last executing test programs: 8.243518785s ago: executing program 2 (id=1493): bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000080)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x71, 0x10, 0x35}, [@ldst={0x6, 0x0, 0x6}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000000c0), 0x366, 0x10, &(0x7f0000000000), 0x2b2}, 0x48) 8.02489104s ago: executing program 2 (id=1495): io_setup(0x3, &(0x7f0000000180)=0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10) io_submit(r0, 0x1, &(0x7f0000000040)=[&(0x7f00000000c0)={0x0, 0x300, 0x0, 0x5, 0x0, 0xffffffffffffffff, 0x0}]) 7.929358832s ago: executing program 2 (id=1496): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1}, 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000001540)=""/155}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) syz_emit_ethernet(0x3e, &(0x7f00000003c0)={@link_local, @random="50a245d5cde0", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x6c, 0x0, @empty, @broadcast}, @dest_unreach={0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, @rand_addr, @initdev={0xac, 0x1e, 0x0, 0x0}}}}}}}, 0x0) 7.757277597s ago: executing program 2 (id=1497): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x3, 0x5}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000c00)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) quotactl$Q_QUOTAON(0xffffffff80000202, &(0x7f0000000080)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000240)='./file0\x00') 7.578356625s ago: executing program 2 (id=1498): io_setup(0x3, &(0x7f0000000180)=0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r1, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10) io_submit(r0, 0x1, &(0x7f0000000040)=[&(0x7f00000000c0)={0x0, 0x300, 0x0, 0x5, 0x0, 0xffffffffffffffff, 0x0}]) 7.397722648s ago: executing program 2 (id=1499): bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1}, 0x48) bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1}, 0x48) r0 = socket$tipc(0x1e, 0x5, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bind$tipc(r0, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10) setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000000)={0x42, 0x1}, 0x10) r1 = socket$tipc(0x1e, 0x5, 0x0) bind$tipc(r1, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x1, 0x5}}, 0x10) setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000240)={0x42, 0x1}, 0x10) bind$tipc(r0, 0x0, 0x0) 7.075476292s ago: executing program 1 (id=1501): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x1e7d, 0x319c, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000400)={0x2c, &(0x7f0000000280)={0x0, 0x0, 0x7, {0x7, 0x0, "5a7da32917"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000440)={0x2c, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20, 0x1, 0x3, 'aBT'}, 0x0}) 4.632747954s ago: executing program 1 (id=1515): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.swap.events\x00', 0x275a, 0x0) flistxattr(r0, 0x0, 0x0) 4.540271041s ago: executing program 1 (id=1516): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, 0x0}) openat(0xffffffffffffff9c, &(0x7f0000000000)='./bus\x00', 0x103042, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6) sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0x5) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000001700)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) getpgid(0x0) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000021c0)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9046c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4e0664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465a932b77a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900000000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b6c7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48fc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa7666b5ded16ee7025f38400be7c1f001b2cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890decacec55bf404e4e1f74b7eed82571be54c72d978cf906df0042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf0e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b3a2327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a998de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270bb29b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4f4ab9e85bf8c6d71a2214d00000000d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f4f5b308cf0d031b0c7f0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f68df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51700eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd63bed8d31c31c37a373d4efd89f80a4377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f00000000010000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fa03b84f63e022fe755f4007a4a899eaf52c4f491d8e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c716357d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6cd28cf28fe2ee593e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c24936615ee68538e8fddd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c191355391771f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba1c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63c41cbde2ba66ad81168070c8c6e18abde34ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c514b37c668554d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c7340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f14eafe4b28ec66815cf8d1f56aa1424bc9b5d58790298e5b310d69e50c222563b54e60854e1bfeef448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab916a781b9912160a3fd2a2e74df190c57bdfdc1f069f9491bca7a8c59363799be70018c25ece5ad7307dc7a95c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677ec97c5c568a89d6e36b165c39132a0f2708e09ae8268dcc15411483b8506386aa0ece2a94c320b002c77f82cb3cc96c34f7831844cc748e662675a7713c7067081cac15994698c41ff4754268ae2676384ff799783f55d7e5a1a092a01b965dc99cb7a9d98440c355927629f2bcf9dc2396eb2f5d25829715b24327642ac48f1201014a95e0e65e12cdf27e19043e3c5d3e798375cead35b9a93190a52cdecaaccc854a1d41ef365303f0e9b4fc969c9dab6df5e8a795b140fcc09e8a7b694d12932917facd8ceaa4e2d0d16bb0b95387fcd5ff136d8abddf94daf442bbff744591931872a36cf921ad69f2127386e8b0f9afee4da8d3fbec809fbb3ca0fded2859cf25d4c6155d396c5b9bd1a928923123f63f4c40688eae4c697bfc674e03231c42f7eaaf5166bbc4653c71805f9448416e379cc1c40f8f866c9b319a849dd00ff9b84857436ed362c4632bfc3fa7357c24f15bbb07bd91893e61df7eb6dc5e071a9cc2faa7a32a91c4d982f5cfb725dca80b23874877a4980dbd70cda040b1ce527e7188159df77b493efbbd7bfe2680bf44e49eb68e5e33a0a5726072b2699d6244cd5c4a82bf18c668a3d43cec78c5fe1f12283d5dde6d0ea0b1b81ee7c065c938577e4ec93f22f1e6106f337625b7f7798011a60a75c35731fe44fa4fc6add59bac24d045a5780a0737b0f09e9127e9df798a1a58434b00d64ea6121afab030d1100905b6b5ecfd2991dd523098dbfaa85c0067884f987dde054a7ba1a95c1815c40a45878dd97a2721b28db7c52230dc999c4416b2af946ee708001cac72dd4ee55eae2d598cff47e4b929f3"], 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10) getrlimit(0x0, 0x0) r4 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r4, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r6 = dup(r5) sendmsg$inet(r6, &(0x7f0000000780)={&(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f0000000000)="be39", 0x3500}], 0x1, &(0x7f0000000040)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @initdev={0xac, 0x1e, 0x0, 0x0}}}}], 0x20}, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) readlinkat(0xffffffffffffffff, 0x0, &(0x7f00000013c0)=""/4090, 0xffa) 3.720959097s ago: executing program 0 (id=1520): r0 = socket$tipc(0x1e, 0x5, 0x0) bind$tipc(r0, &(0x7f0000000200)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0xfffffffd}}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) write(0xffffffffffffffff, &(0x7f0000000400)="6f88b2a60614ef91a3f8ef9e1220b2675bce0f59b2", 0x15) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000400)={{{@in6=@private1, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0xa}}, {{@in, 0x0, 0x32}, 0x0, @in=@empty}}, 0xe8) sendmmsg$inet6(r2, &(0x7f00000090c0)=[{{&(0x7f0000000000)={0xa, 0x4e21, 0x0, @empty}, 0x1c, 0x0}}], 0x1, 0x14) mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) umount2(&(0x7f00000002c0)='./file0\x00', 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@bloom_filter={0x1e, 0x5, 0xffff, 0x7, 0x2010, 0xffffffffffffffff, 0xff, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x1, 0x5, 0x1}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=@framed={{}, [@printk={@p, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x71}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bind$tipc(r0, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0x2}}, 0x10) r3 = socket$tipc(0x1e, 0x5, 0x0) bind$tipc(r3, &(0x7f00000000c0)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10) bind$tipc(r3, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x3, 0x4}}, 0x10) openat$hwrng(0xffffffffffffff9c, &(0x7f0000000240), 0x200000, 0x0) 3.261303416s ago: executing program 1 (id=1524): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x24}}, 0x0) getsockname$packet(r2, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="4800000010000507000000000000000016000000", @ANYRES32=r3, @ANYBLOB="0000000200000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000540)=@newtfilter={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r3}}, 0x24}}, 0x0) 3.167336699s ago: executing program 3 (id=1525): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x80001}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x200000}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) utime(0x0, 0x0) 3.052733s ago: executing program 0 (id=1526): r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000080)=0x454e, 0x4) bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10) setsockopt$sock_int(r0, 0x1, 0xc, &(0x7f0000000000)=0x56, 0x4) sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0) 2.962320046s ago: executing program 3 (id=1527): sendmsg$ETHTOOL_MSG_STRSET_GET(0xffffffffffffffff, 0x0, 0x0) r0 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r1 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) readv(r1, &(0x7f0000000400)=[{&(0x7f0000000480)=""/174, 0xae}], 0x1) 2.487822317s ago: executing program 0 (id=1528): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/16, @ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r3 = syz_open_procfs(0x0, &(0x7f0000000280)='oom_score_adj\x00') preadv(r3, &(0x7f0000001400)=[{&(0x7f0000000040)=""/113, 0x200000b1}], 0x1, 0x300, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32], 0x0, 0x0, 0xfffffffffffffe85, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) keyctl$set_reqkey_keyring(0xe, 0x2) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00'}, 0x10) ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, &(0x7f0000000100)) r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r5 = dup3(r4, 0xffffffffffffffff, 0x0) openat$binderfs(0xffffffffffffff9c, &(0x7f00000005c0)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340), 0x0, 0x0, 0x0}) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000005c40)={0x0, 0x0, &(0x7f0000005c00)={&(0x7f0000000000)=@newtaction={0x98, 0x30, 0x1, 0x0, 0x0, {}, [{0x84, 0x1, [@m_bpf={0x80, 0x0, 0x0, 0x0, {{0x8}, {0x58, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS={0x3c, 0x4, [{}, {0x45, 0x0, 0x2}, {}, {}, {0x7ff}, {0x0, 0x0, 0x7}, {0x6}]}, @TCA_ACT_BPF_PARMS={0x18}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0x98}}, 0x0) 1.857641747s ago: executing program 0 (id=1529): r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f3, &(0x7f0000001040)={'gre0\x00', &(0x7f00000000c0)={'syztnl2\x00', 0x0, 0x0, 0xab00, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x2f, 0x0, @empty, @empty}}}}) 1.856402002s ago: executing program 3 (id=1530): r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCL_GETMOUSEREPORTING(r0, 0x5412, &(0x7f0000000400)=0x13) poll(&(0x7f0000000180)=[{r0, 0x400f}], 0x1, 0xe7f5) ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000040)={0x3d17, 0x0, 0x0, 0x7, 0x0, "7e12105588e633bbb1df022dace17a32d211ee"}) ioctl$TIOCL_GETMOUSEREPORTING(r0, 0x5412, &(0x7f00000006c0)=0xa) 1.648461692s ago: executing program 3 (id=1531): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x80001}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x200000}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) utime(&(0x7f0000000380)='./file0\x00', 0x0) 733.607525ms ago: executing program 0 (id=1532): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000000)='mark_victim\x00', r0}, 0x10) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4) bpf$PROG_LOAD(0x5, 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f0000000580)=@abs={0x0, 0x0, 0x40001}, 0x2f) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000300), 0xc, &(0x7f0000000400)={&(0x7f0000000880)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="010027bd7000fbdbdf282000000008000359cb4cad676fd8657130653977e0d3be1e013f3545bad58c631629bf6a834ff821c0973ee9bea1e86cea86aace17d29d026094436c95544c218356389e94f2b8ff60252ffc46591a25d6a4b92f4fb85b9057fa8bdd9f1eaa8468b130f603dfcf31f1e10c421be39f52e0b284083a8e77f9defd257b2aad5dd14f226db396f32de81a62198f694d27b0f8000000000000000000", @ANYRES32=0x0], 0x28}, 0x1, 0x0, 0x0, 0xc000}, 0x10) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0) umount2(&(0x7f0000000380)='./file0\x00', 0x0) r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000000c0)=0xf) ioctl$TCFLSH(r6, 0x400455c8, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 663.064582ms ago: executing program 1 (id=1533): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) r2 = dup(r1) sendmsg$netlink(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000540)=ANY=[], 0x1b8}, {0x0, 0x1f88}], 0x2}, 0x0) 662.687433ms ago: executing program 3 (id=1534): socket$packet(0x11, 0x2, 0x300) bind$bt_hci(0xffffffffffffffff, 0x0, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'team0\x00', 0x0}) bpf$MAP_CREATE(0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000780)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)=@ipv4_deladdr={0x3c, 0x15, 0x800, 0x70bd27, 0x25dfdbfc, {0x2, 0x40, 0x7b, 0x0, r0}, [@IFA_FLAGS={0x8, 0x8, 0x240}, @IFA_CACHEINFO={0x14, 0x6, {0x9, 0xf7, 0xd501, 0x1}}, @IFA_TARGET_NETNSID={0x8, 0xa, 0x2}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4000}, 0x8010) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setaffinity(0x0, 0x0, 0x0) sched_setscheduler(r2, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48) r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x2d) socket$packet(0x11, 0x0, 0x300) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10) r7 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x74000000, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="4c00000010004b0400f4ed00000000007a000000", @ANYRES32=0x0, @ANYBLOB="00000000000000002c0012800b00010062726964676500001c00028008000400000000000600060000000000060009"], 0x4c}}, 0x0) 556.703285ms ago: executing program 1 (id=1535): socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) socket(0x1e, 0x4, 0x0) socket(0x1e, 0x4, 0x0) getsockopt$nfc_llcp(0xffffffffffffffff, 0x6a, 0x3, 0x0, 0x20000071) r0 = socket$vsock_stream(0x28, 0x1, 0x0) r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r3 = socket$xdp(0x2c, 0x3, 0x0) getsockopt$XDP_STATISTICS(r3, 0x11b, 0x8, &(0x7f0000003140), &(0x7f0000000040)=0x30) ioctl$sock_TIOCINQ(r0, 0x541b, &(0x7f0000000000)) socket$nl_generic(0x10, 0x3, 0x10) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 403.081444ms ago: executing program 0 (id=1536): connect$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x0, 0x0, @remote, 0x1}, 0x1c) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1d, 0x4, 0xfff, 0x5}, 0x48) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) setsockopt$bt_BT_CHANNEL_POLICY(0xffffffffffffffff, 0x112, 0xa, &(0x7f0000000500)=0x8, 0x4) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = socket$inet(0x2, 0x2, 0x0) r5 = socket$netlink(0x10, 0x3, 0x0) writev(r5, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1) writev(r5, &(0x7f0000000300)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1) setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40) setsockopt$inet_msfilter(0xffffffffffffffff, 0x0, 0x29, &(0x7f0000000000)=ANY=[@ANYBLOB="e00000027f000a010000000004"], 0x57) setsockopt$inet_mreqsrc(r4, 0x0, 0x24, &(0x7f0000000440)={@multicast2, @loopback, @empty}, 0xc) io_setup(0x7, &(0x7f0000000280)=0x0) io_submit(r6, 0x0, &(0x7f0000000880)) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000080)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x71, 0x10, 0x35}, [@ldst={0x6, 0x0, 0x6}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000000c0), 0x366, 0x10, &(0x7f0000000000), 0x2b2}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000005efe2100850000006d00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) 0s ago: executing program 3 (id=1537): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x3, 0x5}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000c00)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r3, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff"], 0x15) r4 = dup(r3) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4]) write$FUSE_BMAP(r4, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_DIRENTPLUS(r4, &(0x7f00000006c0)=ANY=[@ANYBLOB="b8"], 0xb8) write$FUSE_NOTIFY_RETRIEVE(r4, &(0x7f00000000c0)={0x14c}, 0x137) mount$9p_fd(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r3]) mkdir(&(0x7f00000000c0)='./file0/file0\x00', 0x0) kernel console output (not intermixed with test programs): 877][ T7455] ___sys_sendmsg+0x135/0x1e0 [ 146.599840][ T7455] ? __pfx____sys_sendmsg+0x10/0x10 [ 146.602150][ T7455] ? ksys_write+0x21c/0x260 [ 146.604085][ T7455] ? __fget_light+0x173/0x210 [ 146.606124][ T7455] __sys_sendmsg+0x117/0x1f0 [ 146.608204][ T7455] ? __pfx___sys_sendmsg+0x10/0x10 [ 146.610542][ T7455] __do_fast_syscall_32+0x73/0x120 [ 146.612781][ T7455] do_fast_syscall_32+0x32/0x80 [ 146.614954][ T7455] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 146.617896][ T7455] RIP: 0023:0xf7fd1579 [ 146.619714][ T7455] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 146.627760][ T7455] RSP: 002b:00000000f577656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 146.631029][ T7455] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000080 [ 146.633946][ T7455] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 146.636784][ T7455] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 146.639994][ T7455] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 146.643303][ T7455] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 146.646642][ T7455] [ 147.495579][ T5346] Bluetooth: hci11: command tx timeout [ 147.659674][ T4769] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1 [ 147.663577][ T4769] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9 [ 147.666752][ T4769] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9 [ 147.670952][ T4769] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4 [ 147.673708][ T4769] Bluetooth: hci12: unexpected cc 0x0c25 length: 249 > 3 [ 147.676290][ T4769] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2 [ 147.932096][ T7465] chnl_net:caif_netlink_parms(): no params data found [ 148.102016][ T7465] bridge0: port 1(bridge_slave_0) entered blocking state [ 148.106390][ T7465] bridge0: port 1(bridge_slave_0) entered disabled state [ 148.109490][ T7465] bridge_slave_0: entered allmulticast mode [ 148.116587][ T7465] bridge_slave_0: entered promiscuous mode [ 148.121635][ T7465] bridge0: port 2(bridge_slave_1) entered blocking state [ 148.124747][ T7465] bridge0: port 2(bridge_slave_1) entered disabled state [ 148.128831][ T7465] bridge_slave_1: entered allmulticast mode [ 148.132566][ T7465] bridge_slave_1: entered promiscuous mode [ 148.196842][ T7465] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 148.203579][ T7465] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 148.277945][ T7465] team0: Port device team_slave_0 added [ 148.282587][ T7465] team0: Port device team_slave_1 added [ 148.344936][ T7465] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 148.348423][ T7465] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 148.359016][ T7465] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 148.365321][ T7465] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 148.369704][ T7465] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 148.380322][ T7465] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 148.452044][ T7465] hsr_slave_0: entered promiscuous mode [ 148.455645][ T7465] hsr_slave_1: entered promiscuous mode [ 148.458756][ T7465] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 148.461970][ T7465] Cannot create hsr debugfs directory [ 148.649259][ T7465] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 148.750411][ T7465] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 148.872972][ T7465] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 148.983258][ T7465] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 149.207168][ T7465] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 149.213899][ T7465] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 149.222156][ T7465] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 149.238468][ T7465] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 149.355073][ T7465] 8021q: adding VLAN 0 to HW filter on device bond0 [ 149.378079][ T7465] 8021q: adding VLAN 0 to HW filter on device team0 [ 149.386829][ T1100] bridge0: port 1(bridge_slave_0) entered blocking state [ 149.390071][ T1100] bridge0: port 1(bridge_slave_0) entered forwarding state [ 149.413147][ T1100] bridge0: port 2(bridge_slave_1) entered blocking state [ 149.416251][ T1100] bridge0: port 2(bridge_slave_1) entered forwarding state [ 149.575707][ T4769] Bluetooth: hci11: command tx timeout [ 149.699875][ T7465] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 149.735616][ T4769] Bluetooth: hci12: command tx timeout [ 149.775209][ T7465] veth0_vlan: entered promiscuous mode [ 149.785976][ T7465] veth1_vlan: entered promiscuous mode [ 149.823450][ T7465] veth0_macvtap: entered promiscuous mode [ 149.830945][ T7465] veth1_macvtap: entered promiscuous mode [ 149.849203][ T7465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 149.853792][ T7465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 149.858607][ T7465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 149.863207][ T7465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 149.867996][ T7465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 149.872681][ T7465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 149.877472][ T7465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 149.882015][ T7465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 149.887650][ T7465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 149.892153][ T7465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 149.896935][ T7465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 149.901568][ T7465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 149.907189][ T7465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 149.911850][ T7465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 149.916528][ T7465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 149.921083][ T7465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 149.925441][ T7465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 149.930037][ T7465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 149.935275][ T7465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 149.940081][ T7465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 149.944371][ T7465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 149.951915][ T7465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 149.956946][ T7465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 149.961582][ T7465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 149.968395][ T7465] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 149.985098][ T7465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 149.991346][ T7465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 150.004540][ T7465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 150.009270][ T7465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 150.013528][ T7465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 150.026512][ T7465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 150.030816][ T7465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 150.035231][ T7465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 150.050550][ T7465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 150.054981][ T7465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 150.063626][ T7465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 150.073176][ T7465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 150.077816][ T7465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 150.082335][ T7465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 150.087128][ T7465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 150.091348][ T7465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 150.095418][ T7465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 150.099916][ T7465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 150.104055][ T7465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 150.108722][ T7465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 150.112995][ T7465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 150.117666][ T7465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 150.121922][ T7465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 150.126727][ T7465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 150.132998][ T7465] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 150.141520][ T7465] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 150.145433][ T7465] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 150.149587][ T7465] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 150.155191][ T7465] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 150.233261][ T7699] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 150.281377][ T1099] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 150.284458][ T1099] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 150.315980][ T82] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 150.319800][ T82] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 151.819457][ T4769] Bluetooth: hci12: command tx timeout [ 152.736373][T10371] FAULT_INJECTION: forcing a failure. [ 152.736373][T10371] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 152.742185][T10371] CPU: 3 UID: 0 PID: 10371 Comm: syz.1.395 Not tainted 6.11.0-rc3-syzkaller-00066-g1fb918967b56 #0 [ 152.747179][T10371] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 152.752061][T10371] Call Trace: [ 152.753617][T10371] [ 152.754889][T10371] dump_stack_lvl+0x16c/0x1f0 [ 152.757024][T10371] should_fail_ex+0x497/0x5b0 [ 152.759208][T10371] _copy_from_user+0x30/0xf0 [ 152.761326][T10371] do_ip_getsockopt+0x314/0x2bf0 [ 152.763470][T10371] ? __pfx_do_ip_getsockopt+0x10/0x10 [ 152.765871][T10371] ? __pfx_mark_lock+0x10/0x10 [ 152.768095][T10371] ? __lock_acquire+0xbdd/0x3cb0 [ 152.770176][T10371] ? __pfx_aa_label_sk_perm+0x10/0x10 [ 152.772041][T10371] ? __might_fault+0x13b/0x190 [ 152.773792][T10371] ? __pfx___lock_acquire+0x10/0x10 [ 152.775854][T10371] ? hlock_class+0x4e/0x130 [ 152.777934][T10371] ? __pfx___might_resched+0x10/0x10 [ 152.780356][T10371] ? __pfx___lock_acquire+0x10/0x10 [ 152.782732][T10371] ? __pfx_lock_release+0x10/0x10 [ 152.784923][T10371] ip_getsockopt+0x9c/0x1e0 [ 152.786946][T10371] ? __pfx_ip_getsockopt+0x10/0x10 [ 152.789207][T10371] ? find_held_lock+0x2d/0x110 [ 152.791329][T10371] ? __pfx_sock_common_getsockopt+0x10/0x10 [ 152.793938][T10371] raw_getsockopt+0x4d/0x1e0 [ 152.795991][T10371] do_sock_getsockopt+0x2e5/0x7c0 [ 152.798224][T10371] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 152.800670][T10371] ? __fget_files+0x256/0x400 [ 152.802756][T10371] ? __fget_light+0x173/0x210 [ 152.804873][T10371] __sys_getsockopt+0x1a1/0x270 [ 152.807068][T10371] ? __pfx___sys_getsockopt+0x10/0x10 [ 152.809846][T10371] ? fput+0x32/0x390 [ 152.811550][T10371] ? ksys_write+0x1ab/0x260 [ 152.813517][T10371] ? __pfx_ksys_write+0x10/0x10 [ 152.815607][T10371] __ia32_sys_getsockopt+0xbc/0x160 [ 152.817838][T10371] ? lockdep_hardirqs_on+0x7c/0x110 [ 152.820052][T10371] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 152.822833][T10371] __do_fast_syscall_32+0x73/0x120 [ 152.825031][T10371] do_fast_syscall_32+0x32/0x80 [ 152.827151][T10371] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 152.829858][T10371] RIP: 0023:0xf7fd1579 [ 152.831595][T10371] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 152.839139][T10371] RSP: 002b:00000000f577656c EFLAGS: 00000296 ORIG_RAX: 000000000000016d [ 152.842121][T10371] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000000000 [ 152.845534][T10371] RDX: 0000000000000053 RSI: 0000000020000000 RDI: 0000000020000040 [ 152.848889][T10371] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 152.852253][T10371] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 152.855626][T10371] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 152.858416][T10371] [ 153.042210][T10655] netlink: 8 bytes leftover after parsing attributes in process `syz.1.399'. [ 153.054688][T10655] openvswitch: netlink: Missing key (keys=100000040, expected=2000) [ 153.114505][T10846] netlink: 4 bytes leftover after parsing attributes in process `syz.1.402'. [ 153.143791][T10846] dlm: no locking on control device [ 153.379567][T11074] FAULT_INJECTION: forcing a failure. [ 153.379567][T11074] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 153.384247][T11074] CPU: 2 UID: 0 PID: 11074 Comm: syz.0.406 Not tainted 6.11.0-rc3-syzkaller-00066-g1fb918967b56 #0 [ 153.388157][T11074] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 153.391614][T11074] Call Trace: [ 153.392885][T11074] [ 153.393966][T11074] dump_stack_lvl+0x16c/0x1f0 [ 153.395548][T11074] should_fail_ex+0x497/0x5b0 [ 153.397319][T11074] _copy_from_user+0x30/0xf0 [ 153.399057][T11074] kstrtouint_from_user+0xd7/0x1c0 [ 153.400829][T11074] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 153.402459][T11074] ? __pfx_lock_acquire+0x10/0x10 [ 153.404474][T11074] proc_fail_nth_write+0x84/0x270 [ 153.404529][T11074] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 153.404563][T11074] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 153.404584][T11074] vfs_write+0x29a/0x1140 [ 153.404610][T11074] ? __fdget_pos+0xeb/0x180 [ 153.404636][T11074] ? __pfx_vfs_write+0x10/0x10 [ 153.404656][T11074] ? __pfx___mutex_lock+0x10/0x10 [ 153.404679][T11074] ? __fget_files+0x256/0x400 [ 153.419271][T11074] ksys_write+0x12f/0x260 [ 153.420589][T11074] ? __pfx_ksys_write+0x10/0x10 [ 153.422617][T11074] __do_fast_syscall_32+0x73/0x120 [ 153.424947][T11074] do_fast_syscall_32+0x32/0x80 [ 153.427137][T11074] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 153.429936][T11074] RIP: 0023:0xf7f38579 [ 153.431734][T11074] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 153.440165][T11074] RSP: 002b:00000000f56d65a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000004 [ 153.443835][T11074] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f56d6620 [ 153.447344][T11074] RDX: 0000000000000001 RSI: 00000000f73c0ff4 RDI: 0000000000000000 [ 153.450846][T11074] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 153.454304][T11074] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 153.457626][T11074] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 153.461102][T11074] [ 153.555444][T11324] netlink: 5296 bytes leftover after parsing attributes in process `syz.0.411'. [ 153.692694][T11423] FAULT_INJECTION: forcing a failure. [ 153.692694][T11423] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 153.702023][T11423] CPU: 3 UID: 0 PID: 11423 Comm: syz.0.415 Not tainted 6.11.0-rc3-syzkaller-00066-g1fb918967b56 #0 [ 153.706400][T11423] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 153.711068][T11423] Call Trace: [ 153.712229][T11423] [ 153.713255][T11423] dump_stack_lvl+0x16c/0x1f0 [ 153.714870][T11423] should_fail_ex+0x497/0x5b0 [ 153.716503][T11423] _copy_from_iter+0x27a/0xfc0 [ 153.718649][T11423] ? __lock_acquire+0x1620/0x3cb0 [ 153.720867][T11423] ? __pfx__copy_from_iter+0x10/0x10 [ 153.722789][T11423] bcm_sendmsg+0x18d/0x4390 [ 153.724488][T11423] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 153.726549][T11423] ? __pfx_bcm_sendmsg+0x10/0x10 [ 153.728653][T11423] ? __import_iovec+0x1fd/0x6e0 [ 153.730767][T11423] ____sys_sendmsg+0x9b4/0xb50 [ 153.732826][T11423] ? __pfx_____sys_sendmsg+0x10/0x10 [ 153.734982][T11423] ? get_compat_msghdr+0x11b/0x170 [ 153.736820][T11423] ? __pfx___lock_acquire+0x10/0x10 [ 153.739143][T11423] ___sys_sendmsg+0x135/0x1e0 [ 153.741112][T11423] ? __pfx____sys_sendmsg+0x10/0x10 [ 153.742865][T11423] ? ksys_write+0x21c/0x260 [ 153.744416][T11423] ? __fget_light+0x173/0x210 [ 153.746044][T11423] __sys_sendmsg+0x117/0x1f0 [ 153.747977][T11423] ? __pfx___sys_sendmsg+0x10/0x10 [ 153.750303][T11423] __do_fast_syscall_32+0x73/0x120 [ 153.752179][T11423] do_fast_syscall_32+0x32/0x80 [ 153.753848][T11423] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 153.755969][T11423] RIP: 0023:0xf7f38579 [ 153.757676][T11423] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 153.764801][T11423] RSP: 002b:00000000f56d656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 153.767946][T11423] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200002c0 [ 153.771447][T11423] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 153.773601][ T5346] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1 [ 153.774304][T11423] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 153.774313][T11423] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 153.774318][T11423] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 153.774333][T11423] [ 153.797353][ T5346] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9 [ 153.801665][ T5346] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9 [ 153.808903][ T5346] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4 [ 153.813231][ T5346] Bluetooth: hci13: unexpected cc 0x0c25 length: 249 > 3 [ 153.820202][ T5346] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2 [ 153.892723][ T4769] Bluetooth: hci12: command tx timeout [ 154.167607][T11491] chnl_net:caif_netlink_parms(): no params data found [ 154.382961][T11491] bridge0: port 1(bridge_slave_0) entered blocking state [ 154.387335][T11491] bridge0: port 1(bridge_slave_0) entered disabled state [ 154.390553][T11491] bridge_slave_0: entered allmulticast mode [ 154.394551][T11491] bridge_slave_0: entered promiscuous mode [ 154.401182][T11491] bridge0: port 2(bridge_slave_1) entered blocking state [ 154.404434][T11491] bridge0: port 2(bridge_slave_1) entered disabled state [ 154.408511][T11491] bridge_slave_1: entered allmulticast mode [ 154.412576][T11491] bridge_slave_1: entered promiscuous mode [ 154.421324][T12014] 9pnet_fd: Insufficient options for proto=fd [ 154.516466][T11491] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 154.539908][T11491] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 154.644719][T11491] team0: Port device team_slave_0 added [ 154.654688][T11491] team0: Port device team_slave_1 added [ 154.703331][T11491] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 154.706429][T11491] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 154.715337][T11491] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 154.721506][T11491] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 154.723946][T11491] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 154.734079][T11491] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 154.924698][T11491] hsr_slave_0: entered promiscuous mode [ 154.939690][T11491] hsr_slave_1: entered promiscuous mode [ 154.953511][T11491] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 154.956027][T11491] Cannot create hsr debugfs directory [ 155.131270][T11491] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 155.232543][T11491] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 155.295658][ T57] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 155.309921][T11491] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 155.409260][T11491] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 155.475638][ T57] usb 5-1: Using ep0 maxpacket: 8 [ 155.502183][ T57] usb 5-1: config index 0 descriptor too short (expected 301, got 45) [ 155.506616][ T57] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 155.511115][ T57] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 155.515856][ T57] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 155.520327][ T57] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 155.521671][T11491] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 155.526656][ T57] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 155.532663][ T57] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 155.539721][T11491] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 155.551903][T11491] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 155.556987][T11491] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 155.680364][T11491] 8021q: adding VLAN 0 to HW filter on device bond0 [ 155.696718][T11491] 8021q: adding VLAN 0 to HW filter on device team0 [ 155.714058][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 155.717567][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 155.733977][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 155.737307][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 155.767430][ T57] usb 5-1: GET_CAPABILITIES returned 0 [ 155.770552][ T57] usbtmc 5-1:16.0: can't read capabilities [ 155.886887][ T4769] Bluetooth: hci13: command tx timeout [ 155.975746][ T4769] Bluetooth: hci12: command tx timeout [ 156.007662][T11491] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 156.106771][T11491] veth0_vlan: entered promiscuous mode [ 156.120862][T11491] veth1_vlan: entered promiscuous mode [ 156.169674][T11491] veth0_macvtap: entered promiscuous mode [ 156.177626][T11491] veth1_macvtap: entered promiscuous mode [ 156.196391][T11491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 156.200858][T11491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.205050][T11491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 156.211050][T11491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.215645][T11491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 156.220047][T11491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.224305][T11491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 156.225895][ T58] usb 5-1: USB disconnect, device number 2 [ 156.229353][T11491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.236109][T11491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 156.243439][T11491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.247693][T11491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 156.251999][T11491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.256511][T11491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 156.264287][T11491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.268704][T11491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 156.273014][T11491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.277460][T11491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 156.281896][T11491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.294282][T11491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 156.303881][T11491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.314519][T11491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 156.320181][T11491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.324356][T11491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 156.329237][T11491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.333256][T11491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 156.338137][T11491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.345421][T11491] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 156.361554][T11491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 156.385624][T11491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.393571][T11491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 156.400138][T11491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.404446][T11491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 156.409283][T11491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.412608][T11491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 156.416279][T11491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.419680][T11491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 156.423228][T11491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.426715][T11491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 156.430257][T11491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.433594][T11491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 156.437333][T11491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.440980][T11491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 156.444513][T11491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.448602][T11491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 156.452856][T11491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.456694][T11491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 156.460258][T11491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.463592][T11491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 156.467455][T11491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.470910][T11491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 156.474456][T11491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.477915][T11491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 156.481991][T11491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 156.490363][T11491] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 156.500975][T11491] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 156.503861][T11491] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 156.507170][T11491] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 156.510444][T11491] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 156.627837][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 156.632716][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 156.661224][ T45] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 156.664503][ T45] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 156.797385][T14449] cgroup: fork rejected by pids controller in /syz3 [ 156.986102][T14856] FAULT_INJECTION: forcing a failure. [ 156.986102][T14856] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 156.990637][T14856] CPU: 2 UID: 0 PID: 14856 Comm: syz.0.453 Not tainted 6.11.0-rc3-syzkaller-00066-g1fb918967b56 #0 [ 156.994688][T14856] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 156.998779][T14856] Call Trace: [ 157.000025][T14856] [ 157.001055][T14856] dump_stack_lvl+0x16c/0x1f0 [ 157.002793][T14856] should_fail_ex+0x497/0x5b0 [ 157.004588][T14856] _copy_from_iter+0x27a/0xfc0 [ 157.006524][T14856] ? __lock_acquire+0x1620/0x3cb0 [ 157.008226][T14856] ? __pfx__copy_from_iter+0x10/0x10 [ 157.010478][T14856] bcm_sendmsg+0x18d/0x4390 [ 157.012359][T14856] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 157.014302][T14856] ? __pfx_bcm_sendmsg+0x10/0x10 [ 157.015951][T14856] ? __import_iovec+0x1fd/0x6e0 [ 157.017573][T14856] ____sys_sendmsg+0x9b4/0xb50 [ 157.019188][T14856] ? __pfx_____sys_sendmsg+0x10/0x10 [ 157.020962][T14856] ? get_compat_msghdr+0x11b/0x170 [ 157.022694][T14856] ? __pfx___lock_acquire+0x10/0x10 [ 157.024444][T14856] ___sys_sendmsg+0x135/0x1e0 [ 157.026050][T14856] ? __pfx____sys_sendmsg+0x10/0x10 [ 157.028241][T14856] ? ksys_write+0x21c/0x260 [ 157.030273][T14856] ? __fget_light+0x173/0x210 [ 157.032357][T14856] __sys_sendmsg+0x117/0x1f0 [ 157.034316][T14856] ? __pfx___sys_sendmsg+0x10/0x10 [ 157.036493][T14856] __do_fast_syscall_32+0x73/0x120 [ 157.038632][T14856] do_fast_syscall_32+0x32/0x80 [ 157.040738][T14856] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 157.043412][T14856] RIP: 0023:0xf7f38579 [ 157.045166][T14856] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 157.053122][T14856] RSP: 002b:00000000f56d656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 157.055837][T14856] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000140 [ 157.059009][T14856] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 157.062349][T14856] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 157.065720][T14856] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 157.069047][T14856] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 157.072482][T14856] [ 157.946487][T15694] netlink: 16 bytes leftover after parsing attributes in process `syz.0.466'. [ 157.966000][ T4769] Bluetooth: hci13: command tx timeout [ 158.660982][T16724] netlink: 16 bytes leftover after parsing attributes in process `syz.0.476'. [ 158.948831][T17005] lo: entered promiscuous mode [ 158.950507][T17005] lo: entered allmulticast mode [ 158.963064][T17005] tunl0: entered promiscuous mode [ 158.964888][T17005] tunl0: entered allmulticast mode [ 158.976410][T17005] gre0: entered promiscuous mode [ 158.978138][T17005] gre0: entered allmulticast mode [ 158.991716][T17005] gretap0: entered promiscuous mode [ 158.993653][T17005] gretap0: entered allmulticast mode [ 159.002839][T17005] erspan0: entered promiscuous mode [ 159.006895][T17005] erspan0: entered allmulticast mode [ 159.020330][T17005] ip_vti0: entered promiscuous mode [ 159.022137][T17005] ip_vti0: entered allmulticast mode [ 159.027634][T17005] ip6_vti0: entered promiscuous mode [ 159.036419][T17005] ip6_vti0: entered allmulticast mode [ 159.050825][T17005] sit0: entered promiscuous mode [ 159.053112][T17005] sit0: entered allmulticast mode [ 159.081338][T17005] ip6tnl0: entered promiscuous mode [ 159.086887][T17005] ip6tnl0: entered allmulticast mode [ 159.107508][T17005] ip6gre0: entered promiscuous mode [ 159.111120][T17005] ip6gre0: entered allmulticast mode [ 159.161932][T17005] syz_tun: entered promiscuous mode [ 159.167187][T17005] syz_tun: entered allmulticast mode [ 159.182684][T17005] ip6gretap0: entered promiscuous mode [ 159.184896][T17005] ip6gretap0: entered allmulticast mode [ 159.213184][T17005] bridge0: port 2(bridge_slave_1) entered disabled state [ 159.217332][T17005] bridge0: port 1(bridge_slave_0) entered disabled state [ 159.223077][T17005] bridge0: entered promiscuous mode [ 159.225314][T17005] bridge0: entered allmulticast mode [ 159.232492][T17005] vcan0: entered promiscuous mode [ 159.234809][T17005] vcan0: entered allmulticast mode [ 159.242450][T17005] bond0: entered promiscuous mode [ 159.244231][T17005] bond_slave_0: entered promiscuous mode [ 159.247518][T17005] bond_slave_1: entered promiscuous mode [ 159.249633][T17005] bond0: entered allmulticast mode [ 159.251578][T17005] bond_slave_0: entered allmulticast mode [ 159.253543][T17005] bond_slave_1: entered allmulticast mode [ 159.263779][T17005] team0: entered promiscuous mode [ 159.267305][T17005] team_slave_0: entered promiscuous mode [ 159.269536][T17005] team_slave_1: entered promiscuous mode [ 159.271627][T17005] team0: entered allmulticast mode [ 159.273384][T17005] team_slave_0: entered allmulticast mode [ 159.276698][T17005] team_slave_1: entered allmulticast mode [ 159.294713][T17005] dummy0: entered promiscuous mode [ 159.299142][T17005] dummy0: entered allmulticast mode [ 159.304760][T17005] nlmon0: entered promiscuous mode [ 159.309314][T17005] nlmon0: entered allmulticast mode [ 159.312106][T17005] caif0: entered promiscuous mode [ 159.313817][T17005] caif0: entered allmulticast mode [ 159.317494][T17005] batadv0: entered promiscuous mode [ 159.319666][T17005] batadv0: entered allmulticast mode [ 159.333307][T17005] vxcan0: entered promiscuous mode [ 159.335037][T17005] vxcan0: entered allmulticast mode [ 159.340804][T17005] vxcan1: entered promiscuous mode [ 159.342558][T17005] vxcan1: entered allmulticast mode [ 159.347677][T17005] veth0: entered promiscuous mode [ 159.349431][T17005] veth0: entered allmulticast mode [ 159.365761][T17005] veth1: entered promiscuous mode [ 159.370461][T17005] veth1: entered allmulticast mode [ 159.378842][T17005] wg0: entered promiscuous mode [ 159.380671][T17005] wg0: entered allmulticast mode [ 159.391066][T17005] wg1: entered promiscuous mode [ 159.393482][T17005] wg1: entered allmulticast mode [ 159.400533][T17005] wg2: entered promiscuous mode [ 159.402200][T17005] wg2: entered allmulticast mode [ 159.408389][T17005] veth0_to_bridge: entered promiscuous mode [ 159.410896][T17005] veth0_to_bridge: entered allmulticast mode [ 159.426994][T17005] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 159.432621][T17374] netlink: 44 bytes leftover after parsing attributes in process `syz.3.484'. [ 159.493727][T17722] 9pnet_fd: Insufficient options for proto=fd [ 159.771834][T18135] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 159.784062][T18135] netlink: 20 bytes leftover after parsing attributes in process `syz.0.496'. [ 159.834680][T18206] 9pnet_fd: Insufficient options for proto=fd [ 159.839666][T18213] netlink: 44 bytes leftover after parsing attributes in process `syz.3.498'. [ 159.876977][T18243] FAULT_INJECTION: forcing a failure. [ 159.876977][T18243] name failslab, interval 1, probability 0, space 0, times 0 [ 159.883853][T18243] CPU: 2 UID: 0 PID: 18243 Comm: syz.3.500 Not tainted 6.11.0-rc3-syzkaller-00066-g1fb918967b56 #0 [ 159.888134][T18243] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 159.892486][T18243] Call Trace: [ 159.893849][T18243] [ 159.895058][T18243] dump_stack_lvl+0x16c/0x1f0 [ 159.896969][T18243] should_fail_ex+0x497/0x5b0 [ 159.898873][T18243] ? fs_reclaim_acquire+0xae/0x160 [ 159.900950][T18243] should_failslab+0xc2/0x120 [ 159.902841][T18243] kmem_cache_alloc_node_noprof+0x71/0x310 [ 159.905180][T18243] ? __alloc_skb+0x2b3/0x380 [ 159.907361][T18243] __alloc_skb+0x2b3/0x380 [ 159.909246][T18243] ? __pfx___alloc_skb+0x10/0x10 [ 159.911247][T18243] ? __pfx___might_resched+0x10/0x10 [ 159.913406][T18243] netlink_alloc_large_skb+0x69/0x130 [ 159.915588][T18243] netlink_sendmsg+0x689/0xd70 [ 159.917536][T18243] ? __pfx_netlink_sendmsg+0x10/0x10 [ 159.919661][T18243] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 159.921820][T18243] ____sys_sendmsg+0x9b4/0xb50 [ 159.923754][T18243] ? __pfx_____sys_sendmsg+0x10/0x10 [ 159.925882][T18243] ? get_compat_msghdr+0x11b/0x170 [ 159.927906][T18243] ? __pfx___lock_acquire+0x10/0x10 [ 159.930039][T18243] ___sys_sendmsg+0x135/0x1e0 [ 159.931983][T18243] ? __pfx____sys_sendmsg+0x10/0x10 [ 159.934121][T18243] ? ksys_write+0x21c/0x260 [ 159.935969][T18243] ? __fget_light+0x173/0x210 [ 159.937885][T18243] __sys_sendmsg+0x117/0x1f0 [ 159.939747][T18243] ? __pfx___sys_sendmsg+0x10/0x10 [ 159.941827][T18243] __do_fast_syscall_32+0x73/0x120 [ 159.943871][T18243] do_fast_syscall_32+0x32/0x80 [ 159.945852][T18243] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 159.948351][T18243] RIP: 0023:0xf747e579 [ 159.950003][T18243] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 159.957642][T18243] RSP: 002b:00000000f578656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 159.960950][T18243] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000200 [ 159.964103][T18243] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 159.967269][T18243] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 159.970479][T18243] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 159.973890][T18243] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 159.977212][T18243] [ 160.035369][T18357] netlink: 48 bytes leftover after parsing attributes in process `syz.3.505'. [ 160.045603][ T4769] Bluetooth: hci13: command tx timeout [ 160.073694][T18445] FAULT_INJECTION: forcing a failure. [ 160.073694][T18445] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 160.080538][T18445] CPU: 1 UID: 0 PID: 18445 Comm: syz.3.506 Not tainted 6.11.0-rc3-syzkaller-00066-g1fb918967b56 #0 [ 160.084417][T18445] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 160.089006][T18445] Call Trace: [ 160.090670][T18445] [ 160.091936][T18445] dump_stack_lvl+0x16c/0x1f0 [ 160.093848][T18445] should_fail_ex+0x497/0x5b0 [ 160.095617][T18445] _copy_from_iter+0x27a/0xfc0 [ 160.097705][T18445] ? __pfx__copy_from_iter+0x10/0x10 [ 160.100029][T18445] ? __virt_addr_valid+0x5e/0x590 [ 160.102242][T18445] ? __phys_addr_symbol+0x30/0x80 [ 160.104431][T18445] ? __check_object_size+0x497/0x720 [ 160.106402][T18445] file_tty_write.constprop.0+0x49f/0x9b0 [ 160.108880][T18445] vfs_write+0x6b6/0x1140 [ 160.110750][T18445] ? __pfx_tty_write+0x10/0x10 [ 160.112834][T18445] ? __pfx_vfs_write+0x10/0x10 [ 160.114532][T18445] ? __fget_files+0x256/0x400 [ 160.116537][T18445] ? __fget_light+0x173/0x210 [ 160.118607][T18445] ksys_write+0x12f/0x260 [ 160.120524][T18445] ? __pfx_ksys_write+0x10/0x10 [ 160.122775][T18445] __do_fast_syscall_32+0x73/0x120 [ 160.124596][T18445] do_fast_syscall_32+0x32/0x80 [ 160.126387][T18445] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 160.129099][T18445] RIP: 0023:0xf747e579 [ 160.130947][T18445] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 160.138191][T18445] RSP: 002b:00000000f578656c EFLAGS: 00000296 ORIG_RAX: 0000000000000004 [ 160.141908][T18445] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001040 [ 160.145254][T18445] RDX: 0000000000001006 RSI: 0000000000000000 RDI: 0000000000000000 [ 160.148269][T18445] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 160.151550][T18445] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 160.154843][T18445] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 160.157884][T18445] [ 160.322557][T18840] 9pnet_fd: Insufficient options for proto=fd [ 160.413997][T18992] netlink: 12 bytes leftover after parsing attributes in process `syz.3.514'. [ 160.618659][T19326] netlink: 28 bytes leftover after parsing attributes in process `syz.0.520'. [ 160.620250][T19301] FAULT_INJECTION: forcing a failure. [ 160.620250][T19301] name failslab, interval 1, probability 0, space 0, times 0 [ 160.627426][T19301] CPU: 2 UID: 0 PID: 19301 Comm: syz.3.519 Not tainted 6.11.0-rc3-syzkaller-00066-g1fb918967b56 #0 [ 160.631994][T19301] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 160.636483][T19301] Call Trace: [ 160.637956][T19301] [ 160.639259][T19301] dump_stack_lvl+0x16c/0x1f0 [ 160.641336][T19301] should_fail_ex+0x497/0x5b0 [ 160.643367][T19301] ? fs_reclaim_acquire+0xae/0x160 [ 160.645577][T19301] should_failslab+0xc2/0x120 [ 160.647631][T19301] __kmalloc_noprof+0xcb/0x410 [ 160.649733][T19301] tomoyo_encode2+0x100/0x3e0 [ 160.651769][T19301] tomoyo_realpath_from_path+0x1a7/0x710 [ 160.654138][T19301] ? tomoyo_profile+0x47/0x60 [ 160.656152][T19301] tomoyo_path_number_perm+0x245/0x5b0 [ 160.658514][T19301] ? tomoyo_path_number_perm+0x232/0x5b0 [ 160.660907][T19301] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 160.663437][T19301] ? __pfx_lock_release+0x10/0x10 [ 160.665677][T19301] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 160.668290][T19301] ? __fget_files+0x256/0x400 [ 160.670447][T19301] security_file_ioctl_compat+0x75/0xc0 [ 160.672810][T19301] __do_compat_sys_ioctl+0x5d/0x330 [ 160.675058][T19301] __do_fast_syscall_32+0x73/0x120 [ 160.677296][T19301] do_fast_syscall_32+0x32/0x80 [ 160.679359][T19301] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 160.682037][T19301] RIP: 0023:0xf747e579 [ 160.683803][T19301] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 160.692059][T19301] RSP: 002b:00000000f578656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 160.695553][T19301] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000008048ae66 [ 160.698783][T19301] RDX: 0000000020000080 RSI: 0000000000000000 RDI: 0000000000000000 [ 160.702071][T19301] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 160.705518][T19301] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 160.708926][T19301] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 160.712272][T19301] [ 160.721978][T19301] ERROR: Out of memory at tomoyo_realpath_from_path. [ 161.039440][T19887] netlink: 4 bytes leftover after parsing attributes in process `syz.0.527'. [ 161.051413][T19893] netlink: 28 bytes leftover after parsing attributes in process `syz.3.529'. [ 162.071881][T21712] 9pnet_fd: Insufficient options for proto=fd [ 162.135595][ T4769] Bluetooth: hci13: command tx timeout [ 162.141496][T21723] FAULT_INJECTION: forcing a failure. [ 162.141496][T21723] name failslab, interval 1, probability 0, space 0, times 0 [ 162.149863][T21723] CPU: 2 UID: 0 PID: 21723 Comm: syz.3.552 Not tainted 6.11.0-rc3-syzkaller-00066-g1fb918967b56 #0 [ 162.154482][T21723] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 162.159128][T21723] Call Trace: [ 162.160570][T21723] [ 162.161869][T21723] dump_stack_lvl+0x16c/0x1f0 [ 162.164065][T21723] should_fail_ex+0x497/0x5b0 [ 162.165878][T21723] ? fs_reclaim_acquire+0xae/0x160 [ 162.167605][T21723] should_failslab+0xc2/0x120 [ 162.169306][T21723] kmem_cache_alloc_node_noprof+0x71/0x310 [ 162.171545][T21723] ? __alloc_skb+0x2b3/0x380 [ 162.176167][T21723] __alloc_skb+0x2b3/0x380 [ 162.177850][T21723] ? __pfx___alloc_skb+0x10/0x10 [ 162.179687][T21723] ? __pfx___might_resched+0x10/0x10 [ 162.181870][T21723] netlink_alloc_large_skb+0x69/0x130 [ 162.184084][T21723] netlink_sendmsg+0x689/0xd70 [ 162.186048][T21723] ? __pfx_netlink_sendmsg+0x10/0x10 [ 162.188270][T21723] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 162.190474][T21723] ____sys_sendmsg+0x9b4/0xb50 [ 162.192482][T21723] ? __pfx_____sys_sendmsg+0x10/0x10 [ 162.194673][T21723] ? get_compat_msghdr+0x11b/0x170 [ 162.196814][T21723] ? __pfx___lock_acquire+0x10/0x10 [ 162.198643][T21723] ___sys_sendmsg+0x135/0x1e0 [ 162.200633][T21723] ? __pfx____sys_sendmsg+0x10/0x10 [ 162.202508][T21723] ? ksys_write+0x21c/0x260 [ 162.204025][T21723] ? __fget_light+0x173/0x210 [ 162.205850][T21723] __sys_sendmsg+0x117/0x1f0 [ 162.207816][T21723] ? __pfx___sys_sendmsg+0x10/0x10 [ 162.210042][T21723] __do_fast_syscall_32+0x73/0x120 [ 162.212246][T21723] do_fast_syscall_32+0x32/0x80 [ 162.214366][T21723] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 162.215975][ T4769] Bluetooth: hci11: Controller not accepting commands anymore: ncmd = 0 [ 162.217052][T21723] RIP: 0023:0xf747e579 [ 162.217072][T21723] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 162.220700][ T4769] Bluetooth: hci11: Injecting HCI hardware error event [ 162.222452][T21723] RSP: 002b:00000000f578656c EFLAGS: 00000296 [ 162.231882][ T4769] Bluetooth: hci11: hardware error 0x00 [ 162.233311][T21723] ORIG_RAX: 0000000000000172 [ 162.233322][T21723] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000200003c0 [ 162.233334][T21723] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 162.247146][T21723] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 162.250497][T21723] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 162.253822][T21723] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 162.257191][T21723] [ 162.327277][T21831] netlink: 5296 bytes leftover after parsing attributes in process `syz.3.555'. [ 162.473727][T22039] 9pnet_fd: Insufficient options for proto=fd [ 162.874431][T22854] 9pnet_fd: Insufficient options for proto=fd [ 164.296521][ T4769] Bluetooth: hci11: Opcode 0x0c03 failed: -110 [ 167.183622][ T5346] Bluetooth: hci14: unexpected cc 0x0c03 length: 249 > 1 [ 167.189211][ T5346] Bluetooth: hci14: unexpected cc 0x1003 length: 249 > 9 [ 167.192956][ T5346] Bluetooth: hci14: unexpected cc 0x1001 length: 249 > 9 [ 167.199780][ T5346] Bluetooth: hci14: unexpected cc 0x0c23 length: 249 > 4 [ 167.204874][ T5346] Bluetooth: hci14: unexpected cc 0x0c25 length: 249 > 3 [ 167.218863][ T5346] Bluetooth: hci14: unexpected cc 0x0c38 length: 249 > 2 [ 167.314762][T28553] fuse: Unknown parameter 'group_id00000000000000000000' [ 167.470614][T28457] chnl_net:caif_netlink_parms(): no params data found [ 167.628442][T28457] bridge0: port 1(bridge_slave_0) entered blocking state [ 167.632091][T28457] bridge0: port 1(bridge_slave_0) entered disabled state [ 167.637873][T28457] bridge_slave_0: entered allmulticast mode [ 167.641621][T28457] bridge_slave_0: entered promiscuous mode [ 167.664219][T28457] bridge0: port 2(bridge_slave_1) entered blocking state [ 167.668139][T28457] bridge0: port 2(bridge_slave_1) entered disabled state [ 167.671594][T28457] bridge_slave_1: entered allmulticast mode [ 167.687463][T28457] bridge_slave_1: entered promiscuous mode [ 167.780755][T28457] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 167.788811][T28457] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 167.890109][T28457] team0: Port device team_slave_0 added [ 167.897073][T28457] team0: Port device team_slave_1 added [ 168.007888][T28457] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 168.010827][T28457] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 168.025604][T28457] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 168.032148][T28457] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 168.035145][T28457] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 168.047311][T28457] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 168.149881][T29599] FAULT_INJECTION: forcing a failure. [ 168.149881][T29599] name failslab, interval 1, probability 0, space 0, times 0 [ 168.155121][T29599] CPU: 0 UID: 0 PID: 29599 Comm: syz.0.650 Not tainted 6.11.0-rc3-syzkaller-00066-g1fb918967b56 #0 [ 168.159692][T29599] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 168.164288][T29599] Call Trace: [ 168.165757][T29599] [ 168.167014][T29599] dump_stack_lvl+0x16c/0x1f0 [ 168.169022][T29599] should_fail_ex+0x497/0x5b0 [ 168.171006][T29599] ? fs_reclaim_acquire+0xae/0x160 [ 168.173240][T29599] should_failslab+0xc2/0x120 [ 168.175259][T29599] kmem_cache_alloc_node_noprof+0x71/0x310 [ 168.177661][T29599] ? __alloc_skb+0x2b3/0x380 [ 168.179588][T29599] __alloc_skb+0x2b3/0x380 [ 168.181475][T29599] ? __pfx___alloc_skb+0x10/0x10 [ 168.183464][T29599] ? __pfx___might_resched+0x10/0x10 [ 168.185692][T29599] netlink_alloc_large_skb+0x69/0x130 [ 168.187940][T29599] netlink_sendmsg+0x689/0xd70 [ 168.189954][T29599] ? __pfx_netlink_sendmsg+0x10/0x10 [ 168.192184][T29599] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 168.194379][T29599] ____sys_sendmsg+0x9b4/0xb50 [ 168.196397][T29599] ? __pfx_____sys_sendmsg+0x10/0x10 [ 168.198513][T29599] ? get_compat_msghdr+0x11b/0x170 [ 168.200704][T29599] ? __pfx___lock_acquire+0x10/0x10 [ 168.202930][T29599] ___sys_sendmsg+0x135/0x1e0 [ 168.204933][T29599] ? __pfx____sys_sendmsg+0x10/0x10 [ 168.207079][T29599] ? ksys_write+0x21c/0x260 [ 168.209022][T29599] ? __fget_light+0x173/0x210 [ 168.210929][T29599] __sys_sendmsg+0x117/0x1f0 [ 168.212891][T29599] ? __pfx___sys_sendmsg+0x10/0x10 [ 168.215082][T29599] __do_fast_syscall_32+0x73/0x120 [ 168.217306][T29599] do_fast_syscall_32+0x32/0x80 [ 168.219234][T29599] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 168.221937][T29599] RIP: 0023:0xf7f38579 [ 168.223661][T29599] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 168.231599][T29599] RSP: 002b:00000000f56d656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 168.235037][T29599] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000380 [ 168.238350][T29599] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 168.241705][T29599] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 168.244970][T29599] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 168.248264][T29599] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 168.251513][T29599] [ 168.309703][T28457] hsr_slave_0: entered promiscuous mode [ 168.329260][T28457] hsr_slave_1: entered promiscuous mode [ 168.336330][T28457] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 168.339601][T28457] Cannot create hsr debugfs directory [ 168.661228][T28457] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 168.754178][T28457] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 168.873490][T28457] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 168.957089][T28457] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 169.212290][T28457] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 169.232340][T28457] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 169.239795][T28457] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 169.245833][ T4769] Bluetooth: hci14: command tx timeout [ 169.257832][T28457] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 169.357165][T28457] 8021q: adding VLAN 0 to HW filter on device bond0 [ 169.381294][T28457] 8021q: adding VLAN 0 to HW filter on device team0 [ 169.394754][ T1101] bridge0: port 1(bridge_slave_0) entered blocking state [ 169.397944][ T1101] bridge0: port 1(bridge_slave_0) entered forwarding state [ 169.417077][ T64] bridge0: port 2(bridge_slave_1) entered blocking state [ 169.420010][ T64] bridge0: port 2(bridge_slave_1) entered forwarding state [ 169.648171][T28457] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 169.695309][T28457] veth0_vlan: entered promiscuous mode [ 169.702684][T28457] veth1_vlan: entered promiscuous mode [ 169.751414][T28457] veth0_macvtap: entered promiscuous mode [ 169.757129][T28457] veth1_macvtap: entered promiscuous mode [ 169.767436][T28457] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 169.771455][T28457] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 169.774605][T28457] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 169.779156][T28457] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 169.782340][T28457] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 169.785820][T28457] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 169.789372][T28457] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 169.792845][T28457] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 169.796616][T28457] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 169.800462][T28457] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 169.803910][T28457] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 169.807268][T28457] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 169.810405][T28457] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 169.814767][T28457] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 169.819506][T28457] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 169.823509][T28457] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 169.827771][T28457] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 169.832098][T28457] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 169.836244][T28457] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 169.840647][T28457] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 169.844753][T28457] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 169.849561][T28457] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 169.853617][T28457] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 169.857555][T28457] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 169.861547][T28457] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 169.864904][T28457] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 169.868180][T28457] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 169.872006][T28457] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 169.877951][T28457] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 169.886389][T28457] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 169.890746][T28457] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 169.894789][T28457] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 169.900041][T28457] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 169.904149][T28457] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 169.909166][T28457] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 169.913354][T28457] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 169.918899][T28457] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 169.923058][T28457] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 169.928576][T28457] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 169.932626][T28457] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 169.937123][T28457] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 169.941374][T28457] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 169.945705][T28457] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 169.949430][T28457] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 169.953208][T28457] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 169.957245][T28457] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 169.961601][T28457] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 169.965368][T28457] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 169.971125][T28457] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 169.975234][T28457] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 169.979801][T28457] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 169.984078][T28457] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 169.989327][T28457] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 169.992601][T28457] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 169.996549][T28457] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 169.999971][T28457] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 170.003510][T28457] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 170.009629][T28457] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 170.021510][T28457] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 170.025297][T28457] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 170.029181][T28457] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 170.032900][T28457] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 170.124931][ T1101] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 170.135529][ T1101] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 170.174345][ T1207] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 170.184800][ T1207] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 170.258373][T31947] sp0: Synchronizing with TNC [ 170.269508][T31980] cgroup: fork rejected by pids controller in /syz1 [ 170.636309][T32539] netlink: 20 bytes leftover after parsing attributes in process `syz.1.691'. [ 170.655259][T32539] bridge1: port 1(gretap1) entered blocking state [ 170.658219][T32539] bridge1: port 1(gretap1) entered disabled state [ 170.660999][T32539] gretap1: entered allmulticast mode [ 170.664423][T32539] gretap1: entered promiscuous mode [ 170.775823][ T5445] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 170.987446][ T5445] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 170.991693][ T5445] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 171.000885][ T5445] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 171.005158][ T5445] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 171.019519][ T5445] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 171.023536][ T5445] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 171.030298][ T5445] usb 5-1: config 0 descriptor?? [ 171.325903][ T4769] Bluetooth: hci14: command tx timeout [ 171.458925][ T5445] plantronics 0003:047F:FFFF.0002: No inputs registered, leaving [ 171.471714][ T5445] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0 [ 173.406453][ T4769] Bluetooth: hci14: command tx timeout [ 173.596451][ T1293] usb 5-1: USB disconnect, device number 3 [ 174.096004][ T1664] syz.1.708 (1664) used greatest stack depth: 20416 bytes left [ 174.099229][ T1395] syz.3.706 (1395) used greatest stack depth: 19648 bytes left [ 175.492161][ T4769] Bluetooth: hci14: command tx timeout [ 175.780538][ T3678] netlink: 8 bytes leftover after parsing attributes in process `syz.1.732'. [ 175.801138][ T3678] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 175.805096][ T3678] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 176.475596][ T39] audit: type=1326 audit(1723707787.334:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4415 comm="syz.1.744" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc7579 code=0x7ffc0000 [ 176.483568][ T39] audit: type=1326 audit(1723707787.334:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4415 comm="syz.1.744" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc7579 code=0x7ffc0000 [ 176.506509][ T39] audit: type=1326 audit(1723707787.344:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4415 comm="syz.1.744" exe="/syz-executor" sig=0 arch=40000003 syscall=52 compat=1 ip=0xf7fc7579 code=0x7ffc0000 [ 176.521151][ T39] audit: type=1326 audit(1723707787.344:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4415 comm="syz.1.744" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc7579 code=0x7ffc0000 [ 176.545607][ T39] audit: type=1326 audit(1723707787.344:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4415 comm="syz.1.744" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc7579 code=0x7ffc0000 [ 177.823618][ T6092] netlink: 16 bytes leftover after parsing attributes in process `syz.1.767'. [ 177.875718][ T1293] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 177.891427][ T6127] netlink: 80 bytes leftover after parsing attributes in process `syz.1.770'. [ 178.056565][ T1293] usb 5-1: Using ep0 maxpacket: 16 [ 178.060818][ T1293] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 178.067214][ T1293] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 178.071866][ T1293] usb 5-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.40 [ 178.086332][ T1293] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 178.093071][ T1293] usb 5-1: config 0 descriptor?? [ 178.432102][ T1293] usbhid 5-1:0.0: can't add hid device: -71 [ 178.434948][ T1293] usbhid 5-1:0.0: probe with driver usbhid failed with error -71 [ 178.443778][ T1293] usb 5-1: USB disconnect, device number 4 [ 178.714112][ T7000] lo: entered promiscuous mode [ 178.716580][ T7000] lo: entered allmulticast mode [ 178.762162][ T7000] tunl0: entered promiscuous mode [ 178.764815][ T7000] tunl0: entered allmulticast mode [ 178.778848][ T7000] gre0: entered promiscuous mode [ 178.780945][ T7000] gre0: entered allmulticast mode [ 178.857203][ T7000] gretap0: entered promiscuous mode [ 178.871971][ T7000] gretap0: entered allmulticast mode [ 178.896910][ T7356] netlink: 4 bytes leftover after parsing attributes in process `syz.3.784'. [ 178.905343][ T7000] erspan0: entered promiscuous mode [ 178.914258][ T7000] erspan0: entered allmulticast mode [ 178.944878][ T7000] ip_vti0: entered promiscuous mode [ 178.949848][ T7000] ip_vti0: entered allmulticast mode [ 178.967573][ T7000] ip6_vti0: entered promiscuous mode [ 178.970011][ T7000] ip6_vti0: entered allmulticast mode [ 179.008667][ T7000] sit0: entered promiscuous mode [ 179.010487][ T7000] sit0: entered allmulticast mode [ 179.039570][ T7000] ip6tnl0: entered promiscuous mode [ 179.041738][ T7000] ip6tnl0: entered allmulticast mode [ 179.084472][ T7000] ip6gre0: entered promiscuous mode [ 179.087779][ T7000] ip6gre0: entered allmulticast mode [ 179.145852][ T7000] syz_tun: entered promiscuous mode [ 179.147961][ T7000] syz_tun: entered allmulticast mode [ 179.202002][ T7000] ip6gretap0: entered promiscuous mode [ 179.204425][ T7000] ip6gretap0: entered allmulticast mode [ 179.240327][ T7000] bridge0: port 2(bridge_slave_1) entered disabled state [ 179.244106][ T7000] bridge0: port 1(bridge_slave_0) entered disabled state [ 179.276458][ T7000] bridge0: entered promiscuous mode [ 179.278607][ T7000] bridge0: entered allmulticast mode [ 179.319426][ T7000] vcan0: entered promiscuous mode [ 179.321163][ T7000] vcan0: entered allmulticast mode [ 179.344966][ T7000] bond0: entered promiscuous mode [ 179.355735][ T7000] bond_slave_0: entered promiscuous mode [ 179.358419][ T7000] bond_slave_1: entered promiscuous mode [ 179.360428][ T7000] bond0: entered allmulticast mode [ 179.362212][ T7000] bond_slave_0: entered allmulticast mode [ 179.364167][ T7000] bond_slave_1: entered allmulticast mode [ 179.383378][ T39] audit: type=1326 audit(1723707790.274:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7807 comm="syz.3.792" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf747e579 code=0x7ffc0000 [ 179.405927][ T39] audit: type=1326 audit(1723707790.274:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7807 comm="syz.3.792" exe="/syz-executor" sig=0 arch=40000003 syscall=77 compat=1 ip=0xf747e579 code=0x7ffc0000 [ 179.415302][ T39] audit: type=1326 audit(1723707790.274:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7807 comm="syz.3.792" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf747e579 code=0x7ffc0000 [ 179.441941][ T7000] team0: entered promiscuous mode [ 179.444219][ T7000] team_slave_0: entered promiscuous mode [ 179.450631][ T7000] team_slave_1: entered promiscuous mode [ 179.453138][ T7000] team0: entered allmulticast mode [ 179.465866][ T7000] team_slave_0: entered allmulticast mode [ 179.468299][ T7000] team_slave_1: entered allmulticast mode [ 179.492274][ T7000] dummy0: entered promiscuous mode [ 179.494426][ T7000] dummy0: entered allmulticast mode [ 179.519175][ T7000] nlmon0: entered promiscuous mode [ 179.521326][ T7000] nlmon0: entered allmulticast mode [ 179.529282][ T7000] caif0: entered promiscuous mode [ 179.531461][ T7000] caif0: entered allmulticast mode [ 179.534273][ T7000] batadv0: entered promiscuous mode [ 179.537027][ T7000] batadv0: entered allmulticast mode [ 179.554514][ T7000] vxcan0: entered promiscuous mode [ 179.565731][ T7000] vxcan0: entered allmulticast mode [ 179.576810][ T7000] vxcan1: entered promiscuous mode [ 179.578882][ T7000] vxcan1: entered allmulticast mode [ 179.607363][ T7000] veth0: entered promiscuous mode [ 179.609663][ T7000] veth0: entered allmulticast mode [ 179.657906][ T7000] veth1: entered promiscuous mode [ 179.660048][ T7000] veth1: entered allmulticast mode [ 179.736726][ T7000] wg0: entered promiscuous mode [ 179.738599][ T7000] wg0: entered allmulticast mode [ 179.798105][ T7000] wg1: entered promiscuous mode [ 179.800245][ T7000] wg1: entered allmulticast mode [ 179.860243][ T7000] wg2: entered promiscuous mode [ 179.862433][ T7000] wg2: entered allmulticast mode [ 179.892288][ T7000] veth0_to_bridge: entered promiscuous mode [ 179.901656][ T7000] veth0_to_bridge: entered allmulticast mode [ 179.986116][ T7000] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 180.765823][ T5346] Bluetooth: hci2: command 0x0406 tx timeout [ 180.904065][ T5381] usb 5-1: new full-speed USB device number 5 using dummy_hcd [ 181.131661][ T5381] usb 5-1: config 179 has an invalid interface number: 65 but max is 0 [ 181.135267][ T5381] usb 5-1: config 179 has no interface number 0 [ 181.155666][ T5381] usb 5-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 1029, setting to 64 [ 181.161728][ T5381] usb 5-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid maxpacket 65535, setting to 64 [ 181.185075][ T5381] usb 5-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 181.204463][ T5381] usb 5-1: config 179 interface 65 has no altsetting 0 [ 181.214270][ T5381] usb 5-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00 [ 181.225095][ T5381] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 181.252226][ T8913] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 181.266340][ T8913] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 181.316284][ T5381] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:179.65/input/input11 [ 181.466604][ T4816] input input11: unable to receive magic message: -110 [ 181.486861][ C3] xpad 5-1:179.65: xpad_irq_in - usb_submit_urb failed with result -1 [ 181.503820][ T4816] input input11: unable to receive magic message: -32 [ 181.522346][ T4816] input input11: unable to receive magic message: -32 [ 181.549346][ C3] xpad 5-1:179.65: xpad_irq_in - usb_submit_urb failed with result -1 [ 181.554119][ T4816] input input11: unable to receive magic message: -32 [ 181.590296][ T5381] usb 5-1: USB disconnect, device number 5 [ 181.590339][ C3] xpad 5-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19 [ 181.608396][ T5381] xpad 5-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19 [ 183.031537][ T39] audit: type=1326 audit(1723707793.914:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10624 comm="syz.1.837" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc7579 code=0x7ffc0000 [ 183.046690][ T39] audit: type=1326 audit(1723707793.914:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10624 comm="syz.1.837" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc7579 code=0x7ffc0000 [ 183.055129][ T39] audit: type=1326 audit(1723707793.934:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10624 comm="syz.1.837" exe="/syz-executor" sig=0 arch=40000003 syscall=219 compat=1 ip=0xf7fc7579 code=0x7ffc0000 [ 183.069822][ T39] audit: type=1326 audit(1723707793.934:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10624 comm="syz.1.837" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc7579 code=0x7ffc0000 [ 183.095575][ T39] audit: type=1326 audit(1723707793.944:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10624 comm="syz.1.837" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc7579 code=0x7ffc0000 [ 183.107342][ T39] audit: type=1326 audit(1723707793.944:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10624 comm="syz.1.837" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fc7579 code=0x7ffc0000 [ 183.115981][ T39] audit: type=1326 audit(1723707793.944:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10624 comm="syz.1.837" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc7579 code=0x7ffc0000 [ 183.128598][ T39] audit: type=1326 audit(1723707793.944:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10624 comm="syz.1.837" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc7579 code=0x7ffc0000 [ 183.138303][ T39] audit: type=1326 audit(1723707793.944:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10624 comm="syz.1.837" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fc7579 code=0x7ffc0000 [ 183.149702][ T39] audit: type=1326 audit(1723707793.954:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10624 comm="syz.1.837" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc7579 code=0x7ffc0000 [ 190.446252][ T981] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 190.663475][ T981] usb 5-1: Using ep0 maxpacket: 8 [ 190.672041][ T981] usb 5-1: New USB device found, idVendor=0ccd, idProduct=10a3, bcdDevice=23.a2 [ 190.676065][ T981] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 190.679447][ T981] usb 5-1: Product: syz [ 190.681284][ T981] usb 5-1: Manufacturer: syz [ 190.683315][ T981] usb 5-1: SerialNumber: syz [ 190.697536][ T981] usb 5-1: config 0 descriptor?? [ 190.991463][ T981] usb read operation failed. (-71) [ 190.997439][ T981] usb write operation failed. (-71) [ 191.024917][ T981] usb write operation failed. (-71) [ 191.036276][ T981] usb write operation failed. (-71) [ 191.048664][ T981] usb 5-1: dvb_usb_v2: found a 'Terratec H7' in cold state [ 191.062297][ T981] usb 5-1: Direct firmware load for dvb-usb-terratec-h7-az6007.fw failed with error -2 [ 191.066749][ T981] usb 5-1: Falling back to sysfs fallback for: dvb-usb-terratec-h7-az6007.fw [ 193.264369][T19517] ======================================================= [ 193.264369][T19517] WARNING: The mand mount option has been deprecated and [ 193.264369][T19517] and is ignored by this kernel. Remove the mand [ 193.264369][T19517] option from the mount to silence this warning. [ 193.264369][T19517] ======================================================= [ 193.492458][ T11] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 193.572597][ T11] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 193.704888][ T11] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 193.765180][ T5346] Bluetooth: hci14: unexpected cc 0x0c03 length: 249 > 1 [ 193.775099][ T5346] Bluetooth: hci14: unexpected cc 0x1003 length: 249 > 9 [ 193.780519][ T5346] Bluetooth: hci14: unexpected cc 0x1001 length: 249 > 9 [ 193.784721][ T5346] Bluetooth: hci14: unexpected cc 0x0c23 length: 249 > 4 [ 193.790773][ T5346] Bluetooth: hci14: unexpected cc 0x0c25 length: 249 > 3 [ 193.794048][ T5346] Bluetooth: hci14: unexpected cc 0x0c38 length: 249 > 2 [ 193.819816][ T11] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 194.037100][ T11] bridge_slave_1: left allmulticast mode [ 194.042716][ T11] bridge_slave_1: left promiscuous mode [ 194.051620][ T11] bridge0: port 2(bridge_slave_1) entered disabled state [ 194.075923][ T11] bridge0: port 1(bridge_slave_0) entered disabled state [ 194.087690][ T11] gretap1: left allmulticast mode [ 194.089882][ T11] gretap1: left promiscuous mode [ 194.092136][ T11] bridge1: port 1(gretap1) entered disabled state [ 194.517567][ T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 194.523006][ T11] bond_slave_0: left promiscuous mode [ 194.525844][ T11] bond_slave_0: left allmulticast mode [ 194.540599][ T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 194.545235][ T11] bond_slave_1: left promiscuous mode [ 194.548030][ T11] bond_slave_1: left allmulticast mode [ 194.552810][ T11] bond0 (unregistering): Released all slaves [ 194.745276][T20163] chnl_net:caif_netlink_parms(): no params data found [ 195.144199][T20163] bridge0: port 1(bridge_slave_0) entered blocking state [ 195.157109][T20163] bridge0: port 1(bridge_slave_0) entered disabled state [ 195.160259][T20163] bridge_slave_0: entered allmulticast mode [ 195.168171][T20163] bridge_slave_0: entered promiscuous mode [ 195.191658][T20163] bridge0: port 2(bridge_slave_1) entered blocking state [ 195.194243][T20163] bridge0: port 2(bridge_slave_1) entered disabled state [ 195.202218][T20163] bridge_slave_1: entered allmulticast mode [ 195.205052][T20163] bridge_slave_1: entered promiscuous mode [ 195.304658][T20163] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 195.338217][T20163] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 195.440447][ T11] hsr_slave_0: left promiscuous mode [ 195.442983][ T11] hsr_slave_1: left promiscuous mode [ 195.471213][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 195.473766][ T11] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 195.487702][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 195.490222][ T11] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 195.550043][ T11] veth1_macvtap: left promiscuous mode [ 195.552254][ T11] veth0_macvtap: left promiscuous mode [ 195.554217][ T11] veth1_vlan: left promiscuous mode [ 195.560274][ T11] veth0_vlan: left promiscuous mode [ 195.806035][ T4769] Bluetooth: hci14: command tx timeout [ 197.322252][ T11] team_slave_1 (unregistering): left promiscuous mode [ 197.324751][ T11] team_slave_1 (unregistering): left allmulticast mode [ 197.344249][ T11] team0 (unregistering): Port device team_slave_1 removed [ 197.546499][ T11] team_slave_0 (unregistering): left promiscuous mode [ 197.548859][ T11] team_slave_0 (unregistering): left allmulticast mode [ 197.557486][ T11] team0 (unregistering): Port device team_slave_0 removed [ 197.888458][ T4769] Bluetooth: hci14: command tx timeout [ 198.958825][T20163] team0: Port device team_slave_0 added [ 198.978972][T20163] team0: Port device team_slave_1 added [ 199.089815][T20163] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 199.092543][T20163] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 199.108792][T20163] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 199.119785][T20163] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 199.122690][T20163] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 199.134614][T20163] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 199.169003][ T1377] ieee802154 phy0 wpan0: encryption failed: -22 [ 199.171797][ T1377] ieee802154 phy1 wpan1: encryption failed: -22 [ 199.269842][T20163] hsr_slave_0: entered promiscuous mode [ 199.279387][T20163] hsr_slave_1: entered promiscuous mode [ 199.309790][T20163] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 199.313192][T20163] Cannot create hsr debugfs directory [ 199.975606][ T4769] Bluetooth: hci14: command tx timeout [ 200.414534][T20163] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 200.428251][T20163] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 200.454068][T20163] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 200.476573][T20163] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 200.600915][T20163] 8021q: adding VLAN 0 to HW filter on device bond0 [ 200.621325][T20163] 8021q: adding VLAN 0 to HW filter on device team0 [ 200.644641][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 200.647346][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 200.703483][ T1101] bridge0: port 2(bridge_slave_1) entered blocking state [ 200.706766][ T1101] bridge0: port 2(bridge_slave_1) entered forwarding state [ 201.209502][T20163] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 201.277111][T20163] veth0_vlan: entered promiscuous mode [ 201.301457][T20163] veth1_vlan: entered promiscuous mode [ 201.353245][T20163] veth0_macvtap: entered promiscuous mode [ 201.363559][T20163] veth1_macvtap: entered promiscuous mode [ 201.385815][T20163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 201.389642][T20163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 201.393865][T20163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 201.399931][T20163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 201.403710][T20163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 201.414559][T20163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 201.421184][T20163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 201.429227][T20163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 201.433264][T20163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 201.443931][T20163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 201.448602][T20163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 201.453057][T20163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 201.469521][T20163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 201.473681][T20163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 201.482181][T20163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 201.487137][T20163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 201.491429][T20163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 201.505879][T20163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 201.509924][T20163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 201.514424][T20163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 201.535300][T20163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 201.539772][T20163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 201.543776][T20163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 201.549764][T20163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 201.553348][T20163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 201.571219][T20163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 201.575387][T20163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 201.585899][T20163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 201.591598][T20163] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 201.608126][T20163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 201.617233][T20163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 201.621032][T20163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 201.627481][T20163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 201.631278][T20163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 201.635368][T20163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 201.639649][T20163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 201.649444][T20163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 201.655746][T20163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 201.671302][T20163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 201.681532][T20163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 201.691545][T20163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 201.695075][T20163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 201.705767][T20163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 201.709593][T20163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 201.724036][T20163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 201.734130][T20163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 201.739371][T20163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 201.743272][T20163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 201.759986][T20163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 201.775532][T20163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 201.778902][T20163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 201.797998][T20163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 201.823836][T20163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 201.827251][T20163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 201.830700][T20163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 201.833921][T20163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 201.842267][T20163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 201.856692][T20163] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 201.875143][T20163] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 201.880286][T20163] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 201.883204][T20163] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 201.890573][T20163] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 201.969194][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 201.971545][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 201.994482][ T1101] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 201.996939][ T1101] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 202.046609][ T4769] Bluetooth: hci14: command tx timeout [ 202.360691][T26771] warning: `syz.3.1055' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 202.400485][T26771] netlink: 10 bytes leftover after parsing attributes in process `syz.3.1055'. [ 202.570650][T26943] lo: entered promiscuous mode [ 202.575560][T26943] lo: entered allmulticast mode [ 202.589364][T26943] tunl0: entered promiscuous mode [ 202.592431][T26943] tunl0: entered allmulticast mode [ 202.598598][T26943] gre0: entered promiscuous mode [ 202.600461][T26943] gre0: entered allmulticast mode [ 202.619008][T26943] gretap0: entered promiscuous mode [ 202.623828][T26943] gretap0: entered allmulticast mode [ 202.635961][T26943] erspan0: entered promiscuous mode [ 202.638651][T26943] erspan0: entered allmulticast mode [ 202.652275][T26943] ip_vti0: entered promiscuous mode [ 202.654655][T26943] ip_vti0: entered allmulticast mode [ 202.667947][T26943] ip6_vti0: entered promiscuous mode [ 202.670390][T26943] ip6_vti0: entered allmulticast mode [ 202.680224][T26943] sit0: entered promiscuous mode [ 202.684436][T26943] sit0: entered allmulticast mode [ 202.704487][T26943] ip6tnl0: entered promiscuous mode [ 202.708646][T26943] ip6tnl0: entered allmulticast mode [ 202.724747][T26943] ip6gre0: entered promiscuous mode [ 202.729420][T26943] ip6gre0: entered allmulticast mode [ 202.749980][T26943] syz_tun: entered promiscuous mode [ 202.752951][T26943] syz_tun: entered allmulticast mode [ 202.764357][T26943] ip6gretap0: entered promiscuous mode [ 202.769803][T26943] ip6gretap0: entered allmulticast mode [ 202.781327][T26943] bridge0: port 2(bridge_slave_1) entered disabled state [ 202.783721][T26943] bridge0: port 1(bridge_slave_0) entered disabled state [ 202.788379][T26943] bridge0: entered promiscuous mode [ 202.790019][T26943] bridge0: entered allmulticast mode [ 202.799775][T26943] vcan0: entered promiscuous mode [ 202.801737][T26943] vcan0: entered allmulticast mode [ 202.813458][T26943] bond0: entered promiscuous mode [ 202.815184][T26943] bond_slave_0: entered promiscuous mode [ 202.823678][T26943] bond_slave_1: entered promiscuous mode [ 202.829985][T26943] bond0: entered allmulticast mode [ 202.831750][T26943] bond_slave_0: entered allmulticast mode [ 202.833757][T26943] bond_slave_1: entered allmulticast mode [ 202.855147][T26943] team0: entered promiscuous mode [ 202.864299][T26943] team_slave_0: entered promiscuous mode [ 202.874565][T26943] team_slave_1: entered promiscuous mode [ 202.876888][T26943] team0: entered allmulticast mode [ 202.879189][T26943] team_slave_0: entered allmulticast mode [ 202.881723][T26943] team_slave_1: entered allmulticast mode [ 202.892443][T26943] dummy0: entered promiscuous mode [ 202.894188][T26943] dummy0: entered allmulticast mode [ 202.903902][T26943] nlmon0: entered promiscuous mode [ 202.906202][T26943] nlmon0: entered allmulticast mode [ 202.917627][T26943] caif0: entered promiscuous mode [ 202.919387][T26943] caif0: entered allmulticast mode [ 202.924077][T26943] batadv0: entered promiscuous mode [ 202.926002][T26943] batadv0: entered allmulticast mode [ 202.936834][T26943] vxcan0: entered promiscuous mode [ 202.940119][T26943] vxcan0: entered allmulticast mode [ 202.943896][T26943] vxcan1: entered promiscuous mode [ 202.945474][T26943] vxcan1: entered allmulticast mode [ 202.951271][T26943] veth0: entered promiscuous mode [ 202.953203][T26943] veth0: entered allmulticast mode [ 202.970376][T26943] veth1: entered promiscuous mode [ 202.971943][T26943] veth1: entered allmulticast mode [ 202.979184][T26943] wg0: entered promiscuous mode [ 202.980861][T26943] wg0: entered allmulticast mode [ 202.986955][T26943] wg1: entered promiscuous mode [ 202.988532][T26943] wg1: entered allmulticast mode [ 202.999436][T26943] wg2: entered promiscuous mode [ 203.001033][T26943] wg2: entered allmulticast mode [ 203.015632][T26943] veth0_to_bridge: entered promiscuous mode [ 203.017597][T26943] veth0_to_bridge: entered allmulticast mode [ 203.035840][T26943] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 203.183190][T28159] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1077'. [ 203.570881][T28716] netlink: 72 bytes leftover after parsing attributes in process `syz.3.1094'. [ 203.581320][T28716] netlink: 72 bytes leftover after parsing attributes in process `syz.3.1094'. [ 203.911257][T29241] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 204.257739][ T39] kauditd_printk_skb: 37 callbacks suppressed [ 204.257754][ T39] audit: type=1326 audit(1723707815.071:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29601 comm="syz.1.1123" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fa2579 code=0x0 [ 204.997911][T30586] bridge0: left promiscuous mode [ 205.128344][T30679] veth0: left allmulticast mode [ 206.915770][T32499] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 207.516439][ T699] Â: renamed from pim6reg1 [ 207.835436][ T1158] Â: renamed from pim6reg1 [ 208.534511][ T1997] ªªªªªª: renamed from vlan0 (while UP) [ 208.637809][ T2101] syzkaller0: entered promiscuous mode [ 208.640086][ T2101] syzkaller0: entered allmulticast mode [ 213.136877][ T4546] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1250'. [ 213.730598][ T4968] capability: warning: `syz.1.1257' uses deprecated v2 capabilities in a way that may be insecure [ 214.177846][ T5293] delete_channel: no stack [ 215.306377][ T6323] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1270'. [ 215.319741][ T6323] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 215.333818][ T6323] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 215.887481][ T39] audit: type=1326 audit(1723707825.950:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7131 comm="syz.3.1283" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf747e579 code=0x7ffc0000 [ 215.910406][ T39] audit: type=1326 audit(1723707825.950:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7131 comm="syz.3.1283" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf747e579 code=0x7ffc0000 [ 215.973648][ T39] audit: type=1326 audit(1723707825.997:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7131 comm="syz.3.1283" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf747e579 code=0x7ffc0000 [ 216.015737][ T39] audit: type=1326 audit(1723707825.997:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7131 comm="syz.3.1283" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf747e579 code=0x7ffc0000 [ 216.039919][ T39] audit: type=1326 audit(1723707825.997:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7131 comm="syz.3.1283" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf747e579 code=0x7ffc0000 [ 216.066401][ T39] audit: type=1326 audit(1723707826.006:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7131 comm="syz.3.1283" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf747e579 code=0x7ffc0000 [ 216.083251][ T39] audit: type=1326 audit(1723707826.006:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7131 comm="syz.3.1283" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf747e579 code=0x7ffc0000 [ 218.843352][ T8960] serio: Serial port pts0 [ 219.454198][ T9579] serio: Serial port pts0 [ 219.760630][ T4769] Bluetooth: hci13: Controller not accepting commands anymore: ncmd = 0 [ 219.764581][ T4769] Bluetooth: hci13: Injecting HCI hardware error event [ 219.770256][ T4769] Bluetooth: hci13: hardware error 0x00 [ 220.921374][T10705] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1331'. [ 221.371097][T11214] smc: net device lo applied user defined pnetid SYZ2 [ 221.855440][ T1293] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 221.983754][ T4769] Bluetooth: hci13: Opcode 0x0c03 failed: -110 [ 222.069195][ T1293] usb 6-1: Using ep0 maxpacket: 8 [ 222.092616][ T1293] usb 6-1: config 179 has an invalid interface number: 65 but max is 0 [ 222.095863][ T1293] usb 6-1: config 179 has no interface number 0 [ 222.098233][ T1293] usb 6-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 222.101975][ T1293] usb 6-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024 [ 222.106370][ T1293] usb 6-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 222.110681][ T1293] usb 6-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024 [ 222.116143][ T1293] usb 6-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 222.121007][ T1293] usb 6-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb [ 222.125172][ T1293] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 222.131129][T11420] raw-gadget.2 gadget.1: fail, usb_ep_enable returned -22 [ 222.502506][ T1293] input: Generic X-Box pad as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:179.65/input/input12 [ 222.877141][ T10] usb 6-1: USB disconnect, device number 5 [ 222.877141][ C2] xpad 6-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19 [ 222.877180][ C2] xpad 6-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19 [ 222.885477][ T10] xpad 6-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19 [ 223.903498][T13159] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1367'. [ 224.828087][T14104] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 227.220730][ T39] audit: type=1326 audit(1723707836.548:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15831 comm="syz.0.1404" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f38579 code=0x7ffc0000 [ 227.254166][ T39] audit: type=1326 audit(1723707836.567:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15831 comm="syz.0.1404" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f38579 code=0x7ffc0000 [ 227.310280][ T39] audit: type=1326 audit(1723707836.632:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15831 comm="syz.0.1404" exe="/syz-executor" sig=0 arch=40000003 syscall=459 compat=1 ip=0xf7f38579 code=0x7ffc0000 [ 227.327103][ T39] audit: type=1326 audit(1723707836.632:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15831 comm="syz.0.1404" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f38579 code=0x7ffc0000 [ 227.339437][ T39] audit: type=1326 audit(1723707836.632:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15831 comm="syz.0.1404" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f38579 code=0x7ffc0000 [ 228.073908][T16449] mac80211_hwsim hwsim25 wlan1: entered promiscuous mode [ 228.106321][ T4769] Bluetooth: hci14: unexpected event for opcode 0x2060 [ 228.210311][ T11] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 228.346801][ T11] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 228.481088][ T11] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 228.615025][ T11] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 228.723887][ T5342] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1 [ 228.731216][ T5342] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9 [ 228.738650][ T5342] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9 [ 228.744827][ T5342] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4 [ 228.749958][ T5342] Bluetooth: hci13: unexpected cc 0x0c25 length: 249 > 3 [ 228.753929][ T5342] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2 [ 228.799801][ T11] bridge_slave_1: left allmulticast mode [ 228.802444][ T11] bridge_slave_1: left promiscuous mode [ 228.810900][ T11] bridge0: port 2(bridge_slave_1) entered disabled state [ 228.867481][ T11] bridge0: port 1(bridge_slave_0) entered disabled state [ 229.451292][ T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 229.455557][ T11] bond_slave_0: left promiscuous mode [ 229.459364][ T11] bond_slave_0: left allmulticast mode [ 229.480030][ T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 229.489098][ T11] bond_slave_1: left promiscuous mode [ 229.491742][ T11] bond_slave_1: left allmulticast mode [ 229.504875][ T11] bond0 (unregistering): Released all slaves [ 230.280344][ T11] hsr_slave_0: left promiscuous mode [ 230.289032][ T11] hsr_slave_1: left promiscuous mode [ 230.332665][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 230.337079][ T11] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 230.351221][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 230.367212][ T39] audit: type=1326 audit(1723707839.485:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17793 comm="syz.0.1441" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f38579 code=0x7ffc0000 [ 230.376483][ T11] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 230.394532][ T39] audit: type=1326 audit(1723707839.485:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17793 comm="syz.0.1441" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f38579 code=0x7ffc0000 [ 230.441329][ T39] audit: type=1326 audit(1723707839.560:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17793 comm="syz.0.1441" exe="/syz-executor" sig=0 arch=40000003 syscall=377 compat=1 ip=0xf7f38579 code=0x7ffc0000 [ 230.450390][ T39] audit: type=1326 audit(1723707839.560:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17793 comm="syz.0.1441" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f38579 code=0x7ffc0000 [ 230.482678][ T39] audit: type=1326 audit(1723707839.560:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17793 comm="syz.0.1441" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f38579 code=0x7ffc0000 [ 230.509289][ T11] veth1_macvtap: left promiscuous mode [ 230.512742][ T11] veth0_macvtap: left promiscuous mode [ 230.515897][ T11] veth1_vlan: left promiscuous mode [ 230.518572][ T11] veth0_vlan: left promiscuous mode [ 230.634046][ T5346] Bluetooth: hci14: command 0x0405 tx timeout [ 230.966166][ T4769] Bluetooth: hci13: command tx timeout [ 231.560061][T18536] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1458'. [ 231.564265][T18536] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1458'. [ 232.112464][ C0] vcan0: j1939_tp_rxtimer: 0xffff88801d4d4800: rx timeout, send abort [ 232.282331][ T11] team_slave_1 (unregistering): left promiscuous mode [ 232.285879][ T11] team_slave_1 (unregistering): left allmulticast mode [ 232.310229][ T11] team0 (unregistering): Port device team_slave_1 removed [ 232.418043][ T4769] Bluetooth: hci14: Controller not accepting commands anymore: ncmd = 0 [ 232.421865][ T4769] Bluetooth: hci14: Injecting HCI hardware error event [ 232.426118][ T4769] Bluetooth: hci14: hardware error 0x00 [ 232.466596][ T11] team_slave_0 (unregistering): left promiscuous mode [ 232.469776][ T11] team_slave_0 (unregistering): left allmulticast mode [ 232.471461][ T5381] usb 6-1: new high-speed USB device number 6 using dummy_hcd [ 232.477628][ T11] team0 (unregistering): Port device team_slave_0 removed [ 232.653537][ C0] vcan0: j1939_tp_rxtimer: 0xffff88801d4d4800: abort rx timeout. Force session deactivation [ 232.723743][ T5381] usb 6-1: config 1 has an invalid descriptor of length 112, skipping remainder of the config [ 232.729432][ T5381] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 232.734609][ T5381] usb 6-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 232.742429][ T5381] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 232.746816][ T5381] usb 6-1: SerialNumber: syz [ 233.187456][ T5346] Bluetooth: hci13: command tx timeout [ 233.625755][T18536] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1458'. [ 233.654656][T16869] chnl_net:caif_netlink_parms(): no params data found [ 233.706556][ T5381] usb 6-1: 0:2 : does not exist [ 233.709196][ T5381] usb 6-1: unit 5 not found! [ 233.792991][ T5381] usb 6-1: USB disconnect, device number 6 [ 233.986344][T16869] bridge0: port 1(bridge_slave_0) entered blocking state [ 233.992301][T16869] bridge0: port 1(bridge_slave_0) entered disabled state [ 233.995175][T16869] bridge_slave_0: entered allmulticast mode [ 234.014359][T16869] bridge_slave_0: entered promiscuous mode [ 234.026267][T16869] bridge0: port 2(bridge_slave_1) entered blocking state [ 234.030028][T16869] bridge0: port 2(bridge_slave_1) entered disabled state [ 234.039603][T16869] bridge_slave_1: entered allmulticast mode [ 234.052462][T16869] bridge_slave_1: entered promiscuous mode [ 234.083462][T16905] udevd[16905]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 234.214215][T16869] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 234.248805][T16869] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 234.394843][T16869] team0: Port device team_slave_0 added [ 234.412682][T16869] team0: Port device team_slave_1 added [ 234.539722][T16869] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 234.543730][T16869] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 234.559174][T16869] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 234.566006][T16869] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 234.571171][T16869] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 234.583105][T16869] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 234.659484][ T4769] Bluetooth: hci14: Opcode 0x0c03 failed: -110 [ 234.681912][T16869] hsr_slave_0: entered promiscuous mode [ 234.690855][T16869] hsr_slave_1: entered promiscuous mode [ 234.696383][T16869] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 234.699197][T16869] Cannot create hsr debugfs directory [ 234.858284][T19965] netlink: 'syz.1.1474': attribute type 4 has an invalid length. [ 234.951659][T19965] netlink: 'syz.1.1474': attribute type 4 has an invalid length. [ 235.424055][ T4769] Bluetooth: hci13: command tx timeout [ 235.725169][T16869] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 235.739371][T16869] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 235.765154][T16869] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 235.784963][T16869] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 235.909797][T16869] 8021q: adding VLAN 0 to HW filter on device bond0 [ 235.935417][T16869] 8021q: adding VLAN 0 to HW filter on device team0 [ 235.944144][ T64] bridge0: port 1(bridge_slave_0) entered blocking state [ 235.947486][ T64] bridge0: port 1(bridge_slave_0) entered forwarding state [ 235.973369][ T64] bridge0: port 2(bridge_slave_1) entered blocking state [ 235.976459][ T64] bridge0: port 2(bridge_slave_1) entered forwarding state [ 236.629392][T16869] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 236.738621][T16869] veth0_vlan: entered promiscuous mode [ 236.758887][T16869] veth1_vlan: entered promiscuous mode [ 236.814543][T16869] veth0_macvtap: entered promiscuous mode [ 236.820812][T16869] veth1_macvtap: entered promiscuous mode [ 236.856476][T16869] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 236.871770][T16869] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 236.875278][T16869] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 236.886316][T16869] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 236.889837][T16869] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 236.904858][T16869] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 236.908676][T16869] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 236.913023][T16869] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 236.928586][T16869] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 236.939413][T16869] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 236.944257][T16869] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 236.947802][T16869] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 236.961169][T16869] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 236.965300][T16869] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 236.969503][T16869] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 236.993261][T16869] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 236.997440][T16869] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 237.002038][T16869] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 237.014662][T16869] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 237.019569][T16869] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 237.024292][T16869] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 237.047026][T16869] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 237.051731][T16869] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 237.056564][T16869] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 237.078770][T16869] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 237.083430][T16869] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 237.087535][T16869] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 237.100142][T16869] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 237.106619][T16869] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 237.162892][T16869] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 237.176153][T16869] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 237.180589][T16869] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 237.185397][T16869] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 237.196355][T16869] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 237.201683][T16869] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 237.206030][T16869] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 237.228540][T16869] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 237.233185][T16869] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 237.237927][T16869] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 237.271587][T16869] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 237.276513][T16869] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 237.281322][T16869] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 237.295303][T16869] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 237.299592][T16869] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 237.303172][T16869] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 237.324738][T16869] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 237.328782][T16869] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 237.332241][T16869] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 237.346073][T16869] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 237.350170][T16869] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 237.366416][T16869] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 237.370890][T16869] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 237.374482][T16869] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 237.388821][T16869] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 237.393289][T16869] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 237.396948][T16869] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 237.411543][T16869] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 237.417615][T16869] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 237.468712][T16869] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 237.472623][T16869] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 237.486100][T16869] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 237.489948][T16869] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 237.622620][ T45] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 237.632534][ T45] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 237.635167][ T4769] Bluetooth: hci13: command tx timeout [ 237.692826][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 237.696350][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 237.870060][ T39] audit: type=1326 audit(1723707846.501:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22143 comm="syz.3.1424" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf744e579 code=0x0 [ 238.390438][ T5346] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1 [ 238.396047][ T5346] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9 [ 238.400223][ T5346] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9 [ 238.404638][ T5346] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4 [ 238.408397][ T5346] Bluetooth: hci12: unexpected cc 0x0c25 length: 249 > 3 [ 238.411822][ T5346] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2 [ 238.458002][ T10] usb 6-1: new high-speed USB device number 7 using dummy_hcd [ 238.653374][ T10] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 238.666902][ T10] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 238.667021][ T11] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 238.682111][ T10] usb 6-1: New USB device found, idVendor=1e7d, idProduct=319c, bcdDevice= 0.00 [ 238.685365][ T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 238.698346][ T10] usb 6-1: config 0 descriptor?? [ 238.884277][ T11] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 239.045191][ T11] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 239.095526][T22249] chnl_net:caif_netlink_parms(): no params data found [ 239.257209][ T11] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 239.315734][ T10] isku 0003:1E7D:319C.0003: hidraw1: USB HID v0.00 Device [HID 1e7d:319c] on usb-dummy_hcd.1-1/input0 [ 239.505464][T22249] bridge0: port 1(bridge_slave_0) entered blocking state [ 239.538247][T22249] bridge0: port 1(bridge_slave_0) entered disabled state [ 239.541531][T22249] bridge_slave_0: entered allmulticast mode [ 239.561340][T22249] bridge_slave_0: entered promiscuous mode [ 239.576962][T22249] bridge0: port 2(bridge_slave_1) entered blocking state [ 239.580259][T22249] bridge0: port 2(bridge_slave_1) entered disabled state [ 239.583649][T22249] bridge_slave_1: entered allmulticast mode [ 239.589649][T22249] bridge_slave_1: entered promiscuous mode [ 239.637324][T22568] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1506'. [ 239.705312][T22249] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 239.755082][T22249] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 239.835358][ T11] bridge_slave_1: left allmulticast mode [ 239.842396][ T11] bridge_slave_1: left promiscuous mode [ 239.845257][ T11] bridge0: port 2(bridge_slave_1) entered disabled state [ 239.863732][ T11] bridge_slave_0: left allmulticast mode [ 239.865825][ T11] bridge_slave_0: left promiscuous mode [ 239.867931][ T11] bridge0: port 1(bridge_slave_0) entered disabled state [ 239.894161][ T5380] usb 6-1: USB disconnect, device number 7 [ 240.453905][ T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 240.498283][ T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 240.522452][ T11] bond0 (unregistering): Released all slaves [ 240.628298][ T5346] Bluetooth: hci12: command tx timeout [ 240.656907][T22249] team0: Port device team_slave_0 added [ 240.666228][T22249] team0: Port device team_slave_1 added [ 240.821384][T22249] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 240.823787][T22249] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 240.842198][T22249] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 240.899875][T22249] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 240.902260][T22249] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 240.925924][T22249] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 241.106512][T22249] hsr_slave_0: entered promiscuous mode [ 241.139755][T22249] hsr_slave_1: entered promiscuous mode [ 241.161043][T22249] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 241.166104][T22249] Cannot create hsr debugfs directory [ 241.398253][ T11] hsr_slave_0: left promiscuous mode [ 241.401423][ T11] hsr_slave_1: left promiscuous mode [ 241.406178][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 241.421610][ T11] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 241.425522][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 241.438433][ T11] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 241.602930][ T11] veth1_macvtap: left promiscuous mode [ 241.605445][ T11] veth0_macvtap: left promiscuous mode [ 241.608068][ T11] veth1_vlan: left promiscuous mode [ 241.622535][ T11] veth0_vlan: left promiscuous mode [ 242.143866][ T39] audit: type=1326 audit(1723707850.504:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23515 comm="syz.3.1525" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf744e579 code=0x7ffc0000 [ 242.160483][ T39] audit: type=1326 audit(1723707850.504:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23515 comm="syz.3.1525" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf744e579 code=0x7ffc0000 [ 242.188006][ T39] audit: type=1326 audit(1723707850.523:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23515 comm="syz.3.1525" exe="/syz-executor" sig=0 arch=40000003 syscall=30 compat=1 ip=0xf744e579 code=0x7ffc0000 [ 242.210376][ T39] audit: type=1326 audit(1723707850.523:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23515 comm="syz.3.1525" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf744e579 code=0x7ffc0000 [ 242.219250][ T39] audit: type=1326 audit(1723707850.523:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23515 comm="syz.3.1525" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf744e579 code=0x7ffc0000 [ 242.851855][ T4769] Bluetooth: hci12: command tx timeout [ 243.142208][ T11] team0 (unregistering): Port device team_slave_1 removed [ 243.289427][ T11] team0 (unregistering): Port device team_slave_0 removed [ 244.281099][T23429] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1524'. [ 244.329139][T23517] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1524'. [ 244.904359][ T4769] Bluetooth: hci9: command 0x0406 tx timeout [ 245.080767][ T5346] Bluetooth: hci12: command tx timeout [ 245.286423][T23842] ------------[ cut here ]------------ [ 245.288422][T23842] WARNING: CPU: 1 PID: 23842 at mm/shmem.c:1283 shmem_evict_inode+0x8b3/0xba0 [ 245.291932][T23842] Modules linked in: [ 245.293498][T23842] CPU: 1 UID: 0 PID: 23842 Comm: syz.0.1536 Not tainted 6.11.0-rc3-syzkaller-00066-g1fb918967b56 #0 [ 245.300099][T23842] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 245.304878][T23842] RIP: 0010:shmem_evict_inode+0x8b3/0xba0 [ 245.307483][T23842] Code: e6 e8 c1 52 c1 ff 45 85 e4 75 aa e8 77 50 c1 ff 48 8b 74 24 28 48 8b 7c 24 30 e8 f8 d9 9b ff e9 1a fe ff ff e8 5e 50 c1 ff 90 <0f> 0b 90 e9 8d f9 ff ff e8 50 50 c1 ff 4c 89 e2 48 b8 00 00 00 00 [ 245.315927][T23842] RSP: 0018:ffffc90003f8f780 EFLAGS: 00010293 [ 245.318533][T23842] RAX: 0000000000000000 RBX: ffff8880204ed668 RCX: ffffffff81c9ceff [ 245.322078][T23842] RDX: ffff88804f3e0000 RSI: ffffffff81c9d572 RDI: 0000000000000007 [ 245.325580][T23842] RBP: ffffc90003f8f8b0 R08: 0000000000000007 R09: 0000000000000000 [ 245.329030][T23842] R10: 0000000000000008 R11: 0000000000000000 R12: 0000000000000008 [ 245.332729][T23842] R13: 0000000000000000 R14: ffff8880204ed698 R15: 0000000000000000 [ 245.336451][T23842] FS: 0000000000000000(0000) GS:ffff88802c100000(0000) knlGS:0000000000000000 [ 245.337736][T22249] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 245.340382][T23842] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 245.340398][T23842] CR2: 00000000f72c13c0 CR3: 000000004c2e8000 CR4: 0000000000350ef0 SYZFAIL: failed to recv rpc [ 245.340410][T23842] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 245.340421][T23842] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 245.340431][T23842] Call Trace: [ 245.340438][T23842] [ 245.340446][T23842] ? show_regs+0x8c/0xa0 fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 245.340474][T23842] ? __warn+0xe5/0x3c0 [ 245.340495][T23842] ? shmem_evict_inode+0x8b3/0xba0 [ 245.340515][T23842] ? report_bug+0x3c0/0x580 [ 245.340542][T23842] ? handle_bug+0x3d/0x70 [ 245.340567][T23842] ? exc_invalid_op+0x17/0x50 [ 245.340588][T23842] ? asm_exc_invalid_op+0x1a/0x20 [ 245.340616][T23842] ? shmem_evict_inode+0x23f/0xba0 [ 245.340632][T23842] ? shmem_evict_inode+0x8b2/0xba0 [ 245.340649][T23842] ? shmem_evict_inode+0x8b3/0xba0 [ 245.340670][T23842] ? find_held_lock+0x2d/0x110 [ 245.340689][T23842] ? __pfx_shmem_evict_inode+0x10/0x10 [ 245.340706][T23842] ? evict+0x361/0x8c0 [ 245.340722][T23842] ? __pfx_lock_release+0x10/0x10 [ 245.340742][T23842] ? __pfx_wake_bit_function+0x10/0x10 [ 245.340766][T23842] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 245.340795][T23842] ? __pfx_shmem_evict_inode+0x10/0x10 [ 245.340813][T23842] evict+0x398/0x8c0 [ 245.340831][T23842] ? __pfx_evict+0x10/0x10 [ 245.340845][T23842] ? __pfx_lock_release+0x10/0x10 [ 245.340865][T23842] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 245.340899][T23842] iput.part.0+0x5a8/0x7f0 [ 245.340915][T23842] ? __pfx_generic_delete_inode+0x10/0x10 [ 245.340940][T23842] iput+0x5c/0x80 [ 245.340957][T23842] dentry_unlink_inode+0x29c/0x480 [ 245.340975][T23842] __dentry_kill+0x1d0/0x600 [ 245.340995][T23842] dput.part.0+0x4b1/0x9b0 [ 245.341016][T23842] dput+0x1f/0x30 [ 245.341033][T23842] __fput+0x54e/0xbb0 [ 245.341053][T23842] ? _raw_spin_unlock_irq+0x23/0x50 [ 245.341073][T23842] task_work_run+0x14e/0x250 [ 245.341097][T23842] ? __pfx_task_work_run+0x10/0x10 [ 245.341120][T23842] ? do_raw_spin_unlock+0x172/0x230 [ 245.341148][T23842] do_exit+0xaa3/0x2bb0 [ 245.341171][T23842] ? get_signal+0x8fb/0x26e0 [ 245.341189][T23842] ? __pfx_do_exit+0x10/0x10 [ 245.341215][T23842] do_group_exit+0xd3/0x2a0 [ 245.341238][T23842] get_signal+0x265a/0x26e0 [ 245.341258][T23842] ? finish_task_switch.isra.0+0x217/0xcc0 [ 245.341280][T23842] ? __switch_to+0x749/0x1180 [ 245.442650][T23842] ? __pfx_get_signal+0x10/0x10 [ 245.444757][T23842] ? __pfx_do_futex+0x10/0x10 [ 245.446838][T23842] arch_do_signal_or_restart+0x90/0x7e0 [ 245.449321][T23842] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 245.452084][T23842] syscall_exit_to_user_mode+0x150/0x2a0 [ 245.454504][T23842] __do_fast_syscall_32+0x80/0x120 [ 245.457926][T23842] do_fast_syscall_32+0x32/0x80 [ 245.461065][T23842] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 245.463783][T23842] RIP: 0023:0xf7f38579 [ 245.465553][T23842] Code: Unable to access opcode bytes at 0xf7f3854f. [ 245.468433][T23842] RSP: 002b:00000000f56d660c EFLAGS: 00000296 ORIG_RAX: 00000000000000f0 [ 245.472035][T23842] RAX: fffffffffffffe00 RBX: 00000000f73f4f88 RCX: 0000000000000080 [ 245.475364][T23842] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000f73f4f8c [ 245.478686][T23842] RBP: 0000000000000081 R08: 0000000000000000 R09: 0000000000000000 [ 245.481677][T23842] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 245.484707][T23842] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 245.488117][T23842] [ 245.489518][T23842] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 245.492751][T23842] CPU: 1 UID: 0 PID: 23842 Comm: syz.0.1536 Not tainted 6.11.0-rc3-syzkaller-00066-g1fb918967b56 #0 [ 245.497312][T23842] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 245.501847][T23842] Call Trace: [ 245.503347][T23842] [ 245.504651][T23842] dump_stack_lvl+0x3d/0x1f0 [ 245.506727][T23842] panic+0x6f5/0x7a0 [ 245.508471][T23842] ? __pfx_panic+0x10/0x10 [ 245.510431][T23842] ? show_trace_log_lvl+0x363/0x500 [ 245.512460][T23842] ? check_panic_on_warn+0x1f/0xb0 [ 245.514587][T23842] ? shmem_evict_inode+0x8b3/0xba0 [ 245.516871][T23842] check_panic_on_warn+0xab/0xb0 [ 245.519065][T23842] __warn+0xf1/0x3c0 [ 245.520770][T23842] ? shmem_evict_inode+0x8b3/0xba0 [ 245.522979][T23842] report_bug+0x3c0/0x580 [ 245.524881][T23842] handle_bug+0x3d/0x70 [ 245.526659][T23842] exc_invalid_op+0x17/0x50 [ 245.528589][T23842] asm_exc_invalid_op+0x1a/0x20 [ 245.530653][T23842] RIP: 0010:shmem_evict_inode+0x8b3/0xba0 [ 245.533039][T23842] Code: e6 e8 c1 52 c1 ff 45 85 e4 75 aa e8 77 50 c1 ff 48 8b 74 24 28 48 8b 7c 24 30 e8 f8 d9 9b ff e9 1a fe ff ff e8 5e 50 c1 ff 90 <0f> 0b 90 e9 8d f9 ff ff e8 50 50 c1 ff 4c 89 e2 48 b8 00 00 00 00 [ 245.541014][T23842] RSP: 0018:ffffc90003f8f780 EFLAGS: 00010293 [ 245.543587][T23842] RAX: 0000000000000000 RBX: ffff8880204ed668 RCX: ffffffff81c9ceff [ 245.546901][T23842] RDX: ffff88804f3e0000 RSI: ffffffff81c9d572 RDI: 0000000000000007 [ 245.550386][T23842] RBP: ffffc90003f8f8b0 R08: 0000000000000007 R09: 0000000000000000 [ 245.553680][T23842] R10: 0000000000000008 R11: 0000000000000000 R12: 0000000000000008 [ 245.556511][T23842] R13: 0000000000000000 R14: ffff8880204ed698 R15: 0000000000000000 [ 245.559527][T23842] ? shmem_evict_inode+0x23f/0xba0 [ 245.561701][T23842] ? shmem_evict_inode+0x8b2/0xba0 [ 245.563887][T23842] ? find_held_lock+0x2d/0x110 [ 245.565913][T23842] ? __pfx_shmem_evict_inode+0x10/0x10 [ 245.568174][T23842] ? evict+0x361/0x8c0 [ 245.569908][T23842] ? __pfx_lock_release+0x10/0x10 [ 245.572045][T23842] ? __pfx_wake_bit_function+0x10/0x10 [ 245.574359][T23842] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 245.576638][T23842] ? __pfx_shmem_evict_inode+0x10/0x10 [ 245.578904][T23842] evict+0x398/0x8c0 [ 245.580569][T23842] ? __pfx_evict+0x10/0x10 [ 245.582444][T23842] ? __pfx_lock_release+0x10/0x10 [ 245.584609][T23842] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 245.586876][T23842] iput.part.0+0x5a8/0x7f0 [ 245.588781][T23842] ? __pfx_generic_delete_inode+0x10/0x10 [ 245.591186][T23842] iput+0x5c/0x80 [ 245.592772][T23842] dentry_unlink_inode+0x29c/0x480 [ 245.594955][T23842] __dentry_kill+0x1d0/0x600 [ 245.596898][T23842] dput.part.0+0x4b1/0x9b0 [ 245.598787][T23842] dput+0x1f/0x30 [ 245.600366][T23842] __fput+0x54e/0xbb0 [ 245.602067][T23842] ? _raw_spin_unlock_irq+0x23/0x50 [ 245.604282][T23842] task_work_run+0x14e/0x250 [ 245.606093][T23842] ? __pfx_task_work_run+0x10/0x10 [ 245.607821][T23842] ? do_raw_spin_unlock+0x172/0x230 [ 245.609982][T23842] do_exit+0xaa3/0x2bb0 [ 245.611790][T23842] ? get_signal+0x8fb/0x26e0 [ 245.613757][T23842] ? __pfx_do_exit+0x10/0x10 [ 245.615719][T23842] do_group_exit+0xd3/0x2a0 [ 245.617640][T23842] get_signal+0x265a/0x26e0 [ 245.619576][T23842] ? finish_task_switch.isra.0+0x217/0xcc0 [ 245.622035][T23842] ? __switch_to+0x749/0x1180 [ 245.624064][T23842] ? __pfx_get_signal+0x10/0x10 [ 245.626182][T23842] ? __pfx_do_futex+0x10/0x10 [ 245.628194][T23842] arch_do_signal_or_restart+0x90/0x7e0 [ 245.630522][T23842] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 245.633293][T23842] syscall_exit_to_user_mode+0x150/0x2a0 [ 245.635934][T23842] __do_fast_syscall_32+0x80/0x120 [ 245.638233][T23842] do_fast_syscall_32+0x32/0x80 [ 245.640449][T23842] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 245.643220][T23842] RIP: 0023:0xf7f38579 [ 245.645218][T23842] Code: Unable to access opcode bytes at 0xf7f3854f. [ 245.647850][T23842] RSP: 002b:00000000f56d660c EFLAGS: 00000296 ORIG_RAX: 00000000000000f0 [ 245.651314][T23842] RAX: fffffffffffffe00 RBX: 00000000f73f4f88 RCX: 0000000000000080 [ 245.654751][T23842] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000f73f4f8c [ 245.657969][T23842] RBP: 0000000000000081 R08: 0000000000000000 R09: 0000000000000000 [ 245.661380][T23842] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 245.664762][T23842] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 245.667569][T23842] [ 245.669605][T23842] Kernel Offset: disabled [ 245.671507][T23842] Rebooting in 86400 seconds.. VM DIAGNOSIS: 07:44:16 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000001 RBX=ffff8880206b6400 RCX=0000000000000100 RDX=0000000000000001 RSI=0000000000000004 RDI=ffff8880206b6402 RBP=dffffc0000000000 RSP=ffffc900040b7150 R8 =0000000000000001 R9 =ffffed10040d6c80 R10=ffff8880206b6403 R11=0000000000000000 R12=0000000000000000 R13=0000000000007d8b R14=ffff88802c03fc80 R15=ffffed10040d6c80 RIP=ffffffff8b0971d5 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 ffffffff 00c00000 DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802c000000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007f6901c14178 CR3=00000000681ba000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffff0000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffff000000000000 ffffffffffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000031 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff84fab3c5 RDI=ffffffff9511f340 RBP=ffffffff9511f300 RSP=ffffc90003f8f160 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000 R12=0000000000000000 R13=0000000000000031 R14=ffffffff84fab360 R15=0000000000000000 RIP=ffffffff84fab3ef RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802c100000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00000000f72c13c0 CR3=000000004c2e8000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000080000000 RBX=0000000000000000 RCX=ffffffff81c46ad1 RDX=ffff88801b88a440 RSI=ffffffff81c46adf RDI=0000000000000007 RBP=ffffea0001e278c0 RSP=ffffc90001f97290 R8 =0000000000000007 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000000 R12=0000000000000000 R13=dffffc0000000000 R14=0000000000000001 R15=ffffea0001e278d0 RIP=ffffffff818b260b RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 ffffffff 00c00000 DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802c200000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007ffed5322ecc CR3=0000000025f7c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=6b20657479622d32 3320646e61707865 6b20657479622d32 3320646e61707865 6b20657479622d32 3320646e61707865 6b20657479622d32 3320646e61707865 ZMM17=24770a60ee7f71f1 7fce2b790c85d8ae 24770a60ee7f71f1 7fce2b790c85d8ae 24770a60ee7f71f1 7fce2b790c85d8ae 24770a60ee7f71f1 7fce2b790c85d8ae ZMM18=c9d09747dfd7c6c7 42a2bc2c01b9f5da c9d09747dfd7c6c7 42a2bc2c01b9f5da c9d09747dfd7c6c7 42a2bc2c01b9f5da c9d09747dfd7c6c7 42a2bc2c01b9f5da ZMM19=7b09000000000000 0000000000000004 7b09000000000000 0000000000000003 7b09000000000000 0000000000000002 7b09000000000000 0000000000000001 ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 ZMM21=7fce2b797fce2b79 7fce2b797fce2b79 7fce2b797fce2b79 7fce2b797fce2b79 7fce2b797fce2b79 7fce2b797fce2b79 7fce2b797fce2b79 7fce2b797fce2b79 ZMM22=ee7f71f1ee7f71f1 ee7f71f1ee7f71f1 ee7f71f1ee7f71f1 ee7f71f1ee7f71f1 ee7f71f1ee7f71f1 ee7f71f1ee7f71f1 ee7f71f1ee7f71f1 ee7f71f1ee7f71f1 ZMM23=24770a6024770a60 24770a6024770a60 24770a6024770a60 24770a6024770a60 24770a6024770a60 24770a6024770a60 24770a6024770a60 24770a6024770a60 ZMM24=01b9f5da01b9f5da 01b9f5da01b9f5da 01b9f5da01b9f5da 01b9f5da01b9f5da 01b9f5da01b9f5da 01b9f5da01b9f5da 01b9f5da01b9f5da 01b9f5da01b9f5da ZMM25=42a2bc2c42a2bc2c 42a2bc2c42a2bc2c 42a2bc2c42a2bc2c 42a2bc2c42a2bc2c 42a2bc2c42a2bc2c 42a2bc2c42a2bc2c 42a2bc2c42a2bc2c 42a2bc2c42a2bc2c ZMM26=dfd7c6c7dfd7c6c7 dfd7c6c7dfd7c6c7 dfd7c6c7dfd7c6c7 dfd7c6c7dfd7c6c7 dfd7c6c7dfd7c6c7 dfd7c6c7dfd7c6c7 dfd7c6c7dfd7c6c7 dfd7c6c7dfd7c6c7 ZMM27=c9d09747c9d09747 c9d09747c9d09747 c9d09747c9d09747 c9d09747c9d09747 c9d09747c9d09747 c9d09747c9d09747 c9d09747c9d09747 c9d09747c9d09747 ZMM28=000000200000001f 0000001e0000001d 0000001c0000001b 0000001a00000019 0000001800000017 0000001600000015 0000001400000013 0000001200000011 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=7809000078090000 7809000078090000 7809000078090000 7809000078090000 7809000078090000 7809000078090000 7809000078090000 7809000078090000 info registers vcpu 3 CPU#3 RAX=000000000000252d RBX=ffffffff90442f04 RCX=ffffc9003fcd1000 RDX=0000000000040000 RSI=ffffffff813c82e0 RDI=0000000000000006 RBP=ffffffff90442f0c RSP=ffffc9003d52f4c0 R8 =0000000000000006 R9 =ffffffff843a497b R10=ffffffff843a4955 R11=0000000000000000 R12=ffffffff843a497b R13=ffffffff843a4955 R14=dffffc0000000000 R15=ffffffff90442f00 RIP=ffffffff818b2636 RFL=00000287 [--S--PC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802c300000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00000000f743707c CR3=000000004f368000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000