][ T25] Call Trace: [ 678.585883][ T25] __schedule+0xbe6/0x1330 [ 678.590117][ T25] ? release_firmware_map_entry+0x192/0x192 [ 678.596076][ T25] ? __mutex_add_waiter+0xe4/0x310 [ 678.601030][ T25] ? atomic_dec_and_mutex_lock+0x1c0/0x1c0 [ 678.606694][ T25] schedule+0x13d/0x1d0 [ 678.610688][ T25] schedule_preempt_disabled+0x13/0x20 [ 678.616638][ T25] __mutex_lock+0x7b8/0xf20 [ 678.620885][ T25] ? __ww_mutex_lock_interruptible_slowpath+0x20/0x20 [ 678.627519][ T25] ? cap_capable+0x1ce/0x270 [ 678.632046][ T25] __mutex_lock_slowpath+0xe/0x10 [ 678.637035][ T25] mutex_lock+0xd6/0x110 [ 678.641112][ T25] ? mutex_trylock+0xa0/0xa0 [ 678.645851][ T25] ? ns_capable+0x89/0xe0 [ 678.650049][ T25] ? netlink_net_capable+0x125/0x160 [ 678.655284][ T25] rtnetlink_rcv_msg+0x50a/0xc50 [ 678.660231][ T25] ? is_bpf_text_address+0x172/0x190 [ 678.665353][ T25] ? rtnetlink_bind+0x80/0x80 [ 678.669843][ T25] ? arch_stack_walk+0xf3/0x140 [ 678.674711][ T25] ? stack_trace_save+0x113/0x1c0 [ 678.679560][ T25] ? stack_trace_snprint+0xf0/0xf0 [ 678.684545][ T25] ? avc_has_perm+0x14d/0x400 [ 678.689023][ T25] ? memcpy+0x56/0x70 [ 678.692898][ T25] ? avc_has_perm+0x275/0x400 [ 678.697436][ T25] ? __kasan_slab_alloc+0xb1/0xe0 [ 678.702306][ T25] ? slab_post_alloc_hook+0x61/0x2f0 [ 678.707417][ T25] ? kmem_cache_alloc+0x168/0x2e0 [ 678.712346][ T25] ? avc_has_perm_noaudit+0x240/0x240 [ 678.717589][ T25] ? iov_iter_advance+0x258/0xb20 [ 678.722628][ T25] netlink_rcv_skb+0x1cf/0x410 [ 678.727216][ T25] ? rtnetlink_bind+0x80/0x80 [ 678.731907][ T25] ? netlink_ack+0xb30/0xb30 [ 678.736359][ T25] ? __netlink_lookup+0x37b/0x3a0 [ 678.741230][ T25] rtnetlink_rcv+0x1c/0x20 [ 678.745597][ T25] netlink_unicast+0x8df/0xac0 [ 678.750167][ T25] ? netlink_detachskb+0x90/0x90 [ 678.755005][ T25] ? security_netlink_send+0x7b/0xa0 [ 678.760070][ T25] netlink_sendmsg+0xa46/0xd00 [ 678.764878][ T25] ? netlink_getsockopt+0x5c0/0x5c0 [ 678.769872][ T25] ? security_socket_sendmsg+0x82/0xb0 [ 678.775410][ T25] ? netlink_getsockopt+0x5c0/0x5c0 [ 678.780459][ T25] __sys_sendto+0x545/0x700 [ 678.784868][ T25] ? __ia32_sys_getpeername+0x90/0x90 [ 678.790131][ T25] ? unlock_page_memcg+0x130/0x130 [ 678.795076][ T25] __x64_sys_sendto+0xe5/0x100 [ 678.799717][ T25] do_syscall_64+0x34/0x70 [ 678.804006][ T25] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 678.809690][ T25] RIP: 0033:0x7fc53bbd9b83 [ 678.814048][ T25] RSP: 002b:00007ffc40e6c9f8 EFLAGS: 00000202 ORIG_RAX: 000000000000002c [ 678.822497][ T25] RAX: ffffffffffffffda RBX: 00007fc53c83f620 RCX: 00007fc53bbd9b83 [ 678.830282][ T25] RDX: 0000000000000028 RSI: 00007fc53c83f670 RDI: 0000000000000003 [ 678.838447][ T25] RBP: 0000000000000001 R08: 00007ffc40e6ca14 R09: 000000000000000c [ 678.846361][ T25] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000003 [ 678.854466][ T25] R13: 0000000000000000 R14: 00007fc53c83f670 R15: 0000000000000000 [ 678.862287][ T25] NMI backtrace for cpu 0 [ 678.866439][ T25] CPU: 0 PID: 25 Comm: khungtaskd Tainted: G W 5.10.214-syzkaller-00044-g22b064ea5cbc #0 [ 678.877577][ T25] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 678.887716][ T25] Call Trace: [ 678.891117][ T25] dump_stack_lvl+0x1e2/0x24b [ 678.895799][ T25] ? panic+0x80b/0x80b [ 678.899781][ T25] ? bfq_pos_tree_add_move+0x43b/0x43b [ 678.905164][ T25] ? rcu_read_unlock_special+0xd8/0x4c0 [ 678.910545][ T25] ? sched_show_task+0x363/0x540 [ 678.915327][ T25] ? __rcu_read_unlock+0x90/0x90 [ 678.920107][ T25] ? arch_trigger_cpumask_backtrace+0x20/0x20 [ 678.926095][ T25] dump_stack+0x15/0x17 [ 678.930085][ T25] nmi_trigger_cpumask_backtrace+0x2b5/0x300 [ 678.935907][ T25] ? arch_trigger_cpumask_backtrace+0x20/0x20 [ 678.941808][ T25] arch_trigger_cpumask_backtrace+0x10/0x20 [ 678.947532][ T25] watchdog+0xe5d/0xfd0 [ 678.951859][ T25] ? hungtask_pm_notify+0x50/0x50 [ 678.956786][ T25] ? __kasan_check_read+0x11/0x20 [ 678.961644][ T25] ? __kthread_parkme+0xb9/0x1c0 [ 678.966415][ T25] kthread+0x34b/0x3d0 [ 678.970318][ T25] ? hungtask_pm_notify+0x50/0x50 [ 678.975182][ T25] ? kthread_blkcg+0xd0/0xd0 [ 678.979619][ T25] ret_from_fork+0x1f/0x30 [ 678.984139][ T25] Sending NMI from CPU 0 to CPUs 1: [ 678.990270][ C1] NMI backtrace for cpu 1 [ 678.990280][ C1] CPU: 1 PID: 14423 Comm: syz-executor.1 Tainted: G W 5.10.214-syzkaller-00044-g22b064ea5cbc #0 [ 678.990287][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 678.990292][ C1] RIP: 0010:__sanitizer_cov_trace_const_cmp4+0x10/0x90 [ 678.990305][ C1] Code: 89 44 0a 20 49 ff c1 4c 89 09 5d c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 55 48 89 e5 4c 8b 45 08 65 48 8b 15 40 ba 97 7e <65> 8b 05 45 ba 97 7e a9 00 01 ff 00 74 10 a9 00 01 00 00 74 5b 83 [ 678.990311][ C1] RSP: 0018:ffffc90000b767f0 EFLAGS: 00000246 [ 678.990319][ C1] RAX: 0000000000000301 RBX: 0000000000000004 RCX: ffffffff84983e3f [ 678.990325][ C1] RDX: ffff88811fd093c0 RSI: 0000000000000004 RDI: 0000000000000000 [ 678.990330][ C1] RBP: ffffc90000b767f0 R08: ffffffff84983e56 R09: ffffed1021c740b1 [ 678.990335][ C1] R10: 0000000000000000 R11: dffffc0000000001 R12: fffffffffffffc18 [ 678.990340][ C1] R13: ffff88810e3a0500 R14: ffff88810e3a0580 R15: 000000000000035c [ 678.990345][ C1] FS: 00007f5c8365a6c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 678.990349][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 678.990354][ C1] CR2: 0000000020004000 CR3: 0000000129bf8000 CR4: 00000000003506a0 [ 678.990359][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 678.990364][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 678.990367][ C1] Call Trace: [ 678.990369][ C1] [ 678.990373][ C1] ? show_regs+0x58/0x60 [ 678.990376][ C1] ? nmi_cpu_backtrace+0x133/0x160 [ 678.990380][ C1] ? __sanitizer_cov_trace_const_cmp4+0x10/0x90 [ 678.990384][ C1] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 678.990387][ C1] ? nmi_handle+0xa8/0x280 [ 678.990390][ C1] ? __sanitizer_cov_trace_const_cmp4+0x10/0x90 [ 678.990394][ C1] ? tipc_sk_rcv+0x17cc/0x1e30 [ 678.990397][ C1] ? default_do_nmi+0x69/0x160 [ 678.990400][ C1] ? exc_nmi+0xaf/0x120 [ 678.990403][ C1] ? end_repeat_nmi+0x16/0x31 [ 678.990407][ C1] ? tipc_sk_lookup+0x4f6/0x650 [ 678.990410][ C1] ? tipc_sk_lookup+0x4df/0x650 [ 678.990414][ C1] ? __sanitizer_cov_trace_const_cmp4+0x10/0x90 [ 678.990418][ C1] ? __sanitizer_cov_trace_const_cmp4+0x10/0x90 [ 678.990421][ C1] ? __sanitizer_cov_trace_const_cmp4+0x10/0x90 [ 678.990424][ C1] [ 678.990427][ C1] tipc_sk_lookup+0x4f6/0x650 [ 678.990430][ C1] ? tipc_sk_rcv+0x1e30/0x1e30 [ 678.990433][ C1] tipc_sk_rcv+0x499/0x1e30 [ 678.990437][ C1] ? _raw_spin_unlock_irqrestore+0x5b/0x80 [ 678.990440][ C1] ? __stack_depot_save+0x468/0x4d0 [ 678.990444][ C1] ? kmem_cache_free+0xa9/0x1e0 [ 678.990447][ C1] ? kasan_set_free_info+0x23/0x40 [ 678.990450][ C1] ? ____kasan_slab_free+0x121/0x160 [ 678.990454][ C1] ? __kasan_slab_free+0x11/0x20 [ 678.990463][ C1] ? slab_free_freelist_hook+0xc0/0x190 [ 678.990467][ C1] ? kfree_skbmem+0x104/0x170 [ 678.990470][ C1] ? kfree_skb+0xc1/0x320 [ 678.990473][ C1] ? tipc_sk_rcv+0x8a1/0x1e30 [ 678.990477][ C1] ? tipc_node_xmit+0x34b/0xe30 [ 678.990480][ C1] ? __skb_queue_purge+0x180/0x180 [ 678.990483][ C1] ? htab_map_hash+0x320/0x7e0 [ 678.990486][ C1] ? kfree_skbmem+0x104/0x170 [ 678.990490][ C1] ? htab_lru_percpu_map_lookup_elem+0x1cf/0x390 [ 678.990494][ C1] ? kfree_skbmem+0x104/0x170 [ 678.990497][ C1] tipc_node_xmit+0x34b/0xe30 [ 678.990500][ C1] ? bpf_trace_run1+0x210/0x210 [ 678.990503][ C1] ? kfree_skbmem+0x104/0x170 [ 678.990506][ C1] ? ____kasan_slab_free+0x12c/0x160 [ 678.990510][ C1] ? tipc_node_get_linkname+0x190/0x190 [ 678.990513][ C1] ? kfree_skbmem+0x104/0x170 [ 678.990517][ C1] ? __bpf_trace_kmem_free+0x6f/0x90 [ 678.990520][ C1] tipc_node_distr_xmit+0x36a/0x4d0 [ 678.990524][ C1] ? tipc_node_xmit_skb+0x1b0/0x1b0 [ 678.990527][ C1] ? trace_tipc_sk_rej_msg+0x2b/0x6f0 [ 678.990531][ C1] tipc_sk_rcv+0x177d/0x1e30 [ 678.990534][ C1] ? __skb_queue_purge+0x180/0x180 [ 678.990537][ C1] tipc_node_xmit+0x34b/0xe30 [ 678.990541][ C1] ? stack_trace_save+0x1c0/0x1c0 [ 678.990544][ C1] ? __kernel_text_address+0x9b/0x110 [ 678.990548][ C1] ? tipc_node_get_linkname+0x190/0x190 [ 678.990551][ C1] ? __kasan_check_write+0x14/0x20 [ 678.990555][ C1] ? _raw_spin_lock_irqsave+0xf9/0x210 [ 678.990558][ C1] ? _raw_spin_lock+0x1b0/0x1b0 [ 678.990562][ C1] tipc_sk_filter_rcv+0x1da8/0x3e00 [ 678.990565][ C1] ? tipc_sk_dump+0xf50/0xf50 [ 678.990568][ C1] ? __kasan_check_write+0x14/0x20 [ 678.990571][ C1] ? _raw_spin_lock_bh+0xa4/0x1b0 [ 678.990575][ C1] ? kmem_cache_free+0xa9/0x1e0 [ 678.990578][ C1] tipc_sk_rcv+0x8a1/0x1e30 [ 678.990581][ C1] ? __bpf_trace_kmem_free+0x6f/0x90 [ 678.990584][ C1] ? __skb_queue_purge+0x180/0x180 [ 678.990588][ C1] ? tipc_sk_filter_rcv+0x3583/0x3e00 [ 678.990591][ C1] tipc_node_xmit+0x34b/0xe30 [ 678.990595][ C1] ? tipc_node_get_linkname+0x190/0x190 [ 678.990598][ C1] tipc_node_distr_xmit+0x36a/0x4d0 [ 678.990602][ C1] ? tipc_node_xmit_skb+0x1b0/0x1b0 [ 678.990605][ C1] tipc_sk_backlog_rcv+0x18b/0x210 [ 678.990609][ C1] ? tipc_sk_timeout+0xab0/0xab0 [ 678.990612][ C1] ? __local_bh_enable_ip+0x53/0x80 [ 678.990615][ C1] ? lock_sock_nested+0x26a/0x300 [ 678.990619][ C1] __release_sock+0x148/0x410 [ 678.990622][ C1] sock_setsockopt+0x1e3b/0x2e00 [ 678.990625][ C1] ? __sock_set_mark+0x160/0x160 [ 678.990629][ C1] ? selinux_socket_getsockopt+0x340/0x340 [ 678.990633][ C1] ? security_socket_setsockopt+0x82/0xb0 [ 678.990636][ C1] __sys_setsockopt+0x441/0x870 [ 678.990639][ C1] ? __ia32_sys_recv+0xb0/0xb0 [ 678.990643][ C1] ? __kasan_check_write+0x14/0x20 [ 678.990646][ C1] ? switch_fpu_return+0x1e4/0x3c0 [ 678.990650][ C1] __x64_sys_setsockopt+0xbf/0xd0 [ 678.990653][ C1] do_syscall_64+0x34/0x70 [ 678.990656][ C1] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 678.990659][ C1] RIP: 0033:0x7f5c84948ee9 [ 678.990670][ C1] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 678.990674][ C1] RSP: 002b:00007f5c8365a0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 678.990682][ C1] RAX: ffffffffffffffda RBX: 00007f5c84a80210 RCX: 00007f5c84948ee9 [ 678.990687][ C1] RDX: 0000000000000021 RSI: 0000000000000001 RDI: 0000000000000009 [ 678.990692][ C1] RBP: 00007f5c8499547f R08: 0000000000000004 R09: 0000000000000000 [ 678.990696][ C1] R10: 0000000020000540 R11: 0000000000000246 R12: 0000000000000000 [ 678.990701][ C1] R13: 000000000000006e R14: 00007f5c84a80210 R15: 00007ffc9374c5b8 [ 814.947137][ C1] watchdog: BUG: soft lockup - CPU#1 stuck for 122s! [syz-executor.1:14423] [ 814.955782][ C1] Modules linked in: [ 814.959510][ C1] CPU: 1 PID: 14423 Comm: syz-executor.1 Tainted: G W 5.10.214-syzkaller-00044-g22b064ea5cbc #0 [ 814.971055][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 814.981221][ C1] RIP: 0010:kasan_check_range+0x6/0x2a0 [ 814.986684][ C1] Code: c6 48 89 c7 e8 8b f8 03 03 31 c0 5d c3 0f 0b eb 02 0f 0b b8 ea ff ff ff 5d c3 cc cc cc cc cc cc cc cc cc cc 55 48 89 e5 41 57 <41> 56 41 55 41 54 53 b0 01 48 85 f6 0f 84 a4 01 00 00 48 89 fb 48 [ 815.006656][ C1] RSP: 0018:ffffc90000b76838 EFLAGS: 00000246 [ 815.012628][ C1] RAX: 0000000000000402 RBX: ffffc90000b76880 RCX: ffffffff84b1619b [ 815.020447][ C1] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffff88810e3a0588 [ 815.028433][ C1] RBP: ffffc90000b76840 R08: ffffffff84983e71 R09: ffffed1021c740b1 [ 815.036415][ C1] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff9200016ed0c [ 815.044497][ C1] R13: ffff88810e3a0588 R14: 00000000998c8ee5 R15: dffffc0000000000 [ 815.052393][ C1] FS: 00007f5c8365a6c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 815.061260][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 815.067760][ C1] CR2: 0000000020004000 CR3: 0000000129bf8000 CR4: 00000000003506a0 [ 815.075947][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 815.083872][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 815.092092][ C1] Call Trace: [ 815.096185][ C1] [ 815.100973][ C1] ? show_regs+0x58/0x60 [ 815.105037][ C1] ? watchdog_timer_fn+0x471/0x590 [ 815.110599][ C1] ? proc_watchdog_cpumask+0xd0/0xd0 [ 815.116138][ C1] ? __hrtimer_run_queues+0x3d7/0xa50 [ 815.121463][ C1] ? hrtimer_interrupt+0x8b0/0x8b0 [ 815.126627][ C1] ? clockevents_program_event+0x214/0x2c0 [ 815.132536][ C1] ? ktime_get_update_offsets_now+0x266/0x280 [ 815.139206][ C1] ? hrtimer_interrupt+0x39a/0x8b0 [ 815.144150][ C1] ? __sysvec_apic_timer_interrupt+0xfd/0x3c0 [ 815.150243][ C1] ? asm_call_irq_on_stack+0xf/0x20 [ 815.155609][ C1] [ 815.158473][ C1] ? sysvec_apic_timer_interrupt+0x85/0xe0 [ 815.164896][ C1] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 815.171125][ C1] ? tipc_sk_lookup+0x511/0x650 [ 815.175860][ C1] ? _raw_spin_trylock_bh+0x7b/0x190 [ 815.181383][ C1] ? kasan_check_range+0x6/0x2a0 [ 815.186232][ C1] __kasan_check_read+0x11/0x20 [ 815.190910][ C1] _raw_spin_trylock_bh+0x7b/0x190 [ 815.195854][ C1] ? _raw_spin_trylock+0x1a0/0x1a0 [ 815.200825][ C1] ? tipc_sk_rcv+0x46b/0x1e30 [ 815.205408][ C1] tipc_sk_rcv+0x4c2/0x1e30 [ 815.209776][ C1] ? _raw_spin_unlock_irqrestore+0x5b/0x80 [ 815.215487][ C1] ? __stack_depot_save+0x468/0x4d0 [ 815.220534][ C1] ? kmem_cache_free+0xa9/0x1e0 [ 815.225243][ C1] ? kasan_set_free_info+0x23/0x40 [ 815.230166][ C1] ? ____kasan_slab_free+0x121/0x160 [ 815.235274][ C1] ? __kasan_slab_free+0x11/0x20 [ 815.240045][ C1] ? slab_free_freelist_hook+0xc0/0x190 [ 815.245436][ C1] ? kfree_skbmem+0x104/0x170 [ 815.249934][ C1] ? kfree_skb+0xc1/0x320 [ 815.254109][ C1] ? tipc_sk_rcv+0x8a1/0x1e30 [ 815.258704][ C1] ? tipc_node_xmit+0x34b/0xe30 [ 815.263477][ C1] ? __skb_queue_purge+0x180/0x180 [ 815.268563][ C1] ? htab_map_hash+0x320/0x7e0 [ 815.273114][ C1] ? kfree_skbmem+0x104/0x170 [ 815.277710][ C1] ? htab_lru_percpu_map_lookup_elem+0x1cf/0x390 [ 815.283961][ C1] ? kfree_skbmem+0x104/0x170 [ 815.288563][ C1] tipc_node_xmit+0x34b/0xe30 [ 815.293162][ C1] ? bpf_trace_run1+0x210/0x210 [ 815.297848][ C1] ? kfree_skbmem+0x104/0x170 [ 815.302363][ C1] ? ____kasan_slab_free+0x12c/0x160 [ 815.307759][ C1] ? tipc_node_get_linkname+0x190/0x190 [ 815.313164][ C1] ? kfree_skbmem+0x104/0x170 [ 815.317816][ C1] ? __bpf_trace_kmem_free+0x6f/0x90 [ 815.323035][ C1] tipc_node_distr_xmit+0x36a/0x4d0 [ 815.328155][ C1] ? tipc_node_xmit_skb+0x1b0/0x1b0 [ 815.333190][ C1] ? trace_tipc_sk_rej_msg+0x2b/0x6f0 [ 815.338397][ C1] tipc_sk_rcv+0x177d/0x1e30 [ 815.343000][ C1] ? __skb_queue_purge+0x180/0x180 [ 815.347945][ C1] tipc_node_xmit+0x34b/0xe30 [ 815.352647][ C1] ? stack_trace_save+0x1c0/0x1c0 [ 815.357490][ C1] ? __kernel_text_address+0x9b/0x110 [ 815.362701][ C1] ? tipc_node_get_linkname+0x190/0x190 [ 815.368225][ C1] ? __kasan_check_write+0x14/0x20 [ 815.373176][ C1] ? _raw_spin_lock_irqsave+0xf9/0x210 [ 815.378588][ C1] ? _raw_spin_lock+0x1b0/0x1b0 [ 815.383331][ C1] tipc_sk_filter_rcv+0x1da8/0x3e00 [ 815.388459][ C1] ? tipc_sk_dump+0xf50/0xf50 [ 815.393048][ C1] ? __kasan_check_write+0x14/0x20 [ 815.398093][ C1] ? _raw_spin_lock_bh+0xa4/0x1b0 [ 815.402948][ C1] ? kmem_cache_free+0xa9/0x1e0 [ 815.407720][ C1] tipc_sk_rcv+0x8a1/0x1e30 [ 815.412070][ C1] ? __bpf_trace_kmem_free+0x6f/0x90 [ 815.417230][ C1] ? __skb_queue_purge+0x180/0x180 [ 815.422140][ C1] ? tipc_sk_filter_rcv+0x3583/0x3e00 [ 815.427352][ C1] tipc_node_xmit+0x34b/0xe30 [ 815.431928][ C1] ? tipc_node_get_linkname+0x190/0x190 [ 815.437333][ C1] tipc_node_distr_xmit+0x36a/0x4d0 [ 815.442556][ C1] ? tipc_node_xmit_skb+0x1b0/0x1b0 [ 815.447775][ C1] tipc_sk_backlog_rcv+0x18b/0x210 [ 815.453844][ C1] ? tipc_sk_timeout+0xab0/0xab0 [ 815.458877][ C1] ? __local_bh_enable_ip+0x53/0x80 [ 815.463995][ C1] ? lock_sock_nested+0x26a/0x300 [ 815.468860][ C1] __release_sock+0x148/0x410 [ 815.473370][ C1] sock_setsockopt+0x1e3b/0x2e00 [ 815.478159][ C1] ? __sock_set_mark+0x160/0x160 [ 815.483006][ C1] ? selinux_socket_getsockopt+0x340/0x340 [ 815.488652][ C1] ? security_socket_setsockopt+0x82/0xb0 [ 815.494409][ C1] __sys_setsockopt+0x441/0x870 [ 815.499191][ C1] ? __ia32_sys_recv+0xb0/0xb0 [ 815.503973][ C1] ? __kasan_check_write+0x14/0x20 [ 815.508922][ C1] ? switch_fpu_return+0x1e4/0x3c0 [ 815.514054][ C1] __x64_sys_setsockopt+0xbf/0xd0 [ 815.518900][ C1] do_syscall_64+0x34/0x70 [ 815.523153][ C1] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 815.529053][ C1] RIP: 0033:0x7f5c84948ee9 [ 815.533313][ C1] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 815.552837][ C1] RSP: 002b:00007f5c8365a0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 815.561081][ C1] RAX: ffffffffffffffda RBX: 00007f5c84a80210 RCX: 00007f5c84948ee9 [ 815.568894][ C1] RDX: 0000000000000021 RSI: 0000000000000001 RDI: 0000000000000009 [ 815.576701][ C1] RBP: 00007f5c8499547f R08: 0000000000000004 R09: 0000000000000000 [ 815.584599][ C1] R10: 0000000020000540 R11: 0000000000000246 R12: 0000000000000000 [ 815.592411][ C1] R13: 000000000000006e R14: 00007f5c84a80210 R15: 00007ffc9374c5b8 [ 815.600741][ C1] Sending NMI from CPU 1 to CPUs 0: [ 815.606465][ C0] NMI backtrace for cpu 0 [ 815.606475][ C0] CPU: 0 PID: 14422 Comm: kworker/u4:3 Tainted: G W 5.10.214-syzkaller-00044-g22b064ea5cbc #0 [ 815.606482][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 815.606487][ C0] Workqueue: events_unbound toggle_allocation_gate [ 815.606496][ C0] RIP: 0010:smp_call_function_single+0x278/0x510 [ 815.606509][ C0] Code: 0f 85 18 02 00 00 44 8b 6c 24 48 44 89 ee 83 e6 01 31 ff e8 7a f0 0a 00 41 83 e5 01 75 0a e8 bf ec 0a 00 e9 eb 00 00 00 f3 90 <42> 0f b6 04 23 84 c0 75 15 f7 44 24 48 01 00 00 00 0f 84 cd 00 00 [ 815.606514][ C0] RSP: 0018:ffffc900023ff720 EFLAGS: 00000293 [ 815.606521][ C0] RAX: ffffffff815fc2e4 RBX: 1ffff9200047feed RCX: ffff888114a04f00 [ 815.606527][ C0] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000 [ 815.606533][ C0] RBP: ffffc900023ff810 R08: ffffffff815fc2b6 R09: ffffed103ee2aec9 [ 815.606539][ C0] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000 [ 815.606544][ C0] R13: 0000000000000001 R14: ffffc900023ff768 R15: 0000000000000000 [ 815.606551][ C0] FS: 0000000000000000(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 815.606556][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 815.606562][ C0] CR2: 00000000025d11e0 CR3: 000000000660f000 CR4: 00000000003506b0 [ 815.606568][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 815.606574][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 815.606577][ C0] Call Trace: [ 815.606580][ C0] [ 815.606583][ C0] ? show_regs+0x58/0x60 [ 815.606587][ C0] ? nmi_cpu_backtrace+0x133/0x160 [ 815.606592][ C0] ? smp_call_function_single+0x278/0x510 [ 815.606597][ C0] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 815.606601][ C0] ? nmi_handle+0xa8/0x280 [ 815.606605][ C0] ? smp_call_function_single+0x278/0x510 [ 815.606609][ C0] ? default_do_nmi+0x69/0x160 [ 815.606613][ C0] ? exc_nmi+0xaf/0x120 [ 815.606617][ C0] ? end_repeat_nmi+0x16/0x31 [ 815.606622][ C0] ? smp_call_function_single+0x266/0x510 [ 815.606626][ C0] ? smp_call_function_single+0x294/0x510 [ 815.606631][ C0] ? smp_call_function_single+0x278/0x510 [ 815.606636][ C0] ? smp_call_function_single+0x278/0x510 [ 815.606640][ C0] ? smp_call_function_single+0x278/0x510 [ 815.606643][ C0] [ 815.606647][ C0] ? text_poke_sync+0x20/0x20 [ 815.606652][ C0] ? flush_smp_call_function_from_idle+0x1b0/0x1b0 [ 815.606656][ C0] ? cpumask_any_but+0x18/0xb0 [ 815.606660][ C0] ? text_poke_sync+0x20/0x20 [ 815.606664][ C0] ? cpumask_any_but+0xa3/0xb0 [ 815.606668][ C0] smp_call_function_many_cond+0x94e/0xa30 [ 815.606672][ C0] ? __kmalloc_track_caller+0xe8/0x320 [ 815.606676][ C0] ? text_poke_sync+0x20/0x20 [ 815.606680][ C0] ? smp_call_function_many+0x40/0x40 [ 815.606684][ C0] ? text_poke+0x20/0x20 [ 815.606688][ C0] ? text_poke_sync+0x20/0x20 [ 815.606691][ C0] on_each_cpu+0xa8/0x1a0 [ 815.606695][ C0] ? smp_call_function+0x90/0x90 [ 815.606699][ C0] ? text_poke_loc_init+0x2e1/0x580 [ 815.606703][ C0] ? text_poke_finish+0x30/0x30 [ 815.606707][ C0] text_poke_bp_batch+0x1d4/0x600 [ 815.606711][ C0] ? __kasan_check_write+0x14/0x20 [ 815.606715][ C0] ? text_poke_loc_init+0x580/0x580 [ 815.606719][ C0] ? __kasan_check_write+0x14/0x20 [ 815.606723][ C0] ? mutex_lock+0xa5/0x110 [ 815.606727][ C0] ? mutex_trylock+0xa0/0xa0 [ 815.606731][ C0] ? __kmalloc_track_caller+0xe8/0x320 [ 815.606735][ C0] ? __kasan_check_write+0x14/0x20 [ 815.606739][ C0] ? mutex_unlock+0x1c/0x40 [ 815.606743][ C0] text_poke_finish+0x1a/0x30 [ 815.606747][ C0] arch_jump_label_transform_apply+0x15/0x30 [ 815.606751][ C0] __jump_label_update+0x36a/0x380 [ 815.606754][ C0] jump_label_update+0x379/0x400 [ 815.606758][ C0] static_key_disable_cpuslocked+0xcd/0x1b0 [ 815.606762][ C0] static_key_disable+0x1a/0x30 [ 815.606765][ C0] toggle_allocation_gate+0x3b4/0x450 [ 815.606769][ C0] ? kfence_protect+0x270/0x270 [ 815.606772][ C0] ? finish_task_switch+0x130/0x5a0 [ 815.606775][ C0] ? io_schedule+0x120/0x120 [ 815.606779][ C0] ? __kasan_check_read+0x11/0x20 [ 815.606782][ C0] ? read_word_at_a_time+0x12/0x20 [ 815.606785][ C0] ? strscpy+0x9c/0x260 [ 815.606789][ C0] process_one_work+0x6dc/0xbd0 [ 815.606792][ C0] worker_thread+0xaea/0x1510 [ 815.606795][ C0] ? _raw_spin_lock+0x1b0/0x1b0 [ 815.606799][ C0] ? __kasan_check_read+0x11/0x20 [ 815.606802][ C0] kthread+0x34b/0x3d0 [ 815.606805][ C0] ? worker_clr_flags+0x180/0x180 [ 815.606808][ C0] ? kthread_blkcg+0xd0/0xd0 [ 815.606811][ C0] ret_from_fork+0x1f/0x30