last executing test programs: 5.668144958s ago: executing program 0 (id=8637): bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x0, 0x11, &(0x7f0000000280)=ANY=[@ANYBLOB="1802000063f9ffff00000000000000d9b600000041000000b7080000000000007b86000000000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa4002b0a56a9c0ff8b37"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000100)=0x7, 0x4) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000005c0)={'xfrm0\x00', 0x0}) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$TIPC_NL_BEARER_ENABLE(r2, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x74, r3, 0x10, 0x70bd27, 0x25dfdbfd, {}, [@TIPC_NLA_NET={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x6}, @TIPC_NLA_NET_ID={0x8, 0x1, 0xffffffff}, @TIPC_NLA_NET_NODEID={0xc}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0xfffffffffffffff8}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x8}]}, @TIPC_NLA_MON={0x2c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x4}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x2595}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x80000000}, @TIPC_NLA_MON_REF={0x8, 0x2, 0xa2}]}]}, 0x74}, 0x1, 0x0, 0x0, 0x44}, 0xc080) sendto$packet(r0, &(0x7f00000002c0)="05030500d3fc030000004788031c09101128", 0xfce0, 0x4, &(0x7f0000000140)={0x11, 0x86dd, r1, 0x1, 0x0, 0x6, @multicast}, 0x14) 5.654379516s ago: executing program 3 (id=8638): openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='cpuacct.stat\x00', 0x26e1, 0x0) r0 = getpid() r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_SET_IRQCHIP(0xffffffffffffffff, 0xc048aec8, &(0x7f0000000740)={0x5, 0x0, @ioapic={0x0, 0x0, 0x0, 0x0, 0x0, [{}, {}, {0x0, 0xa}, {0x0, 0x0, 0x1}, {}, {}, {0x3}, {}, {0x0, 0x80}, {}, {}, {}, {0x0, 0x0, 0x0, '\x00', 0x8}, {}, {0x0, 0x14}, {0x9}, {}, {}, {}, {0x0, 0x0, 0x0, '\x00', 0xfc}, {}, {}, {}, {0x0, 0x0, 0x0, '\x00', 0x4}]}}) r2 = syz_pidfd_open(r0, 0x0) setns(0xffffffffffffffff, 0x66020000) inotify_init() r3 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r3, 0x0, 0x80, 0x0, 0x176) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, 0x0) bpf$BPF_BTF_LOAD(0x12, 0x0, 0xcd) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x90) r4 = socket$inet(0x2, 0x2, 0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r5 = getpid() r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r7 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000500)='tlb_flush\x00', r6}, 0x10) r8 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@gettaction={0x20, 0x32, 0x6dd711a25f4cb68b, 0x0, 0x0, {}, [@action_dump_flags=@TCA_ROOT_FLAGS={0xc, 0x2, {0x1}}]}, 0x20}}, 0x0) process_vm_readv(r5, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) r9 = socket$nl_route(0x10, 0x3, 0x0) pselect6(0x40, &(0x7f0000000200)={0x6, 0x200, 0x28cf, 0x5, 0x5, 0xd, 0x1, 0x7f}, &(0x7f0000000240)={0x8001, 0x8, 0x0, 0x2, 0x64, 0x3, 0xaab1, 0x8}, &(0x7f0000000280)={0x5b, 0xf1, 0x1, 0x1400000000000001, 0xfffffffffffffffa, 0x200000000036, 0x1, 0x6cd}, &(0x7f00000003c0), &(0x7f0000000000)={&(0x7f0000000380)={[0xe, 0x6]}, 0x8}) sendmsg$nl_route(r9, &(0x7f0000000140)={0x0, 0xfffffffffffffe67, &(0x7f0000000480)={&(0x7f0000003700)=ANY=[@ANYBLOB="3000004c0600820efaac52ce1e74e2b4921900000040190000000000000000009bc57bb60275ed06dfc08d6190af6a575b6c74c4e884503fad80089fdd96cb10ca77ae2e4bcc987e9d80c16ee8775a4d30748238cb766cc4a9987453d7955f56b848f30ab883d678c070a67575be0d5723e28d3e33cb461f5fb62a87189586f64e90ecc3df03e1af0c7bb644c61ea7a0145dd870e396e4a905f8afdb365a7205f14c97f64c3c3fa2c994211a0b0f6da26072044ef589fae6edd13df0dab5092945b9716cdf4ffc1672a8de2a52488a52c32283b3d1c471858d2bc11f33230554775fe341a1e3e7", @ANYRESDEC=r2, @ANYBLOB="00000000000000eb8c473f270086060008001b", @ANYRES8=r4, @ANYBLOB="a94c99bf3c96490686819b9631efddb69be18d74a70b05a18091bdcd89a90b85017e6d2402525fbbbad25c241cace3a3d0e286cb3fa77ca8c5b27b7f423fd36ce0e00cd1ebc5c4f0eab4a89450c595131933911b5c7fc86c0632e2838f1039026c93e6ff6215857fa28b206d8f37b1f34b630eb5437e3ba7af850b6a76608494817b51c9c619cfc359b5e8b0bfa93100cfcff20b9a92c8224668acd5ac59fa88b4e7c975be5db4825a083bbef362d409073e3cf3f60f2dbe5924a334ee19cc5457ea9e02e84d621309ccf1880e7894b7d59c857174c4647b9bfdf5d9f69792c1b9f7148e3d6a39e1df8ca22a43b9f2c106b29bd0cd71d28eea8d46692de3db09cbfd4b1eaf3a7d5f74fd3068e6c24e27489c575243120e0a772df610543e460098281fc03fee2b6457ab19d5630f9f5a16ee424d27e4016b3770172342c44cf800a8536a61235081a0748db2d9b445c5b978d6590d2b678d840cceb4a4bd67f6861d8187a45665b63d4423bc3898397fbcde00c64e5e2cf82781b672b61a897415ce17df7ab504c9d370a53e8d7bb5fbf464bcf2adade623a6d257d0e22560dd8963e77c4519c912ac2bbb25ed738f5bb99e65719abf020169d5aeef3ab844210e3b40e2c7088290df1cf21ab125d787dd99a43ddc2d5a98d326423bbb6b839d5a1020eee6a3d29b5e7bff032b0d237e93ee03199e761a45799939ab138bac95387ef22e841bc4deaf72d121c8a28509394bd69fd470752bdc1a5616e272d7a7c3b79b2dafdfec7e9ebf74234bba8cc9503ee13abb734daf66a45807b7599ea3c79bee1ba1194dce43b726a0b01b1bc70b53e1212317ffd95e31c4f0aa48b5ee11533712ef5732ee0e20a200a3817302d814912993aaf7e547fb11ac66441e3bfe2a020218ae19e6ca84a5d31f9abd5a579b9a5686f65dc97b4eefe87e61e895dc0135a8b8729dd1d84e66a795783979101a7e43fb0e85cf448eaf4a352775fbefa09dc7871f3fa58c89423d26ecab8f851df0846002b03116ea86687b35b958022f636a57abf0b44ebbd702e5ed6c536c4c1bba80afc519030a51ac5d2595d7665c64c17753f9754db5582c0ee895b3d37571e93eb2d91e0352a7bf3a94f7dcf3d84dbeec36847ff7cea3648e762aad4448290ff1135b877b94986bbbdd7c45c065cd1ea4f5552d3b09cf9bc1aa1aa455626cbb8c74a7385b892153838b25e7c45771905ba17774d68f99aab3f870fe8b69a57b24fe61a91b0530f73fea820c2bf8d5d018be0e4f9161d074bc059f3429407729e71a1a5157e1a7e8986b92be02aa06fc7ad778fe3d0900c99cc326a10eb25a43d420ff22dda7030b64fd6fc09691a1239a60c4c314684be8e36fa732d9ef66ec26b318662642fcf858b060c15e9dfc6a3965cc83a2bb2914e43030aebcbf2210183dcf9786a58cba2745caf5b654c860d449c17144bf303e1fec814e76cbcdfe817954624afba493e5520aa3ee145738f2c042b93af56d58e4121cd57697152aec47cf57a63a095fcf121484bd64360fb3c4aeba037b98c378de5c0f34c47e6c95bf3acfc775b4e2276d3f52224891f1d6515357aa2cabe9f609945f329bf64501d1cc548f2ca67c1d8b9f33b52697545a117d006990287cb2cbb3d34a0d329044656d75f3e96888ce5ba967d0175b194335e85d087e815704b3339d12e4cb29137ab0d72f01f9aa1152b238f445c54a9a060f0d427fa7a78cd70048d428bb34cd92460cbe2515b12d01aaa55ddbf27e9b409ae2ebcc161b92150ab75df9f38361972e47d292a4a876ccc60caff168db83b50ea8e5ed4d223361bfda0f3597c46e59190600f40a656695e870ee1493551ec11ee1ec8c39ca7f91e28fc0df98b83ba2f258a4c15ee98e9e6a1f04d9026cd6dcfb1e137e3cef4c3b6580d1d81fb7be78ddb2c55527f5e90db6c26b9886f6bf8e3488841fa2c2cbbc2112c89431cfa3b06f56aa52ece67eeee68837805ae27c8550c322339135f34838e47bde368868b699f89401fbe35a2e117438182cd7869a93a97ec3842932e800ffc93cd3e88eea6d43e72ad105e3299bf8f4837526ca8bee8766c9acada281503da29ac0ea48fcaf2b137377e6910fe42c40aaf9d3f2dbe1d86d8f9ad1b7cd36d3e5d505d999b591f2c492b4ae8725d40d6163f56e5bd9956b50d25b416b9c6ed4bf0a343cfb82d8ec4fe9f8b11fa221566cb1593225321d2d6f4bdcedd40dc7c15f5401b90936274524e985917bdf52402cbd49d21d07269414cdd54219be4d26de27ea1aaaa57482c39f38643417311cd49939f3017fea2272f59346e16a5c2d8e3997086f14f17e8329b28714d55f10261fcc238fe66aaa4c18aad1f89ac35c204daa462a4cddf6fd2c92604707ccf549b2eee94d17709d742cc573c2b63d4538b784c197c1695a1e33a5ac97713b23475b2eaa3ae24217709313c80e7888ce94eac977f796e07db40d45ca3842b5056439ee1bfcc5fc18bb3bef29b244e22f39733b3d395f51d4c1d517692c603406eb41ee480e81139a7045eab962bbc2e6f12d8d09e80cb0c56d4a7d6d931ed5631a8554cf420b901b6cf791858920ebf57e28e526c46b3fdb5384fc0aef7fb2259d51d39cf9a41913113a0518a78597b0392041aa694c4ff826b9764b0fdfcbfc1846026dd0b94e596f11c26bc6f4f240516c5ea84d1a86eb167c5afadccada4a41218eb5c98ef5de0bbdf43119f76520efbfd807c6813f0e6baa01387062b9c83522ba8023256af0743a1bdf9cac889dce6869ac622aca35f29b21ae817979a9debfad4450cb49ed7ac0f57168b88403b7782ad15aa938ed695d7992b6f400c04eeecd46fc485a02b045423812702731e49ac157d296be911ab61f4a57c3b81b47654bc1d8cc09d09746ff4a512c5ffe43bf2a7d337bc5fac4424bcde2fdb3b66a67545794d793178e1af720efe35b77fddb6f9dccf236a38ee3de22946e4c2ca077fbd802a543ac6aee56b3d7255398faa32a6c528a96dda5c6e88c3d7b92f9132f8f9c83feb79fca82fae1e87db48b064d82fef0a9a59e4368c3e20ee74a5ef2ab9e83db6a48f536f3692f07a48b399f42db97ebf1d319c7904f6f116c3791de3891f60eec1653dc41ec1af7bd8998ef203c642697a82d90ad9f50f7cdc85c37085c6a2c4d4d3c2a86e20318dda607e275c81d58414acc162c480a46c8c8aa23839cbab7c4538405142e712c7950200df835f792da3f572e43a68940df6670e3d2840f6f423332bddf2ae2009508f1d2cc26e282412727033df296bc8d50a6597169645f7693358dd80a59466bcb48a134de4cee74554824d3e42f62a4e9bfb0ecf66c62c80bf1df7e0d9067779d859fdbb53538547a0582825783140b2c3fdae9ec39ee65250623907f4a48ff628426a13878a834c324ea48ef8d00bee1ce105b1dc50980c41295d4ee4c02f9ddc986d7d163ee1a459c7933fd59afbac9298b72dfd43b0504e553cca8f6f4a81c71b220e3fa425de43d0c528dfcfac3baa2dff28e0d1e74f1183f52196544e90e1ac995b0a985b23863b88580becdf228e729702b91ac4e1f558a0a5e6101abe8b769fc8b623cf6d3bf2f064d9fd4e6428642c779591dfccbb3914a234235c87d34d94d7fe63a397826cedf8dac5b7a3ee7b1801177aecb2fa1e8f9af5a4e4091071f8343c40e9863fd93076ac04d462b1a376f7adb944877068d670cf7a089d5cd5a7244c802215a25a8fec865542093e4eaeb9c8d024124124b81cca9b073096ffe046620b4b360e9496e5e6248fcb6cceb7af9cd4f3c4b523ee268de705b35dea980f8e9b73f2453f574f783ba4e267d4182b0d40932c6b08bcfe7d47e0252c3cdb6df325fd2e2aaab3c59e67287a230a041bc67f9f9fdafbf0734767aae4ec1ef61f17eb6c41235800234284c8f4801c568198c14cda76f5722b58763592cc72a040817837f67e6e6d97a6fce393dc7f0fbf2994f524aaf011c21445c5d7f32a77f2c9ff1c52a5b61309a1a10fe25b53d35b7ab338776a3acb0e3a6890181205d799d6ab8f89846ce3003f52217ebb48abc3dfb89621d6811c178973a9e6738136c660db5d3a0a64933f04cd706fab9a0de82b30b36541805d2e1c9fa5c1265b111cd1fcf296927503d178837001a63e16869c59648e9eec153c7a4cd13445800c9c7e741a48470252312ca835a1be6caa0ec5bb2c33103d202055ffa58d3c658f6b7e82884374832e352fbe0aa412dacb9efcd9784d9053a2a86a1e6d40bc8d1d9b9659bbd1ee8f7ae9434345b7d5f1c0d27fafe7ad6a80a6f4f37222958cfd997cc08a65a6a20a2547b64422c83b73a0ad8441c8865bbb38fcf6e18eaabefe7d4f535f7338f57018e181b0816005e24358c4a14e3dd69ae7a96df031f18ee4beddf3c5d6ceb2f282d6fb198b2e9aa91880b49b8d84e22512c9205a10bcf55b1161f7af25c214c6e5f614c7d7d24aa008cc68409808732f06d762614553bd3061fc4bced845c22f7937f3c433944c3e5c3887beafeca5120ff9866c9c8073ae6242c775ef9457cf52b1414ebf92e7bc77ba45b30b9ab12d7321bb254582875590e69ef7c0ce9d9029b68597f8e3dbeb1f484b92a4d9683c9ff8d036fea1a403212d9a481f86e2273988ccf9d9ca0f643caa608a2e60f5dca5f8d05906a3926e014f6df3a23cdcb1c01f20a8548a69952896bd53a6d0af6f08929fa6795ef506d193c3816fe3210f70c7542f6ba1b4c31a43bef2ff5e34f5f350492ca57d7efc015b3420e27185e6be3a2e26f4c20dd576479f30a05db4252deb4d20bc57914af9a9f8ec920bf35fccb9c603fded2c050a3b06ecc3d0b22688fa4bdaafdafcb292c2cb74934dce8638b8787243a0a7808bdcbf843632709d3db39093ec55aa13d832d41748345988224f5ba7db47c92f6241fb6d97b62573e6dc24fb2523241e82e88592fd15ff545c77ff3b94e11c853dbc27525d024eeace36462b692f3eecf7f1353e39374e7c0e188c403894dfba89bd86fec6ae62f763a3c5ae2e1f5a1bf0ab2e8ad27573481dc2a115fab5104c7cd6fa8a26b269fce2160ed62590eff900972945972b53cd943850aa5a8c29c0a5ce7d4bdf0046c3b7ead5b160183ec25ea0ad6ac4edddbfef36939ed48b6f3fde710b2bde4cf22cdba1ac50cc71bf974236c204d75267d97ce43f7ff8e7cb31e87dfbb162edc72c4cc3ab54bebceba9446d9a7a25c940db181abacd4aa5bd401b677409a279d8b63f96b8ba63d285666e7fa29642f924f36438cd2bb2870ec2948cce619c3a696c5152a96c64c0a2da8159e1112fbc7d1b79fba40ccd7fc32cdaeb292dab6035062bcee9448f42218e81897aff981f21b822b1fa89cfa55d9b257fbfe52aee495e65847518c0ac33420d513366932e7dc5b8a4f2853105cbc1d6366e3a159392e679c8f7f698720aa1330bcebb48b44283a367ae07b9f17bff415c39ce1f0f57f3b6646f4f4bfe8f4afe30169cc2b127705c84d4af8b7f8c7b7ccf3acbdbbaba83b8cf9faa3276e9708f3c64ad58bb0ec24c0c5a00db2616d83e0f8a78d576b1607c1c8aa8ceedfe9cd5bc0f6ba493fd47e3a0e306f6637005ecf35089d85acf343b5147603ac9a1be9b5f98667b386096e05dcdad7c71a80bae0db052e3f71e52eeb159897343c1f86c9d79606d8f8a26261766975980c5ad158846b4e1e1d30615b5d643d7ba3265ff966fcc6b69e66dce94312ce536d2ad5b410db12208bc6f7bc345e6ef69b935cdf986f81974667b9db13c506099dba"], 0x30}, 0x1, 0x0, 0x0, 0x800}, 0x0) rename(&(0x7f0000000400)='./file0\x00', &(0x7f0000000440)='./file0\x00') mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000980)=ANY=[@ANYBLOB="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", @ANYRES16=r8, @ANYRESDEC=r1, @ANYRES8=r7, @ANYRES8=r0, @ANYRES16=r3, @ANYRESDEC=0x0, @ANYRESHEX=r5, @ANYRES32=r9, @ANYRESHEX]) r10 = io_uring_setup(0x15ae, &(0x7f0000000080)={0x0, 0x0, 0x100}) io_uring_register$IORING_REGISTER_BUFFERS(r10, 0x0, &(0x7f00000002c0)=[{&(0x7f0000004840)=""/4108, 0x100c}, {&(0x7f0000000540)=""/86, 0x56}], 0x2) creat(&(0x7f00000001c0)='./file0\x00', 0x1cb) 5.570559855s ago: executing program 0 (id=8639): r0 = syz_open_dev$evdev(&(0x7f0000000240), 0x0, 0x0) ioctl$EVIOCGLED(r0, 0x80284511, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x2, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) socket$can_raw(0x1d, 0x3, 0x1) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f0000000040)=0x9, 0x4) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', 0x0}) sendto$packet(r2, &(0x7f0000000180)="05030400010000000000008071acedd7c9560385dcb1894f84d7dc029806892f05ce811c88f7", 0x26, 0x0, &(0x7f0000000140)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @broadcast}, 0x14) socket$nl_xfrm(0x10, 0x3, 0x6) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r4 = getpid() r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000500)='tlb_flush\x00', r5}, 0x10) process_vm_readv(r4, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) r6 = geteuid() quotactl_fd$Q_GETNEXTQUOTA(r1, 0xffffffff80000901, r6, &(0x7f00000000c0)) syz_emit_ethernet(0x10fe, &(0x7f0000001fc0)={@local, @empty, @void, {@mpls_uc={0x8847, {[{0x40, 0x0, 0x1}], @ipv4=@udp={{0x39, 0x4, 0x2, 0xb, 0x10ec, 0x65, 0x0, 0x14, 0x11, 0x0, @multicast2, @loopback, {[@cipso={0x86, 0x2d, 0x3, [{0x0, 0xc, "7fc8f3e875df3e55f113"}, {0x0, 0x4, "46b0"}, {0x6, 0x6, "abafeb4f"}, {0x0, 0x11, "fede3e59287db367b957dc3943d09b"}]}, @ra={0x94, 0x4, 0x1}, @cipso={0x86, 0x56, 0x1, [{0x2, 0x6, "f54f64ab"}, {0x0, 0x6, "d41dc85c"}, {0x1, 0xe, "4d2da1cbf44c68e75781a450"}, {0x5, 0xd, "316aa1dfe892570abb72d6"}, {0x1, 0xc, "9f96b6d1bfc9aae03ee9"}, {0x1, 0x6, "0acb684d"}, {0x7, 0xa, "2c1d89fd0297b602"}, {0x0, 0xb, "3d810d20fc9d6da529"}, {0x1, 0x2}]}, @timestamp_prespec={0x44, 0x1c, 0xa9, 0x3, 0x5, [{@remote, 0x6}, {@empty, 0x5}, {@local}]}, @timestamp_prespec={0x44, 0x24, 0xc5, 0x3, 0x3, [{@remote, 0x10001}, {@empty, 0xfffff099}, {@multicast1, 0x8}, {@dev={0xac, 0x14, 0x14, 0xf}, 0x9}]}, @end, @generic={0x88, 0x6, "30763f9a"}, @end]}}, {0x4e20, 0x4e20, 0x1008, 0x0, @opaque="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"}}}}}}, 0x0) r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r9 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000300), r7) sendmsg$NLBL_MGMT_C_ADDDEF(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)={0x38, r9, 0x1, 0x0, 0x0, {}, [@NLBL_MGMT_A_PROTOCOL={0x8}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @empty}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @loopback}]}, 0x38}}, 0x0) r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000c80)={0x1d, 0x22, &(0x7f0000000940)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xdcff, 0x0, 0x0, 0x0, 0xd65c}, {}, {}, [@map_fd={0x18, 0x88eb2563ef25f450, 0x1, 0x0, 0x1}, @map_fd={0x18, 0xa, 0x1, 0x0, r5}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffd}, @map_idx={0x18, 0x7}, @jmp={0x5, 0x0, 0x4, 0x7, 0xa, 0x0, 0xfffffffffffffff0}, @printk={@u, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x6}}, @call={0x85, 0x0, 0x0, 0x3d}, @cb_func={0x18, 0x6, 0x4, 0x0, 0xfffffffffffffffe}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000a80)='GPL\x00', 0x9, 0xca, &(0x7f0000000ac0)=""/202, 0x0, 0x5, '\x00', r3, 0x28, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000bc0)={0x3, 0x7, 0x1, 0x15f97751}, 0x10, 0x0, r5, 0x2, &(0x7f0000000c00)=[0xffffffffffffffff], &(0x7f0000000c40)=[{0x5, 0x3, 0x0, 0xb}, {0x5, 0x2, 0x2, 0x5}], 0x10, 0x3f11}, 0x90) r11 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/arp\x00') preadv(r11, &(0x7f0000000040)=[{&(0x7f0000000200)=""/233, 0xe9}], 0x1, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000dc0)={0x16, 0x7, &(0x7f0000000200)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x5}, [@btf_id={0x18, 0x1, 0x3, 0x0, 0x5}, @map_idx_val={0x18, 0x7, 0x6, 0x0, 0xd, 0x0, 0x0, 0x0, 0x1e5}]}, &(0x7f0000000340)='GPL\x00', 0xffffff80, 0x50, &(0x7f0000000380)=""/80, 0x41100, 0x60, '\x00', 0x0, 0x31, 0xffffffffffffffff, 0x8, &(0x7f0000000400)={0x1, 0x1}, 0x8, 0x10, &(0x7f0000000440)={0x4, 0xd, 0x7fe0, 0x1ff}, 0x10, 0x0, r10, 0x4, &(0x7f0000000d40)=[r11], &(0x7f0000000d80)=[{0x2, 0x4, 0xa, 0x9}, {0x1, 0x4, 0xa, 0xc}, {0x3, 0x4, 0x2, 0x2}, {0x2, 0x4, 0xb, 0x9}], 0x10, 0x4}, 0x90) r12 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r12, 0xc08c5332, &(0x7f0000000240)={0x0, 0x0, 0x0, 'queue1\x00'}) 4.520148921s ago: executing program 0 (id=8641): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x2, 0x4, 0x6, 0x504}, 0x48) mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) ioctl$BTRFS_IOC_GET_DEV_STATS(0xffffffffffffffff, 0xc4089434, &(0x7f00000002c0)={0x0, 0x10000}) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='cifs\x00', 0x0, &(0x7f00000002c0)='cache=none') userfaultfd(0x80001) prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1) r1 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000001880), 0x0, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$SW_SYNC_IOC_INC(r1, 0x40045701, &(0x7f00000001c0)=0xffffffff) bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x1000000}, 0x38) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) r3 = syz_open_dev$sndctrl(&(0x7f0000000540), 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(r3, 0xc008551b, 0x0) r4 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) write$tun(r2, &(0x7f00000001c0)=ANY=[@ANYBLOB="00200000ffffffffffffaaaaaaaaaabb080600010800060400000180c2000000ac1414bbaaaaaaaaaaaa00000000dbdb7453b6389cde0fe7abc16ae652712f292ffdd66341b4aca6855b178290447e8cd28ee387aa83370695d76ea54d5bb7135c4e0ec5321d163c9c894e755c28963ee808c3de74ec2e64a8daa3b35175f4525ce9ed38c9b90159a4a8960e20bd08c3c3b5976607d7db5554ffaac60bc881fae6fa2337e00af81a3b5c8d05112d"], 0x2e) 4.39672872s ago: executing program 3 (id=8643): r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/vmallocinfo\x00', 0x0, 0x0) preadv(r0, &(0x7f0000000100)=[{&(0x7f0000000500)=""/172, 0xac}], 0x1, 0x0, 0x0) lseek(r0, 0x0, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, 0x0, 0x0) sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, 0x0, 0x20008085) 4.310384821s ago: executing program 0 (id=8644): r0 = socket(0x1d, 0x2, 0x6) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000700)={0x6, 0x0, 0x0, 0x0}, 0x90) bind$can_j1939(r0, 0x0, 0x0) r1 = syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0) syz_usb_control_io(r1, 0x0, 0x0) socket$packet(0x11, 0x0, 0x300) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = getpid() prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) r3 = socket$inet_mptcp(0x2, 0x1, 0x106) connect$inet(r3, &(0x7f0000000080)={0x2, 0x4e21, @empty}, 0x10) r4 = socket$inet6_sctp(0xa, 0x1, 0x84) sendto$inet6(r4, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x0, @loopback={0x0, 0x1c9ae7fffe9a6f34}}, 0x1c) setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0xe) shutdown(r4, 0x0) recvmmsg(r4, &(0x7f0000000840)=[{{0x0, 0x0, 0x0}}], 0x414, 0x0, 0x0) setsockopt$inet_tcp_int(r3, 0x6, 0x19, &(0x7f00000000c0)=0x3, 0x4) sendto(r3, &(0x7f00000002c0)='%', 0x300000, 0x0, 0x0, 0x0) ioctl$HIDIOCGUSAGE(0xffffffffffffffff, 0x4018480c, &(0x7f00000000c0)={0x2, 0xffffffff, 0x0, 0x0, 0x4e496f8}) 4.150701943s ago: executing program 1 (id=8648): socketpair$unix(0x1, 0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x1000007, 0x2172, 0xffffffffffffffff, 0x0) prctl$PR_SET_MM(0x23, 0x8, &(0x7f0000001000/0x4000)=nil) munmap(&(0x7f0000002000/0x2000)=nil, 0x2000) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='cmdline\x00') r1 = socket$inet_udplite(0x2, 0x2, 0x88) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffffff, 0x84, 0xa, &(0x7f0000000200), &(0x7f0000000280)=0x20) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0) write$binfmt_script(r3, &(0x7f0000000100), 0xfecc) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r3, 0x0) r4 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_ASSOCINFO(r4, 0x84, 0x1, &(0x7f0000000180), 0x14) read$FUSE(r0, &(0x7f0000004180)={0x2020, 0x0, 0x0}, 0x2020) syz_fuse_handle_req(r2, &(0x7f0000008400)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x80000000, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x8800}}}, 0x0, 0x0, 0x0, 0x0}) write$FUSE_INIT(r2, &(0x7f0000000340)={0x50, 0x0, r5}, 0x50) r6 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) mlockall(0x3) setuid(r7) ioctl$F2FS_IOC_MOVE_RANGE(r6, 0xc01cf509, &(0x7f00000010c0)={r6, 0x4, 0x5, 0x6}) ioctl$DVD_READ_STRUCT(r3, 0x5390, &(0x7f0000001140)=@bca={0x3, 0xbc, "f398b7324220ae8d197738f7ff5eedbccef9e8a14ffbcad98ee7447342f95c2b7b7432e2300542a17da8b806a60eee549958e0e4963073a42bcff734822fb0e7df1e8d81b83c7c01e2f9ae7d390d8633b20b97ff3d3f01a21f672780e117c7e6129ecd154509069eed907eb58516cc12a303942b3567c59b99ade7b97aa395b7a4f5510d61361b97885ffac93903c597f1809b0c467a4849d44c0844580976f9d40e8965301a9e927b8f0532416a9277284f9edad9a98324b06beb3d"}) ioctl$CAPI_REGISTER(r8, 0x400c4301, &(0x7f0000001100)={0x1, 0x6, 0x2}) preadv(r0, &(0x7f0000000040)=[{&(0x7f0000000080)=""/4097, 0x1001}], 0x1, 0x0, 0x0) 3.753451343s ago: executing program 3 (id=8650): socket$qrtr(0x2a, 0x2, 0x0) socket$packet(0x11, 0x0, 0x300) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) arch_prctl$ARCH_GET_MAX_TAG_BITS(0x4003, 0x0) ioctl$EXT4_IOC_CHECKPOINT(0xffffffffffffffff, 0x41009432, 0x0) socket(0x10, 0x2, 0x0) mmap(&(0x7f00005b8000/0x2000)=nil, 0x2000, 0x3000000, 0x11, 0xffffffffffffffff, 0xb2478000) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)={{0x14}, [@NFT_MSG_NEWSET={0x44, 0x9, 0xa, 0x201, 0x0, 0x0, {}, [@NFTA_SET_ID={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x31}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_GC_INTERVAL={0x8}]}], {0x14}}, 0x6c}}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000180)={@loopback, 0x0, 0x0, 0x3, 0x1}, 0x20) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = getpid() process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4002011, 0xffffffffffffffff, 0x0) ftruncate(0xffffffffffffffff, 0x1f) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = socket$kcm(0x10, 0x2, 0x4) r6 = socket$can_j1939(0x1d, 0x2, 0x7) ioctl$ifreq_SIOCGIFINDEX_vcan(r6, 0x8933, &(0x7f0000000000)={'vcan0\x00'}) close(r5) 2.740735722s ago: executing program 1 (id=8653): bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x0, 0x16, &(0x7f0000000d40)=ANY=[@ANYBLOB="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"], 0x0}, 0x90) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) ioctl$CDROMREADTOCENTRY(0xffffffffffffffff, 0x5306, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, @lba}) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x26441, 0x0) faccessat(0xffffffffffffffff, &(0x7f0000000200)='./file0\x00', 0x0) r1 = syz_open_dev$amidi(&(0x7f0000000000), 0x2, 0x1) ioctl$SNDRV_RAWMIDI_IOCTL_INFO(r1, 0x40045730, &(0x7f0000002780)) name_to_handle_at(r0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000240)=@fuse_with_parent={0x18, 0x82, {{0xad98, 0x7, 0x8b}, {0x101, 0x2}}}, &(0x7f0000000300), 0x600) syz_emit_ethernet(0x3f, &(0x7f00000003c0)=ANY=[@ANYBLOB="bbbbbbbbbbbbffffffffffff07dd6043009300093a00fe94a700000000000000000000000000ff0200000000000000000000000000018000907800000000d1"], 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x0, 0x0, 0x10001, 0x9, 0x1}, 0x48) socket$kcm(0x29, 0x8, 0x0) bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000740)={r2, &(0x7f0000000000), 0x0}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1f, 0x1e, &(0x7f0000000700)=ANY=[@ANYBLOB="1800000000000000000000000002", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x14, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0) r3 = io_uring_setup(0x3c92, &(0x7f0000000100)={0x0, 0x0, 0x40, 0x0, 0x112}) r4 = socket$inet6_sctp(0xa, 0x1, 0x84) sendto$inet6(r4, &(0x7f00000002c0)="9e", 0x1, 0x0, &(0x7f0000000200)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) sendto$inet6(r4, &(0x7f0000000c80)="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", 0x34000, 0xbcff, 0x0, 0x0) writev(r4, &(0x7f0000001300)=[{&(0x7f0000000100)='^', 0x19fff}], 0x1) close_range(r3, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) socket$inet6_udp(0xa, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000005c0)=@newqdisc={0x3c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_WASH={0x8, 0xd, 0x1}]}}]}, 0x3c}}, 0x0) 2.610708023s ago: executing program 1 (id=8654): r0 = socket$netlink(0x10, 0x3, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'virt_wifi0\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x4, &(0x7f0000000740)={&(0x7f0000000080)=@newlink={0x40, 0x10, 0x705, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @hsr={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_HSR_SLAVE2={0x8, 0x2, r2}, @IFLA_HSR_SLAVE1={0x8, 0x1, r3}]}}}]}, 0x40}}, 0x0) (fail_nth: 3) 2.610355598s ago: executing program 1 (id=8655): write$dsp(0xffffffffffffffff, 0x0, 0x0) capset(&(0x7f0000000080), 0x0) r0 = getpid() process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x36}, {0x0}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x5f}], 0x1, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0xffff7ffc, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x5}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) 2.485686504s ago: executing program 1 (id=8656): syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0) write$binfmt_aout(r0, &(0x7f00000010c0)=ANY=[], 0x1a3) socket$nl_xfrm(0x10, 0x3, 0x6) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = socket$alg(0x26, 0x5, 0x0) bind$alg(r2, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58) accept4(r2, 0x0, 0x0, 0x0) read$alg(0xffffffffffffffff, 0x0, 0x0) r3 = memfd_create(&(0x7f0000000480)='\xff\x00l\x1e\xa00x0}}, {{@in=@empty}, 0x0, @in6=@remote}}, &(0x7f0000000300)=0xe4) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000140)={0x0, 0x0, 0x0}, &(0x7f0000000240)=0xc) setresuid(0x0, 0x0, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r5, 0xc0502100, &(0x7f0000000400)) shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000600)={{0x1, r7, r8, 0x0, 0xee00, 0x7e, 0x3000}, 0x7, 0x7fb8, 0x0, 0x8, 0x0, 0x0, 0x6}) 2.303685448s ago: executing program 2 (id=8657): r0 = userfaultfd(0x1) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000040)) ioctl$UFFDIO_WRITEPROTECT(r0, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000800000/0x800000)=nil, 0x802000}, 0x2}) ioctl$UFFDIO_CONTINUE(r0, 0xc020aa08, &(0x7f0000000080)={{&(0x7f0000ffb000/0x2000)=nil, 0x2000}}) bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000faffff"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = gettid() r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0) read(r2, &(0x7f0000000200)=""/209, 0xd1) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r2, 0x4040534e, &(0x7f0000000080)={0x335}) ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r2, 0xc058534f, &(0x7f0000000540)) tkill(r1, 0x7) openat$null(0xffffffffffffff9c, &(0x7f0000003ec0), 0x80002, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000180)={'xfrm0\x00', 0x0}) r5 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB="2000000010000110000100000475000000000000", @ANYRES32=r4, @ANYBLOB="da"], 0x20}}, 0x0) 2.195763204s ago: executing program 3 (id=8658): r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) ioctl$sock_SIOCINQ(r0, 0x541b, 0x0) 2.027228578s ago: executing program 2 (id=8659): bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x204400) r1 = socket(0x11, 0x2, 0x80000fff) bind$netlink(r1, &(0x7f0000177ff4)={0x10, 0x0, 0x1, 0x1}, 0xc) write(r1, &(0x7f0000000140)="2600000022004701050000070000000000000020002b1f000a4a51f1ee839cd53400b017ca5b", 0x26) connect$netlink(r1, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x1}, 0xc) setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000b4bffc), 0x4) write(r1, &(0x7f0000000000)='\"', 0x1) recvmmsg(r1, &(0x7f0000000080), 0x0, 0x10101, 0x0) syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0) ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[0x0], 0x0, 0x0, 0x0, 0x1}) pipe(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$inet_udp(0x2, 0x2, 0x0) close(r4) socket$nl_route(0x10, 0x3, 0x0) r5 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000000c0)={'team_slave_1\x00'}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYRES16=r5], 0x94}, 0x1, 0x0, 0x0, 0x4040844}, 0x40001) write$binfmt_misc(r3, &(0x7f0000000580)=ANY=[@ANYBLOB="aac02ab3eead530dec5556f63a0ea288ccd9c8293cb06ed75079f9b97540b2dc2de1c8800e655f206c6e4af111faa42067ee60b48f72877abf4ceb0f01fa6790b396e9d2462609fdc4c5dd009b2a030fe9cd32febf118fff85a0dd7e", @ANYRESOCT=r0, @ANYRES64, @ANYBLOB="45ef2de3a7e68d2d03dc94f8843c8e99c8e99586c1930856c942fb604b674806d09305f43207a54193908fb5f1238464a36972113a7ae5109ccad48a547e50db767d988214e0525bd13b90dea1c0dae4ccc6e1baf68d18dad5fa61895b07d36d629b4f8d3b1688bcfc6067c4665e54c7cb28e13a7317733779cf5e4c797eb2b86c2fc7d2c63295c790c4e46f9862bddefdd13157c0ae0c13cfb3fa1acdd1edd45558da13c731ece958fb98822fe0173da57988ad54fa3074715494a34f68922bc28c768c975347814f30155084b0d095cb0a12586f253a8be6d0107526"], 0xfffffecc) splice(0xffffffffffffffff, 0x0, r4, 0x0, 0x8f8, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000200)=0xc) setreuid(0x0, r7) setxattr$system_posix_acl(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000740)='system.posix_acl_access\x00', &(0x7f0000000c00)=ANY=[@ANYRESDEC, @ANYRES32=r7, @ANYBLOB="0400f1fffffc930000000000bf4e000020000200000000000cc4764b32ac129bd3c73fb0009294a42b206c4584d371f5d8019b4e52423035a298e1a8ce762a503de13be14d0181fd47dd4e0d74c55bf6fee24bab28ac248670091e121fa08bda997c93694b2da7edb27dff7af6", @ANYRES64=0x0, @ANYBLOB="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"], 0x2c, 0x3) r8 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDENABIO(r8, 0x4b36) syz_open_procfs(r6, &(0x7f0000000180)='net/ip6_tables_matches\x00') syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) 2.024283677s ago: executing program 3 (id=8660): r0 = syz_genetlink_get_family_id$team(&(0x7f0000000040), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$sr(0xffffff9c, &(0x7f0000000040), 0x42200, 0x0) syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_GET(0xffffffffffffffff, 0x0, 0x4040) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) r3 = creat(&(0x7f0000000080)='./file0/file1\x00', 0x0) write$cgroup_type(r3, &(0x7f00000009c0), 0xd4ba0ff) unlink(&(0x7f0000000100)='./file0/file1\x00') mount(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f00000002c0)='binder\x00', 0x0, 0x0) r4 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) ioctl$TUNSETIFINDEX(0xffffffffffffffff, 0x400454da, &(0x7f0000000000)) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r3, 0x89f2, &(0x7f0000000c00)={'syztnl0\x00', &(0x7f0000000b80)={'ip6gre0\x00', 0x0, 0x4, 0x0, 0x0, 0x8d, 0x8, @dev={0xfe, 0x80, '\x00', 0x31}, @loopback, 0x20, 0x8000, 0x3}}) ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r3, 0x89f3, &(0x7f0000000cc0)={'syztnl0\x00', &(0x7f0000000c40)={'syztnl1\x00', 0x0, 0x2f, 0x9, 0xe0, 0x5, 0x22, @loopback, @private0, 0x0, 0x0, 0x0, 0xc}}) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r3, 0x89f2, &(0x7f0000000d80)={'syztnl1\x00', &(0x7f0000000d00)={'ip6_vti0\x00', 0x0, 0x2f, 0x4, 0x3, 0x4, 0x8, @ipv4={'\x00', '\xff\xff', @multicast1}, @private0, 0x80, 0x7800, 0x7f, 0x2}}) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f0000000dc0)={'batadv0\x00', 0x0}) r9 = socket$packet(0x11, 0x2, 0x300) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r9, 0x8933, &(0x7f00000001c0)={'batadv0\x00', 0x0}) sendto$packet(r9, &(0x7f0000000200)="d9324305", 0x4, 0x0, &(0x7f0000000000)={0x11, 0x8100, r10, 0x1, 0x0, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xd}}, 0x14) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000e00)={'vlan0\x00', 0x0}) getpeername$packet(r3, &(0x7f0000000e40)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000e80)=0x14) sendmsg$TEAM_CMD_PORT_LIST_GET(r2, &(0x7f0000001a80)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000240)={&(0x7f0000001ac0)=ANY=[@ANYBLOB="f40b0000", @ANYRES16=r0, @ANYBLOB="100026bd7000fddbdf250300000008000100", @ANYRES32=0x0, @ANYBLOB="7400028038000100240001006c625f73746174735f726566726573685f696e74657276616c00000000000000050003000300000008000400040000003800010024000100616374697665706f727400000000000000000000000000000000000000000000050003000300000008000400", @ANYRES32=0x0, @ANYRESDEC=r12, @ANYRES32=0x0, @ANYBLOB="c401028040000100240001006c625f74785f686173685f746f5f706f72745f6d617070696e67000000000000050003000300000008000400", @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="44000100240001006270665f686173685f66756e6300000000000000000000000000000000000000050003000b000000140004000500fa010f000000070007040700000008000100", @ANYRES32=0x0, @ANYBLOB="7801028040000100240001006c625f74785f686173685f746f5f706f72745f6d617070696e67000000000000050003000300000008000400", @ANYRES32=0x0, @ANYBLOB="080007000000000040000100240001007072696f72697479000000000000000000000000000000000000000000000000050003000e000000080004000100008008000600", @ANYRES32=0x0, @ANYBLOB="40000100240001007175657f005f6964000000000000000000000000000000000000000000ff0500030003000000080004000300000008000600", @ANYRES32=0x0, @ANYRESOCT=r9, @ANYRES32=0x0, @ANYBLOB="3c00010024000100757365725f6c696e6b757000000008000000000000000000000000000000000005000300060000000400040008000600d53cf61e2f308e414999849f2ca5d02a3a1cc14290eb591d90d5412a775552d680276d366b3a35903f11b991264523abbd76828558995d36f9c2446b282b2584289e8bd8d5cd109668569b130ee2d73319dc0d88601f", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="0401028040000100240001006c625f686173685f737461747300000000000000000000000000000000000000050003000b00000008000400ffffffff08000700000000003c00010024000100656e61626c65640000000000000000000000000000000000000000000000000005000300060000000400040008000600", @ANYRES32=0x0, @ANYBLOB="40000100240001006d6f64650000000000000000000000000000000000000000000000000000000005000300050000000f000400726f756e64726f62696e000044000100240001006270665f686173685f66756e6300000000000000000000000000000000000000050003000b000000140004000a00b44f0700000007000301fdffffff08000100", @ANYRES32=0x0, @ANYBLOB="f401028040000100240001006c625f706f72745f737461747300000000000000000000000000000000000000050003000b000000080004000500000008000600", @ANYRES32=0x0, @ANYRES16=r11, @ANYRES32=0x0, @ANYBLOB="44000100240001006d6f6465000000000000000000000000000000000000000000000000000000000500030005000000110004006163746976656261636b7570000000003c00010024000100757365725f6c696e6b757000000000000000000000000000000000000000000005000300060000000400040008000600", @ANYRES32=0x0, @ANYBLOB="38000100240001006e6f746966795f70656572735f696e74657276616c00000000000000000000000500030003000000080004000000000040000100240001006c625f706f72745f737461747300000000000000000000000000000000000000050003000b000000080004001000000008000600", @ANYRES32=0x0, @ANYBLOB="40000100240001006c625f74785f686173685f746f5f706f72745f6d617070696e0e11575b68a1a4a1727667000000000000050003000300000008000400", @ANYRES32=0x0, @ANYRES16=r10, @ANYRES32=0x0, @ANYBLOB="4400028040000100240001006c625f686173685f737461747300000000000000000000000000000000000000050003000b0000000800", @ANYRESHEX, @ANYBLOB="300202803c00010024000100757365725f6c696e6b75705f656e61626c65640000000000000000000000000005000300060000000400040008000600", @ANYRES32=0x0, @ANYBLOB="40000100240001006c625f706f72745f737461747300000000000000000000000000000000000000050003000b000000080004000500000008000600", @ANYRES32=0x0, @ANYBLOB="38000100240001006d636173745f72656a6f696e5f636f756e7400000000000000000000000000000500030003000000080004008000000074000100240001006270665f686173685f66756e6300000000000000000000000000000000000000050003000b000000440004003a020cacb7d20d1992cb7af705000000040009060300000000024dfb0700000008000b7f030000003700ffa108000000030007010000000005000f020900000040000100240001006c625f706f72745f737461747300000000000000000000000000000000000000050003000b000000080004000e00000008000600", @ANYRES32=0x0, @ANYBLOB="40000100240001006c625f686173685f737461747300000000000000000000000000000000000000050003000b000000080004000200000008000700000000004c000100240001006c625f74785f6d6574686f640000000000000000000000000000000000000000050003000500000019000400686173685f746f5f706f72745f6d617070696e670000000038000100240001006c625f73746174735f726566726573685f696e74657276616c000000000000000500030003000000080004004000000008000100", @ANYRES32=r5, @ANYBLOB="840202803c00010024000100656e61626c65640000000000000000000000000000000000000000000000000005000300060000000400040008000600", @ANYRES32=r6, @ANYBLOB, @ANYRES32=r7, @ANYBLOB="3c00010024000100656e61626c65640000000000000000000000000000000000000000000000000005000300060000000400040008000600", @ANYRES32=r8, @ANYBLOB="3c00010024000100757365725f6c696e6b757000000000000000000000000000000000000000000005000300060000000400040008000600", @ANYRES32=r10, @ANYBLOB="40000100240001006c625f686173685f737461747300000000000000000000000000000000000000050003000b0000000800040007000000080007000000000040000100240001006d6f64650000000000000000000000000000000000000000000000000000000005000300050000000f000400726f756e64726f62696e000040000100240001006c625f74785f686173685f746f5f706f72745f6d617070696e67000000000000050003000300000008000400", @ANYRES32=r12, @ANYBLOB, @ANYRES32=r12, @ANYBLOB], 0xbf4}, 0x1, 0x0, 0x0, 0x4085894}, 0x80) setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000000)='nr0\x00', 0x10) sendmsg$802154_raw(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)="d9536b9e4ec1457e4831f9b20e8701", 0xf}}, 0x0) r13 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r13, 0x29, 0x40, &(0x7f0000000740)=@raw={'raw\x00', 0x3c1, 0x3, 0x294, 0x0, 0x2b8, 0x182, 0xe8, 0x0, 0x1cc, 0x3a8, 0x3a8, 0x1cc, 0x3a8, 0x3, 0x0, {[{{@uncond, 0x0, 0xc8, 0xe8, 0x0, {0x0, 0xe0ffff00000000}, [@common=@unspec=@connlabel={{0x24}}]}, @unspec=@TRACE={0x20}}, {{@uncond, 0x0, 0xa4, 0xe4}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x2f0) 1.169822552s ago: executing program 2 (id=8661): r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) ioctl$sock_SIOCINQ(r0, 0x541b, 0x0) (fail_nth: 3) 980.950486ms ago: executing program 2 (id=8662): bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x0, 0x16, &(0x7f0000000d40)=ANY=[@ANYBLOB="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"], 0x0}, 0x90) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) ioctl$CDROMREADTOCENTRY(0xffffffffffffffff, 0x5306, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, @lba}) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x26441, 0x0) faccessat(0xffffffffffffffff, &(0x7f0000000200)='./file0\x00', 0x0) r1 = syz_open_dev$amidi(&(0x7f0000000000), 0x2, 0x1) ioctl$SNDRV_RAWMIDI_IOCTL_INFO(r1, 0x40045730, &(0x7f0000002780)) name_to_handle_at(r0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000240)=@fuse_with_parent={0x18, 0x82, {{0xad98, 0x7, 0x8b}, {0x101, 0x2}}}, &(0x7f0000000300), 0x600) syz_emit_ethernet(0x3f, &(0x7f00000003c0)=ANY=[@ANYBLOB="bbbbbbbbbbbbffffffffffff07dd6043009300093a00fe94a700000000000000000000000000ff0200000000000000000000000000018000907800000000d1"], 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x0, 0x0, 0x10001, 0x9, 0x1}, 0x48) socket$kcm(0x29, 0x8, 0x0) bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000740)={r2, &(0x7f0000000000), 0x0}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1f, 0x1e, &(0x7f0000000700)=ANY=[@ANYBLOB="1800000000000000000000000002", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x14, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0) r3 = io_uring_setup(0x3c92, &(0x7f0000000100)={0x0, 0x0, 0x40, 0x0, 0x112}) r4 = socket$inet6_sctp(0xa, 0x1, 0x84) sendto$inet6(r4, &(0x7f00000002c0)="9e", 0x1, 0x0, &(0x7f0000000200)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) sendto$inet6(r4, &(0x7f0000000c80)="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", 0x34000, 0xbcff, 0x0, 0x0) writev(r4, &(0x7f0000001300)=[{&(0x7f0000000100)='^', 0x19fff}], 0x1) close_range(r3, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) socket$inet6_udp(0xa, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000005c0)=@newqdisc={0x3c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_WASH={0x8, 0xd, 0x1}]}}]}, 0x3c}}, 0x0) 980.457907ms ago: executing program 0 (id=8663): r0 = openat$apparmor_thread_exec(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r1) r2 = socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c) listen(r2, 0x0) syz_emit_ethernet(0x56, &(0x7f0000000380)=ANY=[@ANYBLOB="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", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="80020000907800001e0c4b000000000000000000"], 0x0) r3 = epoll_create1(0x0) r4 = socket(0x1, 0x3, 0x0) ioctl$sock_SIOCETHTOOL(r4, 0x8946, &(0x7f0000000180)={'syz_tun\x00', &(0x7f0000000240)=@ethtool_link_settings={0x4c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3], [0x80000000, 0x4, 0x7]}}) r5 = socket(0x40000000015, 0x5, 0x0) connect$inet(r5, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r5, &(0x7f00000004c0)) bind$inet(r5, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x10) sendto$inet(r5, 0x0, 0x0, 0x0, 0x0, 0x0) write$apparmor_exec(r0, &(0x7f00000000c0)={'stack ', ':\x00~\x14-\x90\x14\x05\x00\x8fQhj\x1b\x04\xe5\x8d\xa1\xc2\xaa-\xc7g\x80\x9e/\x19{S\x15\xfe\xbaO\xae\xa1z,\xde-\x8fKN\x86g\x9b\xe4\xfe\xae/\x90\xd8^O\x86\x81\x84\xab \x00\x00\x00F\xe9\xee\xc8\xd1\xb4Q\x05\x14\xe7\xa9c(0D7[\xccB\xe1Y\x99\x05\xae\xba\x00\xc4\b1\x84\xd6\b\xb0\xf0\x9a\x98\x85;\xffUq9:\xaf\xa2\x83\x88d\xc0\xe5\xcfF\x144}\x02\xb9\xb1\x85\x7fx\xe6\'\x8c\x898\'ej\xde;+\n1\xd4\x15\xf9Q\xacw\xcfS\x9a\x90\xf3-\xed\x80\fkt\xed\x10\xbd\xbe\xf1\x94\x99\xe1?\x10\xda\xc7\xed[\x00\x00\x00\x00\x00\x00\x00'}, 0xb3) r6 = creat(&(0x7f0000000040)='./file0\x00', 0xecf86c37d53048c3) r7 = socket$inet(0x2, 0x4000000000000001, 0x90e8) setsockopt$bt_BT_CHANNEL_POLICY(r6, 0x112, 0xa, &(0x7f00000001c0)=0x5, 0x4) bind$inet(r7, &(0x7f0000000000)={0x2, 0x4e23}, 0x10) sendto$inet(r7, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23}, 0x10) setsockopt$sock_int(r7, 0x1, 0x2e, &(0x7f0000000600)=0x6, 0x4) recvmsg(r7, &(0x7f0000001500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x407006}, 0x0) close(r6) gettid() r8 = epoll_create1(0x0) r9 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/wakeup_count', 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r8, 0x1, r9, &(0x7f0000000200)={0xa000000a}) finit_module(r9, 0x0, 0x100000) finit_module(r9, 0x0, 0x0) 860.490946ms ago: executing program 2 (id=8664): r0 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={0xffffffffffffffff, 0x0, 0x25, 0x6, @void}, 0x10) ioctl$BTRFS_IOC_SNAP_DESTROY(0xffffffffffffffff, 0x5000940f, &(0x7f0000000040)={{r0}, "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"}) r1 = socket$can_bcm(0x1d, 0x2, 0x2) sendmsg$can_bcm(r1, &(0x7f0000001100)={0x0, 0x0, &(0x7f00000010c0)={&(0x7f0000001040)={0x6, 0x80, 0x20, {0x77359400}, {}, {0x2, 0x1, 0x1}, 0x1, @can={{0x4, 0x1, 0x0, 0x1}, 0x8, 0x2, 0x0, 0x0, "181dacb7f2cedefc"}}, 0x48}, 0x1, 0x0, 0x0, 0x4000080}, 0x40080) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000001140)={r1}) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f00000011c0)={0x0, 0x0}) r4 = syz_clone(0xa4008000, &(0x7f0000001240)="cbd8655e202688703638d600bfca6729351808ae4abd36492f1fd2658e010e9bbcd51b3c6d88ff43d50285aef83f0aff695ce067d2c64e422d6dc8f4e19f5d4b6e5d2866a8b302c400ce913c5ef7a2499dac3d7e5d633291253f4c2e70685910ade300c630693588d849e12efa3bd3a94f3abcd9e14b6a0f328734fa7519d849", 0x80, &(0x7f00000012c0), &(0x7f0000001300), &(0x7f0000001340)="bb6409a10c13") sendmsg$nl_netfilter(r2, &(0x7f0000001580)={&(0x7f0000001180)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001540)={&(0x7f0000001380)={0x1b8, 0x10, 0xf, 0x5, 0x70bd2b, 0x25dfdbfb, {0x7, 0x0, 0x1}, [@nested={0x91, 0xcc, 0x0, 0x1, [@generic="89d415e7f8090c686731608a13f505ead13f7ec77e539206ddf2589a3176d792dda31b64470fa700219013f16a40886dcf160ea37bebbafe7a9311db46ba824f8e43ea0a0f70e071c94d4abf2791cef5b5d85b36da18b9b270b4ebb7d843231e6be9c15b721cab1229df337d3bba3ef32252da354d5c4f4b46a82a65cfb52d17421e38a93332b2579c10c5e137"]}, @generic="21384116a03c", @nested={0x20, 0x3c, 0x0, 0x1, [@typed={0x4, 0x12f}, @typed={0x4, 0x12f}, @typed={0x14, 0xc6, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}]}, @typed={0x8, 0x13b, 0x0, 0x0, @str='[#+\x00'}, @nested={0xd8, 0x2f, 0x0, 0x1, [@typed={0x8, 0x8b, 0x0, 0x0, @pid=r3}, @generic="4ae403c90822f11d37dfc99ff7d7874c7995ddc650676351dcd8941076f90160723987d83cfde1adb254d827e990f63a1ef943a09e202fb212d245aed5238d61a4a33115f632d207114a46449f29db482e906dc05377ddeea6d20a9c1d98b745072b15d8c0ba561ec847ab8ca602caa5ad1b01658f0dfa381605727e3c0582164753ecb4beaab1e1fccb38031e97bf96ed58bc726ce305240b824bbf13d7cdd558d33daaf2f02ce60258da89ea4ab6b6fba5986b34731de09c1fc0b65b9bda49", @typed={0xc, 0xea, 0x0, 0x0, @u64}]}, @typed={0x8, 0x2, 0x0, 0x0, @pid=r4}]}, 0x1b8}, 0x1, 0x0, 0x0, 0x20000040}, 0x20000002) r5 = open$dir(&(0x7f00000015c0)='./file0\x00', 0x2202, 0x2) r6 = openat(r5, &(0x7f0000001600)='./file0\x00', 0xc0000, 0x10) flistxattr(r1, &(0x7f0000001640)=""/127, 0x7f) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r6, 0x800c6613, &(0x7f00000016c0)=@v1={0x0, @adiantum, 0x0, @desc3}) r7 = accept4(r6, &(0x7f0000001700)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000001780)=0x80, 0x800) syz_open_dev$evdev(&(0x7f00000017c0), 0xce, 0x408000) ioctl$LOOP_SET_DIRECT_IO(r6, 0x4c08, 0x1) r8 = syz_usbip_server_init(0x4) readv(r8, &(0x7f0000001880)=[{&(0x7f0000001800)=""/109, 0x6d}], 0x1) pipe(&(0x7f00000018c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$RTC_PLL_GET(r9, 0x80207011, &(0x7f0000001900)) close_range(r1, 0xffffffffffffffff, 0x2) ioctl$PPPIOCGL2TPSTATS(r9, 0x80487436, &(0x7f0000001940)="5971c4f0af38d28cc9a5dc93bbb4df590c95185b2ded10526cbafff98f0a46e868fb30d51d9eab3a88c5ec03cb3ec3e680e20795c4c8ba45a3b0a4133a98a70fcbb81c46b24aadedae91f6b0b2324db8eb11f350b40266e080469b598456eba8c94a6f65215b0832f2629b1b8b82898679a8f4a17b5cb88a68a4c58ceb6d5e4fd490db994473991622f35dae862cab279bf17966fb307b76767524ca917210237146382c16417f91f6de63b4c68a84842b6b2a4632603ba013ed4033152f618bfb77af70669198f9f4314a7292905fe4b0a18204f0dc012b3e8070ca2fc7a4e576e994101a48789f5515ff1ea6c4ca312e2ac524c4589ec409b0a2f12ac51c11a297b81a3a5b1769118f498009d12a2cb14e52644efba62fb42f4e8f957fb4adea48f40ffe768abd90ea18632c21308634976c982e2d4b8f3b4ff6563954160cc8aedd43696e18f4017c91ef7e4acb2f43c52e351ffb72b4a9129b97bdc6900cadb9dc3cbdd5592bada6ce9455267a47afc21fdf80ee237aa8173e320b67674ef55728b531ac26a87325c095ec4fac7068519d782b30bc9cffd96e79f6cb987f15698f3479effb03671e177dea00373cfb17d1a6dc8bc075490c45dabb014419a1ff112e2b7f1ded7573f2ab39897a061cde042764e44958e385d8dafefa74f5c23b531b2a28027106ae835522d40ee6fbfaab90db0bc82c823be8fa404b307eb1f483e13db0070404bcb581e93f74d112e97528f0bdc8e67344e586c296bbece2331aae9aa1d4c98058d6a5fc421f9d8330fb135185c3f273f15a94ff3e7cf5bd574d297a1e1bbfc3a37a789d4771fecca3de39f1769f3f6abb3720ec3d3325a107b5dd6df2883c5a85a6564b9c1f9ca2c515092ace28c5e6ada05e9f9c0ee343e0973c7e2c29ac3f951a0a70ce4ee731fdedec7eebf2ca581739fa2e935e772984984fc2d81e6b2ef58a21ac4484839109ba4436e0cf7b4a03789cd4d5a901876a7cf301e5bdb2d7e427d15d4587bec195a18d8ae30a85913bffde1998d84e97f878489bfefb6c4b40345e06aa2210e63ca24f4ba69e78e62b7814c833f87f2c3327c1d25b9cbf0ae5f0af84c5d05ce9dc3ab54179511af145f0cab04bca7048c25adcba89b7bc18bdb67717227b6b8e64380b8a9bcd134af122056ca12796871841165bca251807720f0159c970ab1f827c128119e2256f6595a53db959139585bd189409dfb1cfb33c41f11769e573f36c04d814223d6ba8143bd6004a0ae596d51380b58bb8b0ff11cc80cf22437aaf79c669c9bb64fc35ec535e86db16960f40565b96e0f446e906b745f9c3a13d57bab74b358dc77ec98c47e73c50313c6d4677198f0b7d221897cec24e1c59c3a649fde2255f66ca16173239c4947d16e94ad23ab18b7dab51d0ec2ec509409f3471a379589afa46b9ba2b2a9e2a377975711b3e46a90697fea96315ff70f397feda034d93d0e6cb50c0acb1c9de715cfb0a66355f66c68ee4f02a542a52e64f4de9bfc003e19a42f097b5718c173ea7e17f62338c0cd4c1cd4645da7b87229032a81c2123f6a754f06d504d8948229fa263b9c3891de7e225e67ee4b28b6bfd0baeadd65cef53f5b43affd8ad034b198ea106a5addda295424e117df69dcd3be0a9269943a7feaa0b93110bfdc4e09bc7d9f4e485897e0877ae8a9bcf85a7b9744932cdfad64bb07e0af3f4781f64a9f23527a9d471e74c2420d8e406d9f3f6527770454255f22bc277366ad1325f3a5be2c7290bd19ffbe520870187acc57b04d6c8be2c7ce495e44cff808c3d32c53784347c97c3c8f0d0da676fae21bb4133b9a7fb0ec2f3090f9a7d38be00f75d13f2dbe80b46a8caf2221df13988a006fd89954a3fe4f7018ec30ac22c79e9dfc79584bdbc702cdb774f9e60939cfe7a4930cb08d205f3ff3ae20e79d2fbb356b8f47b77bee2018d44a0f2151de531feda58a53214a40f2cd2f097caae23d32d57e768378d190810ac2b5121531991b051992ca273c02793b848bab3a58d25e57cf704f1bf5caf71b90cecda7ba8e46217da5a0dc7abf8e49d1ceb44f4e31b2d768ddd3cacaba5ffecbffc0a5e5e925816f60d3bcb11dd906160f7d82e10be89cc66f726d1fb05f13c8ff7068d15ad0fb3214c91e56fced4e7387f0ddc9e42d5bb5a315f9e21c2cd9b9c92f9432e7a8a7fefcf69095e42927c18c2a4c0e05e2987abd337078be40ca1dd5dcc5518c49da711d400487110bfe1255be285b79e8a51d0c347d6bd9049d27af1cfcb6d191d506a0fdc58b7b6e695a3793c8acb1673eb656f12b2d89cf1a89df70ee9c692b230bb420e48a4ae514df051bbf48e412d09408e0499db32f41dfc44c11c9572201717a86c18285cf8a8629dde3991c07330b4ccb8af4881f5dafe22363ac71d578e981928e766b09fde0a5a75239e4886c6d09de42baf8d1eca1c009ecf60e026db2463392cffa15939eb97a90da97720fa1c9cbb196ea61fde73dded76fb4b9f33f2ff3bcecfa510844d9af4cb6db075e8a706d11a6378458271d44e938457b61eee282c35e9d141d78e910b18a8d86cc0a799a4dbf0ab66b254fcc87db3d7b1a0f8f1168df9b7a783d8482efeb45220806e3be0d2e76df5e06926e38e4b32a2601a8ff0c3ba527595d2fa7d0cfe3351a185e6a6a021a787c1fd13285e460c4a2d93617dd4a6e1ac8b25d5b60fe123a6a40ba44d54f06fa0746be18a4495943fb69f8bcde990dcc0b727be713b067439b69cd464dc4503d34746c2317a370c0aa4fcbd9fbea247bbd7e977f531ee1ed64c0910d70be8f4f53fd11f775b549d22df6b03b1883bdc5f0e61e6aec1a28d380e445bf15334104e858b0debc29f5ac8ba26bf107b40015f679926837a9be1c89637e3bf987d415f1d7128169dafd0c74f43b5ce7d134715616eb5c831aeb2ce43fc2ad4d8dae8bd00d399ef69ab01ee63cee265b5b8810cc6a92c2bd93b3da317981ec21192ebf4377bded543abc40542cc002050a0bc542e5f770381d021edfd92792d118688ed1127cb3dac8689b24071eeef04e2b3239f83a1d308bd6f93f501cb6809b9b2838ae8f22aced47fcab7790cecbf65b051c5cf4e6741e21fe61079e6618b79daaf3aa8f789df5424c5a3c5792d1c932b9977c1834dfc90abf86f130e6f775b94f059cef861bbc3a04e918e17587cb93a42e5918c14069d81a7636d6f9d8cba2ff95c5223034433c2a54fb6b07419af2db9b02369467d83138a7d87df6f58fc36dc5d8acf604a98f27060b060cb26491c1f6977e74bb5e5369798ec27e07e0a311231610d842912d58df3a73657d47a3422a9987da799e0ccfb0b0089fcd35cd85f7fa497a22625da709617d4ec92b6a37042d270aa43f420acad499d1b84c8e63fc603ad0a88d9873fdc25beae17e2c75f7ca333e4e685f34959da16cae0b04966789c4c1e87df6e108be7185862c061365bd217f0df20f4ff39f25aded32c5b90baecb3dcb2738580009f6aa91bddee6f813426048812a5c64a8a6b194ec31aec968ae9e19309dad98bd091e31558071f162e840842df69455a36dc6c49ec5aaeadc71cd1a99add3846ee3b582d697be7211ac45e09b86d7841241b8db91d8375007354e47e898eb7873a269d12a0b80dc6d580014f696e3f7970886cb41a3e5cf089ef42a0530715029c9eaf1b5a6a3f741810cf27b74ae3d14f99898be5c8b9aeb6834046f3a98621cb11043dd5bb40f9a627113e08ed71a87ad66d6ad316c1e16ae90d5914bb6fef63171b2eccdd47ad7cccdfb83aa8cb3b07fa9788ffa0c73315929c8fe77457173c3fcb8361bc100fa5c7255ac48285a9aaa929eb4eb599b23aa85b9ca42636cb3912aa7f8f818aef31ef34add361831279cd7b2fa3cb00974d72d38b11c5e637397970fc02e7ba70385ef19f029dd0db57399b9dc8db9108085953dcc1a921bf67229bd1f93d1f7efb2e5db3c980edb12c4fc6d20719b59019a4a3b32d7e113eba513720e5b6fb3683c051742981fdca95aa9df9a69011dbbe363bc5efb700cd91c90426ee5c24ed7d9df5e022fa6a8372392b6a4b53c692971b5403e95c9a9982c3b339b89f79dc17fd00c3597e260d013a690173b219cac90672aa31794e210845fcb687f37f39c8b69ef290ab535c1743952560de0fa9bb01f5f18dc89b73715ecf11bd224a60b0bc2b7c5ce28058a13812275bc13cb5a648ee4b3534189c7d973ce08fbef76b22e4eb4fbd50d47f6954977265ce478d9d3c780e35133ea9d127e45df60348a3cb3258587f5a1fc04d035a2046685f56bc56e5d10d1329b7f3af9b5cffff376420f93973d1c1e2131945f6c72d8af70b31d8e1d13949808d1bd66aa4c0779beab61d2cb659f3c99ba9d4a0fb3bd24d851f65535a4f030dcd5c79c0f601c5a64060c6791b2e351236aafd12f0809d0aeb094f4790bd5a4059beca6795e63275e156f6250d70629dbeb5107dd0bd2d9fed31fb7b8a51110560339f4c09b98078ee4aca56db1970f2bfa975f917f5e3e408280b57f1faa6aeeffbc75ff08fa05227b98a28ac3b719aeb0dfbeab5d976d000e3f1031e26e2044b69a575e8e39bbbe2ddb886f739a6dc9273ea010ff6509f62542f3e000a2d40379784836350ad7cc4597df4b2b6004f46a468b0e4febe365d3567c140cdd6725b001987bcdd5777051ee2b1a95393bcd3601c9aea1198b1710c7b95dd9a088d1c26c3c58648b77929fb6686b433bd5cfa5a97060e6fc10fe85c8aa83e7b402b02141ad1a2e2f54285e3110556f81fde6407f71688d292ceaf99b3a33bc550f4795945cf0b2e9f1c061a67031011ab0c6da8859d6fae9bc28e86faaa538b81a05810ec316287b86423ad8270a50c4fdb9b0bd198f39acb5c3725868f4693193e8488ae9be87319d162a61deb7aeb652920282632ab435632ea420e8d1208d50a1caec034a3545353e8fee3b55d9d4cf00586d2a6e99afc6684e94f62b77087c8e5d76fa1880375896819f322ceab5e89587b2daae3415f5738c54e6e827a5274c1a4737a6d06481fe71a61e41e224d2e13941240e27d190d1e4d0c2ee6de6b303a6a9dfd2aa80803d356f8cb532e6e88f770bd362b55904417657375bbc872662d213ff5fc11b765da1bb5e228989a0079066f3a180b424cfedcc9e2126921d7d114a353158809f7eea8d32775fca7630dbf500dfd9525ab4edffb393c5a9238284413295ee7498679acb3b00346541c4a2db0e76c34d43e838901ddc0a8191d3814cbc799b8400bbcfe9ea1be7ba550e8829a9f1b857e05dbb1eeada9d42cbee8eb90bb18deb93789e0671bfe74a694c02c2c91f2d1f44084e47a6e076ea2ad24a4d3dc606912ebb14e3f2b7b276346725ad186966ce77eb17370e51c74594e841fdb1d3a83948611c2edfbaaf3153d81bc8f2953e4d74902d91e800a01279898b90afa237e38fcead7d303678dbbfea3246cacf37a486a580394f8d6806fa61f7cf32086d9d1549e955a252cbc17b80a96d223f3bb48159b42dcf5affe0bf601938d2b176f83476be18d7335a626f438eeaf8d64ae397b036a3eb0c27d89c489d185d656b40f4fa6b565b06df9b68c93bf4a22991ff732e20355f12c4372573164fe53ca62775a21958e58d5df867e242f2a54992c87f0a470a1d9660e701faa2e52a6cdbaa2851f43b4febe54e19a666e88ff6ab4a148bd838bbaa77f15ffa4ac5e8f18aa3518ee06541f7a564a3eb8f53dc6762bc5491038dd85be9566e7ce20f5b9faaf3e4a25cf5eebd1819e") sendmsg$RDMA_NLDEV_CMD_RES_QP_GET(r6, &(0x7f0000002a40)={&(0x7f0000002940)={0x10, 0x0, 0x0, 0x4102000}, 0xc, &(0x7f0000002a00)={&(0x7f0000002980)={0x50, 0x140a, 0x2, 0x70bd2b, 0x25dfdbff, "", [@RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x2}, @RDMA_NLDEV_ATTR_RES_LQPN={0x8, 0x15, 0x2}, @RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x2}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_RES_LQPN={0x8, 0x15, 0x4}, @RDMA_NLDEV_ATTR_RES_LQPN={0x8, 0x15, 0x1}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x1}]}, 0x50}, 0x1, 0x0, 0x0, 0x1}, 0x8890) getsockopt$IP_VS_SO_GET_DESTS(r7, 0x0, 0x484, &(0x7f0000002a80)=""/152, &(0x7f0000002b40)=0x98) sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r10, &(0x7f0000002c40)={&(0x7f0000002b80)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000002c00)={&(0x7f0000003100)=ANY=[@ANYBLOB="200000000308010300000da2430000000061cc11f089f7790777ef8540cd25fd8aefa3cc90017882d48de209c4e08993be1c30f5b9e5ae2ed04a2f6e546c20ba68ac624c480896f85fc0420a3b46209e05dbd0371a7bdba699891f4c2ded30a3cf17b1bcdb650c71bc99789a25745a42645f7f6673fd4e15f35d2a538ac7540566f10003b329e1cfc0269b3cbab1bbec6ba39504f90947a08655bb4d40db77bdd1aa10c1bfcad85bf7120b3e6adb6dae398456d4c2bc1fe362f9eb87d735d9e409f75add9dcd457643860fbc18cbad9b16eac2678dc7c86f5c532ed31e459b434438d6a59ae22143fcdb45106bac5da0f0a618858a879d5b0d689e63eb32e9bfa4594f00000000"], 0x20}, 0x1, 0x0, 0x0, 0x4040014}, 0x8000) getsockopt$PNPIPE_INITSTATE(r2, 0x113, 0x4, &(0x7f0000002c80), &(0x7f0000002cc0)=0x4) pipe(&(0x7f0000002d00)={0xffffffffffffffff}) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000002e00)={r11, &(0x7f0000002d40)="e7bca3c15495e9c00416d2f247c05ca70b960b2665b5b2d735c8fba7995c6197e8b523f43142d8fe838ee6fe6a605af76b41cd07e8aed0b5bcb196eca764240185dd094e7c31fc4096c6d8950ef7eee22e6779687b77010da07a85cb81df537dd70b1066f40b114ed724fd28678d89fd3a97", &(0x7f0000002dc0)=""/63}, 0x20) ioctl$SG_GET_REQUEST_TABLE(r6, 0x2286, &(0x7f0000002e40)) epoll_create1(0x0) sendmsg$NL80211_CMD_SET_MCAST_RATE(r6, &(0x7f00000030c0)={&(0x7f0000002fc0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000003080)={&(0x7f0000003040)={0x38, 0x0, 0x200, 0x70bd29, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xa51, 0x46}}}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x5a}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x5a}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x1e0}]}, 0x38}, 0x1, 0x0, 0x0, 0x4004000}, 0x40) 587.613002ms ago: executing program 3 (id=8665): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) r1 = fcntl$getown(r0, 0x9) sched_setscheduler(r1, 0x1, &(0x7f0000000340)=0x7) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000180)=@framed={{}, [@call={0x85, 0x0, 0x0, 0xaf}]}, &(0x7f0000000540)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) r2 = socket(0x21, 0x2, 0x0) timer_create(0x0, 0x0, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x10, &(0x7f0000000180), 0x4) r3 = socket$netlink(0x10, 0x3, 0x12) sendmsg$nl_route(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYBLOB="000000000080000008001b00000000000500100005"], 0x30}}, 0x0) sendmsg$nl_route(r3, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0xffffa888}, 0x0) r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000400), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_SB_POOL_GET(r3, &(0x7f0000000680)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x44, r4, 0x200, 0x70bd2a, 0x25dfdbfe, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}, {0x6, 0x11, 0x2}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4004000}, 0x8000) sendmsg$DEVLINK_CMD_TRAP_SET(r2, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000100)={&(0x7f00000003c0)={0x98, r4, 0x400, 0x70bd2c, 0x25dfdbfd, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}, {0x5, 0x83, 0x1}}, {@pci={{0x8}, {0x11}}, {0x1c}, {0x5}}]}, 0x98}, 0x1, 0x0, 0x0, 0x880}, 0x10) r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0xe}, 0x48) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$int_in(r6, 0x5452, 0x0) listen(r6, 0x0) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000000c0)={r5, &(0x7f0000000140), &(0x7f0000000040)=@tcp6=r6}, 0x20) recvmmsg(r6, &(0x7f0000001700)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f00000015c0)}}], 0x2, 0x0, 0x0) shutdown(r6, 0x0) bind$inet6(0xffffffffffffffff, 0x0, 0x0) bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0) setsockopt$packet_fanout_data(r2, 0x107, 0x16, 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) 390.430606ms ago: executing program 1 (id=8666): r0 = syz_open_dev$evdev(&(0x7f0000000240), 0x0, 0x0) ioctl$EVIOCGLED(r0, 0x80284511, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x2, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) socket$can_raw(0x1d, 0x3, 0x1) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f0000000040)=0x9, 0x4) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', 0x0}) sendto$packet(r2, &(0x7f0000000180)="05030400010000000000008071acedd7c9560385dcb1894f84d7dc029806892f05ce811c88f7", 0x26, 0x0, &(0x7f0000000140)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @broadcast}, 0x14) socket$nl_xfrm(0x10, 0x3, 0x6) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r4 = getpid() r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000500)='tlb_flush\x00', r5}, 0x10) process_vm_readv(r4, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) r6 = geteuid() quotactl_fd$Q_GETNEXTQUOTA(r1, 0xffffffff80000901, r6, &(0x7f00000000c0)) syz_emit_ethernet(0x10fe, &(0x7f0000001fc0)={@local, @empty, @void, {@mpls_uc={0x8847, {[{0x40, 0x0, 0x1}], @ipv4=@udp={{0x39, 0x4, 0x2, 0xb, 0x10ec, 0x65, 0x0, 0x14, 0x11, 0x0, @multicast2, @loopback, {[@cipso={0x86, 0x2d, 0x3, [{0x0, 0xc, "7fc8f3e875df3e55f113"}, {0x0, 0x4, "46b0"}, {0x6, 0x6, "abafeb4f"}, {0x0, 0x11, "fede3e59287db367b957dc3943d09b"}]}, @ra={0x94, 0x4, 0x1}, @cipso={0x86, 0x56, 0x1, [{0x2, 0x6, "f54f64ab"}, {0x0, 0x6, "d41dc85c"}, {0x1, 0xe, "4d2da1cbf44c68e75781a450"}, {0x5, 0xd, "316aa1dfe892570abb72d6"}, {0x1, 0xc, "9f96b6d1bfc9aae03ee9"}, {0x1, 0x6, "0acb684d"}, {0x7, 0xa, "2c1d89fd0297b602"}, {0x0, 0xb, "3d810d20fc9d6da529"}, {0x1, 0x2}]}, @timestamp_prespec={0x44, 0x1c, 0xa9, 0x3, 0x5, [{@remote, 0x6}, {@empty, 0x5}, {@local}]}, @timestamp_prespec={0x44, 0x24, 0xc5, 0x3, 0x3, [{@remote, 0x10001}, {@empty, 0xfffff099}, {@multicast1, 0x8}, {@dev={0xac, 0x14, 0x14, 0xf}, 0x9}]}, @end, @generic={0x88, 0x6, "30763f9a"}, @end]}}, {0x4e20, 0x4e20, 0x1008, 0x0, @opaque="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"}}}}}}, 0x0) r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r9 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000300), r7) sendmsg$NLBL_MGMT_C_ADDDEF(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)={0x38, r9, 0x1, 0x0, 0x0, {}, [@NLBL_MGMT_A_PROTOCOL={0x8}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @empty}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @loopback}]}, 0x38}}, 0x0) r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000c80)={0x1d, 0x22, &(0x7f0000000940)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xdcff, 0x0, 0x0, 0x0, 0xd65c}, {}, {}, [@map_fd={0x18, 0x88eb2563ef25f450, 0x1, 0x0, 0x1}, @map_fd={0x18, 0xa, 0x1, 0x0, r5}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffd}, @map_idx={0x18, 0x7}, @jmp={0x5, 0x0, 0x4, 0x7, 0xa, 0x0, 0xfffffffffffffff0}, @printk={@u, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x6}}, @call={0x85, 0x0, 0x0, 0x3d}, @cb_func={0x18, 0x6, 0x4, 0x0, 0xfffffffffffffffe}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000a80)='GPL\x00', 0x9, 0xca, &(0x7f0000000ac0)=""/202, 0x0, 0x5, '\x00', r3, 0x28, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000bc0)={0x3, 0x7, 0x1, 0x15f97751}, 0x10, 0x0, r5, 0x2, &(0x7f0000000c00)=[0xffffffffffffffff], &(0x7f0000000c40)=[{0x5, 0x3, 0x0, 0xb}, {0x5, 0x2, 0x2, 0x5}], 0x10, 0x3f11}, 0x90) r11 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/arp\x00') preadv(r11, &(0x7f0000000040)=[{&(0x7f0000000200)=""/233, 0xe9}], 0x1, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000dc0)={0x16, 0x7, &(0x7f0000000200)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x5}, [@btf_id={0x18, 0x1, 0x3, 0x0, 0x5}, @map_idx_val={0x18, 0x7, 0x6, 0x0, 0xd, 0x0, 0x0, 0x0, 0x1e5}]}, &(0x7f0000000340)='GPL\x00', 0xffffff80, 0x50, &(0x7f0000000380)=""/80, 0x41100, 0x60, '\x00', 0x0, 0x31, 0xffffffffffffffff, 0x8, &(0x7f0000000400)={0x1, 0x1}, 0x8, 0x10, &(0x7f0000000440)={0x4, 0xd, 0x7fe0, 0x1ff}, 0x10, 0x0, r10, 0x4, &(0x7f0000000d40)=[r11], &(0x7f0000000d80)=[{0x2, 0x4, 0xa, 0x9}, {0x1, 0x4, 0xa, 0xc}, {0x3, 0x4, 0x2, 0x2}, {0x2, 0x4, 0xb, 0x9}], 0x10, 0x4}, 0x90) r12 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r12, 0xc08c5332, &(0x7f0000000240)={0x0, 0x0, 0x0, 'queue1\x00'}) 429.342µs ago: executing program 0 (id=8667): socket$qrtr(0x2a, 0x2, 0x0) socket$packet(0x11, 0x0, 0x300) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) arch_prctl$ARCH_GET_MAX_TAG_BITS(0x4003, 0x0) ioctl$EXT4_IOC_CHECKPOINT(0xffffffffffffffff, 0x41009432, 0x0) socket(0x10, 0x2, 0x0) mmap(&(0x7f00005b8000/0x2000)=nil, 0x2000, 0x3000000, 0x11, 0xffffffffffffffff, 0xb2478000) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)={{0x14}, [@NFT_MSG_NEWSET={0x44, 0x9, 0xa, 0x201, 0x0, 0x0, {}, [@NFTA_SET_ID={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x31}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_GC_INTERVAL={0x8}]}], {0x14}}, 0x6c}}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000180)={@loopback, 0x0, 0x0, 0x3, 0x1}, 0x20) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = getpid() process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4002011, 0xffffffffffffffff, 0x0) ftruncate(0xffffffffffffffff, 0x1f) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = socket$kcm(0x10, 0x2, 0x4) r6 = socket$can_j1939(0x1d, 0x2, 0x7) ioctl$ifreq_SIOCGIFINDEX_vcan(r6, 0x8933, &(0x7f0000000000)={'vcan0\x00'}) close(r5) 0s ago: executing program 2 (id=8668): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000002090000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x2, 0x4, 0x6, 0x7ff}, 0x48) bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000), &(0x7f0000000200), 0xa7c, r2}, 0x38) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0) write$binfmt_script(r3, &(0x7f0000000100), 0xfecc) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r3, 0x0) r4 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x0, 0x0}, &(0x7f0000000180)=0x10) r5 = socket(0x1, 0x803, 0x0) getsockname$packet(r5, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000400)=0x14) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700) bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x5}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0}, 0x90) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$fou(&(0x7f0000000080), 0xffffffffffffffff) r8 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$smc(&(0x7f00000000c0), r8) getsockname$packet(r8, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000000)=0x14) sendmsg$FOU_CMD_ADD(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="090200000000000000000100000008000600ac1414aa08000b00", @ANYRES32=r9, @ANYBLOB="c28e0c58d748996b745d67c601a0fc4185773672fd51a81ccfa5ef0a253ae1608dc292438b78c74d76bd9abd8cec9f5aaade9891864716dd2a0a2621f71be9758af4897ca1ee5b84ba5986a755629ffb0b55f3aaf701c046cae041d8dd2479848e816915b610ad600885f99dbe0f30569f39cb5471de00000000000000"], 0x24}}, 0x0) sendmsg$FOU_CMD_ADD(r6, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x38, r7, 0x20, 0x70bd26, 0x25dfdbfe, {}, [@FOU_ATTR_LOCAL_V4={0x8, 0x6, @initdev={0xac, 0x1e, 0x1, 0x0}}, @FOU_ATTR_AF={0x5, 0x2, 0x2}, @FOU_ATTR_PEER_V6={0x14, 0x9, @remote}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000800}, 0x48000) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000016c0)={'pimreg0\x00', 0x41}) kernel console output (not intermixed with test programs): an invalid length. [ 1509.635281][T31726] netlink: 130984 bytes leftover after parsing attributes in process `syz.3.7919'. [ 1510.162517][T31743] netlink: 28 bytes leftover after parsing attributes in process `syz.0.7924'. [ 1510.169985][T31743] netlink: 76 bytes leftover after parsing attributes in process `syz.0.7924'. [ 1510.981144][T31760] netlink: 'syz.0.7928': attribute type 3 has an invalid length. [ 1510.984656][T31760] netlink: 130984 bytes leftover after parsing attributes in process `syz.0.7928'. [ 1511.218442][T19552] bridge_slave_1: left allmulticast mode [ 1511.221376][T19552] bridge_slave_1: left promiscuous mode [ 1511.223758][T19552] bridge0: port 2(bridge_slave_1) entered disabled state [ 1511.240374][T19552] bridge_slave_0: left allmulticast mode [ 1511.242803][T19552] bridge_slave_0: left promiscuous mode [ 1511.245320][T19552] bridge0: port 1(bridge_slave_0) entered disabled state [ 1511.500167][T31765] xt_TCPMSS: Only works on TCP SYN packets [ 1512.144775][T19552] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1512.177144][T19552] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1512.190874][T19552] bond0 (unregistering): Released all slaves [ 1512.526364][T31788] tc_dump_action: action bad kind [ 1512.743121][T31799] FAULT_INJECTION: forcing a failure. [ 1512.743121][T31799] name failslab, interval 1, probability 0, space 0, times 0 [ 1512.748319][T31799] CPU: 0 PID: 31799 Comm: syz.2.7940 Not tainted 6.10.0-syzkaller-00017-g5e0497553643 #0 [ 1512.752143][T31799] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1512.756563][T31799] Call Trace: [ 1512.757995][T31799] [ 1512.759270][T31799] dump_stack_lvl+0x16c/0x1f0 [ 1512.761248][T31799] should_fail_ex+0x497/0x5b0 [ 1512.763287][T31799] should_failslab+0x9/0x20 [ 1512.765243][T31799] kmem_cache_alloc_node_noprof+0x71/0x310 [ 1512.767725][T31799] ? __alloc_skb+0x2b3/0x380 [ 1512.769676][T31799] __alloc_skb+0x2b3/0x380 [ 1512.771541][T31799] ? __pfx___alloc_skb+0x10/0x10 [ 1512.773498][T31799] ? genl_rcv_msg+0x560/0x800 [ 1512.775203][T31799] ? genl_rcv_msg+0x4bd/0x800 [ 1512.777118][T31799] netlink_ack+0x164/0xb20 [ 1512.778977][T31799] netlink_rcv_skb+0x327/0x410 [ 1512.781004][T31799] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1512.783225][T31799] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1512.785617][T31799] ? down_read+0xc9/0x330 [ 1512.787532][T31799] ? __pfx_down_read+0x10/0x10 [ 1512.789700][T31799] ? netlink_deliver_tap+0x1ae/0xcf0 [ 1512.791894][T31799] genl_rcv+0x28/0x40 [ 1512.793479][T31799] netlink_unicast+0x542/0x820 [ 1512.795444][T31799] ? __pfx_netlink_unicast+0x10/0x10 [ 1512.797759][T31799] ? __phys_addr_symbol+0x30/0x80 [ 1512.799948][T31799] ? __check_object_size+0x48e/0x720 [ 1512.802069][T31799] netlink_sendmsg+0x8b8/0xd70 [ 1512.804047][T31799] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1512.806417][T31799] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 1512.808773][T31799] ____sys_sendmsg+0x9b4/0xb50 [ 1512.811161][T31799] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1512.813452][T31799] ? get_compat_msghdr+0x11b/0x170 [ 1512.815644][T31799] ? __pfx___lock_acquire+0x10/0x10 [ 1512.817673][T31799] ___sys_sendmsg+0x135/0x1e0 [ 1512.819717][T31799] ? __pfx____sys_sendmsg+0x10/0x10 [ 1512.821938][T31799] ? ksys_write+0x21c/0x260 [ 1512.823605][T31799] ? __fget_light+0x173/0x210 [ 1512.825498][T31799] __sys_sendmsg+0x117/0x1f0 [ 1512.827461][T31799] ? __pfx___sys_sendmsg+0x10/0x10 [ 1512.829365][T31799] __do_fast_syscall_32+0x73/0x120 [ 1512.831080][T31799] do_fast_syscall_32+0x32/0x80 [ 1512.833590][T31799] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1512.836272][T31799] RIP: 0023:0xf74a0579 [ 1512.837921][T31799] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1512.846012][T31799] RSP: 002b:00000000f5db857c EFLAGS: 00000292 ORIG_RAX: 0000000000000172 [ 1512.849695][T31799] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000002000bf00 [ 1512.853063][T31799] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1512.856565][T31799] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1512.860056][T31799] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1512.862986][T31799] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1512.866317][T31799] [ 1512.985928][T19552] hsr_slave_0: left promiscuous mode [ 1512.989736][T19552] hsr_slave_1: left promiscuous mode [ 1512.993288][T19552] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1512.996356][T19552] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1513.021221][T19552] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1513.024916][T19552] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1513.188144][T19552] veth1_macvtap: left promiscuous mode [ 1513.199252][T19552] veth0_macvtap: left promiscuous mode [ 1513.205201][T19552] veth1_vlan: left promiscuous mode [ 1513.217923][T19552] veth0_vlan: left promiscuous mode [ 1514.581265][T31820] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1514.584963][T31820] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1516.022614][T19552] team0 (unregistering): Port device team_slave_1 removed [ 1516.166703][T19552] team0 (unregistering): Port device team_slave_0 removed [ 1516.323403][T31837] input: syz0 as /devices/virtual/input/input49 [ 1517.744755][T31808] tc_dump_action: action bad kind [ 1517.746927][T31822] tc_dump_action: action bad kind [ 1517.769965][T31844] tc_dump_action: action bad kind [ 1518.150531][T31850] cgroup: name respecified [ 1519.468617][T31877] EXT4-fs warning (device sda1): ext4_resize_fs:2018: can't read last block, resize aborted [ 1519.477683][T31878] tc_dump_action: action bad kind [ 1520.004321][T31886] tc_dump_action: action bad kind [ 1521.312517][T31905] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7967'. [ 1521.607751][T31914] netlink: 20 bytes leftover after parsing attributes in process `syz.1.7969'. [ 1522.173560][T31920] netlink: 28 bytes leftover after parsing attributes in process `syz.3.7970'. [ 1522.202901][T31920] netlink: 76 bytes leftover after parsing attributes in process `syz.3.7970'. [ 1522.208666][T31922] tc_dump_action: action bad kind [ 1522.445357][T31926] 9pnet_fd: p9_fd_create_tcp (31926): problem connecting socket to 127.0.0.1 [ 1522.767468][T31937] tc_dump_action: action bad kind [ 1523.818253][T31951] netlink: 20 bytes leftover after parsing attributes in process `syz.1.7979'. [ 1523.828982][ T4639] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 1523.860184][ T4639] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 1523.866873][ T4639] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 1523.881582][ T4639] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 1523.886033][ T4639] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 1523.889997][ T4639] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 1524.130985][T31956] netlink: 28 bytes leftover after parsing attributes in process `syz.2.7980'. [ 1524.233810][T12593] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1524.286862][T31956] netlink: 76 bytes leftover after parsing attributes in process `syz.2.7980'. [ 1524.496377][T12593] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1524.708023][T12593] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1524.765840][T31952] chnl_net:caif_netlink_parms(): no params data found [ 1524.897340][T12593] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1525.143287][T31952] bridge0: port 1(bridge_slave_0) entered blocking state [ 1525.154592][T31952] bridge0: port 1(bridge_slave_0) entered disabled state [ 1525.165770][T31952] bridge_slave_0: entered allmulticast mode [ 1525.184906][T31952] bridge_slave_0: entered promiscuous mode [ 1525.226738][T31952] bridge0: port 2(bridge_slave_1) entered blocking state [ 1525.238960][T31952] bridge0: port 2(bridge_slave_1) entered disabled state [ 1525.258794][T31952] bridge_slave_1: entered allmulticast mode [ 1525.266231][T31952] bridge_slave_1: entered promiscuous mode [ 1525.393864][T31952] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1525.400670][T31952] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1525.536312][T31952] team0: Port device team_slave_0 added [ 1525.543562][T31952] team0: Port device team_slave_1 added [ 1525.741403][T31952] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1525.744523][T31952] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1525.774630][T31952] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1525.779219][T12593] bridge_slave_1: left allmulticast mode [ 1525.781918][T12593] bridge_slave_1: left promiscuous mode [ 1525.784368][T12593] bridge0: port 2(bridge_slave_1) entered disabled state [ 1525.826795][T12593] bridge_slave_0: left allmulticast mode [ 1525.829260][T12593] bridge_slave_0: left promiscuous mode [ 1525.833912][T12593] bridge0: port 1(bridge_slave_0) entered disabled state [ 1526.000204][ T4639] Bluetooth: hci2: command tx timeout [ 1526.154298][T31975] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1526.165734][T31975] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1526.447075][T12593] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1526.460244][T12593] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1526.472249][T12593] bond0 (unregistering): Released all slaves [ 1526.503687][T31952] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1526.518191][T31952] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1526.549718][T31952] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1526.878770][T31952] hsr_slave_0: entered promiscuous mode [ 1526.890546][T31952] hsr_slave_1: entered promiscuous mode [ 1526.927900][T31952] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1526.931240][T31952] Cannot create hsr debugfs directory [ 1527.368575][T12593] hsr_slave_0: left promiscuous mode [ 1527.379051][T12593] hsr_slave_1: left promiscuous mode [ 1527.384574][T12593] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1527.387889][T12593] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1527.401606][T12593] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1527.404976][T12593] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1527.464901][T12593] veth1_macvtap: left promiscuous mode [ 1527.467565][T12593] veth0_macvtap: left promiscuous mode [ 1527.470442][T12593] veth1_vlan: left promiscuous mode [ 1527.472794][T12593] veth0_vlan: left promiscuous mode [ 1527.940614][T31981] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1527.944656][T31981] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1528.028003][T31981] program syz.1.7986 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1528.073594][ T4639] Bluetooth: hci2: command tx timeout [ 1528.719178][T31984] netlink: 28 bytes leftover after parsing attributes in process `syz.1.7988'. [ 1529.837316][T12593] team0 (unregistering): Port device team_slave_1 removed [ 1530.047413][T12593] team0 (unregistering): Port device team_slave_0 removed [ 1530.159952][ T4639] Bluetooth: hci2: command tx timeout [ 1531.663534][T31984] netlink: 76 bytes leftover after parsing attributes in process `syz.1.7988'. [ 1531.680927][T31991] netlink: 20 bytes leftover after parsing attributes in process `syz.2.7989'. [ 1531.685329][T31991] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1531.699933][T31991] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1532.230630][ T4639] Bluetooth: hci2: command tx timeout [ 1532.516717][T31952] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 1532.530279][T31952] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 1532.552807][T31952] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 1532.565693][T31952] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 1532.725589][T32011] tc_dump_action: action bad kind [ 1532.785128][T31952] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1532.818474][T31952] 8021q: adding VLAN 0 to HW filter on device team0 [ 1532.836225][ T10] bridge0: port 1(bridge_slave_0) entered blocking state [ 1532.838834][ T10] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1532.849217][T29160] bridge0: port 2(bridge_slave_1) entered blocking state [ 1532.852505][T29160] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1533.045522][T31952] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 1533.408387][T31952] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1533.474073][T31952] veth0_vlan: entered promiscuous mode [ 1533.500223][T31952] veth1_vlan: entered promiscuous mode [ 1533.564002][T31952] veth0_macvtap: entered promiscuous mode [ 1533.570892][T31952] veth1_macvtap: entered promiscuous mode [ 1533.595603][T31952] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1533.646266][T31952] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1533.651250][T31952] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1533.655719][T31952] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1533.666289][T31952] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1533.671462][T31952] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1533.675211][T31952] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1533.695761][T31952] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1533.699791][T31952] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1533.706999][T31952] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1533.737907][T31952] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1533.766758][T31952] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1533.780001][T31952] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1533.787408][T31952] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1533.802839][T31952] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1533.806803][T31952] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1533.812001][T31952] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1533.816233][T31952] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1533.820736][T31952] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1533.824544][T31952] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1533.828617][T31952] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1533.832863][T31952] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1533.837095][T31952] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1533.841033][T31952] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1533.845415][T31952] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1533.851567][T31952] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1533.868906][T31952] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1533.878688][T31952] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1533.883871][T31952] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1533.888299][T31952] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1533.984377][T19544] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1533.988193][T19544] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1534.031767][T19552] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1534.035333][T19552] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1534.116874][T32034] netlink: 20 bytes leftover after parsing attributes in process `syz.2.7999'. [ 1534.148796][T32034] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1534.159765][T32036] netlink: 12 bytes leftover after parsing attributes in process `syz.0.7977'. [ 1534.161943][T32034] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1534.659990][T28596] usb 5-1: new high-speed USB device number 47 using dummy_hcd [ 1534.861605][T28596] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 88, changing to 10 [ 1534.866660][T28596] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1791, setting to 1024 [ 1534.880297][T28596] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1534.889998][T28596] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1534.895298][T28596] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1534.906112][T28596] usb 5-1: config 0 descriptor?? [ 1534.930498][T32039] raw-gadget.2 gadget.0: fail, usb_ep_enable returned -22 [ 1535.365418][T28596] plantronics 0003:047F:FFFF.0017: unknown main item tag 0x0 [ 1535.371918][T28596] plantronics 0003:047F:FFFF.0017: No inputs registered, leaving [ 1535.392594][T28596] plantronics 0003:047F:FFFF.0017: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0 [ 1535.818238][T16785] usb 5-1: USB disconnect, device number 47 [ 1536.090040][T32051] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1536.183851][T32051] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1536.220023][T32051] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1537.119933][ T39] kauditd_printk_skb: 9 callbacks suppressed [ 1537.119948][ T39] audit: type=1326 audit(2000000003.250:469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32062 comm="syz.0.8009" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf73f4579 code=0x0 [ 1538.378436][T32079] netlink: 12 bytes leftover after parsing attributes in process `syz.0.8013'. [ 1539.585628][T32112] netlink: 12 bytes leftover after parsing attributes in process `syz.0.8023'. [ 1540.146860][T32132] netlink: 20 bytes leftover after parsing attributes in process `syz.3.8026'. [ 1540.152767][T32132] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1540.157658][T32132] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1540.169565][T32132] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1540.176258][T32132] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1540.817472][T32146] FAULT_INJECTION: forcing a failure. [ 1540.817472][T32146] name failslab, interval 1, probability 0, space 0, times 0 [ 1540.854596][T32146] CPU: 1 PID: 32146 Comm: syz.2.8031 Not tainted 6.10.0-syzkaller-00017-g5e0497553643 #0 [ 1540.858256][T32146] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1540.864374][T32146] Call Trace: [ 1540.865654][T32146] [ 1540.866782][T32146] dump_stack_lvl+0x16c/0x1f0 [ 1540.870767][T32146] should_fail_ex+0x497/0x5b0 [ 1540.872717][T32146] should_failslab+0x9/0x20 [ 1540.874476][T32146] kmem_cache_alloc_noprof+0x6e/0x2f0 [ 1540.877257][T32146] ? vm_area_dup+0x53/0x300 [ 1540.879083][T32146] vm_area_dup+0x53/0x300 [ 1540.880717][T32146] __split_vma+0x181/0x11a0 [ 1540.883877][T32146] ? __pfx___split_vma+0x10/0x10 [ 1540.886211][T32146] ? hlock_class+0x4e/0x130 [ 1540.889634][T32146] ? __pfx_mark_lock+0x10/0x10 [ 1540.891627][T32146] do_vmi_align_munmap+0x362/0x19c0 [ 1540.893822][T32146] ? __pfx_do_vmi_align_munmap+0x10/0x10 [ 1540.896120][T32146] do_vmi_munmap+0x231/0x410 [ 1540.897920][T32146] mmap_region+0x17f/0x2760 [ 1540.899787][T32146] ? __pfx_mmap_region+0x10/0x10 [ 1540.902160][T32146] ? security_mmap_addr+0x8e/0xb0 [ 1540.904084][T32146] ? __get_unmapped_area+0x271/0x3a0 [ 1540.906295][T32146] do_mmap+0xbc7/0xf60 [ 1540.907889][T32146] ? __mmap_lock_do_trace_acquire_returned+0x362/0x790 [ 1540.910253][T32146] vm_mmap_pgoff+0x1ba/0x360 [ 1540.911894][T32146] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1540.913583][T32146] ksys_mmap_pgoff+0x332/0x5d0 [ 1540.915185][T32146] ? __ia32_sys_mmap_pgoff+0x11/0x1b0 [ 1540.917091][T32146] __do_fast_syscall_32+0x73/0x120 [ 1540.918990][T32146] do_fast_syscall_32+0x32/0x80 [ 1540.920655][T32146] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1540.922735][T32146] RIP: 0023:0xf74a0579 [ 1540.924096][T32146] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1540.930958][T32146] RSP: 002b:00000000f5d9757c EFLAGS: 00000292 ORIG_RAX: 00000000000000c0 [ 1540.934887][T32146] RAX: ffffffffffffffda RBX: 0000000020ffe000 RCX: 0000000000001000 [ 1540.939677][T32146] RDX: 0000000000000000 RSI: 0000000000000012 RDI: 0000000000000005 [ 1540.940972][T32148] FAULT_INJECTION: forcing a failure. [ 1540.940972][T32148] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1540.944122][T32146] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1540.953721][T32146] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1540.957979][T32146] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1540.962836][T32146] [ 1540.970040][T32148] CPU: 2 PID: 32148 Comm: syz.1.8032 Not tainted 6.10.0-syzkaller-00017-g5e0497553643 #0 [ 1540.974102][T32148] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1540.978506][T32148] Call Trace: [ 1540.980028][T32148] [ 1540.981223][T32148] dump_stack_lvl+0x16c/0x1f0 [ 1540.983035][T32148] should_fail_ex+0x497/0x5b0 [ 1540.984977][T32148] _copy_from_iter+0x27a/0xfb0 [ 1540.986828][T32148] ? _copy_from_iter+0x149/0xfb0 [ 1540.988725][T32148] ? __pfx__copy_from_iter+0x10/0x10 [ 1540.990758][T32148] ? sock_alloc_send_pskb+0x750/0x980 [ 1540.992718][T32148] ? __pfx__copy_from_iter+0x10/0x10 [ 1540.994831][T32148] copy_page_from_iter+0xa5/0x120 [ 1540.997059][T32148] skb_copy_datagram_from_iter+0x41d/0x6c0 [ 1540.999457][T32148] tun_get_user+0x197c/0x3c20 [ 1541.001526][T32148] ? __pfx_tun_get_user+0x10/0x10 [ 1541.003821][T32148] ? find_held_lock+0x2d/0x110 [ 1541.005999][T32148] ? __pfx_lock_release+0x10/0x10 [ 1541.008403][T32148] tun_chr_write_iter+0xe8/0x210 [ 1541.010533][T32148] vfs_write+0x6b6/0x1140 [ 1541.012433][T32148] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 1541.014713][T32148] ? __pfx_vfs_write+0x10/0x10 [ 1541.016679][T32148] ? __fget_files+0x256/0x400 [ 1541.018619][T32148] ? __fget_light+0x173/0x210 [ 1541.020688][T32148] ksys_write+0x12f/0x260 [ 1541.022640][T32148] ? __pfx_ksys_write+0x10/0x10 [ 1541.024757][T32148] __do_fast_syscall_32+0x73/0x120 [ 1541.026875][T32148] do_fast_syscall_32+0x32/0x80 [ 1541.028947][T32148] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1541.031719][T32148] RIP: 0023:0xf7472579 [ 1541.033597][T32148] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1541.041603][T32148] RSP: 002b:00000000f5d8a57c EFLAGS: 00000292 ORIG_RAX: 0000000000000004 [ 1541.044751][T32148] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000200 [ 1541.048009][T32148] RDX: 000000000000ffdd RSI: 0000000000000000 RDI: 0000000000000000 [ 1541.051163][T32148] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1541.054082][T32148] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1541.057065][T32148] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1541.060383][T32148] [ 1541.306765][T32150] netlink: 12 bytes leftover after parsing attributes in process `syz.3.8033'. [ 1541.400722][ T39] audit: type=1326 audit(2000000007.530:470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32153 comm="syz.2.8035" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf74a0579 code=0x7ffc0000 [ 1541.432883][ T39] audit: type=1326 audit(2000000007.530:471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32153 comm="syz.2.8035" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf74a0579 code=0x7ffc0000 [ 1541.454360][ T39] audit: type=1326 audit(2000000007.540:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32153 comm="syz.2.8035" exe="/syz-executor" sig=0 arch=40000003 syscall=172 compat=1 ip=0xf74a0579 code=0x7ffc0000 [ 1541.475270][ T39] audit: type=1326 audit(2000000007.540:473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32153 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf74a0579 code=0x7ffc0000 [ 1541.490882][ T39] audit: type=1326 audit(2000000007.540:474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32153 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf74a0579 code=0x7ffc0000 [ 1541.504952][ T39] audit: type=1326 audit(2000000007.570:475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32153 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/syz-executor" sig=0 arch=40000003 syscall=172 compat=1 ip=0xf74a0579 code=0x7ffc0000 [ 1541.520626][ T39] audit: type=1326 audit(2000000007.570:476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32153 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf74a0579 code=0x7ffc0000 [ 1541.534894][ T39] audit: type=1326 audit(2000000007.570:477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32153 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf74a0579 code=0x7ffc0000 [ 1541.556731][ T39] audit: type=1326 audit(2000000007.590:478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32153 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf74a0579 code=0x7ffc0000 [ 1541.627420][T32168] netlink: 40 bytes leftover after parsing attributes in process `syz.0.8038'. [ 1541.693945][T32160] tc_dump_action: action bad kind [ 1541.830826][T32174] bridge0: entered promiscuous mode [ 1541.838633][T32173] bridge0: left promiscuous mode [ 1542.123471][T32178] netlink: 20 bytes leftover after parsing attributes in process `syz.0.8041'. [ 1542.130420][T32178] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1542.138213][T32178] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1542.144675][T32178] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1542.149160][T32178] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1542.167400][T32178] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1542.185629][T32178] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1542.306663][T32180] ecryptfs_parse_options: eCryptfs: unrecognized option [&@] [ 1542.309681][T32180] ecryptfs_parse_options: eCryptfs: unrecognized option [s] [ 1542.334805][T32180] ecryptfs_parse_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README [ 1542.342628][T32180] Error parsing options; rc = [-22] [ 1543.221613][T32208] FAULT_INJECTION: forcing a failure. [ 1543.221613][T32208] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1543.227414][T32208] CPU: 3 PID: 32208 Comm: syz.0.8051 Not tainted 6.10.0-syzkaller-00017-g5e0497553643 #0 [ 1543.233048][T32208] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1543.237883][T32208] Call Trace: [ 1543.239317][T32208] [ 1543.240856][T32208] dump_stack_lvl+0x16c/0x1f0 [ 1543.243564][T32208] should_fail_ex+0x497/0x5b0 [ 1543.245787][T32208] _copy_from_user+0x30/0xf0 [ 1543.247904][T32208] do_compat_sigaltstack+0xf7/0x2f0 [ 1543.250246][T32208] ? __pfx_do_compat_sigaltstack+0x10/0x10 [ 1543.253229][T32208] ? ia32_restore_sigcontext+0x416/0x5d0 [ 1543.255757][T32208] ? __pfx_ia32_restore_sigcontext+0x10/0x10 [ 1543.258281][T32208] ? _raw_spin_unlock_irq+0x23/0x50 [ 1543.260734][T32208] ? lockdep_hardirqs_on+0x7c/0x110 [ 1543.263127][T32208] compat_restore_altstack+0x17/0x40 [ 1543.265725][T32208] __do_compat_sys_rt_sigreturn+0x18c/0x1f0 [ 1543.268704][T32208] ? __pfx___do_compat_sys_rt_sigreturn+0x10/0x10 [ 1543.271525][T32208] do_int80_emulation+0x104/0x200 [ 1543.273806][T32208] asm_int80_emulation+0x1a/0x20 [ 1543.275561][T32208] RIP: 0023:0xf73f4577 [ 1543.277293][T32208] Code: 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 80 5d 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 [ 1543.287055][T32208] RSP: 002b:00000000f5d0c57c EFLAGS: 00000292 [ 1543.290294][T32208] RAX: 0000000000000139 RBX: 0000000000000007 RCX: 0000000000000000 [ 1543.293912][T32208] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000f3a [ 1543.297276][T32208] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1543.300460][T32208] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1543.304288][T32208] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1543.307639][T32208] [ 1543.569609][T32220] ecryptfs_parse_options: eCryptfs: unrecognized option [&@] [ 1543.579597][T32220] ecryptfs_parse_options: eCryptfs: unrecognized option [s] [ 1543.589722][T32220] ecryptfs_parse_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README [ 1543.599845][T32220] Error parsing options; rc = [-22] [ 1543.760299][T32226] netlink: 20 bytes leftover after parsing attributes in process `syz.1.8057'. [ 1543.813624][T32226] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1543.819386][T32226] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1543.830027][T32226] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1543.840588][T32226] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1543.846431][T32226] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1543.852479][T32226] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1543.894755][T32228] netlink: 12 bytes leftover after parsing attributes in process `syz.2.8058'. [ 1544.093700][T32228] netlink: 'syz.2.8058': attribute type 1 has an invalid length. [ 1544.097154][T32228] netlink: 168864 bytes leftover after parsing attributes in process `syz.2.8058'. [ 1544.160084][ T4639] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0 [ 1544.165414][ T4639] Bluetooth: hci2: Injecting HCI hardware error event [ 1544.172778][ T4639] Bluetooth: hci2: hardware error 0x00 [ 1544.447148][T26815] Bluetooth: hci2: unexpected event for opcode 0x202a [ 1544.864539][T32248] FAULT_INJECTION: forcing a failure. [ 1544.864539][T32248] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1544.873774][T32248] CPU: 0 PID: 32248 Comm: syz.3.8066 Not tainted 6.10.0-syzkaller-00017-g5e0497553643 #0 [ 1544.878169][T32248] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1544.883641][T32248] Call Trace: [ 1544.885167][T32248] [ 1544.886381][T32248] dump_stack_lvl+0x16c/0x1f0 [ 1544.889078][T32248] should_fail_ex+0x497/0x5b0 [ 1544.891530][T32248] _copy_to_user+0x30/0xc0 [ 1544.893535][T32248] simple_read_from_buffer+0xd0/0x160 [ 1544.895920][T32248] proc_fail_nth_read+0x1b0/0x290 [ 1544.898287][T32248] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1544.900710][T32248] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1544.903063][T32248] vfs_read+0x1d4/0xbd0 [ 1544.904845][T32248] ? __fdget_pos+0xeb/0x180 [ 1544.906809][T32248] ? __pfx_vfs_read+0x10/0x10 [ 1544.909165][T32248] ? __pfx___mutex_lock+0x10/0x10 [ 1544.911492][T32248] ? __fget_files+0x256/0x400 [ 1544.913584][T32248] ksys_read+0x12f/0x260 [ 1544.915519][T32248] ? __pfx_ksys_read+0x10/0x10 [ 1544.917640][T32248] __do_fast_syscall_32+0x73/0x120 [ 1544.919888][T32248] do_fast_syscall_32+0x32/0x80 [ 1544.921897][T32248] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1544.924930][T32248] RIP: 0023:0xf73ae579 [ 1544.926713][T32248] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1544.935659][T32248] RSP: 002b:00000000f5cc65b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 1544.941030][T32248] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00000000f5cc6630 [ 1544.945672][T32248] RDX: 000000000000000f RSI: 00000000f7398ff4 RDI: 0000000000000000 [ 1544.951317][T32248] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 1544.954891][T32248] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000 [ 1544.958343][T32248] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1544.961696][T32248] [ 1545.213820][T32265] binder: BC_ACQUIRE_RESULT not supported [ 1545.217745][T32265] binder: 32264:32265 ioctl c0306201 20000480 returned -22 [ 1545.861407][T32273] netlink: 20 bytes leftover after parsing attributes in process `syz.2.8073'. [ 1545.907138][T32273] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1545.944835][T32273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1545.949036][T32273] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1545.990069][T32273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1546.023983][T32273] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1546.057136][T32273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1546.321784][ T4639] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 1546.685045][T32282] overlayfs: option "index=on" is useless in a non-upper mount, ignore [ 1546.700744][T32282] overlayfs: missing 'lowerdir' [ 1546.926247][T32286] netlink: 20 bytes leftover after parsing attributes in process `syz.3.8079'. [ 1546.935162][T32286] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1546.960175][T32286] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1546.986404][T32286] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1546.997301][T32286] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1547.017061][T32286] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1547.024467][T32286] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1547.284762][T32296] netlink: 'syz.0.8083': attribute type 29 has an invalid length. [ 1547.288081][T32296] netlink: 'syz.0.8083': attribute type 29 has an invalid length. [ 1547.555179][T32307] netlink: 20 bytes leftover after parsing attributes in process `syz.2.8086'. [ 1547.625080][T32308] bridge_slave_1: left allmulticast mode [ 1547.627482][T32308] bridge_slave_1: left promiscuous mode [ 1547.643344][T32308] bridge0: port 2(bridge_slave_1) entered disabled state [ 1547.980157][T32314] tc_dump_action: action bad kind [ 1548.528656][T32322] tc_dump_action: action bad kind [ 1550.837151][T32369] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1550.845642][T32369] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1551.363490][T32377] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8104'. [ 1551.444633][ T1351] ieee802154 phy1 wpan1: encryption failed: -22 [ 1552.348584][T32390] 9pnet_fd: Insufficient options for proto=fd [ 1553.310387][T32419] tc_dump_action: action bad kind [ 1554.957210][T32439] 9pnet_fd: Insufficient options for proto=fd [ 1557.081611][T32481] autofs4:pid:32481:check_dev_ioctl_version: ioctl control interface version mismatch: kernel(1.1), user(2.1), cmd(0xc018937e) [ 1557.087448][T32481] autofs4:pid:32481:validate_dev_ioctl: invalid device control module version supplied for cmd(0xc018937e) [ 1557.279432][T32487] tc_dump_action: action bad kind [ 1557.544386][T32497] 9pnet_fd: Insufficient options for proto=fd [ 1557.610681][T32501] input: syz0 as /devices/virtual/input/input51 [ 1558.052124][T32513] netlink: 'syz.0.8140': attribute type 3 has an invalid length. [ 1558.055883][T32513] netlink: 48 bytes leftover after parsing attributes in process `syz.0.8140'. [ 1558.080263][T32513] netlink: 'syz.0.8140': attribute type 3 has an invalid length. [ 1558.083795][T32513] netlink: 48 bytes leftover after parsing attributes in process `syz.0.8140'. [ 1558.148591][T32515] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1558.163751][T32515] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1558.654264][T32528] netlink: 12 bytes leftover after parsing attributes in process `syz.2.8147'. [ 1558.914495][T32535] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1558.918788][T32535] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1559.589373][T32545] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8152'. [ 1559.817833][T32552] netlink: 12 bytes leftover after parsing attributes in process `syz.1.8156'. [ 1560.007667][T32560] netlink: 12 bytes leftover after parsing attributes in process `syz.0.8157'. [ 1560.365390][T32585] netlink: 24 bytes leftover after parsing attributes in process `syz.0.8163'. [ 1560.430140][ T5250] usb 7-1: new high-speed USB device number 6 using dummy_hcd [ 1560.611838][T32595] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8166'. [ 1560.622286][ T5250] usb 7-1: config index 0 descriptor too short (expected 58733, got 36) [ 1560.625625][ T5250] usb 7-1: config 39 has too many interfaces: 126, using maximum allowed: 32 [ 1560.629051][ T5250] usb 7-1: config 39 has an invalid descriptor of length 0, skipping remainder of the config [ 1560.639909][ T5250] usb 7-1: config 39 has 0 interfaces, different from the descriptor's value: 126 [ 1560.644486][ T5250] usb 7-1: New USB device found, idVendor=1e7d, idProduct=2db4, bcdDevice= 0.00 [ 1560.647759][ T5250] usb 7-1: New USB device strings: Mfr=0, Product=9, SerialNumber=0 [ 1560.651177][ T5250] usb 7-1: Product: syz [ 1560.888666][T32567] netlink: 32 bytes leftover after parsing attributes in process `syz.2.8159'. [ 1560.904917][ T57] usb 7-1: USB disconnect, device number 6 [ 1561.584619][T32602] A link change request failed with some changes committed already. Interface wg2 may have been left with an inconsistent configuration, please check. [ 1561.645985][T32607] netlink: 12 bytes leftover after parsing attributes in process `syz.2.8169'. [ 1562.631628][T32637] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1562.635481][T32637] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1563.042171][T32648] tc_dump_action: action bad kind [ 1563.052158][T32656] netlink: 'syz.0.8183': attribute type 5 has an invalid length. [ 1563.239982][T32659] FAULT_INJECTION: forcing a failure. [ 1563.239982][T32659] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1563.255576][T32659] CPU: 0 PID: 32659 Comm: syz.0.8184 Not tainted 6.10.0-syzkaller-00017-g5e0497553643 #0 [ 1563.259367][T32659] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1563.263892][T32659] Call Trace: [ 1563.265299][T32659] [ 1563.266342][T32659] dump_stack_lvl+0x16c/0x1f0 [ 1563.268011][T32659] should_fail_ex+0x497/0x5b0 [ 1563.269911][T32659] _copy_to_user+0x30/0xc0 [ 1563.271827][T32659] simple_read_from_buffer+0xd0/0x160 [ 1563.274220][T32659] proc_fail_nth_read+0x1b0/0x290 [ 1563.276484][T32659] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1563.278943][T32659] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1563.281421][T32659] vfs_read+0x1d4/0xbd0 [ 1563.283299][T32659] ? __pfx_vfs_read+0x10/0x10 [ 1563.285390][T32659] ? do_compat_pselect+0x166/0x240 [ 1563.287668][T32659] ? __fget_light+0x173/0x210 [ 1563.289597][T32659] ksys_read+0x12f/0x260 [ 1563.291225][T32659] ? __pfx_ksys_read+0x10/0x10 [ 1563.293460][T32659] __do_fast_syscall_32+0x73/0x120 [ 1563.295790][T32659] do_fast_syscall_32+0x32/0x80 [ 1563.297963][T32659] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1563.300738][T32659] RIP: 0023:0xf73f4579 [ 1563.302656][T32659] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1563.310787][T32659] RSP: 002b:00000000f5d0c5b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 1563.313367][T32659] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00000000f5d0c630 [ 1563.316121][T32659] RDX: 000000000000000f RSI: 00000000f73deff4 RDI: 0000000000000000 [ 1563.318992][T32659] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 1563.322163][T32659] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000 [ 1563.325427][T32659] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1563.328461][T32659] [ 1563.329669][ C0] vkms_vblank_simulate: vblank timer overrun [ 1564.026882][T32677] netlink: 'syz.2.8190': attribute type 10 has an invalid length. [ 1564.290244][T29159] usb 5-1: new high-speed USB device number 48 using dummy_hcd [ 1564.422202][T32687] __nla_validate_parse: 3 callbacks suppressed [ 1564.422258][T32687] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8194'. [ 1564.481860][T29159] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 1564.486823][T29159] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 1564.494994][T29159] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 1564.501525][T29159] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1564.511772][T29159] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1564.515767][T29159] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1564.540484][T29159] usb 5-1: config 0 descriptor?? [ 1565.534458][T32698] netlink: 12 bytes leftover after parsing attributes in process `syz.1.8197'. [ 1566.425199][T19546] Bluetooth: Short BCSP packet [ 1566.487675][T32704] 9pnet_fd: Insufficient options for proto=fd [ 1566.583864][T32708] input: syz0 as /devices/virtual/input/input52 [ 1567.281116][T29159] usbhid 5-1:0.0: can't add hid device: -71 [ 1567.291145][T29159] usbhid 5-1:0.0: probe with driver usbhid failed with error -71 [ 1567.298228][T29159] usb 5-1: USB disconnect, device number 48 [ 1567.368457][T32714] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8202'. [ 1567.398275][T32714] netlink: 248 bytes leftover after parsing attributes in process `syz.2.8202'. [ 1567.796643][T32727] netlink: 12 bytes leftover after parsing attributes in process `syz.0.8206'. [ 1568.475829][T26815] Bluetooth: hci4: command 0x1003 tx timeout [ 1568.482312][ T4639] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 1568.621284][T32740] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1568.625256][T32740] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1569.030055][T15161] usb 7-1: new high-speed USB device number 7 using dummy_hcd [ 1569.171851][ C1] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies. [ 1569.234632][T15161] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 1569.239225][T15161] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 1569.244629][T15161] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 1569.258512][T15161] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1569.272025][T15161] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1569.275520][T15161] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1569.298703][T15161] usb 7-1: config 0 descriptor?? [ 1570.182012][T32765] netlink: 12 bytes leftover after parsing attributes in process `syz.0.8215'. [ 1571.074239][ T311] FAULT_INJECTION: forcing a failure. [ 1571.074239][ T311] name failslab, interval 1, probability 0, space 0, times 0 [ 1571.086036][ T311] CPU: 0 PID: 311 Comm: syz.3.8219 Not tainted 6.10.0-syzkaller-00017-g5e0497553643 #0 [ 1571.089846][ T311] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1571.094235][ T311] Call Trace: [ 1571.095577][ T311] [ 1571.096740][ T311] dump_stack_lvl+0x16c/0x1f0 [ 1571.098594][ T311] should_fail_ex+0x497/0x5b0 [ 1571.100444][ T311] should_failslab+0x9/0x20 [ 1571.102262][ T311] kmalloc_trace_noprof+0x6b/0x310 [ 1571.104276][ T311] ? rtnl_newlink+0x49/0xa0 [ 1571.106064][ T311] rtnl_newlink+0x49/0xa0 [ 1571.107761][ T311] ? __pfx_rtnl_newlink+0x10/0x10 [ 1571.109718][ T311] rtnetlink_rcv_msg+0x3c7/0xea0 [ 1571.111637][ T311] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 1571.113753][ T311] ? __dev_queue_xmit+0x87e/0x4130 [ 1571.115791][ T311] netlink_rcv_skb+0x165/0x410 [ 1571.117652][ T311] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 1571.119824][ T311] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1571.121921][ T311] ? netlink_deliver_tap+0x1ae/0xcf0 [ 1571.124001][ T311] netlink_unicast+0x542/0x820 [ 1571.125771][ T311] ? __pfx_netlink_unicast+0x10/0x10 [ 1571.127572][ T311] ? __phys_addr_symbol+0x30/0x80 [ 1571.129285][ T311] ? __check_object_size+0x48e/0x720 [ 1571.131326][ T311] netlink_sendmsg+0x8b8/0xd70 [ 1571.133198][ T311] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1571.135236][ T311] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 1571.137318][ T311] ____sys_sendmsg+0x9b4/0xb50 [ 1571.139213][ T311] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1571.141283][ T311] ? get_compat_msghdr+0x11b/0x170 [ 1571.143303][ T311] ? __pfx___lock_acquire+0x10/0x10 [ 1571.145460][ T311] ___sys_sendmsg+0x135/0x1e0 [ 1571.147310][ T311] ? __pfx____sys_sendmsg+0x10/0x10 [ 1571.149472][ T311] ? ksys_write+0x21c/0x260 [ 1571.151298][ T311] ? __fget_light+0x173/0x210 [ 1571.153157][ T311] __sys_sendmsg+0x117/0x1f0 [ 1571.154984][ T311] ? __pfx___sys_sendmsg+0x10/0x10 [ 1571.156933][ T311] __do_fast_syscall_32+0x73/0x120 [ 1571.158909][ T311] do_fast_syscall_32+0x32/0x80 [ 1571.160857][ T311] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1571.163318][ T311] RIP: 0023:0xf73ae579 [ 1571.164922][ T311] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1571.172343][ T311] RSP: 002b:00000000f5cc657c EFLAGS: 00000292 ORIG_RAX: 0000000000000172 [ 1571.175560][ T311] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000300 [ 1571.178622][ T311] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1571.181712][ T311] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1571.184592][ T311] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1571.187263][ T311] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1571.194162][ T311] [ 1571.195433][ C0] vkms_vblank_simulate: vblank timer overrun [ 1571.461394][ T316] bridge0: port 2(bridge_slave_1) entered disabled state [ 1571.465103][ T316] bridge0: port 1(bridge_slave_0) entered disabled state [ 1571.469003][ T316] bridge0: entered promiscuous mode [ 1571.474441][ T316] bridge0: entered allmulticast mode [ 1571.544081][ T316] netlink: 'syz.3.8220': attribute type 41 has an invalid length. [ 1571.549001][ T316] netlink: 176 bytes leftover after parsing attributes in process `syz.3.8220'. [ 1571.902415][ T321] overlayfs: conflicting lowerdir path [ 1571.991101][T15161] usbhid 7-1:0.0: can't add hid device: -71 [ 1572.019347][T15161] usbhid 7-1:0.0: probe with driver usbhid failed with error -71 [ 1572.026253][T15161] usb 7-1: USB disconnect, device number 7 [ 1572.872193][ T348] openvswitch: netlink: nsh attribute has 4 unknown bytes. [ 1573.137166][ T353] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1573.150069][ T353] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1573.173048][ C1] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies. [ 1573.409705][ T358] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8232'. [ 1573.979241][ T10] usb 7-1: new high-speed USB device number 8 using dummy_hcd [ 1574.206666][ T10] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 1574.241677][ T10] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 1574.246214][ T10] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 1574.259686][ T10] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1574.265837][ T10] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1574.270163][ T10] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1574.276903][ T10] usb 7-1: config 0 descriptor?? [ 1576.768831][ T402] xt_TCPMSS: Only works on TCP SYN packets [ 1576.960046][ T405] netlink: 'syz.1.8244': attribute type 14 has an invalid length. [ 1577.366582][ T10] usbhid 7-1:0.0: can't add hid device: -71 [ 1577.375443][ T10] usbhid 7-1:0.0: probe with driver usbhid failed with error -71 [ 1577.387471][ T10] usb 7-1: USB disconnect, device number 8 [ 1577.504743][ T414] netlink: 212404 bytes leftover after parsing attributes in process `syz.2.8246'. [ 1577.983630][ T427] netlink: 20 bytes leftover after parsing attributes in process `syz.2.8250'. [ 1577.989467][ T427] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1577.996709][ T427] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1578.001798][ T427] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1578.007145][ T427] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1578.012455][ T427] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1578.016760][ T427] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1578.023927][ T426] netlink: 28 bytes leftover after parsing attributes in process `syz.1.8251'. [ 1578.097205][ T429] netlink: 36 bytes leftover after parsing attributes in process `syz.1.8251'. [ 1580.818443][ T456] netlink: 'syz.0.8259': attribute type 14 has an invalid length. [ 1583.049451][ T470] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6) [ 1583.052280][ T470] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 1583.062727][ T470] vhci_hcd vhci_hcd.0: Device attached [ 1583.295591][ T10] vhci_hcd: vhci_device speed not set [ 1583.370039][ T10] usb 17-1: new full-speed USB device number 3 using vhci_hcd [ 1583.385970][ T471] vhci_hcd: connection reset by peer [ 1583.403674][T19546] vhci_hcd: stop threads [ 1583.405685][T19546] vhci_hcd: release socket [ 1583.408017][T19546] vhci_hcd: disconnect device [ 1586.418768][ T496] FAULT_INJECTION: forcing a failure. [ 1586.418768][ T496] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1586.444385][ T496] CPU: 3 PID: 496 Comm: syz.3.8271 Not tainted 6.10.0-syzkaller-00017-g5e0497553643 #0 [ 1586.448480][ T496] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1586.453302][ T496] Call Trace: [ 1586.454751][ T496] [ 1586.456042][ T496] dump_stack_lvl+0x16c/0x1f0 [ 1586.458118][ T496] should_fail_ex+0x497/0x5b0 [ 1586.460208][ T496] _copy_to_user+0x30/0xc0 [ 1586.462277][ T496] simple_read_from_buffer+0xd0/0x160 [ 1586.464322][ T496] proc_fail_nth_read+0x1b0/0x290 [ 1586.466404][ T496] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1586.468542][ T496] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1586.470850][ T496] vfs_read+0x1d4/0xbd0 [ 1586.472642][ T496] ? __fdget_pos+0xeb/0x180 [ 1586.474670][ T496] ? __pfx_vfs_read+0x10/0x10 [ 1586.476871][ T496] ? __pfx___mutex_lock+0x10/0x10 [ 1586.478748][ T496] ? __fget_files+0x256/0x400 [ 1586.480884][ T496] ksys_read+0x12f/0x260 [ 1586.482709][ T496] ? __pfx_ksys_read+0x10/0x10 [ 1586.485004][ T496] __do_fast_syscall_32+0x73/0x120 [ 1586.487241][ T496] do_fast_syscall_32+0x32/0x80 [ 1586.489367][ T496] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1586.491953][ T496] RIP: 0023:0xf73ae579 [ 1586.493553][ T496] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1586.501201][ T496] RSP: 002b:00000000f5cc65b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 1586.504791][ T496] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000f5cc6630 [ 1586.508205][ T496] RDX: 000000000000000f RSI: 00000000f7398ff4 RDI: 0000000000000000 [ 1586.511709][ T496] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 1586.515034][ T496] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000 [ 1586.518346][ T496] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1586.521701][ T496] [ 1588.491322][ T10] vhci_hcd: vhci_device speed not set [ 1588.713881][ T530] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 1590.411726][ T558] program syz.0.8290 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1591.577054][ T582] netlink: 20 bytes leftover after parsing attributes in process `syz.3.8298'. [ 1592.808110][ T594] FAULT_INJECTION: forcing a failure. [ 1592.808110][ T594] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1592.815210][ T594] CPU: 0 PID: 594 Comm: syz.3.8302 Not tainted 6.10.0-syzkaller-00017-g5e0497553643 #0 [ 1592.820944][ T594] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1592.826046][ T594] Call Trace: [ 1592.827560][ T594] [ 1592.828906][ T594] dump_stack_lvl+0x16c/0x1f0 [ 1592.831270][ T594] should_fail_ex+0x497/0x5b0 [ 1592.833626][ T594] _copy_to_user+0x30/0xc0 [ 1592.835592][ T594] simple_read_from_buffer+0xd0/0x160 [ 1592.837791][ T594] proc_fail_nth_read+0x1b0/0x290 [ 1592.840629][ T594] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1592.843313][ T594] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1592.845701][ T594] vfs_read+0x1d4/0xbd0 [ 1592.847564][ T594] ? __fdget_pos+0xeb/0x180 [ 1592.849419][ T594] ? __pfx_vfs_read+0x10/0x10 [ 1592.851568][ T594] ? __pfx___mutex_lock+0x10/0x10 [ 1592.853809][ T594] ? __fget_files+0x256/0x400 [ 1592.855942][ T594] ksys_read+0x12f/0x260 [ 1592.857819][ T594] ? __pfx_ksys_read+0x10/0x10 [ 1592.859957][ T594] __do_fast_syscall_32+0x73/0x120 [ 1592.862313][ T594] do_fast_syscall_32+0x32/0x80 [ 1592.864638][ T594] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1592.867597][ T594] RIP: 0023:0xf73ae579 [ 1592.869806][ T594] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1592.879610][ T594] RSP: 002b:00000000f5cc65b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 1592.883655][ T594] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5cc6630 [ 1592.887978][ T594] RDX: 000000000000000f RSI: 00000000f7398ff4 RDI: 0000000000000000 [ 1592.892185][ T594] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 1592.896171][ T594] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000 [ 1592.900374][ T594] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1592.904567][ T594] [ 1593.261784][ T603] netlink: 12 bytes leftover after parsing attributes in process `syz.2.8306'. [ 1593.648830][ T615] netlink: 28 bytes leftover after parsing attributes in process `syz.2.8309'. [ 1593.725881][ T615] netlink: 76 bytes leftover after parsing attributes in process `syz.2.8309'. [ 1593.818294][ T618] netlink: 20 bytes leftover after parsing attributes in process `syz.3.8310'. [ 1593.823477][ T618] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1593.827593][ T618] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1593.833120][ T618] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1593.837718][ T618] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1593.842200][ T618] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1593.846751][ T618] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1593.939168][ T39] kauditd_printk_skb: 14 callbacks suppressed [ 1593.939184][ T39] audit: type=1326 audit(2000000060.070:493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=619 comm="syz.2.8311" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf74a0579 code=0x0 [ 1594.850076][ T631] netlink: 20 bytes leftover after parsing attributes in process `syz.1.8313'. [ 1594.854501][ T631] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1594.859308][ T631] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1594.868873][ T631] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1594.874125][ T631] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1594.878367][ T631] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1594.891086][ T631] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1595.149629][ T639] netlink: 12 bytes leftover after parsing attributes in process `syz.2.8319'. [ 1596.280075][ T658] netlink: 20 bytes leftover after parsing attributes in process `syz.1.8324'. [ 1596.301634][ T658] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1596.305740][ T658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1596.309563][ T658] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1596.316330][ T660] netlink: 28 bytes leftover after parsing attributes in process `syz.3.8325'. [ 1596.338751][ T658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1596.343208][ T658] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1596.347604][ T658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1596.367055][ T660] netlink: 76 bytes leftover after parsing attributes in process `syz.3.8325'. [ 1596.605420][ T662] FAULT_INJECTION: forcing a failure. [ 1596.605420][ T662] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1596.614120][ T662] CPU: 1 PID: 662 Comm: syz.3.8326 Not tainted 6.10.0-syzkaller-00017-g5e0497553643 #0 [ 1596.619512][ T662] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1596.624375][ T662] Call Trace: [ 1596.625862][ T662] [ 1596.627175][ T662] dump_stack_lvl+0x16c/0x1f0 [ 1596.629237][ T662] should_fail_ex+0x497/0x5b0 [ 1596.631340][ T662] _copy_from_user+0x30/0xf0 [ 1596.633366][ T662] snd_pcm_oss_write2+0x1c6/0x3f0 [ 1596.635553][ T662] ? __pfx_snd_pcm_oss_write2+0x10/0x10 [ 1596.637907][ T662] ? snd_pcm_kernel_ioctl+0x257/0x2d0 [ 1596.640255][ T662] ? snd_pcm_oss_prepare+0x11e/0x220 [ 1596.642556][ T662] snd_pcm_oss_write+0x733/0xa10 [ 1596.644709][ T662] ? rw_verify_area+0xd0/0x6c0 [ 1596.646624][ T662] ? __pfx_snd_pcm_oss_write+0x10/0x10 [ 1596.649048][ T662] vfs_write+0x29a/0x1140 [ 1596.651021][ T662] ? __pfx_vfs_write+0x10/0x10 [ 1596.653664][ T662] ? __fget_files+0x256/0x400 [ 1596.655896][ T662] ? __fget_light+0x173/0x210 [ 1596.657974][ T662] ksys_write+0x12f/0x260 [ 1596.659894][ T662] ? __pfx_ksys_write+0x10/0x10 [ 1596.661992][ T662] __do_fast_syscall_32+0x73/0x120 [ 1596.664097][ T662] do_fast_syscall_32+0x32/0x80 [ 1596.666273][ T662] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1596.668950][ T662] RIP: 0023:0xf73ae579 [ 1596.670681][ T662] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1596.679318][ T662] RSP: 002b:00000000f5cc657c EFLAGS: 00000292 ORIG_RAX: 0000000000000004 [ 1596.683031][ T662] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200012c0 [ 1596.686990][ T662] RDX: 0000000000004000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1596.690481][ T662] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1596.693772][ T662] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1596.697295][ T662] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1596.700463][ T662] [ 1597.303126][ T665] FAULT_INJECTION: forcing a failure. [ 1597.303126][ T665] name failslab, interval 1, probability 0, space 0, times 0 [ 1597.308645][ T665] CPU: 3 PID: 665 Comm: syz.1.8327 Not tainted 6.10.0-syzkaller-00017-g5e0497553643 #0 [ 1597.314015][ T665] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1597.318730][ T665] Call Trace: [ 1597.320302][ T665] [ 1597.321777][ T665] dump_stack_lvl+0x16c/0x1f0 [ 1597.324124][ T665] should_fail_ex+0x497/0x5b0 [ 1597.326065][ T665] should_failslab+0x9/0x20 [ 1597.327868][ T665] __kmalloc_noprof+0xcf/0x420 [ 1597.329493][ T665] ? __pfx___mutex_trylock_common+0x10/0x10 [ 1597.331762][ T665] genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 1597.334835][ T665] genl_family_rcv_msg_doit+0xbf/0x2f0 [ 1597.337266][ T665] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 1597.339769][ T665] ? security_capable+0x98/0xd0 [ 1597.341808][ T665] genl_rcv_msg+0x565/0x800 [ 1597.343581][ T665] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1597.345756][ T665] ? __pfx_nl802154_pre_doit+0x10/0x10 [ 1597.348064][ T665] ? __pfx_nl802154_add_llsec_devkey+0x10/0x10 [ 1597.350472][ T665] ? __pfx_nl802154_post_doit+0x10/0x10 [ 1597.352985][ T665] ? __pfx___lock_acquire+0x10/0x10 [ 1597.355002][ T665] netlink_rcv_skb+0x165/0x410 [ 1597.356739][ T665] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1597.358619][ T665] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1597.360703][ T665] ? down_read+0xc9/0x330 [ 1597.362341][ T665] ? __pfx_down_read+0x10/0x10 [ 1597.364147][ T665] ? netlink_deliver_tap+0x1ae/0xcf0 [ 1597.366131][ T665] genl_rcv+0x28/0x40 [ 1597.367869][ T665] netlink_unicast+0x542/0x820 [ 1597.369989][ T665] ? __pfx_netlink_unicast+0x10/0x10 [ 1597.372239][ T665] ? __phys_addr_symbol+0x30/0x80 [ 1597.374177][ T665] ? __check_object_size+0x48e/0x720 [ 1597.376270][ T665] netlink_sendmsg+0x8b8/0xd70 [ 1597.378279][ T665] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1597.380567][ T665] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 1597.382624][ T665] ____sys_sendmsg+0x9b4/0xb50 [ 1597.384369][ T665] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1597.386365][ T665] ? get_compat_msghdr+0x11b/0x170 [ 1597.388359][ T665] ? __pfx___lock_acquire+0x10/0x10 [ 1597.390315][ T665] ___sys_sendmsg+0x135/0x1e0 [ 1597.392249][ T665] ? __pfx____sys_sendmsg+0x10/0x10 [ 1597.394630][ T665] ? ksys_write+0x21c/0x260 [ 1597.396534][ T665] ? __fget_light+0x173/0x210 [ 1597.398569][ T665] __sys_sendmsg+0x117/0x1f0 [ 1597.400572][ T665] ? __pfx___sys_sendmsg+0x10/0x10 [ 1597.402765][ T665] __do_fast_syscall_32+0x73/0x120 [ 1597.404940][ T665] do_fast_syscall_32+0x32/0x80 [ 1597.407028][ T665] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1597.409712][ T665] RIP: 0023:0xf7472579 [ 1597.411551][ T665] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1597.419538][ T665] RSP: 002b:00000000f5d8a57c EFLAGS: 00000292 ORIG_RAX: 0000000000000172 [ 1597.423311][ T665] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000020000980 [ 1597.426608][ T665] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1597.429969][ T665] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1597.433510][ T665] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1597.437269][ T665] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1597.441288][ T665] [ 1601.052881][ T686] netlink: 84 bytes leftover after parsing attributes in process `syz.0.8335'. [ 1601.388181][ T700] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1601.398915][ T700] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1601.438449][T12593] Bluetooth: hci4: Frame reassembly failed (-84) [ 1601.461399][ T39] audit: type=1326 audit(2000000067.600:494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=701 comm="syz.0.8339" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf73f4579 code=0x0 [ 1601.479723][ T39] audit: type=1326 audit(2000000067.610:495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=701 comm="syz.0.8339" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf73f4579 code=0x0 [ 1602.097867][ T709] netlink: 28 bytes leftover after parsing attributes in process `syz.1.8341'. [ 1602.127852][ T709] netlink: 76 bytes leftover after parsing attributes in process `syz.1.8341'. [ 1602.344134][ T717] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1602.355315][ T717] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1602.536819][ T722] netlink: 12 bytes leftover after parsing attributes in process `syz.2.8345'. [ 1603.209305][ T736] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1603.226975][ T736] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1603.520043][ T4639] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 1603.666636][ T743] netlink: 'syz.0.8352': attribute type 10 has an invalid length. [ 1603.704087][ T743] bond0: (slave netdevsim0): Enslaving as an active interface with an up link [ 1603.802561][ T745] < [ 1603.911187][ T751] netlink: 28 bytes leftover after parsing attributes in process `syz.2.8354'. [ 1603.918645][ T751] netlink: 76 bytes leftover after parsing attributes in process `syz.2.8354'. [ 1603.930557][ T749] netlink: 12 bytes leftover after parsing attributes in process `syz.1.8355'. [ 1604.185338][ T758] netlink: 64 bytes leftover after parsing attributes in process `syz.1.8357'. [ 1604.279436][ T760] netlink: 12 bytes leftover after parsing attributes in process `syz.1.8358'. [ 1604.806254][ T765] tc_dump_action: action bad kind [ 1604.928414][ T782] netlink: 12 bytes leftover after parsing attributes in process `syz.0.8365'. [ 1604.991862][ T785] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1604.996647][ T785] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1605.007054][ T785] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1605.012333][ T785] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1605.016993][ T785] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1605.022302][ T785] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1605.209969][T19566] usb 7-1: new high-speed USB device number 9 using dummy_hcd [ 1605.400033][ T788] < [ 1605.416729][T19566] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11 [ 1605.422581][T19566] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024 [ 1605.426732][T19566] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1605.449301][T19566] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1605.453058][T19566] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1605.457857][T19566] usb 7-1: config 0 descriptor?? [ 1605.462739][ T783] raw-gadget.2 gadget.2: fail, usb_ep_enable returned -22 [ 1605.912806][T19566] plantronics 0003:047F:FFFF.0018: No inputs registered, leaving [ 1605.920760][T19566] plantronics 0003:047F:FFFF.0018: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0 [ 1606.151991][ T808] __nla_validate_parse: 1 callbacks suppressed [ 1606.152006][ T808] netlink: 48 bytes leftover after parsing attributes in process `syz.0.8372'. [ 1606.159665][ T808] bridge0: port 2(bridge_slave_1) entered disabled state [ 1606.163379][ T808] bridge0: port 1(bridge_slave_0) entered disabled state [ 1606.169191][ T808] bridge0: entered promiscuous mode [ 1606.693863][ T830] tc_dump_action: action bad kind [ 1606.803819][T19505] usb 7-1: USB disconnect, device number 9 [ 1606.951899][ T838] netlink: 20 bytes leftover after parsing attributes in process `syz.2.8379'. [ 1606.957838][ T838] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1606.962928][ T838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1606.967653][ T838] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1606.972850][ T838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1606.977214][ T838] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1606.982255][ T838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1608.676686][ T864] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1608.682859][ T864] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1610.551595][ T879] netlink: 20 bytes leftover after parsing attributes in process `syz.2.8392'. [ 1610.560987][ T879] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1610.565464][ T879] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1610.580221][ T879] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1610.584854][ T879] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1610.604862][ T879] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1610.615129][ T879] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1610.697230][ T881] tc_dump_action: action bad kind [ 1612.883278][ T1351] ieee802154 phy1 wpan1: encryption failed: -22 [ 1613.059099][ T911] netlink: 48 bytes leftover after parsing attributes in process `syz.0.8399'. [ 1613.427367][ T926] netlink: 20 bytes leftover after parsing attributes in process `syz.2.8401'. [ 1613.432003][ T926] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1613.436532][ T926] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1613.440689][ T926] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1613.445138][ T926] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1613.449238][ T926] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1613.453656][ T926] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1614.353101][ T943] netlink: 20 bytes leftover after parsing attributes in process `syz.2.8403'. [ 1614.357933][ T943] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1614.362325][ T943] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1614.365855][ T943] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1614.369563][ T943] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1614.376733][ T943] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1614.381041][ T943] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1614.978042][ T948] tc_dump_action: action bad kind [ 1616.007528][ T960] netlink: 76 bytes leftover after parsing attributes in process `syz.2.8408'. [ 1616.502396][ T974] netlink: 20 bytes leftover after parsing attributes in process `syz.3.8413'. [ 1616.506416][ T974] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1616.516642][ T974] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1616.521231][ T974] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1616.525404][ T974] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1616.530082][ T974] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1616.534605][ T974] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1616.600799][ T57] usb 5-1: new high-speed USB device number 49 using dummy_hcd [ 1616.792143][ T57] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11 [ 1616.802512][ T57] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024 [ 1616.823245][ T57] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1616.831093][ T57] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1616.835150][ T57] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1616.850033][ T57] usb 5-1: config 0 descriptor?? [ 1616.852766][ T968] raw-gadget.2 gadget.0: fail, usb_ep_enable returned -22 [ 1617.105609][ T981] netlink: 'syz.2.8416': attribute type 14 has an invalid length. [ 1617.215273][ T987] tc_dump_action: action bad kind [ 1617.335349][ T57] plantronics 0003:047F:FFFF.0019: No inputs registered, leaving [ 1617.370190][ T57] plantronics 0003:047F:FFFF.0019: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0 [ 1618.243005][ T55] usb 5-1: USB disconnect, device number 49 [ 1618.353577][ T1006] netlink: 'syz.2.8425': attribute type 14 has an invalid length. [ 1618.568739][ T1010] netlink: 20 bytes leftover after parsing attributes in process `syz.3.8423'. [ 1618.577637][ T1010] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1618.582620][ T1010] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1618.586961][ T1010] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1618.594244][ T1010] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1618.598403][ T1010] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1618.615548][ T1010] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1618.669167][ T1013] usb usb8: usbfs: process 1013 (syz.1.8421) did not claim interface 0 before use [ 1618.676546][ T5348] usb 7-1: new high-speed USB device number 10 using dummy_hcd [ 1618.829944][ T57] usb 5-1: new high-speed USB device number 50 using dummy_hcd [ 1618.864333][ T5348] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 1618.874328][ T5348] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 1618.890048][ T5348] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 1618.897560][ T5348] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1618.905398][ T5348] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1618.912707][ T5348] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1618.920526][ T5348] usb 7-1: config 0 descriptor?? [ 1619.021624][ T57] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 1619.026157][ T57] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 1619.040439][ T57] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 1619.044675][ T57] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1619.060206][ T57] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1619.064109][ T57] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1619.080933][ T57] usb 5-1: config 0 descriptor?? [ 1619.407097][ T1022] netlink: 76 bytes leftover after parsing attributes in process `syz.1.8429'. [ 1619.537086][ T1025] program syz.1.8430 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1620.371452][ T1046] tc_dump_action: action bad kind [ 1620.890149][ T1050] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1620.900755][ T1050] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1621.966659][ T1060] tc_dump_action: action bad kind [ 1622.057483][ T5348] usbhid 7-1:0.0: can't add hid device: -71 [ 1622.060445][ T5348] usbhid 7-1:0.0: probe with driver usbhid failed with error -71 [ 1622.073589][ T5348] usb 7-1: USB disconnect, device number 10 [ 1622.303986][ T57] usbhid 5-1:0.0: can't add hid device: -71 [ 1622.306710][ T57] usbhid 5-1:0.0: probe with driver usbhid failed with error -71 [ 1622.339999][ T57] usb 5-1: USB disconnect, device number 50 [ 1622.392855][ T1072] netlink: 76 bytes leftover after parsing attributes in process `syz.0.8438'. [ 1623.258965][ T1092] tc_dump_action: action bad kind [ 1624.414466][ T1107] netlink: 12 bytes leftover after parsing attributes in process `syz.2.8445'. [ 1625.117725][ T1120] netlink: 'syz.2.8449': attribute type 10 has an invalid length. [ 1625.160060][ T1120] bond0: (slave netdevsim0): Enslaving as an active interface with an up link [ 1625.296404][ T1127] netlink: 12 bytes leftover after parsing attributes in process `syz.2.8451'. [ 1626.109461][ T1146] tc_dump_action: action bad kind [ 1626.444621][ T1152] netlink: 12 bytes leftover after parsing attributes in process `syz.3.8458'. [ 1628.285189][ T1165] netlink: 12 bytes leftover after parsing attributes in process `syz.0.8461'. [ 1628.619559][ T1168] netlink: 12 bytes leftover after parsing attributes in process `syz.3.8462'. [ 1629.943194][ T1186] netlink: 'syz.2.8467': attribute type 1 has an invalid length. [ 1629.951170][ T1186] netlink: 'syz.2.8467': attribute type 1 has an invalid length. [ 1629.956783][ T1186] netlink: 'syz.2.8467': attribute type 1 has an invalid length. [ 1629.963190][ T1186] netlink: 'syz.2.8467': attribute type 1 has an invalid length. [ 1629.967126][ T1186] netlink: 'syz.2.8467': attribute type 1 has an invalid length. [ 1629.971063][ T1186] netlink: 'syz.2.8467': attribute type 1 has an invalid length. [ 1629.976146][ T1186] netlink: 'syz.2.8467': attribute type 1 has an invalid length. [ 1629.981306][ T1186] netlink: 'syz.2.8467': attribute type 1 has an invalid length. [ 1629.999117][ T1186] netlink: 'syz.2.8467': attribute type 1 has an invalid length. [ 1630.344190][ T1196] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1630.353772][ T1196] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1630.423732][ T1191] tc_dump_action: action bad kind [ 1632.040931][ T10] usb 7-1: new high-speed USB device number 11 using dummy_hcd [ 1632.244151][ T10] usb 7-1: Using ep0 maxpacket: 8 [ 1632.258011][ T10] usb 7-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 1632.267791][ T10] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 1632.272401][ T10] usb 7-1: New USB device strings: Mfr=1, Product=31, SerialNumber=3 [ 1632.276172][ T10] usb 7-1: Product: syz [ 1632.278156][ T10] usb 7-1: Manufacturer: syz [ 1632.281872][ T10] usb 7-1: SerialNumber: syz [ 1632.539987][ T10] usb 7-1: USB disconnect, device number 11 [ 1633.449983][ T10] usb 7-1: new high-speed USB device number 12 using dummy_hcd [ 1633.641971][ T10] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 1633.646537][ T10] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 1633.664704][ T10] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 1633.671775][ T10] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1633.706681][ T10] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1633.713976][ T10] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1633.733469][ T10] usb 7-1: config 0 descriptor?? [ 1635.618603][ T1272] netlink: 76 bytes leftover after parsing attributes in process `syz.3.8489'. [ 1635.881839][ T1275] debugfs: Directory 'netdev:wlan1' with parent 'phy77' already present! [ 1636.686516][ T1281] FAULT_INJECTION: forcing a failure. [ 1636.686516][ T1281] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1636.712410][ T1281] CPU: 1 PID: 1281 Comm: syz.3.8492 Not tainted 6.10.0-syzkaller-00017-g5e0497553643 #0 [ 1636.716713][ T1281] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1636.722128][ T1281] Call Trace: [ 1636.723958][ T1281] [ 1636.725428][ T1281] dump_stack_lvl+0x16c/0x1f0 [ 1636.727619][ T1281] should_fail_ex+0x497/0x5b0 [ 1636.730090][ T1281] _copy_from_iter+0x27a/0xfb0 [ 1636.732180][ T1281] ? __alloc_skb+0x200/0x380 [ 1636.734691][ T1281] ? __pfx__copy_from_iter+0x10/0x10 [ 1636.736983][ T1281] ? __virt_addr_valid+0x5e/0x590 [ 1636.739270][ T1281] ? __phys_addr_symbol+0x30/0x80 [ 1636.741234][ T1281] ? __check_object_size+0x48e/0x720 [ 1636.744153][ T1281] netlink_sendmsg+0x813/0xd70 [ 1636.746015][ T1281] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1636.748330][ T1281] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 1636.750888][ T1281] ____sys_sendmsg+0x9b4/0xb50 [ 1636.753121][ T1281] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1636.755331][ T1281] ? get_compat_msghdr+0x11b/0x170 [ 1636.757321][ T1281] ? __pfx___lock_acquire+0x10/0x10 [ 1636.759270][ T1281] ___sys_sendmsg+0x135/0x1e0 [ 1636.761272][ T1281] ? __pfx____sys_sendmsg+0x10/0x10 [ 1636.763754][ T1281] ? ksys_write+0x21c/0x260 [ 1636.766151][ T1281] ? __fget_light+0x173/0x210 [ 1636.768270][ T1281] __sys_sendmsg+0x117/0x1f0 [ 1636.770301][ T1281] ? __pfx___sys_sendmsg+0x10/0x10 [ 1636.772907][ T1281] __do_fast_syscall_32+0x73/0x120 [ 1636.775658][ T1281] do_fast_syscall_32+0x32/0x80 [ 1636.777871][ T1281] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1636.781160][ T1281] RIP: 0023:0xf73ae579 [ 1636.783116][ T1281] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1636.791936][ T1281] RSP: 002b:00000000f5cc657c EFLAGS: 00000292 ORIG_RAX: 0000000000000172 [ 1636.796047][ T1281] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000080 [ 1636.799536][ T1281] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1636.802965][ T1281] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1636.803849][ T1286] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8493'. [ 1636.806685][ T1281] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1636.806699][ T1281] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1636.806724][ T1281] [ 1637.092734][ T10] usbhid 7-1:0.0: can't add hid device: -71 [ 1637.100406][ T10] usbhid 7-1:0.0: probe with driver usbhid failed with error -71 [ 1637.116631][ T10] usb 7-1: USB disconnect, device number 12 [ 1637.359732][ T1306] debugfs: Directory 'netdev:wlan1' with parent 'phy80' already present! [ 1637.368571][ T1307] netlink: 20 bytes leftover after parsing attributes in process `syz.2.8499'. [ 1637.385393][ T1307] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1637.395703][ T1307] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1637.399541][ T1307] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1637.408538][ T1307] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1637.419834][ T1307] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1637.454795][ T1307] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1638.232251][ T1317] netlink: 12 bytes leftover after parsing attributes in process `syz.3.8503'. [ 1638.330839][ T1323] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8505'. [ 1638.600059][ T55] usb 7-1: new high-speed USB device number 13 using dummy_hcd [ 1638.792195][ T55] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 1638.797280][ T55] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 1638.811508][ T55] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 1638.827117][ T55] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1638.854753][ T55] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1638.858699][ T55] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1638.887887][ T55] usb 7-1: config 0 descriptor?? [ 1639.224242][ T39] audit: type=1326 audit(2000000105.360:496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1334 comm="syz.3.8510" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf73ae579 code=0x0 [ 1639.252805][ T1341] netlink: 20 bytes leftover after parsing attributes in process `syz.1.8511'. [ 1639.371284][ T1344] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1639.377424][ T1344] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1639.435175][ T1344] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1639.470683][ T1344] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1640.301739][ T1359] netlink: 20 bytes leftover after parsing attributes in process `syz.1.8514'. [ 1640.308432][ T1359] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1640.321541][ T1359] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1640.327324][ T1359] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1640.333009][ T1359] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1640.338581][ T1359] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1640.344963][ T1359] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1641.158713][ T1362] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8515'. [ 1641.870778][ T1376] netdevsim netdevsim0: Direct firmware load for ng failed with error -2 [ 1641.875532][ T1376] netdevsim netdevsim0: Falling back to sysfs fallback for: ng [ 1641.893392][ T55] usbhid 7-1:0.0: can't add hid device: -71 [ 1641.910181][ T55] usbhid 7-1:0.0: probe with driver usbhid failed with error -71 [ 1641.917831][ T55] usb 7-1: USB disconnect, device number 13 [ 1642.064620][ T1380] fuse: Unknown parameter 'roo mode' [ 1642.091134][ T1380] netfs: Couldn't get user pages (rc=-14) [ 1642.480343][ T5348] usb 7-1: new high-speed USB device number 14 using dummy_hcd [ 1642.664757][ T5348] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11 [ 1642.669583][ T5348] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024 [ 1642.680019][ T5348] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1642.686813][ T5348] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1642.695716][ T5348] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1642.701990][ T5348] usb 7-1: config 0 descriptor?? [ 1642.705210][ T1383] raw-gadget.2 gadget.2: fail, usb_ep_enable returned -22 [ 1642.918811][ T1390] netlink: 12 bytes leftover after parsing attributes in process `syz.0.8525'. [ 1643.104737][ T1393] netlink: 12 bytes leftover after parsing attributes in process `syz.3.8526'. [ 1643.125734][ T5348] plantronics 0003:047F:FFFF.001A: No inputs registered, leaving [ 1643.143417][ T5348] plantronics 0003:047F:FFFF.001A: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0 [ 1643.518090][ T1406] FAULT_INJECTION: forcing a failure. [ 1643.518090][ T1406] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1643.524731][ T1406] CPU: 3 PID: 1406 Comm: syz.3.8530 Not tainted 6.10.0-syzkaller-00017-g5e0497553643 #0 [ 1643.528722][ T1406] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1643.534828][ T1406] Call Trace: [ 1643.536296][ T1406] [ 1643.537504][ T1406] dump_stack_lvl+0x16c/0x1f0 [ 1643.539597][ T1406] should_fail_ex+0x497/0x5b0 [ 1643.541508][ T1406] _copy_from_user+0x30/0xf0 [ 1643.543483][ T1406] rfcomm_dev_ioctl+0x113/0x1e30 [ 1643.545906][ T1406] ? __pfx_rfcomm_dev_ioctl+0x10/0x10 [ 1643.548343][ T1406] ? __pfx_lock_release+0x10/0x10 [ 1643.550604][ T1406] ? mark_held_locks+0x9f/0xe0 [ 1643.552537][ T1406] ? rfcomm_sock_compat_ioctl+0xac/0xe0 [ 1643.554747][ T1406] ? __local_bh_enable_ip+0xa4/0x120 [ 1643.557135][ T1406] rfcomm_sock_compat_ioctl+0xba/0xe0 [ 1643.559555][ T1406] compat_sock_ioctl+0x181/0x7f0 [ 1643.561547][ T1406] ? __pfx_rfcomm_sock_compat_ioctl+0x10/0x10 [ 1643.567199][ T1406] ? __pfx_compat_sock_ioctl+0x10/0x10 [ 1643.569832][ T1406] ? __fget_files+0x256/0x400 [ 1643.571888][ T1406] ? bpf_lsm_file_ioctl_compat+0x9/0x10 [ 1643.574194][ T1406] ? __pfx_compat_sock_ioctl+0x10/0x10 [ 1643.576610][ T1406] __do_compat_sys_ioctl+0x2c3/0x330 [ 1643.578953][ T1406] __do_fast_syscall_32+0x73/0x120 [ 1643.581235][ T1406] do_fast_syscall_32+0x32/0x80 [ 1643.583155][ T1406] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1643.585600][ T1406] RIP: 0023:0xf73ae579 [ 1643.587210][ T1406] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1643.594566][ T1406] RSP: 002b:00000000f5cc657c EFLAGS: 00000292 ORIG_RAX: 0000000000000036 [ 1643.598066][ T1406] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000400452c9 [ 1643.601626][ T1406] RDX: 0000000020003440 RSI: 0000000000000000 RDI: 0000000000000000 [ 1643.605528][ T1406] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1643.610482][ T1406] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1643.613982][ T1406] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1643.617346][ T1406] [ 1643.935644][T28596] usb 7-1: USB disconnect, device number 14 [ 1643.982768][ T1411] tc_dump_action: action bad kind [ 1644.207953][ T1428] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.8534'. [ 1645.059497][ T1446] netlink: 20 bytes leftover after parsing attributes in process `syz.0.8539'. [ 1645.064187][ T1446] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1645.069944][ T1446] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1645.080111][ T1446] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1645.084565][ T1446] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1645.145503][ T1446] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1645.154748][ T1446] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1645.250011][ T1448] netlink: 'syz.3.8540': attribute type 14 has an invalid length. [ 1645.433073][ T1450] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1645.485919][ T1450] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1645.633538][ T1452] overlayfs: failed to resolve './file0': -2 [ 1645.658698][ T1452] trusted_key: encrypted_key: master key parameter '' is invalid [ 1646.284182][ T1469] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1646.341237][ T1471] netlink: 76 bytes leftover after parsing attributes in process `syz.2.8549'. [ 1646.356924][ T1469] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1647.165654][ T1479] overlayfs: failed to resolve './file0': -2 [ 1647.207066][ T1479] trusted_key: encrypted_key: master key parameter '' is invalid [ 1647.596540][ T1485] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1647.600249][ T10] usb 5-1: new high-speed USB device number 51 using dummy_hcd [ 1647.610152][ T1485] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1647.683975][ T1485] netlink: 24 bytes leftover after parsing attributes in process `syz.3.8555'. [ 1647.810130][ T10] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11 [ 1647.815134][ T10] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024 [ 1647.841172][ T10] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1647.868713][ T10] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1647.889616][ T10] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1647.903468][ T10] usb 5-1: config 0 descriptor?? [ 1647.908957][ T1483] raw-gadget.2 gadget.0: fail, usb_ep_enable returned -22 [ 1648.342932][ T10] plantronics 0003:047F:FFFF.001B: No inputs registered, leaving [ 1648.354955][ T10] plantronics 0003:047F:FFFF.001B: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0 [ 1649.107029][ T55] usb 5-1: USB disconnect, device number 51 [ 1650.106392][ T1543] xt_CT: You must specify a L4 protocol and not use inversions on it [ 1650.582953][ T4639] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 1650.591468][ T4639] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 1650.599346][ T4639] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 1650.615167][ T4639] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 1650.626931][ T4639] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 1650.629964][T19505] usb 7-1: new high-speed USB device number 15 using dummy_hcd [ 1650.635286][ T4639] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 1650.655127][T26815] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 1650.659818][T26815] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 1650.667298][T26815] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 1650.676137][T26815] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 1650.685240][T26815] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 1650.689007][T26815] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 1650.824781][T19505] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11 [ 1650.831603][T19505] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024 [ 1650.836283][T19505] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1650.904368][T19505] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1650.913687][T19505] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1650.981664][T19505] usb 7-1: config 0 descriptor?? [ 1650.984856][ T1548] raw-gadget.2 gadget.2: fail, usb_ep_enable returned -22 [ 1651.023661][T19539] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1651.068939][ T1549] chnl_net:caif_netlink_parms(): no params data found [ 1651.210336][T19539] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1651.344960][ T1549] bridge0: port 1(bridge_slave_0) entered blocking state [ 1651.348374][ T1549] bridge0: port 1(bridge_slave_0) entered disabled state [ 1651.353392][ T1549] bridge_slave_0: entered allmulticast mode [ 1651.358698][ T1549] bridge_slave_0: entered promiscuous mode [ 1651.391632][T19539] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1651.399176][ T1549] bridge0: port 2(bridge_slave_1) entered blocking state [ 1651.402351][ T1549] bridge0: port 2(bridge_slave_1) entered disabled state [ 1651.405948][ T1549] bridge_slave_1: entered allmulticast mode [ 1651.410097][ T1549] bridge_slave_1: entered promiscuous mode [ 1651.411010][T19505] plantronics 0003:047F:FFFF.001C: No inputs registered, leaving [ 1651.430182][T19505] plantronics 0003:047F:FFFF.001C: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0 [ 1651.471244][ T1549] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1651.479067][ T1549] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1651.546364][ T1549] team0: Port device team_slave_0 added [ 1651.571280][T19539] bond0: (slave netdevsim0): Releasing backup interface [ 1651.577202][T19539] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1651.589421][ T1549] team0: Port device team_slave_1 added [ 1651.615859][ T1560] xt_HMARK: spi-set and port-set can't be combined [ 1651.643995][ T1549] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1651.647262][ T1549] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1651.662057][ T1549] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1651.677146][ T1549] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1651.680937][ T1549] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1651.693141][ T1549] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1651.815013][ T1549] hsr_slave_0: entered promiscuous mode [ 1651.826272][ T1549] hsr_slave_1: entered promiscuous mode [ 1651.850662][ T1549] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1651.855029][ T1549] Cannot create hsr debugfs directory [ 1652.035963][T19539] bridge_slave_1: left allmulticast mode [ 1652.039180][T19539] bridge_slave_1: left promiscuous mode [ 1652.042234][T19539] bridge0: port 2(bridge_slave_1) entered disabled state [ 1652.047983][T19539] bridge_slave_0: left allmulticast mode [ 1652.050743][T19539] bridge_slave_0: left promiscuous mode [ 1652.053563][T19539] bridge0: port 1(bridge_slave_0) entered disabled state [ 1652.572898][T19539] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1652.580503][T19539] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1652.587180][T19539] bond0 (unregistering): Released all slaves [ 1652.716115][T26815] Bluetooth: hci4: command tx timeout [ 1652.892397][T19505] usb 7-1: reset high-speed USB device number 15 using dummy_hcd [ 1653.201686][T19539] hsr_slave_0: left promiscuous mode [ 1653.218073][T19539] hsr_slave_1: left promiscuous mode [ 1653.225386][T19539] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1653.235847][T19539] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1653.241183][T19539] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1653.244698][T19539] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1653.308949][T19539] veth1_macvtap: left promiscuous mode [ 1653.311932][T19539] veth0_macvtap: left promiscuous mode [ 1653.314563][T19539] veth1_vlan: left promiscuous mode [ 1653.317427][T19539] veth0_vlan: left promiscuous mode [ 1653.634070][ T1576] FAULT_INJECTION: forcing a failure. [ 1653.634070][ T1576] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1653.647749][ T1576] CPU: 1 PID: 1576 Comm: syz.3.8579 Not tainted 6.10.0-syzkaller-00017-g5e0497553643 #0 [ 1653.651773][ T1576] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1653.656557][ T1576] Call Trace: [ 1653.657949][ T1576] [ 1653.659261][ T1576] dump_stack_lvl+0x16c/0x1f0 [ 1653.661473][ T1576] should_fail_ex+0x497/0x5b0 [ 1653.663359][ T1576] _copy_from_user+0x30/0xf0 [ 1653.665142][ T1576] move_addr_to_kernel+0x68/0x160 [ 1653.667003][ T1576] __sys_connect+0xbd/0x170 [ 1653.668566][ T1576] ? __pfx___sys_connect+0x10/0x10 [ 1653.670489][ T1576] ? __pfx_ksys_write+0x10/0x10 [ 1653.672393][ T1576] __ia32_sys_connect+0x71/0xb0 [ 1653.674107][ T1576] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 1653.676732][ T1576] __do_fast_syscall_32+0x73/0x120 [ 1653.679040][ T1576] do_fast_syscall_32+0x32/0x80 [ 1653.681435][ T1576] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1653.684259][ T1576] RIP: 0023:0xf73ae579 [ 1653.685805][ T1576] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1653.693300][ T1576] RSP: 002b:00000000f5ca557c EFLAGS: 00000292 ORIG_RAX: 000000000000016a [ 1653.696657][ T1576] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000020000300 [ 1653.699695][ T1576] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000 [ 1653.703045][ T1576] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1653.706365][ T1576] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1653.716531][ T1576] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1653.719694][ T1576] [ 1654.251717][ T5209] usb 7-1: USB disconnect, device number 15 [ 1654.796335][T26815] Bluetooth: hci4: command 0x041b tx timeout [ 1655.937466][T19539] team0 (unregistering): Port device team_slave_1 removed [ 1656.138686][T19539] team0 (unregistering): Port device team_slave_0 removed [ 1656.873969][ T4639] Bluetooth: hci4: command 0x041b tx timeout [ 1657.584920][ T1584] netlink: 20 bytes leftover after parsing attributes in process `syz.1.8581'. [ 1657.744888][ T1590] openvswitch: netlink: Missing key (keys=20040, expected=2000) [ 1657.773811][ T1590] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8583'. [ 1657.956475][ T1596] netlink: 28 bytes leftover after parsing attributes in process `syz.1.8586'. [ 1658.027405][ T1549] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 1658.044946][ T1549] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 1658.057580][ T1549] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 1658.083523][ T1549] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 1658.224396][ T1549] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1658.250343][T19505] usb 7-1: new high-speed USB device number 16 using dummy_hcd [ 1658.255001][ T1549] 8021q: adding VLAN 0 to HW filter on device team0 [ 1658.268451][ T5348] bridge0: port 1(bridge_slave_0) entered blocking state [ 1658.271743][ T5348] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1658.298226][ T5348] bridge0: port 2(bridge_slave_1) entered blocking state [ 1658.301583][ T5348] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1658.359542][ T1549] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 1658.364293][ T1549] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 1658.442266][T19505] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11 [ 1658.447081][T19505] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024 [ 1658.451977][T19505] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1658.474826][T19505] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1658.478805][T19505] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1658.492918][T19505] usb 7-1: config 0 descriptor?? [ 1658.496253][ T1597] raw-gadget.2 gadget.2: fail, usb_ep_enable returned -22 [ 1658.651382][ T1549] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1658.744135][ T1549] veth0_vlan: entered promiscuous mode [ 1658.755523][ T1549] veth1_vlan: entered promiscuous mode [ 1658.798105][ T1549] veth0_macvtap: entered promiscuous mode [ 1658.809331][ T1549] veth1_macvtap: entered promiscuous mode [ 1658.847800][ T1549] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1658.854956][ T1549] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1658.858957][ T1549] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1658.864593][ T1549] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1658.868245][ T1549] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1658.872206][ T1549] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1658.875810][ T1549] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1658.879621][ T1549] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1658.891670][ T1549] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1658.903457][ T1549] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1658.907258][ T1549] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1658.911665][ T1549] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1658.915494][ T1549] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1658.919254][ T1549] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1658.925415][ T1549] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1658.930191][ T1549] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1658.934277][ T1549] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1658.937794][ T1549] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1658.946462][ T1549] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1658.948571][T19505] plantronics 0003:047F:FFFF.001D: No inputs registered, leaving [ 1658.950736][ T1549] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1658.950810][ T1549] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1658.950870][ T1549] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1658.950883][ T1549] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1658.971387][ T4639] Bluetooth: hci4: command 0x041b tx timeout [ 1658.971642][ T1549] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1658.982177][ T1549] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1658.984950][ T1549] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1658.987857][ T1549] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1658.991300][ T1549] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1659.002661][T19505] plantronics 0003:047F:FFFF.001D: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0 [ 1659.112638][T19552] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1659.116989][T19552] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1659.195529][T19546] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1659.201016][T19546] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1660.035490][ T1622] netlink: 20 bytes leftover after parsing attributes in process `syz.3.8591'. [ 1660.078666][ T1621] FAULT_INJECTION: forcing a failure. [ 1660.078666][ T1621] name failslab, interval 1, probability 0, space 0, times 0 [ 1660.128342][ T1621] CPU: 0 PID: 1621 Comm: syz.1.8592 Not tainted 6.10.0-syzkaller-00017-g5e0497553643 #0 [ 1660.132598][ T1621] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1660.139392][ T1621] Call Trace: [ 1660.147174][ T1621] [ 1660.148617][ T1621] dump_stack_lvl+0x16c/0x1f0 [ 1660.150671][ T1621] should_fail_ex+0x497/0x5b0 [ 1660.161802][ T1621] should_failslab+0x9/0x20 [ 1660.164124][ T1621] __kmalloc_noprof+0xcf/0x420 [ 1660.166275][ T1621] ? __pfx_lock_acquire+0x10/0x10 [ 1660.168605][ T1621] tomoyo_realpath_from_path+0xbf/0x710 [ 1660.171122][ T1621] ? tomoyo_profile+0x47/0x60 [ 1660.173528][ T1621] tomoyo_path_number_perm+0x245/0x5b0 [ 1660.176115][ T1621] ? tomoyo_path_number_perm+0x232/0x5b0 [ 1660.178687][ T1621] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1660.182263][ T1621] ? __pfx_lock_release+0x10/0x10 [ 1660.184558][ T1621] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1660.187255][ T1621] ? __fget_files+0x256/0x400 [ 1660.189639][ T1621] security_file_ioctl_compat+0x75/0xc0 [ 1660.192178][ T1621] __do_compat_sys_ioctl+0x5d/0x330 [ 1660.194520][ T1621] __do_fast_syscall_32+0x73/0x120 [ 1660.196784][ T1621] do_fast_syscall_32+0x32/0x80 [ 1660.198913][ T1621] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1660.201903][ T1621] RIP: 0023:0xf7472579 [ 1660.203746][ T1621] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1660.212571][ T1621] RSP: 002b:00000000f5d8a57c EFLAGS: 00000292 ORIG_RAX: 0000000000000036 [ 1660.216327][ T1621] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000008b15 [ 1660.219807][ T1621] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1660.223131][ T1621] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1660.226591][ T1621] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1660.229752][ T1621] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1660.232894][ T1621] [ 1660.251306][ T1621] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1660.309975][ T5209] usb 7-1: reset high-speed USB device number 16 using dummy_hcd [ 1660.797378][ T1629] netlink: 28 bytes leftover after parsing attributes in process `syz.1.8594'. [ 1661.034617][ T1634] (unnamed net_device) (uninitialized): peer notification delay (5) is not a multiple of miimon (81), value rounded to 0 ms [ 1661.293834][ T10] kernel write not supported for file /meminfo (pid: 10 comm: kworker/0:1) [ 1661.783143][T19505] usb 7-1: USB disconnect, device number 16 [ 1662.066580][ T1671] program syz.2.8607 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1662.143460][ T1673] input: syz1 as /devices/virtual/input/input53 [ 1662.161274][ T1671] program syz.2.8607 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1662.170290][ T1671] program syz.2.8607 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1662.181017][ T1671] program syz.2.8607 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1662.200416][ T1671] program syz.2.8607 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1662.205375][ T1671] program syz.2.8607 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1662.210495][ T1671] program syz.2.8607 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1662.219236][ T1671] program syz.2.8607 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1662.228017][ T1671] program syz.2.8607 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1662.237999][ T1671] program syz.2.8607 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1662.248187][ T1671] program syz.2.8607 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1662.253252][ T1671] program syz.2.8607 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1662.257294][ T1671] program syz.2.8607 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1662.263630][ T1671] program syz.2.8607 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1662.268863][ T1671] program syz.2.8607 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1662.274264][ T1677] netlink: 28 bytes leftover after parsing attributes in process `syz.1.8608'. [ 1662.278583][ T1671] program syz.2.8607 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1662.283269][ T1671] program syz.2.8607 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1662.290738][ T1671] program syz.2.8607 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1662.295282][ T1671] program syz.2.8607 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1662.302076][ T1671] program syz.2.8607 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1662.306386][ T1671] program syz.2.8607 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1662.310761][ T1671] program syz.2.8607 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1662.315574][ T1671] program syz.2.8607 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1662.319736][ T1671] program syz.2.8607 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1662.340256][ T1671] program syz.2.8607 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1662.344187][ T1671] program syz.2.8607 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1662.347537][ T1671] program syz.2.8607 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1662.370482][ T1671] program syz.2.8607 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1662.386772][ T1671] program syz.2.8607 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1662.391748][ T1671] program syz.2.8607 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1662.401885][ T1671] program syz.2.8607 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1662.412441][ T1671] program syz.2.8607 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1662.430065][ T1671] program syz.2.8607 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1662.632955][ C3] ata1: illegal qc_active transition (00000000->00000040) [ 1662.711721][ T1687] FAULT_INJECTION: forcing a failure. [ 1662.711721][ T1687] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1662.717733][ T1687] CPU: 3 PID: 1687 Comm: syz.2.8610 Not tainted 6.10.0-syzkaller-00017-g5e0497553643 #0 [ 1662.721878][ T1687] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1662.726540][ T1687] Call Trace: [ 1662.727989][ T1687] [ 1662.729297][ T1687] dump_stack_lvl+0x16c/0x1f0 [ 1662.731460][ T1687] should_fail_ex+0x497/0x5b0 [ 1662.733951][ T1687] _copy_to_user+0x30/0xc0 [ 1662.735965][ T1687] simple_read_from_buffer+0xd0/0x160 [ 1662.738470][ T1687] proc_fail_nth_read+0x1b0/0x290 [ 1662.740645][ T1687] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1662.743065][ T1687] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1662.745418][ T1687] vfs_read+0x1d4/0xbd0 [ 1662.747370][ T1687] ? find_held_lock+0x2d/0x110 [ 1662.749423][ T1687] ? __fdget_pos+0xeb/0x180 [ 1662.751394][ T1687] ? __pfx_vfs_read+0x10/0x10 [ 1662.753384][ T1687] ? __pfx___mutex_lock+0x10/0x10 [ 1662.755581][ T1687] ? __fget_files+0x256/0x400 [ 1662.757580][ T1687] ksys_read+0x12f/0x260 [ 1662.759440][ T1687] ? __pfx_ksys_read+0x10/0x10 [ 1662.761547][ T1687] __do_fast_syscall_32+0x73/0x120 [ 1662.763722][ T1687] do_fast_syscall_32+0x32/0x80 [ 1662.765814][ T1687] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1662.768571][ T1687] RIP: 0023:0xf74a0579 [ 1662.770384][ T1687] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1662.778767][ T1687] RSP: 002b:00000000f5d975b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 1662.782472][ T1687] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00000000f5d97630 [ 1662.785819][ T1687] RDX: 000000000000000f RSI: 00000000f748aff4 RDI: 0000000000000000 [ 1662.788976][ T1687] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 1662.791871][ T1691] binder: 1690:1691 ioctl c01064c1 20000000 returned -22 [ 1662.791977][ T1687] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000 [ 1662.797450][ T1687] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1662.801254][ T1687] [ 1662.801741][ T1691] binder: 1690:1691 ioctl 5514 0 returned -22 [ 1662.807445][ T1692] netlink: 48 bytes leftover after parsing attributes in process `syz.1.8614'. [ 1662.807464][ T1691] binder: 1690:1691 ioctl 81e8943c 20002800 returned -22 [ 1662.913916][ T1691] binder: 1690:1691 ioctl d000943d 20000800 returned -22 [ 1662.918058][ T1691] binder: 1690:1691 ioctl c0709411 20000200 returned -22 [ 1662.967044][ T1057] ata1: SATA link up 1.5 Gbps (SStatus 113 SControl 300) [ 1662.971091][ T1057] ata1.00: configured for UDMA/100 [ 1663.330277][ T1706] netlink: 20 bytes leftover after parsing attributes in process `syz.0.8618'. [ 1663.336235][ T1706] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1663.344998][ T1706] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1663.352258][ T1706] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1663.356789][ T1706] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1663.360655][ T1706] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_0 [ 1663.364361][ T1706] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1664.155029][ T1718] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1664.158339][ T1718] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1665.063096][ T1736] netlink: 28 bytes leftover after parsing attributes in process `syz.1.8629'. [ 1665.225494][ T1731] tc_dump_action: action bad kind [ 1667.405962][ T39] audit: type=1326 audit(2000000133.540:497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1777 comm="syz.1.8640" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7472579 code=0x7fc00000 [ 1667.430087][ T39] audit: type=1326 audit(2000000133.550:498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1777 comm="syz.1.8640" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7472579 code=0x7fc00000 [ 1667.736894][ T1781] bad cache= option: none [ 1667.736894][ T1781] [ 1667.740673][ T1781] CIFS: VFS: bad cache= option: none [ 1668.048048][ T39] audit: type=1326 audit(2000000134.180:499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1777 comm="syz.1.8640" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7472579 code=0x7fc00000 [ 1668.080273][ T39] audit: type=1326 audit(2000000134.180:500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1777 comm="syz.1.8640" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7472579 code=0x7fc00000 [ 1668.091305][ T39] audit: type=1326 audit(2000000134.180:501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1777 comm="syz.1.8640" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7472579 code=0x7fc00000 [ 1668.103001][ T39] audit: type=1326 audit(2000000134.180:502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1777 comm="syz.1.8640" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7472579 code=0x7fc00000 [ 1668.112389][ T39] audit: type=1326 audit(2000000134.180:503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1777 comm="syz.1.8640" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7472579 code=0x7fc00000 [ 1668.122750][ T39] audit: type=1326 audit(2000000134.180:504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1777 comm="syz.1.8640" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7472579 code=0x7fc00000 [ 1668.139936][ T39] audit: type=1326 audit(2000000134.180:505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1777 comm="syz.1.8640" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7472579 code=0x7fc00000 [ 1668.156940][ T39] audit: type=1326 audit(2000000134.180:506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1777 comm="syz.1.8640" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7472579 code=0x7fc00000 [ 1668.429157][ T1810] netlink: 12 bytes leftover after parsing attributes in process `syz.2.8649'. [ 1671.146307][ T1853] FAULT_INJECTION: forcing a failure. [ 1671.146307][ T1853] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1671.159939][ T1853] CPU: 3 PID: 1853 Comm: syz.2.8661 Not tainted 6.10.0-syzkaller-00017-g5e0497553643 #0 [ 1671.164406][ T1853] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1671.169096][ T1853] Call Trace: [ 1671.170504][ T1853] [ 1671.171718][ T1853] dump_stack_lvl+0x16c/0x1f0 [ 1671.173742][ T1853] should_fail_ex+0x497/0x5b0 [ 1671.175774][ T1853] _copy_to_user+0x30/0xc0 [ 1671.177920][ T1853] simple_read_from_buffer+0xd0/0x160 [ 1671.180417][ T1853] proc_fail_nth_read+0x1b0/0x290 [ 1671.182850][ T1853] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1671.185495][ T1853] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1671.188172][ T1853] vfs_read+0x1d4/0xbd0 [ 1671.190073][ T1853] ? __fdget_pos+0xeb/0x180 [ 1671.192213][ T1853] ? __pfx_vfs_read+0x10/0x10 [ 1671.194009][ T1853] ? __pfx___mutex_lock+0x10/0x10 [ 1671.195975][ T1853] ? __fget_files+0x256/0x400 [ 1671.198054][ T1853] ksys_read+0x12f/0x260 [ 1671.199940][ T1853] ? __pfx_ksys_read+0x10/0x10 [ 1671.201898][ T1853] __do_fast_syscall_32+0x73/0x120 [ 1671.204101][ T1853] do_fast_syscall_32+0x32/0x80 [ 1671.206206][ T1853] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1671.208688][ T1853] RIP: 0023:0xf74a0579 [ 1671.210347][ T1853] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1671.218751][ T1853] RSP: 002b:00000000f5db85b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 1671.222261][ T1853] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f5db8630 [ 1671.225501][ T1853] RDX: 000000000000000f RSI: 00000000f748aff4 RDI: 0000000000000000 [ 1671.228982][ T1853] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 1671.232392][ T1853] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000 [ 1671.235485][ T1853] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1671.238652][ T1853] [ 1671.422398][ T1859] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(4) [ 1671.425200][ T1859] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 1671.430549][ T1859] vhci_hcd vhci_hcd.0: Device attached [ 1671.639986][ T57] vhci_hcd: vhci_device speed not set [ 1671.709988][ T57] usb 17-1: new full-speed USB device number 4 using vhci_hcd [ 1671.716078][ T1861] vhci_hcd: connection closed [ 1671.718121][T12593] vhci_hcd: stop threads [ 1671.725205][T12593] vhci_hcd: release socket [ 1671.728111][T12593] vhci_hcd: disconnect device [ 1672.407969][ C3] [ 1672.409047][ C3] ================================ [ 1672.411458][ C3] WARNING: inconsistent lock state [ 1672.413796][ C3] 6.10.0-syzkaller-00017-g5e0497553643 #0 Not tainted [ 1672.419701][ C3] -------------------------------- [ 1672.422425][ C3] inconsistent {HARDIRQ-ON-W} -> {IN-HARDIRQ-W} usage. [ 1672.426429][ C3] syz.0.8667/1872 [HC1[1]:SC0[0]:HE0:SE1] takes: [ 1672.429518][ C3] ffff88802c338a80 (lock#14){?.+.}-{2:2}, at: __mmap_lock_do_trace_acquire_returned+0x7f/0x790 [ 1672.434239][ C3] {HARDIRQ-ON-W} state was registered at: [ 1672.436878][ C3] lock_acquire+0x1b1/0x560 [ 1672.438917][ C3] __mmap_lock_do_trace_acquire_returned+0x97/0x790 [ 1672.442031][ C3] vmf_anon_prepare+0x194/0x250 [ 1672.444648][ C3] __handle_mm_fault+0x28ab/0x52a0 [ 1672.447449][ C3] handle_mm_fault+0x476/0xa00 [ 1672.450109][ C3] do_user_addr_fault+0x426/0xe50 [ 1672.452403][ C3] exc_page_fault+0x5c/0xc0 [ 1672.454662][ C3] asm_exc_page_fault+0x26/0x30 [ 1672.456848][ C3] irq event stamp: 2898 [ 1672.458719][ C3] hardirqs last enabled at (2897): [] do_user_addr_fault+0x192/0xe50 [ 1672.463172][ C3] hardirqs last disabled at (2898): [] sysvec_call_function_single+0xe/0xb0 [ 1672.467741][ C3] softirqs last enabled at (2630): [] handle_softirqs+0x5be/0x8f0 [ 1672.471989][ C3] softirqs last disabled at (2597): [] irq_exit_rcu+0xbb/0x120 [ 1672.475927][ C3] [ 1672.475927][ C3] other info that might help us debug this: [ 1672.479631][ C3] Possible unsafe locking scenario: [ 1672.479631][ C3] [ 1672.482825][ C3] CPU0 [ 1672.484133][ C3] ---- [ 1672.485443][ C3] lock(lock#14); [ 1672.486941][ C3] [ 1672.488310][ C3] lock(lock#14); [ 1672.489849][ C3] [ 1672.489849][ C3] *** DEADLOCK *** [ 1672.489849][ C3] [ 1672.492924][ C3] 4 locks held by syz.0.8667/1872: [ 1672.495224][ C3] #0: ffffffff8dbb5020 (rcu_read_lock){....}-{1:2}, at: lock_vma_under_rcu+0xe3/0x8f0 [ 1672.500138][ C3] #1: ffff888021176ec8 (&vma->vm_lock->lock){++++}-{3:3}, at: lock_vma_under_rcu+0x1e2/0x8f0 [ 1672.504653][ C3] #2: ffffffff8dbb5020 (rcu_read_lock){....}-{1:2}, at: bpf_trace_run2+0x1c2/0x590 [ 1672.508775][ C3] #3: ffff8880297ecd98 (&mm->mmap_lock){++++}-{3:3}, at: stack_map_get_build_id_offset+0x28a/0x760 [ 1672.513496][ C3] [ 1672.513496][ C3] stack backtrace: [ 1672.516243][ C3] CPU: 3 PID: 1872 Comm: syz.0.8667 Not tainted 6.10.0-syzkaller-00017-g5e0497553643 #0 [ 1672.520896][ C3] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1672.526313][ C3] Call Trace: [ 1672.527831][ C3] [ 1672.529069][ C3] dump_stack_lvl+0x116/0x1f0 [ 1672.531164][ C3] mark_lock+0x923/0xc60 [ 1672.533030][ C3] ? __pfx_mark_lock+0x10/0x10 [ 1672.535141][ C3] ? __pfx_cmp_ex_search+0x10/0x10 [ 1672.537377][ C3] ? __pfx_mark_lock+0x10/0x10 [ 1672.539337][ C3] ? search_extable+0x83/0xb0 [ 1672.541194][ C3] ? __pfx_search_extable+0x10/0x10 [ 1672.543194][ C3] ? hlock_class+0x4e/0x130 [ 1672.544958][ C3] ? hlock_class+0x4e/0x130 [ 1672.546693][ C3] ? mark_lock+0xb5/0xc60 [ 1672.548364][ C3] ? hlock_class+0x4e/0x130 [ 1672.550265][ C3] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1672.552871][ C3] ? ex_handler_uaccess+0xfa/0x210 [ 1672.555356][ C3] ? hlock_class+0x4e/0x130 [ 1672.557536][ C3] ? __lock_acquire+0xc5d/0x3b30 [ 1672.559866][ C3] __lock_acquire+0x1359/0x3b30 [ 1672.561977][ C3] ? mark_lock+0x42/0xc60 [ 1672.563867][ C3] ? __pfx___lock_acquire+0x10/0x10 [ 1672.566024][ C3] ? lock_acquire+0x1b1/0x560 [ 1672.568041][ C3] lock_acquire+0x1b1/0x560 [ 1672.569991][ C3] ? __mmap_lock_do_trace_acquire_returned+0x7f/0x790 [ 1672.572948][ C3] ? __pfx_lock_acquire+0x10/0x10 [ 1672.575910][ C3] ? get_segment_base+0x1c6/0x270 [ 1672.578132][ C3] ? perf_callchain_user+0x534/0xa20 [ 1672.580481][ C3] ? down_read_trylock+0x1ed/0x3f0 [ 1672.582823][ C3] ? stack_map_get_build_id_offset+0x28a/0x760 [ 1672.585551][ C3] __mmap_lock_do_trace_acquire_returned+0x97/0x790 [ 1672.588408][ C3] ? __mmap_lock_do_trace_acquire_returned+0x7f/0x790 [ 1672.591384][ C3] stack_map_get_build_id_offset+0x602/0x760 [ 1672.594342][ C3] ? __pfx___lock_acquire+0x10/0x10 [ 1672.596810][ C3] ? do_user_addr_fault+0x549/0xe50 [ 1672.599325][ C3] ? exc_page_fault+0x34/0xc0 [ 1672.601531][ C3] __bpf_get_stack+0x68a/0x710 [ 1672.603756][ C3] ? __pfx___bpf_get_stack+0x10/0x10 [ 1672.606111][ C3] ? __pfx_lock_acquire+0x10/0x10 [ 1672.608349][ C3] ? bpf_trace_run2+0x266/0x590 [ 1672.610534][ C3] ? __pfx_lock_release+0x10/0x10 [ 1672.612874][ C3] bpf_get_stack_raw_tp+0x124/0x160 [ 1672.615258][ C3] bpf_prog_e6cf5f9c69743609+0x42/0x46 [ 1672.617778][ C3] bpf_trace_run2+0x231/0x590 [ 1672.619942][ C3] ? __pfx_bpf_trace_run2+0x10/0x10 [ 1672.622155][ C3] ? ktime_get+0xfb/0x1a0 [ 1672.623822][ C3] ? __pfx___bpf_trace_tlb_flush+0x10/0x10 [ 1672.625946][ C3] ? __pfx_flush_tlb_func+0x10/0x10 [ 1672.628135][ C3] __traceiter_tlb_flush+0x64/0xb0 [ 1672.630355][ C3] trace_tlb_flush+0xf3/0x170 [ 1672.632778][ C3] __flush_smp_call_function_queue+0x27a/0x8c0 [ 1672.635492][ C3] __sysvec_call_function_single+0x8c/0x410 [ 1672.637911][ C3] sysvec_call_function_single+0x90/0xb0 [ 1672.640194][ C3] [ 1672.641263][ C3] [ 1672.642536][ C3] asm_sysvec_call_function_single+0x1a/0x20 [ 1672.644971][ C3] RIP: 0010:lock_acquire+0x1f2/0x560 [ 1672.647252][ C3] Code: c1 05 ca c5 95 7e 83 f8 01 0f 85 ea 02 00 00 9c 58 f6 c4 02 0f 85 d5 02 00 00 48 85 ed 74 01 fb 48 b8 00 00 00 00 00 fc ff df <48> 01 c3 48 c7 03 00 00 00 00 48 c7 43 08 00 00 00 00 48 8b 84 24 [ 1672.656251][ C3] RSP: 0000:ffffc9000cc37c68 EFLAGS: 00000206 [ 1672.659767][ C3] RAX: dffffc0000000000 RBX: 1ffff92001986f8f RCX: 00000000c5f18342 [ 1672.663449][ C3] RDX: 0000000000000001 RSI: ffffffff8b2cbce0 RDI: ffffffff8b8ff8e0 [ 1672.666700][ C3] RBP: 0000000000000200 R08: 0000000000000000 R09: fffffbfff283f46d [ 1672.669603][ C3] R10: ffffffff941fa36f R11: 0000000000000001 R12: 0000000000000001 [ 1672.673125][ C3] R13: 0000000000000001 R14: ffff888021176ec8 R15: 0000000000000000 [ 1672.676716][ C3] ? __pfx_lock_acquire+0x10/0x10 [ 1672.678915][ C3] ? mtree_range_walk+0x715/0xbe0 [ 1672.681123][ C3] down_read_trylock+0x1ed/0x3f0 [ 1672.682688][ C3] ? lock_vma_under_rcu+0x1e2/0x8f0 [ 1672.684311][ C3] ? __pfx_down_read_trylock+0x10/0x10 [ 1672.686939][ C3] ? mas_walk+0x67c/0x8d0 [ 1672.689335][ C3] lock_vma_under_rcu+0x1e2/0x8f0 [ 1672.691626][ C3] ? __pfx_lock_vma_under_rcu+0x10/0x10 [ 1672.694061][ C3] ? __pfx___ia32_sys_futex_time32+0x10/0x10 [ 1672.696793][ C3] do_user_addr_fault+0x3d7/0xe50 [ 1672.699415][ C3] ? trace_irq_disable.constprop.0+0xe4/0x130 [ 1672.701909][ C3] exc_page_fault+0x5c/0xc0 [ 1672.703795][ C3] asm_exc_page_fault+0x26/0x30 [ 1672.705626][ C3] RIP: 0023:0xf71b1d31 [ 1672.707174][ C3] Code: ff 00 00 00 00 e9 6e f7 ff ff 8d b4 26 00 00 00 00 8b 85 ac fe ff ff 80 b8 cf c5 b6 00 00 74 51 8b 85 98 fe ff ff c6 42 f8 01 42 10 00 89 42 f4 8b 71 5c 85 f6 0f 84 91 0c 00 00 8b 59 68 85 [ 1672.714759][ C3] RSP: 002b:00000000ffb6be70 EFLAGS: 00010202 [ 1672.717336][ C3] RAX: 0000000000000001 RBX: 0000000000000004 RCX: 00000000f748cff8 [ 1672.720618][ C3] RDX: 00000000f748cff8 RSI: 0000000000000001 RDI: 00000000f748cfec [ 1672.724107][ C3] RBP: 00000000ffb6c118 R08: 0000000000000000 R09: 0000000000000000 [ 1672.727481][ C3] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 1672.730870][ C3] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1672.734035][ C3] SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 1673.621624][T19539] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1673.708442][T19539] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1673.827210][T19539] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1673.934219][T19539] bond0: (slave netdevsim0): Releasing backup interface [ 1673.940134][T19539] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1674.050867][T19539] bridge_slave_0: left allmulticast mode [ 1674.053332][T19539] bridge_slave_0: left promiscuous mode [ 1674.055793][T19539] bridge0: port 1(bridge_slave_0) entered disabled state [ 1674.314538][ T1351] ieee802154 phy1 wpan1: encryption failed: -22 [ 1674.454780][T19539] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1674.465939][T19539] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1674.472491][T19539] bond0 (unregistering): Released all slaves [ 1674.481096][T19539] bond1 (unregistering): Released all slaves [ 1675.042869][T19539] hsr_slave_0: left promiscuous mode [ 1675.046339][T19539] hsr_slave_1: left promiscuous mode [ 1675.052315][T19539] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1675.056371][T19539] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1675.065541][T19539] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1675.068751][T19539] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1675.086343][T19539] veth1_macvtap: left promiscuous mode [ 1675.090243][T19539] veth0_macvtap: left promiscuous mode [ 1675.103678][T19539] veth1_vlan: left promiscuous mode [ 1675.105715][T19539] veth0_vlan: left promiscuous mode [ 1675.593425][T19539] team0 (unregistering): Port device team_slave_1 removed [ 1675.685038][T19539] team0 (unregistering): Port device team_slave_0 removed [ 1676.451198][T19539] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1676.577746][T19539] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1676.815038][T19539] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1676.880003][ T57] vhci_hcd: vhci_device speed not set [ 1676.915978][T19539] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1677.100489][T19539] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1677.176646][T19539] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1677.254931][T19539] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1677.336607][T19539] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1677.445833][T19539] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1677.527898][T19539] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1677.666009][T19539] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1677.774951][T19539] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1677.979991][T19539] bridge_slave_1: left allmulticast mode [ 1677.982480][T19539] bridge_slave_1: left promiscuous mode [ 1677.985018][T19539] bridge0: port 2(bridge_slave_1) entered disabled state [ 1677.989616][T19539] bridge_slave_0: left allmulticast mode [ 1677.994011][T19539] bridge_slave_0: left promiscuous mode [ 1677.996581][T19539] bridge0: port 1(bridge_slave_0) entered disabled state [ 1678.002624][T19539] bridge_slave_1: left allmulticast mode [ 1678.004931][T19539] bridge_slave_1: left promiscuous mode [ 1678.007253][T19539] bridge0: port 2(bridge_slave_1) entered disabled state [ 1678.012093][T19539] bridge_slave_0: left allmulticast mode [ 1678.014434][T19539] bridge_slave_0: left promiscuous mode [ 1678.016731][T19539] bridge0: port 1(bridge_slave_0) entered disabled state [ 1678.023798][T19539] bridge_slave_1: left allmulticast mode [ 1678.026315][T19539] bridge_slave_1: left promiscuous mode [ 1678.028879][T19539] bridge0: port 2(bridge_slave_1) entered disabled state [ 1678.033878][T19539] bridge_slave_0: left allmulticast mode [ 1678.036275][T19539] bridge_slave_0: left promiscuous mode [ 1678.038728][T19539] bridge0: port 1(bridge_slave_0) entered disabled state [ 1678.830863][T19539] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1678.838057][T19539] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1678.856404][T19539] bond0 (unregistering): Released all slaves [ 1678.875812][T19539] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1678.882414][T19539] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1678.886867][T19539] bond0 (unregistering): Released all slaves [ 1678.898227][T19539] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1678.904157][T19539] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1678.909028][T19539] bond0 (unregistering): Released all slaves [ 1679.819501][T19539] hsr_slave_0: left promiscuous mode [ 1679.823747][T19539] hsr_slave_1: left promiscuous mode [ 1679.828018][T19539] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1679.833170][T19539] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1679.837037][T19539] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1679.842978][T19539] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1679.852561][T19539] hsr_slave_0: left promiscuous mode [ 1679.855277][T19539] hsr_slave_1: left promiscuous mode [ 1679.858683][T19539] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1679.862699][T19539] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1679.866705][T19539] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1679.869655][T19539] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1679.877218][T19539] hsr_slave_0: left promiscuous mode [ 1679.879453][T19539] hsr_slave_1: left promiscuous mode [ 1679.882956][T19539] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1679.886113][T19539] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1679.892701][T19539] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1679.895873][T19539] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1679.904035][T19539] veth1_macvtap: left promiscuous mode [ 1679.906538][T19539] veth0_macvtap: left promiscuous mode [ 1679.909070][T19539] veth1_vlan: left promiscuous mode [ 1679.913797][T19539] veth0_vlan: left promiscuous mode [ 1679.923297][T19539] veth1_macvtap: left promiscuous mode [ 1679.925684][T19539] veth0_macvtap: left promiscuous mode [ 1679.928173][T19539] veth1_vlan: left promiscuous mode [ 1679.931004][T19539] veth0_vlan: left promiscuous mode [ 1679.934783][T19539] veth1_macvtap: left promiscuous mode [ 1679.937411][T19539] veth0_macvtap: left promiscuous mode [ 1679.943246][T19539] veth1_vlan: left promiscuous mode [ 1679.945781][T19539] veth0_vlan: left promiscuous mode [ 1680.567717][T19539] team0 (unregistering): Port device team_slave_1 removed [ 1680.634069][T19539] team0 (unregistering): Port device team_slave_0 removed [ 1681.119026][T19539] team0 (unregistering): Port device team_slave_1 removed [ 1681.226458][T19539] team0 (unregistering): Port device team_slave_0 removed [ 1681.978761][T19539] team0 (unregistering): Port device team_slave_1 removed [ 1682.093001][T19539] team0 (unregistering): Port device team_slave_0 removed VM DIAGNOSIS: 23:56:13 Registers: info registers vcpu 0 CPU#0 RAX=ffffed10025c07d0 RBX=ffffed10025c0800 RCX=ffffffff847da303 RDX=ffffed10025c0800 RSI=0000000000001000 RDI=ffff888012e03000 RBP=ffffed10025c0600 RSP=ffffc90007ef7930 R8 =0000000000000000 R9 =ffffed10025c07ff R10=ffff888012e03fff R11=0000000000000040 R12=0000000000b5ab80 R13=ffffc90007ef7d40 R14=ffff888012e03000 R15=0000000020b5ae80 RIP=ffffffff81ebd44c RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802c000000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000000000000 CR3=0000000000f78000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000001 RBX=ffffc9000752fb88 RCX=0000000000000100 RDX=0000000000000001 RSI=0000000000000004 RDI=ffffc9000752fb8a RBP=dffffc0000000000 RSP=ffffc9000752f848 R8 =0000000000000001 R9 =fffff52000ea5f71 R10=ffffc9000752fb8b R11=0000000000000001 R12=0000000000000000 R13=0000000000002814 R14=ffff88802c13fa80 R15=fffff52000ea5f71 RIP=ffffffff8ae05e88 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802c100000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000000000000 CR3=00000000543fa000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000f000000000 0000000300000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000000000000 RBX=ffff88802c346300 RCX=ffffc90028b62000 RDX=0000000000040000 RSI=ffffffff81826985 RDI=0000000000000005 RBP=0000000000000003 RSP=ffffc9000cba7260 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000003 R12=ffffed1005868c61 R13=0000000000000001 R14=ffff88802c346308 R15=ffff88802c23fdc0 RIP=ffffffff8182698c RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802c200000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000000000000 CR3=000000007436e000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000000000069 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff84f9c435 RDI=ffffffff94d60e40 RBP=ffffffff94d60e00 RSP=ffffc900005f0470 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=732d302e30312e36 R12=0000000000000000 R13=0000000000000069 R14=ffffffff84f9c3d0 R15=0000000000000000 RIP=ffffffff84f9c45f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 ffffffff 00c00000 DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802c300000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000000000000 CR3=000000007436e000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000