last executing test programs: 1m0.580986823s ago: executing program 4 (id=190): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) (async) setresgid(0xee00, 0xee01, 0x0) (async) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) (async) mount$tmpfs(0x0, &(0x7f0000000000)='./file1\x00', &(0x7f0000000080), 0x0, &(0x7f00000000c0)={[{@quota}]}) r1 = openat(0xffffffffffffff9c, &(0x7f0000004d00)='./file1\x00', 0x250942, 0x1cd) quotactl_fd$Q_GETNEXTQUOTA(r1, 0xffffffff80000901, 0x0, 0x0) (async) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000002c0)={'macvlan0\x00', 0x0}) (async) mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0) (async) r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000c829f168b70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70500000800000085000000a50000009500000000000000"], &(0x7f0000000300)='GPL\x00', 0x4, 0x14, &(0x7f0000001e00)=""/4088, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) (async) r4 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="400000001000010400"/20, @ANYRES32=r2, @ANYBLOB="000000000000000014004000000001"], 0x40}, 0x1, 0x0, 0x0, 0x800}, 0x40) 59.485656421s ago: executing program 4 (id=193): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0xa, 0x0, 0x0, &(0x7f0000000040)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) timer_create(0x0, 0x0, 0x0) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x6, 0x10, &(0x7f00000008c0)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sysvipc/shm\x00', 0x0, 0x0) lseek(r0, 0x164, 0x0) r1 = socket$nl_sock_diag(0x10, 0x3, 0x4) sendmsg$TCPDIAG_GETSOCK(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={0x54, 0x12, 0x1, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, {0x0, 0x4e22, [0x0, 0xffffffff], [], 0x0, [0x1, 0x3]}}, [@INET_DIAG_REQ_BYTECODE={0x7, 0x3, "110000"}]}, 0x54}}, 0x20004010) syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000000c0)=0xf) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$TCFLSH(r2, 0x400455c8, 0x0) ioctl$TIOCSTI(r3, 0x5412, &(0x7f00000001c0)=0x1) r4 = socket$packet(0x11, 0x3, 0x300) getsockopt$packet_int(r4, 0x107, 0x15, 0x0, &(0x7f0000000200)) bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) 55.404013154s ago: executing program 4 (id=204): socketpair$unix(0x1, 0x4, 0x0, &(0x7f00000001c0)) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000014c0), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r7, 0x0, 0x2000000000}, 0x18) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, 0x0) syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r8 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r8, 0x2, &(0x7f0000000200)=0x4) r9 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r9, &(0x7f0000019680)=""/102392, 0x18ff8) sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002) ioctl$SNDRV_PCM_IOCTL_REWIND(0xffffffffffffffff, 0x40044160, 0x0) sendmsg$NL80211_CMD_CHANNEL_SWITCH(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000380)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000006600000008000300", @ANYRES32=r6], 0x2c}}, 0x0) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)={0x24, r1, 0x1, 0x3e7, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0xb}]}, 0x24}}, 0x0) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0xffffff0a, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002f000b12d25a80648c2594f91124fc601000084002000000053582c137153e370248078000f01700d1bd", 0x33fe0}], 0x1}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000000400)=ANY=[@ANYBLOB="bf16000000000000b707000000ff00004870000000000000400000000000000095000000000000002ba728041598fbd30cb599e83d24a3aa81d36bb3019c13bd23212fb56fa54f2641d8b02c3815e79c1414eb07eae6f0711e6bd917487960717142fa9ea4318123f602000000000080de89e661168c1886d0d4d94f204e345c65c26e278ef5b915395b19284a1a4bc72fbc1626e3a2a2ad358061d0ae0209e62f51ee988e6ea604ce974a22a550d6f97080980400003e05df3ceb9f1feae5737ecaa80a666963c474c2a100c788b277beee1cbf9b0a4d3881dcc7b1b85f3c3d44aeaccd3641110bec4e90a6341965c39e4b3431abe802f5ab3e89cf6c662ed4048d3b3e22278d00ce00000000d3a02762c2951257b85802189d74005d2a1bcf9436e192e23fd275985bf31b714f000bcab6fcd610f25f5888000000003f11afc9bd08c6ebfbb89432fb465bc52f49129b9b6150e320c9901de2ebb9000000018e3095c4c5c7a156cec33a667dccaff950ca1e5efdd4c968dacf81baa3a509b1041d06f6b0097c430481824a3f4fddd3c643f630ba175d876defd3541772f26e27c44cfdb2d85d6d29983e830a9cdd79837b3468e8c67a571d0a017c100344c52a6f387a1340bdc8889464f90cc4cd1f570dd39877dfb2ff1ae66e1ce917474b2e650ae630afd014a337ac5d58bcb5e51723257c872c5255f20100000000000000f041b665ab21372c8d8b7bac5b5c784d20a4a24d8dbd75062e1daef9dead619cc6e7baa72707157791c3d2a286ffb8d35452bb5d3682a8682bf7ecbd53f950ef4709ec01e230d2f53594ef4839c6130c4c13a0cca84b9935f771fd49e480cd9d48aeb12b1d6acabd38a817bcd222614d1f62734d679039a97d2b74f9e8e997ccd314000f7477137f4e8e7025123e783df8b8a17e3aa9fe1f662aef87a065b03cfb65b4dfe4f1b56e1f23128d743753a1de172d683d5892ce9414a1d98ea93e3d35dbb6c23b90cf36e83b8a434a97d09343d7f83079ccb02e69d384146056d125cfa788237874dd42dae334bda042819a2aa24dba1c25be2794448b4f63483026b5e34d44705b76ef29241adab0dd7d68bf975e02069f6f2425e1bc97a3d588085f16bef63a06578d4f5de7bfb6aaa75f16996d536256c02284cb1d3a6fb8cae87691fae365a70c3fc69e1565bba8dd56eee5798041358a8ca049f798abe646f738bebd69413afc9d8a5edd7aaa000000000000001e6c2f2a287c5278a218dbfaffffff00a14db5cca6819eb1d39c48cfdc80d215c9e16e0c4736c819363154cca4e2f89800d18c89d7f46f679df6c9e2952ae1ebfd0ca88368ee6ce139e8b5822c22cf2e9dde943d34c432e1001171792c65986146666a5490928441f47e0fe5eac41824ca1fd0eb71aa243c88d5480efd8329d9a733d8f9ffffff5f912ac4e34bf6ea8a86da707b03bddb491ba0cc98f6be92c50008a2b50025419d1476c73132ca7ca26ce8a7e3ffb700f09e157f9b844051f1a642aca9ff98c9036471ccff0522903e7bcf62e18f7696bbc280b95e8e0d6fd5644b0ebde3a95b06548862de809d3dae3cccf109f7c78e8479a345e800000000000000000000009455bf417627ce723a5d9103706aba69279500bb82f6b5a3ddc0bd9856712945b70c75ce5b722578820820d010d7a3cffc99fc647d0b82ef26ab708c0b19ed144be51c3b398f0e6bb7a30006000000cba12953d58cff0f0378740fe6662f377b97d8e7cdb047acd083d3cd3856476a60a49ad127ba6570bafc2bbcf9ee721fd9cb467ff071e5604fbf0491245c0000007d932d7a64de4c4aa433fc0840aff7c47da3a4c6966d0000000000000000f6bfbae29e8a6e2a889f6ef6869d82d6bd73eb76b65c7a35a54a4a6b8ad4600e3a972a0bb5971a5f16590b0a03dafa3fd1118765cc8ab9fccf3b51c41a339f200f2fa33006910a679a9ae0187b4d750c4bd244cb0cbfd23b265f4d4da448a7a0d19c5e43eae50a31609dfa2dde267551467eb6475293dd7012cc449009981f22820e57a0eff234ccfe21d7a2302e000669753d3c3432cc14ee1abe724adb6b5431befedd3e22971118f0e21aed1823cb7dde8212a8531bd9000000006a370e9eb56b3d790b98f2bd0db1e5de6a146597b2cbb7103040d2a39d7965d34df524b760ab92efcce7dd1574052c735935bf6a752c015c7f5ffee9ff66e5dd2866b15b6e0d17618cb1f5c1ee4b05ebf1445ea110f499f840a5c965443d725556351ee25fe09f69494b053678dcadcf02e063dff2fa4bef1ac3bbbebe6c74d71ec3b23e29895eff1d1017024fe3e8cc759b05785adc346b7ffd05963f92c1d0d7d90ba878ad89e490f3e29ac51d30632869a534418f916bf6fe8167827a8e6c8f8b391c822805cb0adf1b8bd6947ff208753eb0d208ce14f7b206b2e02c21e963abc5ceb735c1b3c46b0a843de52a903375dfb663a8d8ee9c2b2705c1a81d9d3b9656b219c8cd99c9cafcd0d0540884d97aecb19983fc6af29ab44a82aff9cba921192c665b877af6539bdb1b567f481ba07982e7ad758f4e1eac69e7e88a63960975f490e161e371ec8534791e3b61c685d900a9c0839208356b53750e76fcc3c2d1bddcbd83897921414d0c02e8188f3df79ea2a5c5444004830e6cb227ca1bdafb977c00000000003a417193b8c5d793687335a930867094fd6a78218218e04b705ec62f1608cb569b81914e68f175b392af6bc4fd2121d7fd276af2c97a441b56e7a0687d98b8e76d8d0d231e4fe00be1de76bd19cc12e2bd938eb681ed6bc951c1b4f7c51af59eea4d40c6000000000200778a677b72786311153271a3313da02645e11761699e4d04ac86dd14ff7b9a10d3fa74696fe3953a5b7706bf5d1faba4b18808d9cb0e9db696dec4e0820ee4028d7225a2c9c427cf64cbde6fba056b2006b7a37c1181d530fb865e235cd302f3b4071ee5237ada986b9e5e3144bf479f277f10656ad3744037ccc9c63685a6f1109d2ea73773d3635f61497f1fa1ea4a16f601800bf3e59141fbf05a96113320c445f9ba8596970d5254727e804fbd99ccefb7c09269dd2c5c25e56e169ac15980f3f85f7ca36dd5950ef5b64fd46f123311829534a82940994199b3cf7a8fabea9930952f5da9b909c1946e55289f668c423fcbb31ae91864c882313151741a67538c9689dc8ecc9903c7041e5c0704e2fa55a756487517a7445cbd9e3f5175e41c00000000000000000000000000bf98efd587fffe326f474b0b089c017b16c0062cbce96f5adebec52a79f9363909842f79c50a1520be46d87003137e4c5031f00123e812a5e37cd52c9eb7336281cb8c6ce993c51cd1eab8a26b232acf6bf0ab829c26dab637538b2eb1420d812d2b80c777710ba0f18e4661681aa218d9ba54023ab4305d77eb15611ae2545835e9d30e9f6d4fb43a291c69545a1eea0f8720431132d8549f99bf6c5cb060da70cbb59d0a000000000034d083fc37d2449f72de0cbea4bc1dc89c136cdbc504f849d5502d77a95c7bfff4cd9c03058d0d4d07ea64824f1acf2b39389f675f39d01719cdbab3f1ce10609c8d7b3e37cb99b41da5e485a441b6a103549f55ab09dc98767763d1f2fafd45bb7d2b40050d1f8292f4d9ec6d0000000000003932062290f4996fdd55b06023437e9e2072daf7f5d82f6f1b5b89a41134f4dc2e65bb11272fdf8c8141f41d6160b3d8b6ecd16d14267f61b4881adee7f07f3d6af5ae79e16fe2c3f55ac7a6392d2e1d9b4286b6c3e1f5a76b85ed6e1f0000c67e6c5fcdc8c39381be4799b8cb2d08b8262c807dd755e22b801162381aa9d1af2bbc9cfd497585337eac408b8475b47a392a10cae349160f128e5f873a58064eb400c36a90624f6aed398a215e9ce64522ab249f67c38a656d32ecff5cdb2b039c4abf349d2c0f88a42e9189bbfa7f5cf35b6e7ef8f9d33163b7ea87550fb1ba334c83e3aec4714c9c4ca3ecb04f2720237615a28bf310b58ffa2a103216fdcc8c2d8f5d55e5e7ebf147105272aaae56e86d856b3cf79a3f7306436362dd1a08ce873e07cebc7892ec6f9f696da38feed3dc0001500e34adae1ba89a32bad2af9030f840f1ba4664f35547cdadd5cbacc59352c290f55d971b65953533668c25f21d8d62d849e9058eaa97c63491568887548f668cdbca2abf01a361a0b64d8b523e669da350e3ec7445dfbf366b0b3bc5e76824a1e43eaaeca70db90f2fa39596443447671933079a24fe3681ad9ac361f71ac279a688f10a1cc4df1112105edebc5e3bbc394c8305ab129ca2dfb9b7c5e9d097bd01b495cccefddce569117f7f5d6a6270ff0f0f4c371029ca8489571b55841bf3dd003bc81460eee57ceb3c33f4e9300b0144fe040cf5fcfcbb616c2070237881afdb314cecd1623f3e55ab8b7627fa1be349145a8d6313cbc790eefe2020138e82fb9d351be4ddcbcc9bc048dd3db5828d16baec6e07a007f0030f34ea3cfd524d6fa1d45da5641d6c94e1d3ae7fba1c85035d2a60ef1696e0d96aa1c60019f73ae0aa6113cd66ef26b5777337c26e1461405d86fdf091edd526f25cada439bb3609ed5c35ab60a539ade786bd6004d0ea3edbd6c4da0d8e8be8c771c8c8a0b07d9859e04adb18964dcce9bce546074c26dffbc2df372a016e8c845d4257000000000000000000000000000000000000f29657697d9c2b132b2dc2f5ea5122836582a7e85fe2bc166f17aefd9d861de0191f5277d4a3b5afb6f23d9eea2459f7844606e1202768d83c24cc791bde44a448022bbfa571fe029a7b2d5152639ee283894ab6168992ff0acc01b39a078f285ce615351f262019586eb9447bb3eaffd7b53d8f37ca6c5f1027dd5b7592996c8a7789ba108979cc9ad07ed86682843e2eaa855dd01443ee6ffde1811f10039d5d14458177096e15cc4d8f2582a1bea5cc98d992f3de7d1cdfb24384b9f10f615c87c441dc970ec896a5af6bf69b50a244bc138a1cae9868c3079bafe69769000000000000000000e99b63029d219cd3545a8426b56554a9f265d3557eefb3602894507c256cb8ee9ebadfecb6afeb84ba757bfa8d00a5af0dd6aa1e8144ef8ef04410d52204c335408941b8eccc5c734cc6a05247142ed647f89bcb5c043acfb382b9cc918bc3cdc368983157851cdf678800aa7eb2a6cbc12c7ae23bc88b8f10223ab2a093429f3f6965bc1e6a55e6b4cbbbfcb781143c56d84360a476155f9d2865a60b541b90a27e61b31d459e576b7cb61e67e686b5199518078db3c36b8986bfb067d491d7a4affc3ae8cb63b6a5ec2803782db2ea14c9e5e00ddd9bca8409b807a86381f632122f36a6be0b2746e58290a5b77daadae5206b09559d32b8c3b74bafda94afb66f1055525bc3d3abccc3d8ad7b99527fae1e8fa91712914d9eacc9463588c6da1f69f7"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffe89, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) 54.648107762s ago: executing program 4 (id=206): r0 = getpid() r1 = syz_pidfd_open(r0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0) mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0) mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0) mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0) mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000480)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0) mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x297880, 0x0) mount$bind(&(0x7f0000000280)='./file0\x00', &(0x7f0000002100)='./file0/file0\x00', 0x0, 0x2187017, 0x0) ioctl$TIOCL_GETMOUSEREPORTING(r1, 0x541c, &(0x7f0000000040)) mount$tmpfs(0x0, &(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0), 0x0, 0x0) process_madvise(r1, &(0x7f0000000000)=[{0x0}, {&(0x7f0000000080)="9c", 0x1}], 0x2, 0x1, 0x0) 53.148127495s ago: executing program 4 (id=210): r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000002340), 0x40800) ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r0, 0xc058534f, &(0x7f0000002380)={{0x0, 0x1}, 0x0, 0x0, 0x4, {0x0, 0x1}, 0x3, 0x800}) 52.436012641s ago: executing program 4 (id=214): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0xa, 0x0, 0x0, &(0x7f0000000040)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) timer_create(0x0, 0x0, 0x0) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x6, 0x10, &(0x7f00000008c0)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sysvipc/shm\x00', 0x0, 0x0) lseek(r0, 0x164, 0x0) r1 = socket$nl_sock_diag(0x10, 0x3, 0x4) sendmsg$TCPDIAG_GETSOCK(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={0x54, 0x12, 0x1, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, {0x0, 0x4e22, [0x0, 0xffffffff], [], 0x0, [0x1, 0x3]}}, [@INET_DIAG_REQ_BYTECODE={0x7, 0x3, "110000"}]}, 0x54}}, 0x20004010) syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000000c0)=0xf) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$TCFLSH(r2, 0x400455c8, 0x0) ioctl$TIOCSTI(r3, 0x5412, &(0x7f00000001c0)=0x1) r4 = socket$packet(0x11, 0x3, 0x300) getsockopt$packet_int(r4, 0x107, 0x15, 0x0, &(0x7f0000000200)) bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) 52.04758123s ago: executing program 32 (id=214): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0xa, 0x0, 0x0, &(0x7f0000000040)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) timer_create(0x0, 0x0, 0x0) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x6, 0x10, &(0x7f00000008c0)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sysvipc/shm\x00', 0x0, 0x0) lseek(r0, 0x164, 0x0) r1 = socket$nl_sock_diag(0x10, 0x3, 0x4) sendmsg$TCPDIAG_GETSOCK(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={0x54, 0x12, 0x1, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, {0x0, 0x4e22, [0x0, 0xffffffff], [], 0x0, [0x1, 0x3]}}, [@INET_DIAG_REQ_BYTECODE={0x7, 0x3, "110000"}]}, 0x54}}, 0x20004010) syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000000c0)=0xf) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$TCFLSH(r2, 0x400455c8, 0x0) ioctl$TIOCSTI(r3, 0x5412, &(0x7f00000001c0)=0x1) r4 = socket$packet(0x11, 0x3, 0x300) getsockopt$packet_int(r4, 0x107, 0x15, 0x0, &(0x7f0000000200)) bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) 7.105247571s ago: executing program 0 (id=342): r0 = socket(0x10, 0x803, 0x0) dup2(r0, r0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x5, 0x5, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000004830000000000000fa40000007010000080020007500feff00008200950000d1284ffe51cc19a95073a0a0264eb0e4e96b7ad015836e4d27f5182b60bbb7c19e7a69a85411c531002b1b2c0f21eec859fe68f9428ac407630eac8eb682f5b2d86b4abf9e63ad263fec7db9338c0700000018c8b9ca64bcdcdaa06fc4c7aa217fcecd9443c54143bde8c8cbc3b8ac619930206d8d0881af823d6d18c66f021c20b55013d7fb6da7013c062d13176d71d7dad98eb976ed679fa639000000000000000000"], &(0x7f0000000100)='GPL\x00', 0x3, 0xfa, &(0x7f0000000140)=""/250, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x23) 6.175814131s ago: executing program 0 (id=348): r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c1842, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x4801}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) close(r1) socket$netlink(0x10, 0x3, 0x0) socket$netlink(0x10, 0x3, 0x0) socket$key(0xf, 0x3, 0x2) socket$inet6_tcp(0xa, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$unix(0x1, 0x5, 0x0) socketpair(0x27, 0x1, 0x0, &(0x7f0000000200)) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast}) write$cgroup_devices(r0, &(0x7f0000000200)=ANY=[@ANYBLOB="1b2388a8"], 0xffdd) 5.840042165s ago: executing program 2 (id=351): mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000380)='neigh_update\x00', r0}, 0x10) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_inet_SIOCSARP(r1, 0x8955, &(0x7f0000000040)={{0x2, 0x0, @multicast2}, {}, 0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 'ip6gre0\x00'}) 5.766893651s ago: executing program 0 (id=352): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) sendmmsg$unix(r0, 0x0, 0x0, 0x1) prlimit64(0x0, 0xe, 0x0, 0x0) ioctl$UFFDIO_COPY(0xffffffffffffffff, 0xc028aa03, &(0x7f0000000040)={&(0x7f00006a1000/0x2000)=nil, &(0x7f0000640000/0x3000)=nil, 0x2000, 0x1}) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x1000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) mkdir(&(0x7f0000000440)='./file1\x00', 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x54, r5, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x0, @loopback}}, {0x14, 0x2, @in={0x2, 0x0, @multicast2}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x54}}, 0x0) 5.006636221s ago: executing program 1 (id=353): openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x410502, 0x90) 4.816181193s ago: executing program 1 (id=355): r0 = socket$inet6(0xa, 0x80002, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x42, &(0x7f0000000000)={0xa, 0x0, 0x80000000, @remote, 0xfffffff8}, 0x1c) 4.750087881s ago: executing program 1 (id=356): bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000340)=ANY=[], 0xff2e) r1 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) writev(r0, &(0x7f0000000740)=[{&(0x7f0000000140)='/', 0x1}], 0x1) 4.139416214s ago: executing program 0 (id=357): chdir(0x0) futex(&(0x7f000000cffc)=0x2, 0x189, 0x2, 0x0, 0x0, 0xfffffffe) futex(&(0x7f000000cffc), 0x8a, 0x0, 0x0, 0x0, 0x4) 3.976199595s ago: executing program 2 (id=358): mprotect(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x0) setitimer(0x2, &(0x7f0000000080)={{0x0, 0xea60}, {0x77359400}}, 0x0) 3.918138911s ago: executing program 0 (id=360): bpf$PROG_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x2, 0x0) r0 = getpid() epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x5) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r4 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='module_request\x00'}, 0x10) r7 = syz_open_procfs(0x0, &(0x7f0000000040)='smaps_rollup\x00') read$FUSE(r7, 0x0, 0x0) syz_kvm_setup_cpu$x86(r7, r3, &(0x7f0000393000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x6a, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) 3.812087973s ago: executing program 2 (id=362): ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) memfd_create(0x0, 0xfe4f7789b86302de) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setaffinity(0x0, 0x0, 0x0) syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = getpid() process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15) r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x2, 0x0, &(0x7f0000000140)={0x0, 0x0}) write(r1, &(0x7f0000000000)="fa", 0xfffffdef) 3.639734278s ago: executing program 3 (id=364): bpf$MAP_CREATE(0x0, &(0x7f00000027c0)=@base={0x4, 0x4, 0x4, 0x10005, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$BPF_MAP_GET_FD_BY_ID(0xe, 0x0, 0x0) 1.622803116s ago: executing program 1 (id=366): r0 = fsopen(&(0x7f0000000040)='fuseblk\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f00000001c0)='fuseblk\x00', &(0x7f0000000200)='fuseblk\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000580)='\xc1J\xaf\xfd,\x86\xbc\xa9\x02\xf2\xf6\xe2\xcd\x9f\xf6\x83\xeb\xba_6\xfdR\xd0\x8d\xc1\xf6.$w\xab|*`\x11H+^\xbb\x8ar\xb1\x8ec\xec,\xd5\xfd,\xce`\x9f\x92\xb4\xbe\x06?\xaa\x16Q\x94\x15\xbe\x80E\x9c\x93Hq?<(+\xceb0\xcc\xad\xdd\x1c\xee\x19\x1b\x91Z\x85\xb7\x04\xe7\xaf\xe0W,G\xc8\xc0\xbcR\x90\x17\x19@m\xa5\x19\x16i\xc8\x99)\xa5\xb0\xba\xbc\xe0rV\x06\xd0B\x0f\xcdF\xbc\x8e\x8a^%8k\x849S\x15=kxS\x1c\xc1\xdaT\x9c\b\xb6\xd8\xa0st~\xf1\x93\xb8\xba\xa5gV\x18F\x8f\xe4b\xdc\x19_P\x81\xa4\xc3\\g\x11\xd1\xc8 U\xba\x03\xc9\xf17\x88\r\xb99]\xdfM\xc8AQB\xc3\xf0\xf7t\xee\x95&w\xc3;', &(0x7f0000000180), 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000140)='{:\'@-\x00', &(0x7f0000000180)='%*.\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f00000000c0)='fuseblk\x00', &(0x7f0000000100)='fuseblk\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000280)='\x1c@\\\x00', &(0x7f00000002c0)='\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000300)='\x00', &(0x7f0000000340)='\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000380)='}\x00', &(0x7f0000000880)='\xc1J\xaf\xfd,\x86\xbc\xa9\x02\xf2\xf6\xe2\xcd\x9f\xf6\x83\xeb\xba_6\xfdR\xd0\x8d\xc1\xf6.$w\xab|*`\x11H+^\xbb\x8ar\xb1\x8ec\xecQ\x94\x15\xbe\x80E\x9c\x93Hq?<(+\xceb0\xcc\xad\xdd\x1c\xee\x19\x1b\x91Z\x85\xb7\x04\xe7\xaf\xe0W,G\xc8\xc0\xbcR\x90\x17\x19@m\xa5\x19\x16i\xc8\x99)\xa5\xb0\xba\xbc\xe0rV\x06\xd0B\x0f\xcdF\xbc\x8e\x8a^%8k\x849@\x15=kxS\x1c\xc1\xdaT\x9c\b\xb6\xd8\xa0st~\xf1\x93\xb8\xba\xa5gV\x18F\x8f\xf4b\xdc\x19_P\x81\xa4\xc3\\g\x11\xd1\xc8 U\xba\x03\xc9\xf17\x88\r\xb99]\xdfM\xc8AQB\xc3\xf0\xf7t\xee\x95&w\xc3;\xf1C\xea!J\x19\xe1\xfe\x0f\x84\xdfY\x10\xed\x1c\xb2n\xc0ME\xaa\x9e\xd1f\x92q\xeb\xdb)\xcd1(>\x8e\x0f}\x03\xdd\xf8\x84\x9bz!\x80F\xc5ls< \x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x98\x1c\x9f\xbd\xcd\xea\xc3w\xa3\xf5\x1d.\x00\x00\x00\xa0\xf4\xe9\xe2\x83\xac\xde\x95cmvM\x12\xc1O\x1f#\xcd\x90\x1e\x03\x1e}\xe7w\xe7\"Oh`\xed\bM9\xaf\xa3BQ\xbf\xfd1\x1cG\xb5\xed\x86\xb9Q(\x19dZ\x8da\x008e*\x928\xcf\x0f\x0e\x05\x1dM?\x11$E\xc3\x12\x1e\xffI\x84t0D\xec\xf3T\xe2\xddJm\x87\xc9\xb1\xff\n\xa1\x13\xcbo\xc6\xda\x84\x02\xa3\x14\xf2q\x96\xa8Sa\xe4\x1f\x01\xa2]\xb2\xc9\xd5\xff\xfd\xf2\xb5\xf5\xef \xc7\x02\x927\xdb\xa5\a\x9eS\xb6\xe2\xbaL\x99n\xb4\xe3\xf7\x0eU\xc0', 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f00000003c0)='%*.\x00', &(0x7f0000000400)='^,/\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='(!\xef(.(\\-]\x00', &(0x7f0000000080)='\x00', 0x0) fsconfig$FSCONFIG_SET_FD(r0, 0x5, &(0x7f0000000240)='fuseblk\x00', 0x0, r0) read(r0, 0x0, 0x0) close(r0) 1.558486638s ago: executing program 0 (id=367): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) prlimit64(0x0, 0xe, 0x0, 0x0) getpid() bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, 0x0, 0x0) r3 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_opts(r3, 0x0, 0xc, 0x0, 0x0) 1.558344512s ago: executing program 3 (id=368): r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000800)={{r1}, &(0x7f0000000780), &(0x7f00000007c0)=r0}, 0x20) 1.412164149s ago: executing program 5 (id=369): connect$inet(0xffffffffffffffff, 0x0, 0x0) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) sendmsg$key(0xffffffffffffffff, 0x0, 0x0) mount(0x0, 0x0, 0x0, 0x0, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newtaction={0x44, 0x1e, 0x109, 0x0, 0x0, {}, [{0x30, 0x1, [@m_bpf={0x2c, 0x8, 0x0, 0x0, {{0x8}, {0x4}, {0x4}, {0xc}, {0xc}}}]}]}, 0x44}}, 0x0) 1.363834682s ago: executing program 3 (id=370): r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@empty, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee00}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x4d5, 0x32}, 0x0, @in6=@loopback, 0x1, 0x0, 0x0, 0xb7, 0x1fb, 0xffffffff}}, 0xe8) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r1, &(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8822d55593a2179}, 0xc) socket$igmp6(0xa, 0x3, 0x2) sendmmsg(r0, &(0x7f0000000180), 0x400000000000077, 0x7600) 1.339354868s ago: executing program 1 (id=371): setsockopt$XDP_UMEM_REG(0xffffffffffffffff, 0x11b, 0x4, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x0, 0x0) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeee, 0x8031, 0xffffffffffffffff, 0x84515000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, 0x0, 0x0) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000003680)='sched_switch\x00', r3}, 0x10) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) r4 = socket$vsock_stream(0x28, 0x1, 0x0) bind$vsock_stream(r4, &(0x7f0000000440)={0x28, 0x0, 0x0, @local}, 0x10) listen(r4, 0x0) socket$vsock_stream(0x28, 0x1, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) 1.176095263s ago: executing program 5 (id=372): r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r0, &(0x7f00000003c0)={0xa, 0x3, 0x0, @mcast2, 0x5}, 0x1c) write(r0, &(0x7f00000000c0)="8f2a0a65bd8c022b0304000e0580a7b6070d", 0x12) 1.106250074s ago: executing program 2 (id=373): syz_emit_ethernet(0x20, &(0x7f0000000380)={@broadcast, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x4}, @void, {@llc_tr={0x11, {@snap={0x0, 0x0, '\t', "390fdc", 0x4, "363d0bf452c18fb2041f"}}}}}, 0x0) 1.035586081s ago: executing program 5 (id=374): r0 = socket$inet6_udp(0xa, 0x2, 0x0) sendmsg$inet(r0, &(0x7f00000009c0)={&(0x7f00000007c0)={0x2, 0x4e23, @local}, 0x10, 0x0, 0x0, &(0x7f0000000880)=[@ip_retopts={{0x10}}, @ip_retopts={{0x14, 0x0, 0x7, {[@timestamp_prespec={0x44, 0x4, 0x1b, 0x3, 0xa}]}}}], 0x28}, 0x20000040) 768.136943ms ago: executing program 3 (id=375): r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x8001}, 0x4) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000100)={0x1, 0x5}, 0x4) 767.871698ms ago: executing program 2 (id=376): capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080)={0x0, 0x7}) bpf$PROG_LOAD(0x5, &(0x7f0000008000)={0x1, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='syzkaller\x00', 0x1, 0xc3, &(0x7f00000002c0)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff37, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) 755.599233ms ago: executing program 5 (id=377): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1) dup2(r0, r1) 473.531487ms ago: executing program 2 (id=378): r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x3b, 0x6b, 0xc0, 0x40, 0xb95, 0x772b, 0xa24c, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x81, 0x38, 0x7f}}]}}]}}, 0x0) syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000380)={0x44, &(0x7f0000000300)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$cdc_ecm(r0, 0x0, &(0x7f00000009c0)={0x1c, &(0x7f00000007c0), 0x0, 0x0}) syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000740)={0x44, &(0x7f0000000800)={0x40, 0x15, 0x1, "c4"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 424.202352ms ago: executing program 3 (id=379): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) unshare(0x400) fcntl$getflags(r0, 0xb) 423.905394ms ago: executing program 5 (id=380): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) r0 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) mkdirat(r0, &(0x7f0000000080)='./file1\x00', 0x0) mkdir(&(0x7f0000000600)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000180)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}]}) chdir(&(0x7f0000000140)='./bus\x00') io_setup(0x1, &(0x7f00000004c0)=0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101042, 0x0) io_submit(r1, 0x1, &(0x7f00000002c0)=[&(0x7f0000000280)={0xffffff7f00000000, 0x0, 0x0, 0x0, 0x0, r2, &(0x7f0000000140)='i', 0x1, 0xff010000}]) 249.567076ms ago: executing program 1 (id=381): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000000)={0x0, &(0x7f0000000140)}, 0x10) sendmsg$NFT_BATCH(r0, 0x0, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000840), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) socket$tipc(0x1e, 0x2, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r4, 0x4004ae99, &(0x7f00000001c0)=0x3) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000280)={"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"}) ioctl$KVM_RUN(r4, 0xae80, 0x0) 222.952145ms ago: executing program 3 (id=382): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='attr/fscreate\x00') preadv(r1, &(0x7f0000001780)=[{0x0}, {&(0x7f0000000380)=""/54, 0x36}], 0x2, 0x0, 0x0) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000001c0)={{r1}, &(0x7f0000000000), &(0x7f0000000180)='%pi6 \x00'}, 0x20) bpf$PROG_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket(0x11, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000580)={'veth1_virt_wifi\x00', 0x0}) bind$packet(r3, &(0x7f0000000080)={0x11, 0x1, r4, 0x1, 0x3, 0x6, @link_local}, 0x14) bpf$ENABLE_STATS(0x20, 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000e00)=ANY=[@ANYRES32=r4], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xbfc5c3f5eaf308eb, r1, 0x8, &(0x7f0000000000)={0x2}, 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r5, 0x702, 0xd, 0x0, &(0x7f0000000540)="e460334470b8d480eb00c15286", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) dup2(r2, r3) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r6 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r6, 0x2, &(0x7f0000000040)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r7, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r8, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r7, &(0x7f00000000c0), 0x10106, 0x2, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600016, 0x4) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000700)=@mangle={'mangle\x00', 0x64, 0x6, 0x690, 0x0, 0x300, 0x448, 0x0, 0x0, 0x5c0, 0x5c0, 0x5c0, 0x5c0, 0x5c0, 0x6, 0x0, {[{{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@CONNSECMARK={0x28, 'CONNSECMARK\x00', 0x0, {0x1}}}, {{@ipv6={@mcast1, @local, [], [], 'macvtap0\x00', 'ip6tnl0\x00', {}, {}, 0x6}, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@broadcast}}}, {{@ipv6={@mcast2, @loopback, [], [], 'veth0_to_team\x00', 'syzkaller0\x00'}, 0x0, 0x100, 0x148, 0x0, {}, [@common=@unspec=@connmark={{0x30}}, @common=@inet=@socket1={{0x28}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @ipv4=@private}}}, {{@uncond, 0x0, 0x120, 0x148, 0x0, {}, [@common=@frag={{0x30}}, @common=@hbh={{0x48}}]}, @inet=@DSCP={0x28}}, {{@uncond, 0x0, 0x138, 0x178, 0x0, {}, [@common=@dst={{0x48}}, @common=@dst={{0x48}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@dev}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x6f0) 0s ago: executing program 5 (id=383): getsockopt$packet_int(0xffffffffffffffff, 0x107, 0xc, 0x0, 0x0) ioctl$UI_GET_VERSION(0xffffffffffffffff, 0x8004552d, &(0x7f0000000300)) r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x20, @void, @value}, 0x94) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r5 = socket(0x10, 0x3, 0x0) write(r5, &(0x7f0000000000)="fc0000001a000700ab092500090007000aab0700a90100001d45369321000100250100000005d0000000000000039815fa2c1ec28656aaa79bb94b46fe000000bc0003000500000014000027000089fee1434f1e596534d07302ade0bbc91a3e3280772c05defd5a32e280fc83ab82f605f70c9ddef2fe082038f4f8b29d3ef3d92c83c70e5bba4a46d284a710af333ae4f5566f91cf190201800015b2ccd243f295ed94e0ad91bd0734babc7c3f2eeb00d43dd16b17e5715587e658a1ad0a4f75bb7dcdb0350b0057f0d48a99c03f080548deac270e33429fd3000175e63fb8d38a8700"/252, 0xfc) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[], 0x50) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x12, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000071122a00000000009500000000000000eef513d3a8d744251af6fcfa9ac792223fc6"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xe, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x9, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0xffffffdd, 0xa}, [@ldst={0x3, 0x0, 0x3, 0x1c10a1}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x9, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x19, &(0x7f0000000000), 0xb5, 0x10, &(0x7f0000000000), 0x7, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.122' (ED25519) to the list of known hosts. [ 66.676979][ T5808] cgroup: Unknown subsys name 'net' [ 66.785148][ T5808] cgroup: Unknown subsys name 'cpuset' [ 66.792937][ T5808] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 68.043086][ T5808] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 71.948486][ T1293] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.958479][ T1293] ieee802154 phy1 wpan1: encryption failed: -22 [ 72.593357][ T53] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 72.609571][ T5827] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 72.617419][ T5827] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 72.626017][ T5833] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 72.634094][ T5833] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 72.642447][ T5833] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 72.650787][ T5833] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 72.658108][ T5827] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 72.659354][ T5833] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 72.672783][ T5827] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 72.673730][ T5833] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 72.688711][ T5833] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 72.692418][ T5827] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 72.696146][ T5833] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 72.710830][ T5833] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 72.719574][ T5827] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 72.721086][ T5833] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 72.729468][ T5834] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 72.741083][ T5827] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 72.745068][ T5833] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 72.751572][ T5834] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 72.755954][ T5833] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 72.765029][ T5834] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 72.769576][ T5833] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 72.787521][ T5834] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 72.798408][ T5834] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 72.812601][ T53] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 72.822706][ T5837] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 72.830477][ T5837] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 72.838414][ T5837] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 73.271776][ T5828] chnl_net:caif_netlink_parms(): no params data found [ 73.290203][ T5831] chnl_net:caif_netlink_parms(): no params data found [ 73.307504][ T5823] chnl_net:caif_netlink_parms(): no params data found [ 73.340660][ T5822] chnl_net:caif_netlink_parms(): no params data found [ 73.439140][ T5818] chnl_net:caif_netlink_parms(): no params data found [ 73.548083][ T5828] bridge0: port 1(bridge_slave_0) entered blocking state [ 73.555938][ T5828] bridge0: port 1(bridge_slave_0) entered disabled state [ 73.566746][ T5828] bridge_slave_0: entered allmulticast mode [ 73.573547][ T5828] bridge_slave_0: entered promiscuous mode [ 73.582610][ T5828] bridge0: port 2(bridge_slave_1) entered blocking state [ 73.589766][ T5828] bridge0: port 2(bridge_slave_1) entered disabled state [ 73.597230][ T5828] bridge_slave_1: entered allmulticast mode [ 73.604705][ T5828] bridge_slave_1: entered promiscuous mode [ 73.627954][ T5822] bridge0: port 1(bridge_slave_0) entered blocking state [ 73.635100][ T5822] bridge0: port 1(bridge_slave_0) entered disabled state [ 73.642980][ T5822] bridge_slave_0: entered allmulticast mode [ 73.649619][ T5822] bridge_slave_0: entered promiscuous mode [ 73.679099][ T5831] bridge0: port 1(bridge_slave_0) entered blocking state [ 73.686830][ T5831] bridge0: port 1(bridge_slave_0) entered disabled state [ 73.694081][ T5831] bridge_slave_0: entered allmulticast mode [ 73.700637][ T5831] bridge_slave_0: entered promiscuous mode [ 73.707746][ T5823] bridge0: port 1(bridge_slave_0) entered blocking state [ 73.715115][ T5823] bridge0: port 1(bridge_slave_0) entered disabled state [ 73.722721][ T5823] bridge_slave_0: entered allmulticast mode [ 73.729287][ T5823] bridge_slave_0: entered promiscuous mode [ 73.736200][ T5822] bridge0: port 2(bridge_slave_1) entered blocking state [ 73.743639][ T5822] bridge0: port 2(bridge_slave_1) entered disabled state [ 73.750795][ T5822] bridge_slave_1: entered allmulticast mode [ 73.757681][ T5822] bridge_slave_1: entered promiscuous mode [ 73.791284][ T5831] bridge0: port 2(bridge_slave_1) entered blocking state [ 73.798571][ T5831] bridge0: port 2(bridge_slave_1) entered disabled state [ 73.806230][ T5831] bridge_slave_1: entered allmulticast mode [ 73.813489][ T5831] bridge_slave_1: entered promiscuous mode [ 73.820025][ T5823] bridge0: port 2(bridge_slave_1) entered blocking state [ 73.827191][ T5823] bridge0: port 2(bridge_slave_1) entered disabled state [ 73.834587][ T5823] bridge_slave_1: entered allmulticast mode [ 73.841166][ T5823] bridge_slave_1: entered promiscuous mode [ 73.858671][ T5822] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 73.869785][ T5828] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 73.882531][ T5828] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 73.925875][ T5822] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 73.947984][ T5828] team0: Port device team_slave_0 added [ 73.954344][ T5818] bridge0: port 1(bridge_slave_0) entered blocking state [ 73.961641][ T5818] bridge0: port 1(bridge_slave_0) entered disabled state [ 73.968787][ T5818] bridge_slave_0: entered allmulticast mode [ 73.975970][ T5818] bridge_slave_0: entered promiscuous mode [ 74.017010][ T5828] team0: Port device team_slave_1 added [ 74.028009][ T5818] bridge0: port 2(bridge_slave_1) entered blocking state [ 74.035698][ T5818] bridge0: port 2(bridge_slave_1) entered disabled state [ 74.043238][ T5818] bridge_slave_1: entered allmulticast mode [ 74.049790][ T5818] bridge_slave_1: entered promiscuous mode [ 74.066069][ T5831] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 74.077603][ T5831] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 74.088700][ T5823] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 74.100675][ T5823] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 74.113261][ T5822] team0: Port device team_slave_0 added [ 74.126904][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 74.133977][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 74.160220][ T5828] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 74.206613][ T5822] team0: Port device team_slave_1 added [ 74.215890][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 74.223239][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 74.249651][ T5828] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 74.263915][ T5818] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 74.275726][ T5818] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 74.303757][ T5823] team0: Port device team_slave_0 added [ 74.347013][ T5831] team0: Port device team_slave_0 added [ 74.356406][ T5823] team0: Port device team_slave_1 added [ 74.363359][ T5822] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 74.370316][ T5822] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 74.397078][ T5822] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 74.409442][ T5822] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 74.416503][ T5822] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 74.442564][ T5822] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 74.459105][ T5818] team0: Port device team_slave_0 added [ 74.467190][ T5831] team0: Port device team_slave_1 added [ 74.486681][ T5818] team0: Port device team_slave_1 added [ 74.516237][ T5823] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 74.523640][ T5823] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 74.549906][ T5823] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 74.562386][ T5823] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 74.569365][ T5823] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 74.595823][ T5823] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 74.617988][ T5818] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 74.625083][ T5818] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 74.651235][ T5818] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 74.679857][ T5831] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 74.686952][ T5831] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 74.713250][ T5831] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 74.730329][ T5818] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 74.737598][ T5818] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 74.763799][ T5818] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 74.789711][ T5831] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 74.796737][ T5831] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 74.823451][ T53] Bluetooth: hci1: command tx timeout [ 74.823460][ T5825] Bluetooth: hci4: command tx timeout [ 74.829265][ T53] Bluetooth: hci0: command tx timeout [ 74.834881][ T5837] Bluetooth: hci3: command tx timeout [ 74.840612][ T5831] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 74.887261][ T5828] hsr_slave_0: entered promiscuous mode [ 74.893588][ T5828] hsr_slave_1: entered promiscuous mode [ 74.902412][ T5837] Bluetooth: hci2: command tx timeout [ 74.917856][ T5822] hsr_slave_0: entered promiscuous mode [ 74.924341][ T5822] hsr_slave_1: entered promiscuous mode [ 74.930284][ T5822] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 74.938531][ T5822] Cannot create hsr debugfs directory [ 74.956407][ T5823] hsr_slave_0: entered promiscuous mode [ 74.963305][ T5823] hsr_slave_1: entered promiscuous mode [ 74.969259][ T5823] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 74.976998][ T5823] Cannot create hsr debugfs directory [ 75.007132][ T5831] hsr_slave_0: entered promiscuous mode [ 75.013582][ T5831] hsr_slave_1: entered promiscuous mode [ 75.019572][ T5831] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 75.027338][ T5831] Cannot create hsr debugfs directory [ 75.117869][ T5818] hsr_slave_0: entered promiscuous mode [ 75.127152][ T5818] hsr_slave_1: entered promiscuous mode [ 75.133464][ T5818] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 75.141015][ T5818] Cannot create hsr debugfs directory [ 75.409361][ T5823] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 75.430448][ T5823] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 75.448512][ T5823] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 75.471045][ T5823] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 75.487276][ T5828] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 75.499264][ T5828] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 75.526490][ T5828] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 75.540518][ T5828] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 75.574710][ T5822] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 75.606411][ T5822] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 75.617728][ T5822] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 75.650431][ T5822] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 75.696581][ T5831] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 75.706815][ T5831] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 75.727129][ T5831] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 75.742742][ T5831] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 75.788302][ T5818] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 75.808361][ T5818] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 75.831315][ T5823] 8021q: adding VLAN 0 to HW filter on device bond0 [ 75.839379][ T5818] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 75.849496][ T5818] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 75.955473][ T5823] 8021q: adding VLAN 0 to HW filter on device team0 [ 75.970531][ T5828] 8021q: adding VLAN 0 to HW filter on device bond0 [ 75.989699][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 75.997133][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 76.023960][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 76.031064][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 76.059806][ T5818] 8021q: adding VLAN 0 to HW filter on device bond0 [ 76.071053][ T5822] 8021q: adding VLAN 0 to HW filter on device bond0 [ 76.101099][ T5828] 8021q: adding VLAN 0 to HW filter on device team0 [ 76.130696][ T5822] 8021q: adding VLAN 0 to HW filter on device team0 [ 76.160189][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 76.167342][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 76.186906][ T5818] 8021q: adding VLAN 0 to HW filter on device team0 [ 76.204111][ T5823] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 76.218067][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 76.225186][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 76.236625][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 76.243765][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 76.258582][ T51] bridge0: port 2(bridge_slave_1) entered blocking state [ 76.265732][ T51] bridge0: port 2(bridge_slave_1) entered forwarding state [ 76.289423][ T51] bridge0: port 2(bridge_slave_1) entered blocking state [ 76.296635][ T51] bridge0: port 2(bridge_slave_1) entered forwarding state [ 76.314653][ T51] bridge0: port 2(bridge_slave_1) entered blocking state [ 76.321806][ T51] bridge0: port 2(bridge_slave_1) entered forwarding state [ 76.362420][ T5831] 8021q: adding VLAN 0 to HW filter on device bond0 [ 76.487453][ T5831] 8021q: adding VLAN 0 to HW filter on device team0 [ 76.534916][ T5818] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 76.546336][ T5818] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 76.560496][ T4838] bridge0: port 1(bridge_slave_0) entered blocking state [ 76.567630][ T4838] bridge0: port 1(bridge_slave_0) entered forwarding state [ 76.629231][ T35] bridge0: port 2(bridge_slave_1) entered blocking state [ 76.636421][ T35] bridge0: port 2(bridge_slave_1) entered forwarding state [ 76.677969][ T5823] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 76.711366][ T5828] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 76.877708][ T5828] veth0_vlan: entered promiscuous mode [ 76.904792][ T5837] Bluetooth: hci0: command tx timeout [ 76.910251][ T5837] Bluetooth: hci3: command tx timeout [ 76.911648][ T5825] Bluetooth: hci1: command tx timeout [ 76.916269][ T5837] Bluetooth: hci4: command tx timeout [ 76.966706][ T5818] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 76.983279][ T5837] Bluetooth: hci2: command tx timeout [ 76.983692][ T5822] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 76.999223][ T5828] veth1_vlan: entered promiscuous mode [ 77.086319][ T5828] veth0_macvtap: entered promiscuous mode [ 77.106609][ T5818] veth0_vlan: entered promiscuous mode [ 77.145822][ T5828] veth1_macvtap: entered promiscuous mode [ 77.185249][ T5831] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 77.204110][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 77.216048][ T5818] veth1_vlan: entered promiscuous mode [ 77.242576][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 77.255329][ T5823] veth0_vlan: entered promiscuous mode [ 77.266657][ T5828] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.275925][ T5828] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.285814][ T5828] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.295247][ T5828] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.306260][ T5822] veth0_vlan: entered promiscuous mode [ 77.317098][ T5822] veth1_vlan: entered promiscuous mode [ 77.328689][ T5823] veth1_vlan: entered promiscuous mode [ 77.378638][ T5823] veth0_macvtap: entered promiscuous mode [ 77.390278][ T5823] veth1_macvtap: entered promiscuous mode [ 77.434188][ T5818] veth0_macvtap: entered promiscuous mode [ 77.471067][ T5831] veth0_vlan: entered promiscuous mode [ 77.486689][ T5831] veth1_vlan: entered promiscuous mode [ 77.496459][ T5822] veth0_macvtap: entered promiscuous mode [ 77.505804][ T5818] veth1_macvtap: entered promiscuous mode [ 77.514767][ T5823] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 77.527634][ T5823] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 77.538932][ T5823] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 77.575563][ T5822] veth1_macvtap: entered promiscuous mode [ 77.593563][ T5831] veth0_macvtap: entered promiscuous mode [ 77.602122][ T5831] veth1_macvtap: entered promiscuous mode [ 77.629725][ T5823] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 77.640981][ T5823] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 77.653173][ T5823] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 77.681042][ T5818] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 77.694714][ T5818] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 77.705022][ T5818] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 77.716342][ T5818] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 77.727206][ T5818] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 77.738134][ T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 77.740713][ T5818] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 77.757197][ T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 77.766103][ T5818] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 77.776172][ T5818] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 77.788309][ T5818] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 77.803140][ T5818] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 77.814472][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 77.825114][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 77.835192][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 77.845903][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 77.855948][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 77.866823][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 77.877738][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 77.886711][ T5823] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.895657][ T5823] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.906275][ T5823] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.915143][ T5823] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.943867][ T5822] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 77.955922][ T5822] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 77.966872][ T5822] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 77.977766][ T5822] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 77.988274][ T5822] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 77.998885][ T5822] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 78.008799][ T5822] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 78.019359][ T5822] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 78.030671][ T5822] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 78.048505][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 78.059604][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 78.060073][ T3478] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 78.075551][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 78.079257][ T3478] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 78.089959][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 78.106709][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 78.117448][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 78.128218][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 78.139135][ T5818] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.149016][ T5818] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.158314][ T5818] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.167138][ T5818] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.199420][ T5822] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 78.210186][ T5822] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 78.220373][ T5822] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 78.231976][ T5822] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 78.243708][ T5822] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 78.254365][ T5822] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 78.264439][ T5822] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 78.274981][ T5822] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 78.286686][ T5822] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 78.301238][ T5822] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.316560][ T5822] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.325740][ T5822] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.334875][ T5822] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.351067][ T5831] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.362960][ T5831] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.371765][ T5831] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.374046][ T5828] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 78.380538][ T5831] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.782072][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 78.789946][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 78.797968][ T4334] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 78.927242][ T4334] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 79.022209][ T53] Bluetooth: hci1: command tx timeout [ 79.029518][ T53] Bluetooth: hci3: command tx timeout [ 79.080554][ T5834] Bluetooth: hci2: command tx timeout [ 79.086085][ T5825] Bluetooth: hci0: command tx timeout [ 79.093480][ T5837] Bluetooth: hci4: command tx timeout [ 79.483783][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 79.494168][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 79.531600][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 79.540944][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 79.571103][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 79.597225][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 79.614450][ T4838] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 79.643223][ T4838] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 79.739956][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 79.769404][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 79.807948][ T4334] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 79.825266][ T4334] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 81.142348][ T5833] Bluetooth: hci0: command tx timeout [ 81.147971][ T5825] Bluetooth: hci3: command tx timeout [ 81.154043][ T53] Bluetooth: hci2: command tx timeout [ 81.222105][ T5834] Bluetooth: hci4: command tx timeout [ 81.227662][ T5834] Bluetooth: hci1: command tx timeout [ 82.042399][ T5933] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 82.213130][ T5935] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 83.936555][ T5947] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 84.402089][ T5953] bond0: (slave macvlan2): Error -98 calling set_mac_address [ 84.424081][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 84.451603][ T0] NOHZ tick-stop error: local softirq work is pending, handler #c2!!! [ 84.541099][ T5955] block device autoloading is deprecated and will be removed. [ 85.299024][ T5966] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 85.316600][ T5966] Zero length message leads to an empty skb [ 85.332438][ T5966] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 86.122847][ T5969] netlink: 28 bytes leftover after parsing attributes in process `syz.2.13'. [ 86.147523][ T5969] netlink: 'syz.2.13': attribute type 4 has an invalid length. [ 86.161697][ T5969] netlink: 'syz.2.13': attribute type 1 has an invalid length. [ 86.659719][ T5977] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 86.770620][ T5978] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 87.522214][ T8] cfg80211: failed to load regulatory.db [ 87.627812][ T5983] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 87.745933][ T5984] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 88.948706][ T5993] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 88.976214][ T5993] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 90.051595][ T6013] 9pnet_fd: Insufficient options for proto=fd [ 90.060573][ T6013] GUP no longer grows the stack in syz.3.25 (6013): 400000004000-400000008000 (400000002000) [ 90.074094][ T6013] CPU: 0 UID: 0 PID: 6013 Comm: syz.3.25 Not tainted 6.14.0-rc2-syzkaller-00281-g496659003dac #0 [ 90.074117][ T6013] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 90.074131][ T6013] Call Trace: [ 90.074137][ T6013] [ 90.074144][ T6013] dump_stack_lvl+0x241/0x360 [ 90.074177][ T6013] ? __pfx_dump_stack_lvl+0x10/0x10 [ 90.074194][ T6013] ? __pfx__printk+0x10/0x10 [ 90.074216][ T6013] ? find_vma+0xf9/0x170 [ 90.074254][ T6013] __get_user_pages+0x3b07/0x4140 [ 90.074310][ T6013] ? __pfx___get_user_pages+0x10/0x10 [ 90.074359][ T6013] get_user_pages_remote+0x31e/0xb60 [ 90.074388][ T6013] ? __pfx_get_user_pages_remote+0x10/0x10 [ 90.074410][ T6013] ? __access_remote_vm+0x324/0x800 [ 90.074434][ T6013] __access_remote_vm+0x22d/0x800 [ 90.074462][ T6013] ? __pfx___access_remote_vm+0x10/0x10 [ 90.074483][ T6013] ? rep_movs_alternative+0x4c/0x70 [ 90.074513][ T6013] proc_pid_cmdline_read+0x4b6/0x8c0 [ 90.074546][ T6013] ? __pfx_proc_pid_cmdline_read+0x10/0x10 [ 90.074573][ T6013] ? rw_verify_area+0x243/0x630 [ 90.074596][ T6013] vfs_readv+0x6bc/0xa80 [ 90.074622][ T6013] ? __pfx_proc_pid_cmdline_read+0x10/0x10 [ 90.074644][ T6013] ? __pfx_vfs_readv+0x10/0x10 [ 90.074659][ T6013] ? do_sys_openat2+0x17a/0x1d0 [ 90.074690][ T6013] ? __fget_files+0x2a/0x410 [ 90.074708][ T6013] ? __fget_files+0x395/0x410 [ 90.074723][ T6013] ? __fget_files+0x2a/0x410 [ 90.074748][ T6013] __x64_sys_preadv+0x1b7/0x2d0 [ 90.074772][ T6013] ? __pfx___x64_sys_preadv+0x10/0x10 [ 90.074794][ T6013] ? do_syscall_64+0x100/0x230 [ 90.074816][ T6013] ? do_syscall_64+0xb6/0x230 [ 90.074838][ T6013] do_syscall_64+0xf3/0x230 [ 90.074856][ T6013] ? clear_bhb_loop+0x35/0x90 [ 90.074881][ T6013] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 90.074901][ T6013] RIP: 0033:0x7f925778cde9 [ 90.074921][ T6013] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 90.074935][ T6013] RSP: 002b:00007f9258562038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127 [ 90.074954][ T6013] RAX: ffffffffffffffda RBX: 00007f92579a5fa0 RCX: 00007f925778cde9 [ 90.074966][ T6013] RDX: 0000000000000001 RSI: 00004000000000c0 RDI: 000000000000000a [ 90.074977][ T6013] RBP: 00007f925780e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 90.074988][ T6013] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 90.074998][ T6013] R13: 0000000000000000 R14: 00007f92579a5fa0 R15: 00007ffc9831bbb8 [ 90.075025][ T6013] [ 90.363902][ T6017] FAULT_INJECTION: forcing a failure. [ 90.363902][ T6017] name failslab, interval 1, probability 0, space 0, times 1 [ 90.377391][ T6017] CPU: 0 UID: 0 PID: 6017 Comm: syz.2.26 Not tainted 6.14.0-rc2-syzkaller-00281-g496659003dac #0 [ 90.377413][ T6017] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 90.377423][ T6017] Call Trace: [ 90.377429][ T6017] [ 90.377436][ T6017] dump_stack_lvl+0x241/0x360 [ 90.377458][ T6017] ? __pfx_dump_stack_lvl+0x10/0x10 [ 90.377475][ T6017] ? __pfx__printk+0x10/0x10 [ 90.377499][ T6017] ? kmem_cache_alloc_node_noprof+0x4f/0x380 [ 90.377523][ T6017] ? __pfx___might_resched+0x10/0x10 [ 90.377545][ T6017] should_fail_ex+0x40a/0x550 [ 90.377570][ T6017] should_failslab+0xac/0x100 [ 90.377593][ T6017] kmem_cache_alloc_node_noprof+0x77/0x380 [ 90.377615][ T6017] ? __alloc_skb+0x1c3/0x440 [ 90.377638][ T6017] __alloc_skb+0x1c3/0x440 [ 90.377662][ T6017] ? __pfx___alloc_skb+0x10/0x10 [ 90.377688][ T6017] ? netlink_autobind+0xd6/0x2f0 [ 90.377702][ T6017] ? netlink_autobind+0x2b0/0x2f0 [ 90.377721][ T6017] netlink_sendmsg+0x634/0xcb0 [ 90.377754][ T6017] ? __pfx_netlink_sendmsg+0x10/0x10 [ 90.377786][ T6017] ? __pfx_netlink_sendmsg+0x10/0x10 [ 90.377806][ T6017] __sock_sendmsg+0x221/0x270 [ 90.377826][ T6017] ____sys_sendmsg+0x53a/0x860 [ 90.377855][ T6017] ? __pfx_____sys_sendmsg+0x10/0x10 [ 90.377874][ T6017] ? __fget_files+0x2a/0x410 [ 90.377893][ T6017] ? __fget_files+0x2a/0x410 [ 90.377918][ T6017] __sys_sendmsg+0x269/0x350 [ 90.377944][ T6017] ? __pfx___sys_sendmsg+0x10/0x10 [ 90.377977][ T6017] ? do_sys_openat2+0x17a/0x1d0 [ 90.378017][ T6017] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 90.378039][ T6017] ? do_syscall_64+0x100/0x230 [ 90.378061][ T6017] ? do_syscall_64+0xb6/0x230 [ 90.378081][ T6017] do_syscall_64+0xf3/0x230 [ 90.378099][ T6017] ? clear_bhb_loop+0x35/0x90 [ 90.378121][ T6017] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 90.378140][ T6017] RIP: 0033:0x7f377a38cde9 [ 90.378154][ T6017] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 90.378167][ T6017] RSP: 002b:00007f377a1d8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 90.378184][ T6017] RAX: ffffffffffffffda RBX: 00007f377a5a6080 RCX: 00007f377a38cde9 [ 90.378196][ T6017] RDX: 0000000000000000 RSI: 0000400000000180 RDI: 0000000000000003 [ 90.378211][ T6017] RBP: 00007f377a1d8090 R08: 0000000000000000 R09: 0000000000000000 [ 90.378221][ T6017] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 90.378231][ T6017] R13: 0000000000000000 R14: 00007f377a5a6080 R15: 00007ffdc2528f98 [ 90.378257][ T6017] [ 90.719795][ T6019] openvswitch: netlink: Tunnel attr 54 out of range max 16 [ 91.222749][ T29] audit: type=1326 audit(1739715458.648:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6011 comm="syz.3.25" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f925778cde9 code=0x7ffc0000 [ 91.258689][ T29] audit: type=1326 audit(1739715458.648:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6011 comm="syz.3.25" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f925778cde9 code=0x7ffc0000 [ 91.320763][ T29] audit: type=1326 audit(1739715458.648:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6011 comm="syz.3.25" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f925778cde9 code=0x7ffc0000 [ 91.651557][ T29] audit: type=1326 audit(1739715458.648:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6011 comm="syz.3.25" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f925778cde9 code=0x7ffc0000 [ 91.682007][ T29] audit: type=1326 audit(1739715458.648:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6011 comm="syz.3.25" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f925778cde9 code=0x7ffc0000 [ 91.711243][ T29] audit: type=1326 audit(1739715458.648:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6011 comm="syz.3.25" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f925778cde9 code=0x7ffc0000 [ 91.828118][ T6019] sctp: failed to load transform for md5: -2 [ 91.891642][ T29] audit: type=1326 audit(1739715458.648:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6011 comm="syz.3.25" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f925778cde9 code=0x7ffc0000 [ 92.031689][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 92.086714][ T29] audit: type=1326 audit(1739715458.648:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6011 comm="syz.3.25" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f925778cde9 code=0x7ffc0000 [ 92.252023][ T29] audit: type=1326 audit(1739715458.648:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6011 comm="syz.3.25" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f925778cde9 code=0x7ffc0000 [ 92.622171][ T6043] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 92.730052][ T6044] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 93.163491][ T29] audit: type=1326 audit(1739715458.648:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6011 comm="syz.3.25" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f925778cde9 code=0x7ffc0000 [ 93.232220][ T6037] netlink: 36 bytes leftover after parsing attributes in process `syz.4.28'. [ 93.296574][ T6037] netlink: 8 bytes leftover after parsing attributes in process `syz.4.28'. [ 93.431763][ T6037] vlan2: entered allmulticast mode [ 93.602501][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 93.705512][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 93.812588][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 93.953563][ T6050] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore [ 93.954304][ T6052] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 93.979931][ T6050] overlayfs: missing 'lowerdir' [ 95.002711][ T6068] netlink: 256 bytes leftover after parsing attributes in process `syz.4.38'. [ 95.538772][ T5942] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 96.345321][ T5942] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 96.379789][ T5942] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 96.391343][ T5942] usb 5-1: New USB device found, idVendor=056a, idProduct=0314, bcdDevice= 0.00 [ 96.406078][ T5942] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 96.463750][ T5942] usb 5-1: config 0 descriptor?? [ 96.470450][ T6086] netlink: 16 bytes leftover after parsing attributes in process `syz.3.45'. [ 96.535770][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 96.571156][ T6093] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 96.733314][ T6074] syz.4.41 uses obsolete (PF_INET,SOCK_PACKET) [ 97.030523][ T6074] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 97.084203][ T6074] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 97.185655][ T5942] usbhid 5-1:0.0: can't add hid device: -71 [ 97.192000][ T5942] usbhid 5-1:0.0: probe with driver usbhid failed with error -71 [ 97.208923][ T5942] usb 5-1: USB disconnect, device number 2 [ 97.351566][ T974] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 97.476136][ T6110] overlayfs: lowerdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 97.490897][ T6110] overlayfs: overlapping lowerdir path [ 97.513503][ T974] usb 1-1: Using ep0 maxpacket: 8 [ 97.524445][ T974] usb 1-1: config 179 has an invalid interface number: 65 but max is 0 [ 97.534288][ T974] usb 1-1: config 179 has no interface number 0 [ 97.541164][ T974] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 97.553156][ T974] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024 [ 97.589868][ T974] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 97.618095][ T974] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024 [ 97.630273][ T5873] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 97.664550][ T974] usb 1-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 97.689007][ T974] usb 1-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb [ 97.749289][ T974] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 97.801846][ T5873] usb 4-1: Using ep0 maxpacket: 32 [ 97.816616][ T5873] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 97.875520][ T5873] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 97.891119][ T5873] usb 4-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00 [ 97.944000][ T6106] raw-gadget.2 gadget.0: fail, usb_ep_enable returned -22 [ 98.054343][ T5873] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 98.211901][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 98.421838][ T5833] Bluetooth: hci4: command 0x0405 tx timeout [ 98.471884][ T5873] usb 4-1: config 0 descriptor?? [ 98.729223][ T0] NOHZ tick-stop error: local softirq work is pending, handler #300!!! [ 98.830496][ T5872] input: Generic X-Box pad as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:179.65/input/input5 [ 99.406806][ T5873] savu 0003:1E7D:2D5A.0001: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.3-1/input0 [ 99.712944][ T5873] usb 4-1: USB disconnect, device number 2 [ 100.357165][ T57] usb 1-1: USB disconnect, device number 2 [ 100.357205][ C1] xpad 1-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19 [ 100.371616][ C1] xpad 1-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19 [ 100.389927][ T57] xpad 1-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19 [ 101.451745][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 101.459853][ T6215] netlink: 4 bytes leftover after parsing attributes in process `syz.3.62'. [ 101.468868][ T6215] bridge_slave_1: left allmulticast mode [ 101.474526][ T6215] bridge_slave_1: left promiscuous mode [ 101.480622][ T6215] bridge0: port 2(bridge_slave_1) entered disabled state [ 101.540369][ T6215] bridge_slave_0: left allmulticast mode [ 101.548203][ T6215] bridge_slave_0: left promiscuous mode [ 101.554217][ T6215] bridge0: port 1(bridge_slave_0) entered disabled state [ 103.116524][ T25] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 104.138112][ T25] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 104.209408][ T25] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 104.300240][ T25] usb 2-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00 [ 104.619769][ T25] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 104.629493][ T6255] netlink: 16 bytes leftover after parsing attributes in process `syz.0.71'. [ 105.054969][ T25] usb 2-1: config 0 descriptor?? [ 105.217292][ T6262] Lens A: ================= START STATUS ================= [ 105.247288][ T6241] ======================================================= [ 105.247288][ T6241] WARNING: The mand mount option has been deprecated and [ 105.247288][ T6241] and is ignored by this kernel. Remove the mand [ 105.247288][ T6241] option from the mount to silence this warning. [ 105.247288][ T6241] ======================================================= [ 105.321643][ T6262] Lens A: Focus, Absolute: 0 [ 105.331238][ T6262] Lens A: ================== END STATUS ================== [ 105.497156][ T25] cp2112 0003:10C4:EA90.0002: unknown main item tag 0x0 [ 105.534924][ T25] cp2112 0003:10C4:EA90.0002: unknown main item tag 0x0 [ 105.547149][ T6274] netlink: 4 bytes leftover after parsing attributes in process `syz.4.76'. [ 105.560054][ T25] cp2112 0003:10C4:EA90.0002: hidraw0: USB HID v0.00 Device [HID 10c4:ea90] on usb-dummy_hcd.1-1/input0 [ 105.887576][ T6281] overlayfs: workdir and upperdir must be separate subtrees [ 106.114693][ T6284] fuse: Unknown parameter ''Ljj$AvzKɾW*F_--¬>o' [ 110.018838][ T6234] mac80211_hwsim hwsim8 wlan1: entered allmulticast mode [ 110.162701][ T25] cp2112 0003:10C4:EA90.0002: error requesting version [ 110.189096][ T25] cp2112 0003:10C4:EA90.0002: probe with driver cp2112 failed with error -71 [ 110.224191][ T25] usb 2-1: USB disconnect, device number 2 [ 110.681319][ T6314] input: syz0 as /devices/virtual/input/input6 [ 111.350716][ T6312] ubi31: attaching mtd0 [ 111.356910][ T6312] ubi31: scanning is finished [ 111.361794][ T6312] ubi31: empty MTD device detected [ 111.501394][ T6312] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB) [ 111.509087][ T6312] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 111.516480][ T6312] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 111.523550][ T6312] ubi31: VID header offset: 64 (aligned 64), data offset: 128 [ 111.531001][ T6312] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 111.537885][ T6312] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 111.545983][ T6312] ubi31: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 3717258447 [ 111.556061][ T6312] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 111.593894][ T6317] ubi31: background thread "ubi_bgt31d" started, PID 6317 [ 112.421840][ T5942] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 112.612637][ T5942] usb 2-1: New USB device found, idVendor=09e1, idProduct=5121, bcdDevice=40.c1 [ 112.645414][ T5942] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 112.897338][ T25] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 113.109113][ T6342] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 113.361242][ T5942] usb 2-1: Product: syz [ 113.367741][ T5942] usb 2-1: Manufacturer: syz [ 113.372414][ T5942] usb 2-1: SerialNumber: syz [ 113.402701][ T5942] usb 2-1: config 0 descriptor?? [ 113.521715][ T25] usb 4-1: device descriptor read/64, error -71 [ 113.633166][ T5942] int51x1 2-1:0.0: probe with driver int51x1 failed with error -22 [ 113.846875][ T6326] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 113.855892][ T6326] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 114.011319][ T25] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 114.741579][ T25] usb 4-1: device descriptor read/64, error -71 [ 114.767494][ T5871] usb 2-1: USB disconnect, device number 3 [ 114.851939][ T25] usb usb4-port1: attempt power cycle [ 115.145626][ T6368] netlink: 9 bytes leftover after parsing attributes in process `syz.0.98'. [ 115.281844][ T25] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 115.297189][ T6368] gretap0: entered promiscuous mode [ 115.327159][ T25] usb 4-1: device descriptor read/8, error -71 [ 116.874994][ T6384] Bluetooth: hci5: Frame reassembly failed (-84) [ 116.883690][ T6164] Bluetooth: hci5: Frame reassembly failed (-84) [ 116.890299][ T6164] Bluetooth: hci5: Frame reassembly failed (-84) [ 116.960463][ T6376] could not allocate digest TFM handle sha512-neon [ 116.981537][ T5873] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 117.168411][ T6389] netlink: 16 bytes leftover after parsing attributes in process `syz.1.104'. [ 117.204999][ T6389] netlink: 194488 bytes leftover after parsing attributes in process `syz.1.104'. [ 117.262013][ T25] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 117.296072][ T25] usb 4-1: config 0 has an invalid interface number: 46 but max is 0 [ 117.305037][ T25] usb 4-1: config 0 has no interface number 0 [ 117.329948][ T25] usb 4-1: New USB device found, idVendor=04e2, idProduct=1420, bcdDevice=9e.b9 [ 117.339505][ T25] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 117.350102][ T25] usb 4-1: Product: syz [ 117.355463][ T25] usb 4-1: Manufacturer: syz [ 117.360619][ T25] usb 4-1: SerialNumber: syz [ 117.381560][ T25] usb 4-1: config 0 descriptor?? [ 117.415460][ T25] xr_serial 4-1:0.46: More than one union descriptor, skipping ... [ 117.427902][ T5873] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 117.453915][ T5873] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 117.467342][ T5873] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 117.478020][ T5873] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 117.487627][ T5873] usb 3-1: SerialNumber: syz [ 117.778812][ T5873] usb 3-1: 0:2 : does not exist [ 117.841853][ T5873] usb 3-1: USB disconnect, device number 2 [ 118.222949][ T5838] udevd[5838]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 118.335428][ T8] usb 4-1: USB disconnect, device number 6 [ 119.402446][ T5834] Bluetooth: hci5: command 0x1003 tx timeout [ 119.407747][ T5833] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 119.476974][ T6402] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 119.547249][ T6396] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 119.618215][ T6405] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 119.647194][ T6405] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 120.658773][ T6409] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies. [ 121.750160][ T6417] 9pnet_fd: Insufficient options for proto=fd [ 122.413250][ T6419] netlink: 36 bytes leftover after parsing attributes in process `syz.3.112'. [ 122.636539][ T6426] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 123.111941][ T6434] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 123.141477][ T6434] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 125.237826][ T6451] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 125.299487][ T6451] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 125.412216][ T6457] netlink: 28 bytes leftover after parsing attributes in process `syz.0.124'. [ 125.543354][ T6458] RDS: rds_bind could not find a transport for ::ffff:172.30.0.1, load rds_tcp or rds_rdma? [ 126.508808][ T6475] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 126.614067][ T6476] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 127.684460][ T6484] netlink: 68 bytes leftover after parsing attributes in process `syz.4.131'. [ 127.798470][ T6487] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 127.839171][ T6487] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 127.847936][ T5871] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 128.013130][ T5871] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 128.049553][ T5871] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 128.808056][ T6496] Bluetooth: hci5: Frame reassembly failed (-84) [ 128.822479][ T5871] usb 1-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00 [ 128.831666][ T5871] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 128.845386][ T5871] usb 1-1: config 0 descriptor?? [ 129.284539][ T5871] cp2112 0003:10C4:EA90.0003: unknown main item tag 0x0 [ 129.306344][ T5871] cp2112 0003:10C4:EA90.0003: unknown main item tag 0x0 [ 129.334465][ T5871] cp2112 0003:10C4:EA90.0003: hidraw0: USB HID v0.00 Device [HID 10c4:ea90] on usb-dummy_hcd.0-1/input0 [ 129.394756][ T974] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 129.532732][ T6481] mac80211_hwsim hwsim7 wlan1: entered allmulticast mode [ 129.572493][ T974] usb 5-1: Using ep0 maxpacket: 16 [ 129.579461][ T974] usb 5-1: config 1 has an invalid descriptor of length 64, skipping remainder of the config [ 129.597784][ T974] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7 [ 129.631591][ T974] usb 5-1: config 1 interface 2 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 129.645889][ T6182] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 129.660649][ T6182] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 129.699277][ T5871] cp2112 0003:10C4:EA90.0003: error requesting version [ 129.714289][ T974] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 129.720980][ T5871] cp2112 0003:10C4:EA90.0003: probe with driver cp2112 failed with error -71 [ 129.731847][ T974] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 129.750479][ T974] usb 5-1: Product: syz [ 129.757358][ T5871] usb 1-1: USB disconnect, device number 3 [ 129.760552][ T974] usb 5-1: Manufacturer: syz [ 129.768287][ T974] usb 5-1: SerialNumber: syz [ 129.981615][ T25] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 130.027548][ T974] usb 5-1: USB disconnect, device number 3 [ 130.141609][ T25] usb 4-1: Using ep0 maxpacket: 16 [ 130.153320][ T25] usb 4-1: config 0 has an invalid interface number: 105 but max is 0 [ 130.167580][ T25] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 130.178093][ T25] usb 4-1: config 0 has no interface number 0 [ 130.184610][ T5834] Bluetooth: hci5: command 0x1003 tx timeout [ 130.192066][ T5833] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 130.211325][ T25] usb 4-1: New USB device found, idVendor=046d, idProduct=08d3, bcdDevice= b.28 [ 130.227102][ T25] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 130.239605][ T25] usb 4-1: Product: syz [ 130.244589][ T5838] udevd[5838]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 130.267805][ T25] usb 4-1: Manufacturer: syz [ 130.274031][ T25] usb 4-1: SerialNumber: syz [ 130.290557][ T25] usb 4-1: config 0 descriptor?? [ 130.304705][ T25] usb 4-1: Found UVC 0.00 device syz (046d:08d3) [ 130.311260][ T25] usb 4-1: No valid video chain found. [ 130.409406][ T6519] netlink: 194488 bytes leftover after parsing attributes in process `syz.2.142'. [ 130.616472][ T6523] netlink: 68 bytes leftover after parsing attributes in process `syz.2.144'. [ 130.705712][ T6524] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 130.802255][ T6525] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 132.751587][ T5942] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 132.902658][ T6541] ref_tracker: memory allocation failure, unreliable refcount tracker. [ 133.101670][ T5942] usb 3-1: Using ep0 maxpacket: 16 [ 133.393289][ T1293] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.422077][ T5942] usb 3-1: New USB device found, idVendor=25c6, idProduct=9002, bcdDevice=62.ba [ 133.431897][ T1293] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.582696][ T5942] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 133.821586][ T5942] usb 3-1: Product: syz [ 133.865957][ T5942] usb 3-1: Manufacturer: syz [ 133.871320][ T5942] usb 3-1: SerialNumber: syz [ 133.896070][ T5942] usb 3-1: config 0 descriptor?? [ 133.985413][ T974] usb 4-1: USB disconnect, device number 7 [ 134.111305][ T5942] snd-usb-hiface 3-1:0.0: probe with driver snd-usb-hiface failed with error -22 [ 134.230459][ T6552] Bluetooth: hci5: Frame reassembly failed (-84) [ 134.251230][ T6164] Bluetooth: hci5: Frame reassembly failed (-84) [ 135.229991][ T25] usb 3-1: USB disconnect, device number 3 [ 136.261980][ T5834] Bluetooth: hci5: command 0x1003 tx timeout [ 136.269138][ T5833] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 137.471684][ T5833] Bluetooth: hci4: command 0x0405 tx timeout [ 137.554463][ T6595] overlay: Unknown parameter 'fowner>00000000000000000000' [ 137.649866][ T6596] process 'syz.0.161' launched './file1' with NULL argv: empty string added [ 137.679506][ T29] kauditd_printk_skb: 19 callbacks suppressed [ 137.679561][ T29] audit: type=1326 audit(1739715762.248:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6589 comm="syz.0.161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68f5b8cde9 code=0x7ffc0000 [ 138.182236][ T29] audit: type=1326 audit(1739715762.248:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6589 comm="syz.0.161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68f5b8cde9 code=0x7ffc0000 [ 138.209392][ T29] audit: type=1326 audit(1739715762.248:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6589 comm="syz.0.161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=311 compat=0 ip=0x7f68f5b8cde9 code=0x7ffc0000 [ 138.237230][ T29] audit: type=1326 audit(1739715762.248:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6589 comm="syz.0.161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68f5b8cde9 code=0x7ffc0000 [ 138.310005][ T29] audit: type=1326 audit(1739715762.248:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6589 comm="syz.0.161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68f5b8cde9 code=0x7ffc0000 [ 138.611902][ T5871] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 138.641573][ T974] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 138.801612][ T974] usb 3-1: Using ep0 maxpacket: 32 [ 139.431168][ T974] usb 3-1: config 0 has an invalid interface number: 187 but max is 0 [ 139.440551][ T974] usb 3-1: config 0 has no interface number 0 [ 139.448876][ T974] usb 3-1: New USB device found, idVendor=2013, idProduct=0258, bcdDevice=b7.e8 [ 139.464038][ T974] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 139.472175][ T5871] usb 5-1: Using ep0 maxpacket: 32 [ 139.475302][ T5871] usb 5-1: New USB device found, idVendor=17cc, idProduct=1010, bcdDevice=40.72 [ 139.510548][ T5871] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 139.518837][ T974] usb 3-1: Product: syz [ 139.539195][ T974] usb 3-1: Manufacturer: syz [ 139.549429][ T974] usb 3-1: SerialNumber: syz [ 139.562633][ T5871] usb 5-1: Product: syz [ 139.566823][ T5871] usb 5-1: Manufacturer: syz [ 139.581279][ T974] usb 3-1: config 0 descriptor?? [ 139.594941][ T974] em28xx 3-1:0.187: New device syz syz @ 480 Mbps (2013:0258, interface 187, class 187) [ 139.628066][ T974] em28xx 3-1:0.187: Video interface 187 found: bulk [ 139.632548][ T5871] usb 5-1: SerialNumber: syz [ 139.802866][ T5871] usb 5-1: config 0 descriptor?? [ 139.872997][ T974] em28xx 3-1:0.187: unknown em28xx chip ID (0) [ 140.823100][ T6601] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 140.872538][ T5871] snd-usb-audio 5-1:0.0: probe with driver snd-usb-audio failed with error -110 [ 140.894596][ T6601] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 140.896776][ T974] em28xx 3-1:0.187: reading from i2c device at 0xa0 failed (error=-5) [ 140.914970][ T5871] usb 5-1: USB disconnect, device number 4 [ 140.960277][ T974] em28xx 3-1:0.187: board has no eeprom [ 140.979635][ T6617] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 141.081520][ T974] em28xx 3-1:0.187: Identified as PCTV DVB-S2 Stick (461e) (card=92) [ 141.098089][ T6622] ecryptfs_validate_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README [ 141.111963][ T6622] Error validating options; rc = [-22] [ 141.236952][ T974] em28xx 3-1:0.187: Currently, V4L2 is not supported on this model [ 141.245506][ T25] em28xx 3-1:0.187: Binding DVB extension [ 141.252022][ T25] em28xx 3-1:0.187: no endpoint for DVB mode and transfer type 0 [ 141.259760][ T25] em28xx 3-1:0.187: failed to pre-allocate USB transfer buffers for DVB. [ 141.282107][ T974] usb 3-1: USB disconnect, device number 4 [ 141.301709][ T974] em28xx 3-1:0.187: Disconnecting em28xx [ 141.310058][ T25] em28xx 3-1:0.187: Registering input extension [ 141.321706][ T974] em28xx 3-1:0.187: Closing input extension [ 141.366509][ T6625] Bluetooth: hci5: Frame reassembly failed (-84) [ 141.376338][ T974] em28xx 3-1:0.187: Freeing device [ 141.388051][ T6167] Bluetooth: hci5: Frame reassembly failed (-84) [ 142.029604][ T6632] loop6: detected capacity change from 0 to 16384 [ 142.302943][ T10] I/O error, dev loop6, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 0 prio class 0 [ 143.013361][ T8] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 143.191517][ T8] usb 1-1: Using ep0 maxpacket: 32 [ 143.241727][ T8] usb 1-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 143.257751][ T6658] Bluetooth: MGMT ver 1.23 [ 143.338632][ T8] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 143.382486][ T5833] Bluetooth: hci5: command 0x1003 tx timeout [ 143.383512][ T53] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 143.542338][ T8] usb 1-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 143.791255][ T8] usb 1-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22 [ 143.806706][ T8] usb 1-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131 [ 143.816566][ T8] usb 1-1: Product: syz [ 143.825072][ T8] usb 1-1: Manufacturer: syz [ 143.830871][ T8] usb 1-1: SerialNumber: syz [ 143.850658][ T8] input: appletouch as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/input/input9 [ 144.098439][ T6664] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 144.165303][ T974] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 144.182485][ C1] appletouch 1-1:1.0: atp_complete: usb_submit_urb failed with result -1 [ 144.183106][ T6664] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 145.142105][ T974] usb 2-1: Using ep0 maxpacket: 32 [ 145.158931][ T974] usb 2-1: New USB device found, idVendor=0c72, idProduct=000d, bcdDevice=27.9b [ 145.222491][ T974] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 145.256404][ T974] usb 2-1: Product: syz [ 145.260635][ T974] usb 2-1: Manufacturer: syz [ 145.271549][ T974] usb 2-1: SerialNumber: syz [ 145.288333][ T974] usb 2-1: config 0 descriptor?? [ 146.070600][ T6689] netlink: 'syz.4.190': attribute type 64 has an invalid length. [ 146.231521][ T6658] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 146.240036][ T6658] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 146.250440][ T6689] netlink: 12 bytes leftover after parsing attributes in process `syz.4.190'. [ 146.293444][ T974] peak_usb 2-1:0.0 can0: unable to request usb[type=2 value=5] err=-71 [ 146.355851][ T6692] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 147.030603][ T8] usb 1-1: USB disconnect, device number 4 [ 147.248357][ T974] peak_usb 2-1:0.0: probe with driver peak_usb failed with error -71 [ 147.263474][ T974] usb 2-1: USB disconnect, device number 4 [ 148.052677][ T8] appletouch 1-1:1.0: input: appletouch disconnected [ 148.705796][ T6702] Bluetooth: hci5: Frame reassembly failed (-84) [ 148.720301][ T6182] Bluetooth: hci5: Frame reassembly failed (-84) [ 148.824073][ T6707] netlink: 4 bytes leftover after parsing attributes in process `syz.2.196'. [ 148.901616][ T29] audit: type=1804 audit(1739715773.418:36): pid=6708 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.0.194" name="/newroot/37/file1/file0" dev="ramfs" ino=10111 res=1 errno=0 [ 149.011659][ T5875] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 149.543753][ T5875] usb 4-1: config 0 has an invalid interface number: 1 but max is 0 [ 149.561949][ T5875] usb 4-1: config 0 has no interface number 0 [ 149.574441][ T5875] usb 4-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b [ 149.592238][ T5875] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 149.611272][ T5875] usb 4-1: Product: syz [ 149.621257][ T5875] usb 4-1: Manufacturer: syz [ 149.645603][ T5875] usb 4-1: SerialNumber: syz [ 149.651711][ T5942] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 149.692470][ T5875] usb 4-1: config 0 descriptor?? [ 149.841969][ T5942] usb 2-1: Using ep0 maxpacket: 16 [ 149.852525][ T5942] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 149.870483][ T5942] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 149.882584][ T5942] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x2 has an invalid bInterval 0, changing to 7 [ 149.894519][ T5942] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 149.908468][ T6725] loop6: detected capacity change from 0 to 16384 [ 149.920287][ T5875] usb 4-1: dvb_usb_v2: found a 'E3C EC168 reference design' in cold state [ 149.930528][ T5942] usb 2-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42 [ 149.943629][ T5942] usb 2-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0 [ 149.952906][ T5942] usb 2-1: Manufacturer: syz [ 149.959424][ T5875] usb 4-1: Direct firmware load for dvb-usb-ec168.fw failed with error -2 [ 149.980155][ T5875] usb 4-1: Falling back to sysfs fallback for: dvb-usb-ec168.fw [ 149.989675][ T5942] usb 2-1: config 0 descriptor?? [ 150.743047][ T5833] Bluetooth: hci5: command 0x1003 tx timeout [ 150.841679][ T53] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 151.379131][ T6736] netlink: 16 bytes leftover after parsing attributes in process `syz.4.204'. [ 151.865548][ T974] usb 2-1: USB disconnect, device number 5 [ 151.988651][ T6737] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 152.038747][ T6737] CIFS mount error: No usable UNC path provided in device string! [ 152.038747][ T6737] [ 152.049144][ T6737] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 152.275262][ T6745] netlink: 16 bytes leftover after parsing attributes in process `syz.1.207'. [ 154.406822][ T4838] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 154.503840][ T4838] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 154.703543][ T6770] netlink: 16 bytes leftover after parsing attributes in process `syz.2.218'. [ 154.824134][ T6772] netlink: 194488 bytes leftover after parsing attributes in process `syz.2.218'. [ 154.838711][ T8] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 155.123764][ T4838] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 155.431905][ T8] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 156.174258][ T8] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 156.184112][ T8] usb 2-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00 [ 156.193676][ T8] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 156.350381][ T8] usb 2-1: config 0 descriptor?? [ 156.409758][ T4838] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 156.827922][ T6768] syz.3.219 (6768): drop_caches: 2 [ 156.846739][ T6768] Process accounting resumed [ 156.993650][ T5833] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 157.045925][ T5833] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 157.056757][ T5833] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 157.129515][ T5833] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 157.140763][ T5833] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 157.152896][ T5833] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 157.185678][ T6786] netlink: 16 bytes leftover after parsing attributes in process `syz.2.223'. [ 157.227611][ T6786] netlink: 194488 bytes leftover after parsing attributes in process `syz.2.223'. [ 157.372442][ T8] cp2112 0003:10C4:EA90.0004: unknown main item tag 0x0 [ 157.413795][ T8] cp2112 0003:10C4:EA90.0004: unknown main item tag 0x0 [ 157.458852][ T8] cp2112 0003:10C4:EA90.0004: hidraw0: USB HID v0.00 Device [HID 10c4:ea90] on usb-dummy_hcd.1-1/input0 [ 157.911802][ T6790] netlink: 16 bytes leftover after parsing attributes in process `syz.3.222'. [ 158.292793][ T6164] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 158.321953][ T6164] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 158.453294][ T4838] bridge_slave_1: left allmulticast mode [ 158.505554][ T4838] bridge_slave_1: left promiscuous mode [ 158.567463][ T4838] bridge0: port 2(bridge_slave_1) entered disabled state [ 158.824844][ T6801] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 159.396041][ T5833] Bluetooth: hci2: command tx timeout [ 159.476885][ T4838] bridge_slave_0: left promiscuous mode [ 159.497051][ T4838] bridge0: port 1(bridge_slave_0) entered disabled state [ 159.536040][ T8] cp2112 0003:10C4:EA90.0004: error requesting version [ 159.587217][ T8] cp2112 0003:10C4:EA90.0004: probe with driver cp2112 failed with error -71 [ 159.660835][ T8] usb 2-1: USB disconnect, device number 6 [ 159.783607][ T6804] overlay: Unknown parameter 'fowner>00000000000000000000' [ 160.667482][ T4838] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 160.690091][ T4838] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 160.713450][ T4838] bond0 (unregistering): Released all slaves [ 161.492869][ T5833] Bluetooth: hci2: command tx timeout [ 162.878944][ T6846] x_tables: ip_tables: rpfilter match: used from hooks FORWARD, but only valid from PREROUTING [ 163.541632][ T5833] Bluetooth: hci2: command tx timeout [ 164.017343][ T6782] chnl_net:caif_netlink_parms(): no params data found [ 164.448848][ T4838] hsr_slave_0: left promiscuous mode [ 164.553733][ T4838] hsr_slave_1: left promiscuous mode [ 164.570070][ T4838] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 164.605870][ T4838] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 165.629874][ T5833] Bluetooth: hci2: command tx timeout [ 165.654808][ T4838] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 165.663342][ T4838] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 165.742057][ T4838] bridge_slave_0: left allmulticast mode [ 165.748464][ T4838] veth1_macvtap: left promiscuous mode [ 165.755114][ T4838] veth0_macvtap: left promiscuous mode [ 165.761712][ T4838] veth1_vlan: left promiscuous mode [ 165.767295][ T4838] veth0_vlan: left promiscuous mode [ 166.073475][ T6878] netlink: 56 bytes leftover after parsing attributes in process `syz.1.241'. [ 168.209904][ T4838] team0 (unregistering): Port device team_slave_1 removed [ 168.244495][ T4838] team0 (unregistering): Port device team_slave_0 removed [ 169.379171][ T6896] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 169.404873][ T6782] bridge0: port 1(bridge_slave_0) entered blocking state [ 169.433884][ T6782] bridge0: port 1(bridge_slave_0) entered disabled state [ 169.441220][ T6782] bridge_slave_0: entered allmulticast mode [ 169.460412][ T6782] bridge_slave_0: entered promiscuous mode [ 169.492297][ T6782] bridge0: port 2(bridge_slave_1) entered blocking state [ 169.499408][ T6782] bridge0: port 2(bridge_slave_1) entered disabled state [ 169.560763][ T6782] bridge_slave_1: entered allmulticast mode [ 169.609089][ T6782] bridge_slave_1: entered promiscuous mode [ 171.006678][ T6782] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 171.204140][ T6782] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 171.295602][ T6936] Falling back ldisc for ttyS3. [ 171.406325][ T6782] team0: Port device team_slave_0 added [ 171.579043][ T6782] team0: Port device team_slave_1 added [ 172.798812][ T6782] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 172.873057][ T6782] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 172.899038][ C1] vkms_vblank_simulate: vblank timer overrun [ 172.944979][ T6782] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 172.946497][ T6952] netlink: 16 bytes leftover after parsing attributes in process `syz.0.259'. [ 172.958610][ T6782] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 172.975043][ T6782] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 173.027445][ T6782] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 174.060010][ T6782] hsr_slave_0: entered promiscuous mode [ 174.074738][ T6960] xt_ecn: cannot match TCP bits for non-tcp packets [ 174.085727][ T6782] hsr_slave_1: entered promiscuous mode [ 174.109291][ T6782] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 174.119339][ T6782] Cannot create hsr debugfs directory [ 175.487295][ T6782] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 175.575107][ T6782] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 175.612608][ T6782] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 175.614943][ T6988] capability: warning: `syz.2.269' uses 32-bit capabilities (legacy support in use) [ 175.755807][ T6782] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 175.822822][ T6993] delete_channel: no stack [ 175.997681][ T6782] 8021q: adding VLAN 0 to HW filter on device bond0 [ 176.032929][ T6782] 8021q: adding VLAN 0 to HW filter on device team0 [ 176.099695][ T6782] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 176.921863][ T5833] Bluetooth: hci0: command tx timeout [ 177.104138][ T6782] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 177.176620][ T7005] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 177.197031][ T7005] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 177.359478][ T6158] bridge0: port 1(bridge_slave_0) entered blocking state [ 177.366661][ T6158] bridge0: port 1(bridge_slave_0) entered forwarding state [ 177.401250][ T6158] bridge0: port 2(bridge_slave_1) entered blocking state [ 177.408447][ T6158] bridge0: port 2(bridge_slave_1) entered forwarding state [ 177.812585][ T7016] netlink: 16 bytes leftover after parsing attributes in process `syz.3.271'. [ 178.727391][ T6782] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 179.174579][ T7038] openvswitch: netlink: Invalid VLAN frame [ 179.436794][ T7045] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 181.241879][ T7074] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 181.317407][ T7074] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 181.784885][ T6782] veth0_vlan: entered promiscuous mode [ 182.020136][ T7079] loop2: detected capacity change from 0 to 7 [ 182.100425][ T7079] Dev loop2: unable to read RDB block 7 [ 182.105122][ T6782] veth1_vlan: entered promiscuous mode [ 182.106564][ T7079] loop2: unable to read partition table [ 182.903778][ T7079] loop2: partition table beyond EOD, truncated [ 182.992372][ T6782] veth0_macvtap: entered promiscuous mode [ 182.994718][ T7079] loop_reread_partitions: partition scan of loop2 (被x ) failed (rc=-5) [ 183.003136][ T6782] veth1_macvtap: entered promiscuous mode [ 183.079951][ T6782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 183.118432][ T6782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 183.142886][ T6782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 183.175289][ T6782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 183.197773][ T6782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 183.209099][ T6782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 183.221107][ T6782] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 183.234450][ T6782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 183.263821][ T6782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 183.353960][ T6782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 183.520179][ T7099] netlink: 194488 bytes leftover after parsing attributes in process `syz.3.288'. [ 183.897732][ T6782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 183.974835][ T6782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 184.107036][ T6782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 184.141298][ T6782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 184.158293][ T7104] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 184.163831][ T6782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 184.200471][ T6782] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 184.300253][ T6782] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 184.309008][ T6782] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 184.330344][ T6782] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 184.339699][ T6782] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 184.452031][ T7106] loop2: detected capacity change from 0 to 7 [ 184.470623][ T7106] Dev loop2: unable to read RDB block 7 [ 184.487144][ T7106] loop2: unable to read partition table [ 184.498044][ T7106] loop2: partition table beyond EOD, truncated [ 184.508701][ T7106] loop_reread_partitions: partition scan of loop2 (被x ) failed (rc=-5) [ 184.796632][ T6169] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 184.964067][ T6169] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 185.458386][ T5940] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 185.521643][ T5940] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 186.017256][ T7135] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 186.034716][ T7135] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 187.907381][ T7153] netlink: 'syz.1.302': attribute type 1 has an invalid length. [ 188.012001][ T7153] bond1: (slave ipip0): The slave device specified does not support setting the MAC address [ 188.025534][ T7153] bond1: (slave ipip0): Setting fail_over_mac to active for active-backup mode [ 188.044229][ T7153] bond1: (slave ipip0): making interface the new active one [ 188.054551][ T7153] bond1: (slave ipip0): Enslaving as an active interface with an up link [ 188.347638][ T7161] netlink: 16 bytes leftover after parsing attributes in process `syz.2.305'. [ 188.412609][ T7167] overlay: Unknown parameter 'euid>00000000000000000000' [ 188.421873][ T7168] netlink: 194488 bytes leftover after parsing attributes in process `syz.2.305'. [ 190.708502][ T7216] netlink: 12 bytes leftover after parsing attributes in process `syz.2.312'. [ 191.379732][ T7215] Can't find ip_set type has [ 192.101255][ T7219] hub 2-0:1.0: USB hub found [ 192.107497][ T7219] hub 2-0:1.0: 1 port detected [ 192.937657][ T7220] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 192.960476][ T7220] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 193.853705][ T7229] capability: warning: `syz.2.315' uses deprecated v2 capabilities in a way that may be insecure [ 193.865056][ T7229] program syz.2.315 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 194.112060][ T7236] netlink: 20 bytes leftover after parsing attributes in process `syz.1.316'. [ 195.626836][ T7255] netlink: 16 bytes leftover after parsing attributes in process `syz.1.321'. [ 196.437193][ T1293] ieee802154 phy0 wpan0: encryption failed: -22 [ 196.465170][ T1293] ieee802154 phy1 wpan1: encryption failed: -22 [ 196.716312][ T7277] loop2: detected capacity change from 0 to 7 [ 196.843124][ T7277] Dev loop2: unable to read RDB block 7 [ 196.960553][ T7277] loop2: unable to read partition table [ 197.029821][ T7277] loop2: partition table beyond EOD, truncated [ 197.080594][ T7277] loop_reread_partitions: partition scan of loop2 (被x ) failed (rc=-5) [ 197.837300][ T7288] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present [ 197.861275][ T7294] FAULT_INJECTION: forcing a failure. [ 197.861275][ T7294] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 197.912761][ T7294] CPU: 0 UID: 0 PID: 7294 Comm: syz.0.332 Not tainted 6.14.0-rc2-syzkaller-00281-g496659003dac #0 [ 197.912784][ T7294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 197.912794][ T7294] Call Trace: [ 197.912800][ T7294] [ 197.912806][ T7294] dump_stack_lvl+0x241/0x360 [ 197.912832][ T7294] ? __pfx_dump_stack_lvl+0x10/0x10 [ 197.912848][ T7294] ? __pfx__printk+0x10/0x10 [ 197.912872][ T7294] ? __pfx_lock_release+0x10/0x10 [ 197.912900][ T7294] should_fail_ex+0x40a/0x550 [ 197.912925][ T7294] _copy_from_user+0x2d/0xb0 [ 197.912944][ T7294] lo_ioctl+0x51e/0x2870 [ 197.912977][ T7294] ? validate_chain+0x11e/0x5920 [ 197.912992][ T7294] ? __pfx_lo_ioctl+0x10/0x10 [ 197.913022][ T7294] ? mark_lock+0x9a/0x360 [ 197.913048][ T7294] ? validate_chain+0x11e/0x5920 [ 197.913067][ T7294] ? mark_lock+0x9a/0x360 [ 197.913092][ T7294] ? __lock_acquire+0x1397/0x2100 [ 197.913137][ T7294] ? __pfx_lock_acquire+0x10/0x10 [ 197.913158][ T7294] ? is_bpf_text_address+0x26/0x2a0 [ 197.913179][ T7294] ? __pfx_lock_release+0x10/0x10 [ 197.913202][ T7294] ? unwind_next_frame+0x18e6/0x22d0 [ 197.913226][ T7294] ? preempt_count_add+0x93/0x190 [ 197.913251][ T7294] ? 0xffffffffa0001fcc [ 197.913265][ T7294] ? 0xffffffffa0001fcc [ 197.913279][ T7294] ? is_bpf_text_address+0x285/0x2a0 [ 197.913298][ T7294] ? is_bpf_text_address+0x26/0x2a0 [ 197.913320][ T7294] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 197.913339][ T7294] ? kernel_text_address+0xa7/0xe0 [ 197.913355][ T7294] ? __kernel_text_address+0xd/0x40 [ 197.913369][ T7294] ? unwind_get_return_address+0x4d/0x90 [ 197.913390][ T7294] ? arch_stack_walk+0xfd/0x150 [ 197.913422][ T7294] ? stack_trace_save+0x118/0x1d0 [ 197.913441][ T7294] ? __pfx_stack_trace_save+0x10/0x10 [ 197.913461][ T7294] ? stack_depot_save_flags+0x37/0x940 [ 197.913488][ T7294] ? kasan_save_track+0x51/0x80 [ 197.913505][ T7294] ? kasan_save_track+0x3f/0x80 [ 197.913522][ T7294] ? kasan_save_free_info+0x40/0x50 [ 197.913537][ T7294] ? __kasan_slab_free+0x59/0x70 [ 197.913554][ T7294] ? kfree+0x196/0x430 [ 197.913574][ T7294] ? tomoyo_path_number_perm+0x5dd/0x770 [ 197.913593][ T7294] ? security_file_ioctl+0xc6/0x2a0 [ 197.913612][ T7294] ? __se_sys_ioctl+0x46/0x170 [ 197.913629][ T7294] ? do_syscall_64+0xf3/0x230 [ 197.913646][ T7294] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 197.913669][ T7294] ? do_vfs_ioctl+0xf18/0x2770 [ 197.913693][ T7294] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 197.913715][ T7294] ? mark_lock+0x9a/0x360 [ 197.913749][ T7294] ? tomoyo_path_number_perm+0x209/0x770 [ 197.913770][ T7294] ? __pfx_lock_release+0x10/0x10 [ 197.913793][ T7294] ? tomoyo_path_number_perm+0x5dd/0x770 [ 197.913816][ T7294] ? tomoyo_path_number_perm+0x5dd/0x770 [ 197.913837][ T7294] ? blkdev_common_ioctl+0xfb2/0x2460 [ 197.913860][ T7294] ? __lock_acquire+0x1397/0x2100 [ 197.913880][ T7294] ? __pfx_blkdev_common_ioctl+0x10/0x10 [ 197.913899][ T7294] ? tomoyo_path_number_perm+0x209/0x770 [ 197.913947][ T7294] ? smack_file_ioctl+0x2a5/0x3b0 [ 197.913969][ T7294] ? __pfx_smack_file_ioctl+0x10/0x10 [ 197.913990][ T7294] ? file_to_blk_mode+0xcc/0x140 [ 197.914003][ T7294] ? __pfx_lo_ioctl+0x10/0x10 [ 197.914025][ T7294] blkdev_ioctl+0x5d0/0x6f0 [ 197.914046][ T7294] ? __pfx_blkdev_ioctl+0x10/0x10 [ 197.914070][ T7294] ? __pfx_blkdev_ioctl+0x10/0x10 [ 197.914091][ T7294] __se_sys_ioctl+0xf5/0x170 [ 197.914111][ T7294] do_syscall_64+0xf3/0x230 [ 197.914129][ T7294] ? clear_bhb_loop+0x35/0x90 [ 197.914151][ T7294] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 197.914174][ T7294] RIP: 0033:0x7f68f5b8cde9 [ 197.914188][ T7294] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 197.914201][ T7294] RSP: 002b:00007f68f6a25038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 197.914219][ T7294] RAX: ffffffffffffffda RBX: 00007f68f5da5fa0 RCX: 00007f68f5b8cde9 [ 197.914230][ T7294] RDX: 00004000000002c0 RSI: 0000000000004c0a RDI: 0000000000000003 [ 197.914245][ T7294] RBP: 00007f68f6a25090 R08: 0000000000000000 R09: 0000000000000000 [ 197.914255][ T7294] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 197.914265][ T7294] R13: 0000000000000000 R14: 00007f68f5da5fa0 R15: 00007ffd43f838d8 [ 197.914291][ T7294] [ 198.535903][ T7307] netlink: 16 bytes leftover after parsing attributes in process `syz.0.335'. [ 198.791350][ T5837] Bluetooth: hci0: command 0x0406 tx timeout [ 198.797917][ T5837] Bluetooth: hci1: command 0x0406 tx timeout [ 198.804821][ T5837] Bluetooth: hci3: command 0x0406 tx timeout [ 200.483444][ T7345] syzkaller0: entered promiscuous mode [ 200.498893][ T7345] syzkaller0: entered allmulticast mode [ 201.888593][ T7369] tipc: Started in network mode [ 201.893608][ T7369] tipc: Node identity 7f000001, cluster identity 4711 [ 201.904638][ T7369] tipc: Enabled bearer , priority 10 [ 204.063083][ T974] tipc: Node number set to 2130706433 [ 205.254920][ T7417] netlink: 'syz.5.369': attribute type 6 has an invalid length. [ 206.441009][ T7454] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns [ 206.468603][ T7454] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer. [ 206.800867][ T974] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 207.265605][ T974] usb 3-1: New USB device found, idVendor=0b95, idProduct=772b, bcdDevice=a2.4c [ 207.315964][ T7459] page: refcount:3 mapcount:1 mapping:ffff88807ecbb158 index:0x60 pfn:0x5d6b1 [ 207.319621][ T974] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 207.325986][ T7459] memcg:ffff88807bf18000 [ 207.326114][ T7459] aops:shmem_aops ino:449 [ 207.326135][ T7459] flags: 0xfff00000020129(locked|uptodate|lru|active|swapbacked|node=0|zone=1|lastcpupid=0x7ff) [ 207.353087][ T7459] raw: 00fff00000020129 ffffea000175ac08 ffffea0001b63808 ffff88807ecbb158 [ 207.361695][ T7459] raw: 0000000000000060 0000000000000000 0000000300000000 ffff88807bf18000 [ 207.370289][ T7459] page dumped because: VM_BUG_ON_FOLIO(folio_mapped(folio)) [ 207.377587][ T7459] page_owner tracks the page as allocated [ 207.384722][ T7459] page last allocated via order 0, migratetype Movable, gfp_mask 0x140cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP), pid 7453, tgid 7451 (syz.3.382), ts 206397949125, free_ts 206269248418 [ 207.402384][ T7459] post_alloc_hook+0x1f4/0x240 [ 207.407166][ T7459] get_page_from_freelist+0x3651/0x37a0 [ 207.412724][ T7459] __alloc_frozen_pages_noprof+0x292/0x710 [ 207.418553][ T7459] alloc_pages_mpol+0x311/0x660 [ 207.423416][ T7459] folio_alloc_mpol_noprof+0x36/0x70 [ 207.428713][ T7459] shmem_alloc_and_add_folio+0x4a0/0x1090 [ 207.434453][ T7459] shmem_get_folio_gfp+0x621/0x1840 [ 207.439657][ T7459] shmem_fault+0x220/0x5b0 [ 207.444084][ T7459] __do_fault+0x135/0x390 [ 207.448426][ T7459] __handle_mm_fault+0x4c44/0x70f0 [ 207.453543][ T7459] handle_mm_fault+0x2c1/0x7e0 [ 207.458315][ T7459] __get_user_pages+0x1a92/0x4140 [ 207.463353][ T7459] populate_vma_page_range+0x264/0x330 [ 207.468823][ T7459] __mm_populate+0x27a/0x460 [ 207.473424][ T7459] vm_mmap_pgoff+0x303/0x430 [ 207.478034][ T7459] do_syscall_64+0xf3/0x230 [ 207.482555][ T7459] page last free pid 7427 tgid 7419 stack trace: [ 207.488887][ T7459] free_unref_folios+0xe2f/0x18a0 [ 207.493927][ T7459] folios_put_refs+0x76c/0x860 [ 207.498709][ T7459] shmem_undo_range+0x593/0x1820 [ 207.503668][ T7459] shmem_evict_inode+0x29b/0xa80 [ 207.508622][ T7459] evict+0x4e8/0x9a0 [ 207.512530][ T7459] __dentry_kill+0x20d/0x630 [ 207.517128][ T7459] dput+0x19f/0x2b0 [ 207.520945][ T7459] __fput+0x60b/0x9f0 [ 207.524939][ T7459] task_work_run+0x24f/0x310 [ 207.529540][ T7459] do_exit+0xa2a/0x28e0 [ 207.533707][ T7459] do_group_exit+0x207/0x2c0 [ 207.538319][ T7459] get_signal+0x168c/0x1720 [ 207.542830][ T7459] arch_do_signal_or_restart+0x96/0x860 [ 207.548386][ T7459] syscall_exit_to_user_mode+0xce/0x340 [ 207.553945][ T7459] do_syscall_64+0x100/0x230 [ 207.558541][ T7459] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 207.564562][ T7459] ------------[ cut here ]------------ [ 207.570024][ T7459] kernel BUG at mm/filemap.c:154! [ 207.575076][ T7459] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI [ 207.582016][ T7459] CPU: 0 UID: 0 PID: 7459 Comm: syz.3.382 Not tainted 6.14.0-rc2-syzkaller-00281-g496659003dac #0 [ 207.592608][ T7459] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 207.602672][ T7459] RIP: 0010:filemap_unaccount_folio+0x73d/0x7d0 [ 207.608927][ T7459] Code: cd c7 ff 48 89 df 48 c7 c6 c0 d6 33 8c e8 1b 27 10 00 90 0f 0b e8 e3 cd c7 ff 48 89 df 48 c7 c6 a0 d5 33 8c e8 04 27 10 00 90 <0f> 0b e8 cc cd c7 ff 48 89 df 48 c7 c6 c0 d6 33 8c e8 ed 26 10 00 [ 207.628542][ T7459] RSP: 0018:ffffc9000340f070 EFLAGS: 00010046 [ 207.634618][ T7459] RAX: d5802ca9c0967e00 RBX: ffffea000175ac40 RCX: ffffc9000340ec03 [ 207.642596][ T7459] RDX: 0000000000000002 RSI: ffffffff8c2ab6a0 RDI: ffffffff8c801880 [ 207.650570][ T7459] RBP: 0000000000000000 R08: ffffffff903bb377 R09: 1ffffffff207766e [ 207.658545][ T7459] R10: dffffc0000000000 R11: fffffbfff207766f R12: dffffc0000000000 [ 207.666517][ T7459] R13: 1ffffd40002eb589 R14: ffff88807ecbb158 R15: ffffea000175ac48 [ 207.674502][ T7459] FS: 0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000 [ 207.683434][ T7459] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 207.690023][ T7459] CR2: 0000556c264d7680 CR3: 000000000e938000 CR4: 00000000003526f0 [ 207.698090][ T7459] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 207.706066][ T7459] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 207.714040][ T7459] Call Trace: [ 207.717317][ T7459] [ 207.720238][ T7459] ? __die_body+0x5f/0xb0 [ 207.724569][ T7459] ? die+0x9e/0xc0 [ 207.728281][ T7459] ? do_trap+0x15a/0x3a0 [ 207.732514][ T7459] ? filemap_unaccount_folio+0x73d/0x7d0 [ 207.738134][ T7459] ? do_error_trap+0x1dc/0x2c0 [ 207.742887][ T7459] ? filemap_unaccount_folio+0x73d/0x7d0 [ 207.748516][ T7459] ? __pfx_do_error_trap+0x10/0x10 [ 207.753617][ T7459] ? report_bug+0x3cd/0x500 [ 207.758113][ T7459] ? handle_invalid_op+0x34/0x40 [ 207.763038][ T7459] ? filemap_unaccount_folio+0x73d/0x7d0 [ 207.768661][ T7459] ? exc_invalid_op+0x38/0x50 [ 207.773337][ T7459] ? asm_exc_invalid_op+0x1a/0x20 [ 207.778369][ T7459] ? filemap_unaccount_folio+0x73d/0x7d0 [ 207.784010][ T7459] __filemap_remove_folio+0xc7/0x670 [ 207.789283][ T7459] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 207.794652][ T7459] ? __pfx___filemap_remove_folio+0x10/0x10 [ 207.800537][ T7459] ? _raw_spin_lock_irq+0xdf/0x120 [ 207.805643][ T7459] ? __pfx__raw_spin_lock_irq+0x10/0x10 [ 207.811181][ T7459] filemap_remove_folio+0xe1/0x1f0 [ 207.816282][ T7459] truncate_inode_folio+0x5d/0x70 [ 207.821299][ T7459] shmem_undo_range+0x44b/0x1820 [ 207.826228][ T7459] ? validate_chain+0x11e/0x5920 [ 207.831154][ T7459] ? __pfx_shmem_undo_range+0x10/0x10 [ 207.836521][ T7459] ? __pfx_validate_chain+0x10/0x10 [ 207.841735][ T7459] ? percpu_counter_add_batch+0xff/0x1f0 [ 207.847358][ T7459] shmem_evict_inode+0x29b/0xa80 [ 207.852288][ T7459] ? inode_wait_for_writeback+0x111/0x2a0 [ 207.857992][ T7459] ? __pfx_shmem_evict_inode+0x10/0x10 [ 207.863444][ T7459] ? do_raw_spin_unlock+0x13c/0x8b0 [ 207.868632][ T7459] ? __pfx_shmem_evict_inode+0x10/0x10 [ 207.874082][ T7459] evict+0x4e8/0x9a0 [ 207.877968][ T7459] ? __pfx_evict+0x10/0x10 [ 207.882374][ T7459] ? iput+0x713/0xa50 [ 207.886344][ T7459] __dentry_kill+0x20d/0x630 [ 207.890923][ T7459] ? dput+0x37/0x2b0 [ 207.894804][ T7459] dput+0x19f/0x2b0 [ 207.898599][ T7459] __fput+0x60b/0x9f0 [ 207.902570][ T7459] task_work_run+0x24f/0x310 [ 207.907154][ T7459] ? __pfx_task_work_run+0x10/0x10 [ 207.912258][ T7459] ? switch_task_namespaces+0xe4/0x110 [ 207.917711][ T7459] do_exit+0xa2a/0x28e0 [ 207.921873][ T7459] ? __pfx_do_exit+0x10/0x10 [ 207.926462][ T7459] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 207.931830][ T7459] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 207.937801][ T7459] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 207.944120][ T7459] ? _raw_spin_lock_irq+0xdf/0x120 [ 207.949229][ T7459] do_group_exit+0x207/0x2c0 [ 207.953814][ T7459] ? _raw_spin_unlock_irq+0x23/0x50 [ 207.958999][ T7459] ? lockdep_hardirqs_on+0x99/0x150 [ 207.964185][ T7459] get_signal+0x168c/0x1720 [ 207.968683][ T7459] ? __pfx_get_signal+0x10/0x10 [ 207.973530][ T7459] arch_do_signal_or_restart+0x96/0x860 [ 207.979066][ T7459] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 207.985206][ T7459] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 207.991179][ T7459] ? syscall_exit_to_user_mode+0xa3/0x340 [ 207.996889][ T7459] syscall_exit_to_user_mode+0xce/0x340 [ 208.002427][ T7459] do_syscall_64+0x100/0x230 [ 208.007007][ T7459] ? clear_bhb_loop+0x35/0x90 [ 208.011680][ T7459] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 208.017568][ T7459] RIP: 0033:0x7f925778cde9 [ 208.021971][ T7459] Code: Unable to access opcode bytes at 0x7f925778cdbf. [ 208.028971][ T7459] RSP: 002b:00007f92585200e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 208.037375][ T7459] RAX: fffffffffffffe00 RBX: 00007f92579a6168 RCX: 00007f925778cde9 [ 208.045335][ T7459] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f92579a6168 [ 208.053293][ T7459] RBP: 00007f92579a6160 R08: 0000000000000000 R09: 0000000000000000 [ 208.061249][ T7459] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f92579a616c [ 208.069212][ T7459] R13: 0000000000000000 R14: 00007ffc9831bad0 R15: 00007ffc9831bbb8 [ 208.077178][ T7459] [ 208.080181][ T7459] Modules linked in: [ 208.084077][ T7459] ---[ end trace 0000000000000000 ]--- [ 208.089520][ T7459] RIP: 0010:filemap_unaccount_folio+0x73d/0x7d0 [ 208.095748][ T7459] Code: cd c7 ff 48 89 df 48 c7 c6 c0 d6 33 8c e8 1b 27 10 00 90 0f 0b e8 e3 cd c7 ff 48 89 df 48 c7 c6 a0 d5 33 8c e8 04 27 10 00 90 <0f> 0b e8 cc cd c7 ff 48 89 df 48 c7 c6 c0 d6 33 8c e8 ed 26 10 00 [ 208.115344][ T7459] RSP: 0018:ffffc9000340f070 EFLAGS: 00010046 [ 208.121402][ T7459] RAX: d5802ca9c0967e00 RBX: ffffea000175ac40 RCX: ffffc9000340ec03 [ 208.129358][ T7459] RDX: 0000000000000002 RSI: ffffffff8c2ab6a0 RDI: ffffffff8c801880 [ 208.137314][ T7459] RBP: 0000000000000000 R08: ffffffff903bb377 R09: 1ffffffff207766e [ 208.145273][ T7459] R10: dffffc0000000000 R11: fffffbfff207766f R12: dffffc0000000000 [ 208.153234][ T7459] R13: 1ffffd40002eb589 R14: ffff88807ecbb158 R15: ffffea000175ac48 [ 208.161193][ T7459] FS: 0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000 [ 208.170108][ T7459] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 208.176680][ T7459] CR2: 0000556c264d7680 CR3: 000000000e938000 CR4: 00000000003526f0 [ 208.184644][ T7459] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 208.192600][ T7459] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 208.200568][ T7459] Kernel panic - not syncing: Fatal exception [ 208.206861][ T7459] Kernel Offset: disabled [ 208.211175][ T7459] Rebooting in 86400 seconds..