Warning: Permanently added '10.128.1.126' (ED25519) to the list of known hosts.
2024/04/27 09:38:54 fuzzer started
2024/04/27 09:38:54 dialing manager at 10.128.0.169:30012
[  165.155958][ T5022] cgroup: Unknown subsys name 'net'
[  165.356590][ T5022] cgroup: Unknown subsys name 'rlimit'
[  214.579354][ T5022] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
2024/04/27 09:39:45 code coverage: enabled
2024/04/27 09:39:45 comparison tracing: enabled
2024/04/27 09:39:45 extra coverage: enabled
2024/04/27 09:39:45 delay kcov mmap: enabled
2024/04/27 09:39:45 setuid sandbox: enabled
2024/04/27 09:39:45 namespace sandbox: enabled
2024/04/27 09:39:45 Android sandbox: /sys/fs/selinux/policy does not exist
2024/04/27 09:39:45 fault injection: enabled
2024/04/27 09:39:45 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
2024/04/27 09:39:45 net packet injection: enabled
2024/04/27 09:39:45 net device setup: enabled
2024/04/27 09:39:45 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2024/04/27 09:39:45 devlink PCI setup: PCI device 0000:00:10.0 is not available
2024/04/27 09:39:45 NIC VF setup: PCI device 0000:00:11.0 is not available
2024/04/27 09:39:45 USB emulation: enabled
2024/04/27 09:39:45 hci packet injection: enabled
2024/04/27 09:39:45 wifi device emulation: enabled
2024/04/27 09:39:45 802.15.4 emulation: enabled
2024/04/27 09:39:45 swap file: enabled
2024/04/27 09:39:46 starting 5 executor processes
[  217.269375][   T49] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  217.289810][   T49] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  217.471000][ T5041] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  217.484340][ T5048] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  217.495727][ T5048] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  217.508061][ T5048] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  217.516316][ T5048] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  217.529959][ T5048] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  217.542584][ T5048] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  217.554250][ T5048] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  217.563717][ T5048] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  217.583828][ T5051] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  217.594261][ T5051] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  217.605484][ T5051] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  217.616027][ T5048] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  217.627720][ T5048] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  217.629869][ T5051] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  217.637580][ T5048] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  218.019108][ T5048] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  218.028453][ T5048] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  218.044325][ T5048] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  218.058636][ T5048] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  218.070666][ T5048] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  218.079984][ T5048] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  218.094547][ T5048] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  218.105861][ T5048] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  218.115254][ T5048] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  218.158155][ T5048] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  218.169266][ T5048] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  218.180225][ T5048] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  218.988089][ T5047] chnl_net:caif_netlink_parms(): no params data found
[  219.221407][ T5044] chnl_net:caif_netlink_parms(): no params data found
[  219.547269][ T5039] chnl_net:caif_netlink_parms(): no params data found
[  219.689842][ T5041] Bluetooth: hci0: command tx timeout
[  219.770880][ T5041] Bluetooth: hci1: command tx timeout
[  219.776522][ T5041] Bluetooth: hci2: command tx timeout
[  219.936962][ T5047] bridge0: port 1(bridge_slave_0) entered blocking state
[  219.946375][ T5047] bridge0: port 1(bridge_slave_0) entered disabled state
[  219.954199][ T5047] bridge_slave_0: entered allmulticast mode
[  219.963428][ T5047] bridge_slave_0: entered promiscuous mode
[  219.992178][ T5047] bridge0: port 2(bridge_slave_1) entered blocking state
[  220.000344][ T5047] bridge0: port 2(bridge_slave_1) entered disabled state
[  220.007931][ T5047] bridge_slave_1: entered allmulticast mode
[  220.020812][ T5047] bridge_slave_1: entered promiscuous mode
[  220.030718][ T5054] chnl_net:caif_netlink_parms(): no params data found
[  220.124469][ T5053] chnl_net:caif_netlink_parms(): no params data found
[  220.230541][ T5047] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  220.253332][ T5047] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  220.281602][ T5041] Bluetooth: hci3: command tx timeout
[  220.282142][ T5048] Bluetooth: hci4: command tx timeout
[  220.447296][ T5044] bridge0: port 1(bridge_slave_0) entered blocking state
[  220.457760][ T5044] bridge0: port 1(bridge_slave_0) entered disabled state
[  220.465605][ T5044] bridge_slave_0: entered allmulticast mode
[  220.474761][ T5044] bridge_slave_0: entered promiscuous mode
[  220.593078][ T5044] bridge0: port 2(bridge_slave_1) entered blocking state
[  220.600924][ T5044] bridge0: port 2(bridge_slave_1) entered disabled state
[  220.608500][ T5044] bridge_slave_1: entered allmulticast mode
[  220.617199][ T5044] bridge_slave_1: entered promiscuous mode
[  220.646706][ T5047] team0: Port device team_slave_0 added
[  220.692165][ T5047] team0: Port device team_slave_1 added
[  220.936578][ T5039] bridge0: port 1(bridge_slave_0) entered blocking state
[  220.944333][ T5039] bridge0: port 1(bridge_slave_0) entered disabled state
[  220.953774][ T5039] bridge_slave_0: entered allmulticast mode
[  220.962775][ T5039] bridge_slave_0: entered promiscuous mode
[  220.989763][ T5044] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  221.003641][ T5047] batman_adv: batadv0: Adding interface: batadv_slave_0
[  221.011034][ T5047] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  221.037360][ T5047] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  221.050702][ T5039] bridge0: port 2(bridge_slave_1) entered blocking state
[  221.058354][ T5039] bridge0: port 2(bridge_slave_1) entered disabled state
[  221.066554][ T5039] bridge_slave_1: entered allmulticast mode
[  221.076839][ T5039] bridge_slave_1: entered promiscuous mode
[  221.100704][ T5044] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  221.241712][ T5047] batman_adv: batadv0: Adding interface: batadv_slave_1
[  221.248895][ T5047] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  221.275262][ T5047] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  221.365760][ T5044] team0: Port device team_slave_0 added
[  221.382740][ T5039] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  221.546631][ T5044] team0: Port device team_slave_1 added
[  221.564678][ T5039] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  221.609046][ T5053] bridge0: port 1(bridge_slave_0) entered blocking state
[  221.616671][ T5053] bridge0: port 1(bridge_slave_0) entered disabled state
[  221.625373][ T5053] bridge_slave_0: entered allmulticast mode
[  221.634074][ T5053] bridge_slave_0: entered promiscuous mode
[  221.648379][ T5054] bridge0: port 1(bridge_slave_0) entered blocking state
[  221.656364][ T5054] bridge0: port 1(bridge_slave_0) entered disabled state
[  221.665605][ T5054] bridge_slave_0: entered allmulticast mode
[  221.674458][ T5054] bridge_slave_0: entered promiscuous mode
[  221.770328][ T5048] Bluetooth: hci0: command tx timeout
[  221.779369][ T5053] bridge0: port 2(bridge_slave_1) entered blocking state
[  221.787251][ T5053] bridge0: port 2(bridge_slave_1) entered disabled state
[  221.794983][ T5053] bridge_slave_1: entered allmulticast mode
[  221.803826][ T5053] bridge_slave_1: entered promiscuous mode
[  221.814792][ T5044] batman_adv: batadv0: Adding interface: batadv_slave_0
[  221.822025][ T5044] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  221.848512][ T5044] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  221.866867][ T5048] Bluetooth: hci2: command tx timeout
[  221.873488][ T5041] Bluetooth: hci1: command tx timeout
[  221.896569][ T5054] bridge0: port 2(bridge_slave_1) entered blocking state
[  221.904392][ T5054] bridge0: port 2(bridge_slave_1) entered disabled state
[  221.912240][ T5054] bridge_slave_1: entered allmulticast mode
[  221.920662][ T5054] bridge_slave_1: entered promiscuous mode
[  221.947744][ T5039] team0: Port device team_slave_0 added
[  221.958746][ T5044] batman_adv: batadv0: Adding interface: batadv_slave_1
[  221.966038][ T5044] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  221.992506][ T5044] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  222.109909][ T5039] team0: Port device team_slave_1 added
[  222.164203][ T5054] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  222.222793][ T5047] hsr_slave_0: entered promiscuous mode
[  222.234282][ T5047] hsr_slave_1: entered promiscuous mode
[  222.281502][ T5054] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  222.353147][ T5048] Bluetooth: hci4: command tx timeout
[  222.358768][ T5041] Bluetooth: hci3: command tx timeout
[  222.377034][ T5053] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  222.494097][ T5054] team0: Port device team_slave_0 added
[  222.509073][ T5053] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  222.525389][ T5054] team0: Port device team_slave_1 added
[  222.569002][ T5039] batman_adv: batadv0: Adding interface: batadv_slave_0
[  222.576401][ T5039] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  222.602910][ T5039] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  222.626046][ T5044] hsr_slave_0: entered promiscuous mode
[  222.635398][ T5044] hsr_slave_1: entered promiscuous mode
[  222.643854][ T5044] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  222.653115][ T5044] Cannot create hsr debugfs directory
[  222.780174][ T5054] batman_adv: batadv0: Adding interface: batadv_slave_0
[  222.787329][ T5054] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  222.813832][ T5054] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  222.827658][ T5039] batman_adv: batadv0: Adding interface: batadv_slave_1
[  222.834875][ T5039] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  222.861134][ T5039] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  222.912886][ T5053] team0: Port device team_slave_0 added
[  222.926242][ T5054] batman_adv: batadv0: Adding interface: batadv_slave_1
[  222.933464][ T5054] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  222.960216][ T5054] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  223.025400][ T5053] team0: Port device team_slave_1 added
[  223.207601][ T5039] hsr_slave_0: entered promiscuous mode
[  223.217823][ T5039] hsr_slave_1: entered promiscuous mode
[  223.227284][ T5039] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  223.235671][ T5039] Cannot create hsr debugfs directory
[  223.302454][ T5053] batman_adv: batadv0: Adding interface: batadv_slave_0
[  223.309805][ T5053] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  223.336092][ T5053] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  223.494522][ T5053] batman_adv: batadv0: Adding interface: batadv_slave_1
[  223.501920][ T5053] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  223.528229][ T5053] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  223.656542][ T5054] hsr_slave_0: entered promiscuous mode
[  223.665255][ T5054] hsr_slave_1: entered promiscuous mode
[  223.674650][ T5054] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  223.682482][ T5054] Cannot create hsr debugfs directory
[  223.867944][ T5041] Bluetooth: hci0: command tx timeout
[  223.930076][ T5041] Bluetooth: hci2: command tx timeout
[  223.935683][ T5041] Bluetooth: hci1: command tx timeout
[  223.957662][ T5053] hsr_slave_0: entered promiscuous mode
[  223.969061][ T5053] hsr_slave_1: entered promiscuous mode
[  223.976977][ T5053] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  223.985564][ T5053] Cannot create hsr debugfs directory
[  224.117798][ T1210] ieee802154 phy0 wpan0: encryption failed: -22
[  224.124654][ T1210] ieee802154 phy1 wpan1: encryption failed: -22
[  224.410149][ T5041] Bluetooth: hci3: command tx timeout
[  224.415833][ T5041] Bluetooth: hci4: command tx timeout
[  224.658244][ T5044] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  224.705149][ T5044] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  224.754301][ T5044] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  224.787918][ T5044] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  224.964070][ T5047] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  224.984124][ T5047] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  225.025437][ T5047] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  225.045025][ T5047] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  225.306712][ T5039] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  225.330347][ T5039] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  225.416455][ T5039] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  225.438834][ T5039] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  225.604417][ T5054] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  225.632756][ T5054] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  225.688312][ T5054] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  225.719805][ T5054] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  225.741397][ T5053] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  225.825934][ T5053] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  225.883155][ T5053] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  225.916365][ T5053] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  225.930884][ T5041] Bluetooth: hci0: command tx timeout
[  226.010775][ T5041] Bluetooth: hci2: command tx timeout
[  226.016395][ T5041] Bluetooth: hci1: command tx timeout
[  226.338057][ T5044] 8021q: adding VLAN 0 to HW filter on device bond0
[  226.494063][ T5041] Bluetooth: hci3: command tx timeout
[  226.500308][ T5048] Bluetooth: hci4: command tx timeout
[  226.564282][ T5044] 8021q: adding VLAN 0 to HW filter on device team0
[  226.616076][ T4478] bridge0: port 1(bridge_slave_0) entered blocking state
[  226.623806][ T4478] bridge0: port 1(bridge_slave_0) entered forwarding state
[  226.705323][ T4478] bridge0: port 2(bridge_slave_1) entered blocking state
[  226.713131][ T4478] bridge0: port 2(bridge_slave_1) entered forwarding state
[  226.748884][ T5039] 8021q: adding VLAN 0 to HW filter on device bond0
[  227.032373][ T5039] 8021q: adding VLAN 0 to HW filter on device team0
[  227.174200][ T5091] bridge0: port 1(bridge_slave_0) entered blocking state
[  227.182031][ T5091] bridge0: port 1(bridge_slave_0) entered forwarding state
[  227.216340][ T5047] 8021q: adding VLAN 0 to HW filter on device bond0
[  227.259380][ T5091] bridge0: port 2(bridge_slave_1) entered blocking state
[  227.267192][ T5091] bridge0: port 2(bridge_slave_1) entered forwarding state
[  227.438812][ T5053] 8021q: adding VLAN 0 to HW filter on device bond0
[  227.521335][ T5054] 8021q: adding VLAN 0 to HW filter on device bond0
[  227.550367][ T5047] 8021q: adding VLAN 0 to HW filter on device team0
[  227.666712][ T5053] 8021q: adding VLAN 0 to HW filter on device team0
[  227.735283][ T5091] bridge0: port 1(bridge_slave_0) entered blocking state
[  227.743106][ T5091] bridge0: port 1(bridge_slave_0) entered forwarding state
[  227.786903][ T5054] 8021q: adding VLAN 0 to HW filter on device team0
[  227.846622][ T5091] bridge0: port 2(bridge_slave_1) entered blocking state
[  227.854440][ T5091] bridge0: port 2(bridge_slave_1) entered forwarding state
[  227.982060][ T5091] bridge0: port 1(bridge_slave_0) entered blocking state
[  227.989940][ T5091] bridge0: port 1(bridge_slave_0) entered forwarding state
[  228.005567][ T5091] bridge0: port 1(bridge_slave_0) entered blocking state
[  228.013361][ T5091] bridge0: port 1(bridge_slave_0) entered forwarding state
[  228.028944][ T5091] bridge0: port 2(bridge_slave_1) entered blocking state
[  228.036694][ T5091] bridge0: port 2(bridge_slave_1) entered forwarding state
[  228.058725][ T5091] bridge0: port 2(bridge_slave_1) entered blocking state
[  228.066456][ T5091] bridge0: port 2(bridge_slave_1) entered forwarding state
[  228.944615][ T5044] 8021q: adding VLAN 0 to HW filter on device batadv0
[  229.549964][ T5044] veth0_vlan: entered promiscuous mode
[  229.686149][ T5044] veth1_vlan: entered promiscuous mode
[  229.817386][ T5039] 8021q: adding VLAN 0 to HW filter on device batadv0
[  230.144079][ T5044] veth0_macvtap: entered promiscuous mode
[  230.274522][ T5044] veth1_macvtap: entered promiscuous mode
[  230.366807][ T5039] veth0_vlan: entered promiscuous mode
[  230.511479][ T5044] batman_adv: batadv0: Interface activated: batadv_slave_0
[  230.537712][ T5039] veth1_vlan: entered promiscuous mode
[  230.625284][ T5044] batman_adv: batadv0: Interface activated: batadv_slave_1
[  230.673275][ T5047] 8021q: adding VLAN 0 to HW filter on device batadv0
[  230.718266][ T5054] 8021q: adding VLAN 0 to HW filter on device batadv0
[  230.739849][ T5044] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  230.748885][ T5044] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  230.759816][ T5044] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  230.768834][ T5044] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  230.824813][ T5053] 8021q: adding VLAN 0 to HW filter on device batadv0
[  231.074636][ T5039] veth0_macvtap: entered promiscuous mode
[  231.193679][ T5039] veth1_macvtap: entered promiscuous mode
[  231.413688][ T5047] veth0_vlan: entered promiscuous mode
[  231.446473][ T5053] veth0_vlan: entered promiscuous mode
[  231.470334][ T5039] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  231.481108][ T5039] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  231.496232][ T5039] batman_adv: batadv0: Interface activated: batadv_slave_0
[  231.561126][ T5047] veth1_vlan: entered promiscuous mode
[  231.611827][ T5053] veth1_vlan: entered promiscuous mode
[  231.688301][ T5039] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  231.700495][ T5039] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  231.715220][ T5039] batman_adv: batadv0: Interface activated: batadv_slave_1
[  231.885313][ T5039] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  231.895868][ T5039] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  231.906221][ T5039] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  231.915444][ T5039] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  232.026704][ T5047] veth0_macvtap: entered promiscuous mode
[  232.124125][ T5047] veth1_macvtap: entered promiscuous mode
[  232.185572][ T5053] veth0_macvtap: entered promiscuous mode
[  232.267483][ T5053] veth1_macvtap: entered promiscuous mode
[  232.357395][ T5047] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  232.368156][ T5047] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  232.378366][ T5047] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  232.389107][ T5047] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  232.407645][ T5047] batman_adv: batadv0: Interface activated: batadv_slave_0
[  232.568085][ T5053] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  232.580292][ T5053] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  232.592648][ T5053] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  232.603385][ T5053] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  232.613540][ T5053] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  232.624241][ T5053] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  232.638777][ T5053] batman_adv: batadv0: Interface activated: batadv_slave_0
[  232.704927][ T5053] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  232.715626][ T5053] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  232.725794][ T5053] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  232.736613][ T5053] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  232.751221][ T5053] batman_adv: batadv0: Interface activated: batadv_slave_1
[  232.782153][ T5047] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  232.794409][ T5047] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  232.804534][ T5047] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  232.815276][ T5047] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  232.825381][ T5047] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  232.836126][ T5047] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  232.850918][ T5047] batman_adv: batadv0: Interface activated: batadv_slave_1
[  233.007444][ T5053] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  233.016957][ T5053] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  233.026167][ T5053] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  233.035318][ T5053] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  233.089246][ T5047] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  233.101806][ T5047] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  233.112695][ T5047] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  233.123538][ T5047] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  233.377283][ T5054] veth0_vlan: entered promiscuous mode
[  233.487510][ T5054] veth1_vlan: entered promiscuous mode
[  233.770233][ T5054] veth0_macvtap: entered promiscuous mode
[  233.881837][ T5054] veth1_macvtap: entered promiscuous mode
[  234.121708][ T5054] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  234.132588][ T5054] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  234.142878][ T5054] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  234.153603][ T5054] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  234.163758][ T5054] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  234.175220][ T5054] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  234.187177][ T5054] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  234.199966][ T5054] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  234.215670][ T5054] batman_adv: batadv0: Interface activated: batadv_slave_0
[  234.457886][ T5054] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  234.470304][ T5054] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  234.482526][ T5054] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  234.499214][ T5054] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  234.512802][ T5054] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  234.524156][ T5054] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  234.534257][ T5054] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  234.545101][ T5054] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  234.560029][ T5054] batman_adv: batadv0: Interface activated: batadv_slave_1
[  234.836522][ T5054] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  234.845687][ T5054] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  234.854916][ T5054] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  234.864016][ T5054] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  238.258072][   T10] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  238.266270][   T10] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  238.465575][   T24] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  238.474535][   T24] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  238.661726][   T10] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  238.670453][   T10] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
executing program 0:
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e24, @dev}, 0x10)
r1 = syz_io_uring_setup(0x23b, 0x0, &(0x7f0000000000)=<r2=>0x0, &(0x7f00000001c0)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000380)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r1, 0x2def, 0x0, 0x0, 0x0, 0x0)
shutdown(r0, 0x1)

[  238.991047][    T7] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  238.999094][    T7] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
executing program 0:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r1)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x6}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
write$cgroup_subtree(r0, &(0x7f0000000180)=ANY=[], 0x5d)

executing program 1:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e21, @local}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r0, &(0x7f0000000780)="fbbf0b5044e308cb7bd572aa2b42e9678bcf30eff9f3aed14dc94a114bd2b45956aebe2b108a87e865501a5f9e0383611afdd3f8bac3d5cfd7772a3ab48d0ba4b600731e357e38716c449fae7c28548a4f2105f44b8fd9b33041270ae01f1a405e3f650fc3b0926d481c364fca00000000000000006d3a3ede9fc738b8d862b9d055aa2d89fe3458720724853a876448d4a1fe9ef0569ad98a05ab5df763923b4e2c576e00000000000000000000000000002000002090666159e3ef5f7244cf4ec3d7814c0c934f44e200219e6dd7bc23397d5f2f2c76a5baddd0fd8c340362691ef226f7a0ac51b74b6be5ed6737948514cd466943d08eeb3895b80499da2b209da4f3ec5e3744ce3e863b0e04d0ec2f39edf50b6e08c4b47e448a35414763d687fbe3792ee15c5b9791310a346472723c100bf77a310b0ced8004b5ac1b3fca19fc0a9e346a78c12e5c3c6d48c40439f512e8ef34a53d65f55563f68136a577736ca5f6f66e01ef4ec2cdc8db34f6de50713adaa3f70189958263fddc1314f8a28ccdef6e1390c5fbaeadc3035d019f0dc75de307de6c0d010000000000000027ec3d1d5b4b013c503b863b560688d94de886b6dc73d5da2dfeff4bed1a49a975a6c8dbb480e4415ddca5657a5a8e3b111015499e952bb5e8d8f60de3d688df7802c6e8b27b31fac4e199038b79a3999920e634a5af16aa9581b0e6647e410700246548234acacf9cb43ab332a37bbc926c39897395c974fda31536be523bf4260300730ae6136fecae5f0fa6ab2df8d98128b24589e314f57d9507dc5e0d65cc397e3f8204d48e59e8e294a6d7008ba8fba28cd5009fe1a7c569ce740078bf1c7389a6ba0f89257f06ac417aac0d2d89b05ee5dafa2f1d936c87264d077b2c0d5abdce943f895dd45045d4ec932366c67dfad087fa8dc104644828440bdf67dd97ebccb3bda8847e37f3c3d49018ecb97ce1a4a6cbd7c3ec5029d938b18a206f7f9bf678dfef1758d6a1ec0000000000000000000000000000003454686fbafb46bef43449725b85cfd3547fa97111e037819af7a0c21b15f4c3e3e4b64e130528d055cfc5fe1fe26307ea8e352cd098d8eac5d0ba0514556a9ca4534518f51bd41f43f21afe183a6233650514ca340a899a28d7784b747af027e7c986b1e66d0ea260b9a4bc4e6da64d984dc79646c6c61c4cd5458a0b8e14f9abc0ddb9cc164a22f6", 0x54e676f5, 0xc000, 0x0, 0xffffffffffffff59)
r1 = dup(r0)
write$binfmt_aout(r1, 0x0, 0x0)

[  239.608221][ T5213] syzkaller0: entered promiscuous mode
[  239.614106][ T5213] syzkaller0: entered allmulticast mode
[  240.205709][   T58] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  240.213810][   T58] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
executing program 0:
setrlimit(0x40000000000008, &(0x7f0000000000))
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x6}, 0x48)

[  240.386564][   T33] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  240.394723][   T33] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  240.538146][    T7] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  240.546733][    T7] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  240.626381][   T58] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  240.635170][   T58] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
executing program 1:
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
r0 = socket$inet(0x2, 0x2, 0x1)
setsockopt$inet_opts(r0, 0x0, 0x4, 0x0, 0x0)

executing program 0:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = socket(0x11, 0xa, 0x0)
write$vga_arbiter(0xffffffffffffffff, &(0x7f0000000000)=@unlock_all, 0x7)
sendmsg$can_bcm(r0, &(0x7f0000000140)={&(0x7f0000000000), 0x12, &(0x7f0000000080)={0x0, 0x2}, 0x8}, 0x0)

executing program 3:
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x1a, 0x3, &(0x7f0000000400)=@framed, &(0x7f0000000340)='syzkaller\x00', 0x1, 0xbb, &(0x7f0000000180)=""/187, 0x0, 0x0, '\x00', 0x0, 0x18, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x2600}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, &(0x7f0000002cc0)={0x0, r0}, 0x10)

executing program 2:
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cgroup.controllers\x00', 0x275a, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
flistxattr(r0, 0x0, 0x0)

executing program 0:
r0 = creat(&(0x7f0000000300)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000280)='./bus\x00', 0x0)
ftruncate(r1, 0x12081ff)
r2 = open(&(0x7f0000000040)='./file0\x00', 0x147042, 0x0)
r3 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
fallocate(r3, 0x0, 0x0, 0x4003fe)
ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000140)={0x0, r0})

executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000940)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000016c0)={{0x14}, [@NFT_MSG_NEWRULE={0x38, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x4}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_USERDATA={0x5, 0x7, 0x1, 0x0, "c5"}]}], {0x14}}, 0x60}}, 0x0)

executing program 3:
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000180)=[{&(0x7f00000012c0)=""/112, 0x70}], 0x2, 0x0, 0x0)

executing program 2:
unshare(0x0)
r0 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000480)={0x90, r0, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x7c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x0, @dev}}, {0x20, 0x2, @in6={0xa, 0x0, 0x0, @remote}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x0, @dev}}, {0x14, 0x2, @in={0x2, 0x0, @private}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz1\x00'}, @TIPC_NLA_BEARER_PROP={0x4}]}]}, 0x90}}, 0x0)

[  241.789791][   T28] audit: type=1800 audit(1714210812.167:2): pid=5240 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="file0" dev="sda1" ino=1952 res=0 errno=0
[  241.883257][   T54] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  241.892145][   T54] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
executing program 0:
openat$cgroup_devices(0xffffffffffffffff, &(0x7f0000000080)='devices.deny\x00', 0x2, 0x0)
pwrite64(0xffffffffffffffff, &(0x7f0000000080)='=', 0x1, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
open(&(0x7f0000000080)='./file1\x00', 0x10b942, 0x0)

executing program 1:
socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'bridge_slave_0\x00'})
socket(0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
ioctl$TIOCL_SETSEL(r1, 0x541c, &(0x7f0000001900)={0x2, {0xc, 0x0, 0x0, 0x0, 0x100}})

executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
syz_clone3(&(0x7f0000002b40)={0x9010100, 0x0, 0x0, 0x0, {}, 0x0, 0xfffffe33, 0x0, &(0x7f0000002b00)=[0xffffffffffffffff], 0x1}, 0x58)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000140), 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f00000007c0)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x55}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioprio_get$uid(0x3, 0x0)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f0000000100013070000000000000000fc00"/32, @ANYRES32=0x0, @ANYBLOB="fc0200000000000000000000000000000000000032000000fc00000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ec00"/105], 0xf0}}, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r4, 0x8946, &(0x7f0000000540)={'lo\x00', &(0x7f0000000280)=@ethtool_per_queue_op={0xf}})
sendmsg$nl_xfrm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)=ANY=[@ANYBLOB="500100001000130700000000000000007f000001000000000000000000000000200100"/57, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="ffffffff0000000000000000000000000000000032000000ac1e000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000060001200726663343130362867636d286165732929000000000000000000004000"/227], 0x150}}, 0x0)
sendmsg$IPVS_CMD_DEL_SERVICE(0xffffffffffffffff, 0x0, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r0, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)={0x78, r1, 0x800, 0x70bd2a, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x7}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x81}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x1}, @IPVS_CMD_ATTR_SERVICE={0x44, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@dev={0xac, 0x14, 0x14, 0x36}}, @IPVS_SVC_ATTR_AF={0x6}, @IPVS_SVC_ATTR_AF={0x6}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x18}}, @IPVS_SVC_ATTR_AF={0x6}, @IPVS_SVC_ATTR_PE_NAME={0x8}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8}]}, 0x78}, 0x1, 0x0, 0x0, 0x20000010}, 0x4)
socket$inet_udplite(0x2, 0x2, 0x88)
r5 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_inet6_SIOCDIFADDR(r5, 0x8927, &(0x7f0000000000)={@private0={0xfc, 0x3a}})

[  242.271843][   T10] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  242.280086][   T10] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  242.341396][ T5251] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
executing program 2:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000980)='sys_exit\x00', r0}, 0x10)
timerfd_create(0x3, 0x0)

executing program 4:
r0 = socket$key(0xf, 0x3, 0x2)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={0x2, 0x0, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}}, @sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @private0}}]}, 0x60}}, 0x0)
sendmsg$key(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="0209000002"], 0x10}}, 0x0)

executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r0)
sendmsg$NFC_CMD_FW_DOWNLOAD(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1], 0x24}}, 0x0)

[  242.870324][ T5256] netlink: 96 bytes leftover after parsing attributes in process `syz-executor.3'.
[  242.926966][ T5256] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
executing program 1:
r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
ioctl$USBDEVFS_FREE_STREAMS(r0, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYBLOB="020023031000070060000000020000"])
ioctl$INCFS_IOC_PERMIT_FILL(r0, 0x4008550d, &(0x7f0000000080))

executing program 3:
syz_emit_ethernet(0x5e, &(0x7f0000000680)={@local, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "000210", 0x28, 0x3a, 0xff, @private0, @mcast2, {[], @ndisc_redir={0x89, 0x0, 0x0, '\x00', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @mcast2}}}}}}, 0x0)

executing program 2:
ioperm(0x0, 0x1, 0x1)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = open(&(0x7f0000000140)='./file1\x00', 0x10f0c2, 0x0)
sendfile(0xffffffffffffffff, r0, 0x0, 0x0)

executing program 4:
openat$random(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000001400000018000180140002006e657464657673696d30000000000000050019000000000008000e000000000008000f"], 0x44}}, 0x0)

executing program 0:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x5, 0x1, 0x1, 0x40}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000000180), 0x1003, r0}, 0x38)

executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001c2df6f270000000fad413ec50000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r0}, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r3=>0x0})
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="300000001c000100000000000000000007000000", @ANYRES32=r3, @ANYBLOB="000000000a0002002ee308099cc8f1ff050005"], 0x30}}, 0x0)

executing program 3:
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x9}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(r0, 0x8, &(0x7f0000000000)=0x9)
r1 = getpid()
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x0, &(0x7f0000000200))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f05ebbeed, 0x10, r2, 0x7745b000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
r5 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1770, 0xff00, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0xb}}}}]}}]}}, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r6}, 0x10)
syz_usb_control_io$hid(r5, 0x0, 0x0)
syz_usb_control_io$hid(r5, &(0x7f0000000d00)={0x24, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="00220b00000005a0a0"], 0x0}, 0x0)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x3208012, &(0x7f0000000300), 0x1, 0x551, &(0x7f0000000740)="$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")
r7 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r7, &(0x7f0000001fc0)=""/184, 0x6d)
mkdirat$cgroup(0xffffffffffffff9c, &(0x7f0000000000)='syz0\x00', 0x1ff)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)
write$cgroup_int(0xffffffffffffffff, 0x0, 0x0)

[  243.776265][   T28] audit: type=1800 audit(1714210814.127:3): pid=5270 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="file1" dev="sda1" ino=1942 res=0 errno=0
executing program 2:
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e24, @dev}, 0x10)
r1 = syz_io_uring_setup(0x23b, &(0x7f0000000080), &(0x7f0000000000)=<r2=>0x0, &(0x7f00000001c0)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000380)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r1, 0x2def, 0x0, 0x0, 0x0, 0x0)
shutdown(r0, 0x1)

executing program 4:
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
r0 = userfaultfd(0x80001)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000000)={&(0x7f000067d000/0x2000)=nil, &(0x7f000053d000/0x1000)=nil, 0x2000})
ioctl$UFFDIO_COPY(r0, 0xc028aa05, &(0x7f0000000180)={&(0x7f00002b9000/0x400000)=nil, &(0x7f00003ab000/0x2000)=nil, 0x400000, 0x2, 0x2})

[  244.372275][  T779] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  244.689941][  T779] usb 4-1: Using ep0 maxpacket: 16
executing program 1:
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=@newtaction={0x14}, 0x14}}, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone3(&(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000100), 0x2}, 0xaa)

[  244.830606][  T779] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  244.842121][  T779] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  244.852341][  T779] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  244.865704][  T779] usb 4-1: New USB device found, idVendor=1770, idProduct=ff00, bcdDevice= 0.00
[  244.878145][  T779] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  244.958842][  T779] usb 4-1: config 0 descriptor??
executing program 0:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x5, 0x2, 0x4}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000003000000850000008600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000cdd765786f80548700000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001040)={&(0x7f0000001000)='signal_generate\x00', r2}, 0x10)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r3}, 0x10)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='io.stat\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000100), 0xfecc)

executing program 2:
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = socket(0x10, 0x803, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0xffffffffffffff34, &(0x7f0000000080)={0x0, 0xb8}}, 0x0)
getsockname$packet(r0, &(0x7f0000000000)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x3c)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYBLOB="28000000140001000000000000000000021f0000", @ANYRES32=r1, @ANYBLOB="08000200ac1414"], 0x28}}, 0x0)

executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000940)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000016c0)={{0x14}, [@NFT_MSG_NEWRULE={0x38, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x4}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_USERDATA={0x5, 0x7, 0x1, 0x0, "c5"}]}], {0x14}}, 0x60}}, 0x0)

[  245.487342][  T779] gt683r_led 0003:1770:FF00.0001: unknown main item tag 0x7
[  245.500424][  T779] gt683r_led 0003:1770:FF00.0001: unbalanced collection at end of report description
[  245.617261][ T5015] =====================================================
[  245.624565][ T5015] BUG: KMSAN: uninit-value in htab_lru_percpu_map_lookup_elem+0x39a/0x580
[  245.633247][ T5015]  htab_lru_percpu_map_lookup_elem+0x39a/0x580
[  245.639583][ T5015]  bpf_map_lookup_elem+0x5c/0x80
[  245.644706][ T5015]  ___bpf_prog_run+0x13fe/0xe0f0
[  245.649813][ T5015]  __bpf_prog_run32+0xb2/0xe0
[  245.654632][ T5015]  bpf_trace_run5+0x16f/0x350
[  245.659437][ T5015]  __bpf_trace_signal_generate+0x45/0x60
[  245.665278][ T5015]  __send_signal_locked+0x1157/0x1200
[  245.670783][ T5015]  send_signal_locked+0x761/0xa50
[  245.675941][ T5015]  do_send_sig_info+0x19b/0x240
[  245.680924][ T5015]  do_send_specific+0x21e/0x350
[  245.685914][ T5015]  __x64_sys_tgkill+0x304/0x3d0
[  245.690929][ T5015]  x64_sys_call+0x2c5d/0x3b50
[  245.695788][ T5015]  do_syscall_64+0xcf/0x1e0
[  245.700544][ T5015]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  245.706646][ T5015] 
[  245.709064][ T5015] Local variable stack created at:
[  245.714268][ T5015]  __bpf_prog_run32+0x43/0xe0
[  245.719082][ T5015]  bpf_trace_run5+0x16f/0x350
[  245.723890][ T5015] 
[  245.726283][ T5015] CPU: 0 PID: 5015 Comm: syz-fuzzer Not tainted 6.9.0-rc5-syzkaller-00296-g5eb4573ea63d #0
[  245.736397][ T5015] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[  245.746561][ T5015] =====================================================
[  245.753569][ T5015] Disabling lock debugging due to kernel taint
[  245.759807][ T5015] Kernel panic - not syncing: kmsan.panic set ...
[  245.766341][ T5015] CPU: 0 PID: 5015 Comm: syz-fuzzer Tainted: G    B              6.9.0-rc5-syzkaller-00296-g5eb4573ea63d #0
[  245.777946][ T5015] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[  245.788119][ T5015] Call Trace:
[  245.791488][ T5015]  <TASK>
[  245.794501][ T5015]  dump_stack_lvl+0x216/0x2d0
[  245.799341][ T5015]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  245.805320][ T5015]  dump_stack+0x1e/0x30
[  245.809625][ T5015]  panic+0x4e2/0xcd0
[  245.813702][ T5015]  ? kmsan_get_metadata+0x91/0x1d0
[  245.818981][ T5015]  kmsan_report+0x2d5/0x2e0
[  245.823643][ T5015]  ? __msan_warning+0x95/0x120
[  245.828586][ T5015]  ? htab_lru_percpu_map_lookup_elem+0x39a/0x580
[  245.835091][ T5015]  ? bpf_map_lookup_elem+0x5c/0x80
[  245.840367][ T5015]  ? ___bpf_prog_run+0x13fe/0xe0f0
[  245.845629][ T5015]  ? __bpf_prog_run32+0xb2/0xe0
[  245.850634][ T5015]  ? bpf_trace_run5+0x16f/0x350
[  245.855645][ T5015]  ? __bpf_trace_signal_generate+0x45/0x60
[  245.861668][ T5015]  ? __send_signal_locked+0x1157/0x1200
[  245.867418][ T5015]  ? send_signal_locked+0x761/0xa50
[  245.872769][ T5015]  ? do_send_sig_info+0x19b/0x240
[  245.877973][ T5015]  ? do_send_specific+0x21e/0x350
[  245.883149][ T5015]  ? __x64_sys_tgkill+0x304/0x3d0
[  245.888345][ T5015]  ? x64_sys_call+0x2c5d/0x3b50
[  245.893359][ T5015]  ? do_syscall_64+0xcf/0x1e0
[  245.898183][ T5015]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  245.904413][ T5015]  ? kernel_text_address+0x129/0x1b0
[  245.909909][ T5015]  ? kmsan_get_metadata+0x146/0x1d0
[  245.915268][ T5015]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  245.921229][ T5015]  ? jhash+0x5fc/0x720
[  245.925448][ T5015]  ? filter_irq_stacks+0x60/0x1a0
[  245.930678][ T5015]  ? kmsan_get_metadata+0x146/0x1d0
[  245.936019][ T5015]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  245.941987][ T5015]  __msan_warning+0x95/0x120
[  245.946786][ T5015]  htab_lru_percpu_map_lookup_elem+0x39a/0x580
[  245.953129][ T5015]  ? kmsan_get_metadata+0x146/0x1d0
[  245.958471][ T5015]  ? __pfx_htab_lru_percpu_map_lookup_elem+0x10/0x10
[  245.965328][ T5015]  bpf_map_lookup_elem+0x5c/0x80
[  245.970432][ T5015]  ___bpf_prog_run+0x13fe/0xe0f0
[  245.975520][ T5015]  ? kmsan_get_metadata+0x146/0x1d0
[  245.980880][ T5015]  __bpf_prog_run32+0xb2/0xe0
[  245.985707][ T5015]  ? kmsan_get_metadata+0x146/0x1d0
[  245.991060][ T5015]  ? __pfx___bpf_prog_run32+0x10/0x10
[  245.996583][ T5015]  bpf_trace_run5+0x16f/0x350
[  246.001419][ T5015]  ? kmsan_get_metadata+0x146/0x1d0
[  246.006779][ T5015]  __bpf_trace_signal_generate+0x45/0x60
[  246.012627][ T5015]  __send_signal_locked+0x1157/0x1200
[  246.018189][ T5015]  send_signal_locked+0x761/0xa50
[  246.023371][ T5015]  do_send_sig_info+0x19b/0x240
[  246.028370][ T5015]  do_send_specific+0x21e/0x350
[  246.033379][ T5015]  __x64_sys_tgkill+0x304/0x3d0
[  246.038416][ T5015]  x64_sys_call+0x2c5d/0x3b50
[  246.043266][ T5015]  do_syscall_64+0xcf/0x1e0
[  246.047919][ T5015]  ? clear_bhb_loop+0x25/0x80
[  246.052799][ T5015]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  246.058901][ T5015] RIP: 0033:0x472816
[  246.062927][ T5015] Code: c3 cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 48 8b 54 24 18 b8 ea 00 00 00 0f 05 <c3> cc cc cc cc cc cc cc cc cc 8b 7c 24 08 48 8b 74 24 10 48 8b 54
[  246.082732][ T5015] RSP: 002b:000000c00006bea0 EFLAGS: 00000202 ORIG_RAX: 00000000000000ea
[  246.091425][ T5015] RAX: ffffffffffffffda RBX: 0000000000000017 RCX: 0000000000472816
[  246.099546][ T5015] RDX: 0000000000000017 RSI: 000000000000146a RDI: 0000000000001396
[  246.107644][ T5015] RBP: 000000c00006bec8 R08: 0000000000000164 R09: 00007f35971350b0
[  246.115745][ T5015] R10: 00007f3597135080 R11: 0000000000000202 R12: 000000c00006bf18
[  246.123843][ T5015] R13: 000000c001035c00 R14: 000000c0000064e0 R15: 000000000000000d
[  246.131967][ T5015]  </TASK>
[  246.135201][ T5015] Kernel Offset: disabled
[  246.139598][ T5015] Rebooting in 86400 seconds..