last executing test programs: 45.433326906s ago: executing program 4 (id=2662): r0 = syz_io_uring_setup(0x24f8, &(0x7f0000000300)={0x0, 0x0, 0x10100, 0x0, 0x36f}, &(0x7f0000000100)=0x0, &(0x7f0000000080)=0x0) renameat2(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x89}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r3 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x0, 0x0, 0x10001, 0x9, 0x1}, 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) r5 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffc) add_key(&(0x7f0000000440)='asymmetric\x00', 0x0, &(0x7f00000008c0)="308010", 0x10, r5) add_key$user(&(0x7f00000000c0), 0x0, &(0x7f00000003c0)="5c473b2212441647836b8e653b0049c405abbc0f83e189e58f0b55bc1f32c66725ffe3ffdd280aff527ed84824c982067ebdca", 0x33, r5) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x141f029329606bb5, 0x0) r6 = socket$caif_seqpacket(0x25, 0x5, 0x0) syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r6, 0x0, 0x0}) io_uring_enter(r0, 0x5b43, 0x0, 0x0, 0x0, 0x0) 43.406411485s ago: executing program 4 (id=2671): bpf$MAP_CREATE(0x0, &(0x7f0000001400)=@base={0xb, 0x6, 0x4, 0x3a7, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1}, 0x48) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000200), 0xc0200, 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TUNSETOFFLOAD(r1, 0xc004743e, 0x20001403) ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000100)=0x3) r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$PPPIOCATTACH(r2, 0x4004743d, &(0x7f0000000040)=0x3) r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) ioctl$PPPIOCNEWUNIT(r3, 0xc004743e, &(0x7f0000000340)=0x4) epoll_create1(0x0) close(r0) 41.677736585s ago: executing program 4 (id=2677): sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) socket$packet(0x11, 0x3, 0x300) r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_REQ_SET_REG(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r2, 0x1, 0x0, 0x0, {}, [@NL80211_ATTR_REG_ALPHA2={0x7, 0x21, 'bb\x00'}]}, 0x1c}}, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_GET_REG(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x14, r0, 0x394c5f638d9ef28b}, 0x14}}, 0x24008800) 40.429826166s ago: executing program 4 (id=2679): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x0, 0x0) sched_setscheduler(r0, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00'}, 0x10) socket$inet6_tcp(0xa, 0x1, 0x0) socket$nl_xfrm(0x10, 0x3, 0x6) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r3, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000700)=ANY=[@ANYBLOB="b4050000200080006110600000000000c60000000000000095000000000000009f33ef60916e6e893f1eeb0be20000d072f5b89c3043c47c896ce0bc8731fa595b6b4d45ef26dcca5582054d54d53cd2b685b431c70ea948259c4c869b4fc8db714e4b94bdae214fa68a051d4dca7d2647bec1fc89398d2b9000f224891060017c4700de60beac671e8e8f00cb03588aa6007e71f871ab5c2ff88afc6002084e5b52710aeee835cf0d78e45f70983826fb8579c1fb47d2c59005cff414ed55b0d18a9d446935fb332bb593ee341ab59016f81860324b800c00000000000092d9c5fe34ccb80a61ffcb3363073f"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90) r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x12, 0x4, 0x4, 0x12}, 0x48) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@map=r5, r4, 0x26}, 0x10) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000048c0)={r5, &(0x7f00000047c0), &(0x7f0000004880)=@udp=r3}, 0x20) recvmmsg(r3, &(0x7f0000002100)=[{{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000000340)=""/157, 0x9d}], 0x1}}], 0x1, 0x0, 0x0) 35.984296022s ago: executing program 4 (id=2689): r0 = semget$private(0x0, 0x6, 0x0) semtimedop(0x0, 0x0, 0x0, 0x0) semtimedop(0x0, &(0x7f0000000040)=[{}, {}], 0x2, 0x0) semop(r0, &(0x7f00000000c0)=[{0x1, 0x0, 0x800}, {0x0, 0x0, 0xb1c8eee2728436fa}], 0x2) semctl$SETALL(0x0, 0x0, 0x11, &(0x7f00000003c0)) 35.804981175s ago: executing program 4 (id=2692): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x20000000000}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_open_procfs(0x0, 0x0) epoll_create1(0x0) socket$unix(0x1, 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$sock_int(r3, 0x1, 0x24, &(0x7f0000000200)=0x7, 0x4) bind$inet6(r3, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f00000001c0)={0x3, &(0x7f0000000040)=[{0x30, 0x0, 0x0, 0x9725}, {0x20, 0x0, 0x0, 0xfffff010}, {0x6}]}, 0x10) dup(0xffffffffffffffff) listen(r3, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x3e0, 0x1b0, 0xc8, 0x8, 0x1b0, 0x5803, 0x310, 0x2e8, 0x2e8, 0x310, 0x2e8, 0x3, 0x0, {[{{@ipv6={@loopback, @mcast1, [], [], 'erspan0\x00', 'geneve1\x00'}, 0x0, 0x190, 0x1b0, 0x0, {0x0, 0x2000000000000}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'kmp\x00', "cfcaf80c672f61cd17ae5119b5135c2aee68d23a465cd431e1ecef50c3234e082555f67222476147864fa03182f5cf11d8c348cbd06dc8de1dcbde7d4e252c3394fed47bf78c70f607b0178fa5ea335019ac07a602061c96baebc989f1f34a214e67442c1fe4b124e0f7323a587d2a1fcfe36bbf12eca0a7b66c60c527bac2b5", 0x1}}, @common=@inet=@socket1={{0x28}, 0xa490f54eab606508}]}, @unspec=@TRACE={0x20}}, {{@ipv6={@remote, @mcast2, [], [], 'macvtap0\x00', 'syzkaller1\x00'}, 0x0, 0xf8, 0x160, 0x0, {}, [@inet=@rpfilter={{0x28}}, @inet=@rpfilter={{0x28}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x440) 17.54966936s ago: executing program 0 (id=2740): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10) r2 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) sendmmsg$inet(r2, &(0x7f0000003b00)=[{{&(0x7f0000000880)={0x2, 0x0, @empty}, 0x10, 0x0}}], 0x1, 0x0) 16.234629397s ago: executing program 0 (id=2746): ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) open(0x0, 0x60c2, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) sched_setscheduler(0x0, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) preadv(r0, 0x0, 0x0, 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff) socket$inet6_tcp(0xa, 0x1, 0x0) socket$nl_route(0x10, 0x3, 0x0) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x3, 0x3, &(0x7f0000000480)=@framed, &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r2 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{r2}, &(0x7f0000000600), &(0x7f0000000640)=r1}, 0x1c) 16.033107678s ago: executing program 0 (id=2750): sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, 0x0, 0x0) socket$packet(0x11, 0x3, 0x300) r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) sendmsg$NL80211_CMD_REQ_SET_REG(r1, 0x0, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_GET_REG(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x14, r0, 0x394c5f638d9ef28b}, 0x14}}, 0x24008800) 14.640027267s ago: executing program 0 (id=2754): prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket(0x10, 0x803, 0x0) sendmsg$SMC_PNETID_GET(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0) getsockname$packet(r4, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x0) sendmsg$nl_route(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000006c0)=@newlink={0x40, 0x10, 0x437, 0x0, 0x0, {0x0, 0x0, 0x0, r5, 0x4048b}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @sit={{0x8}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPTUN_LINK={0x8, 0x1, r5}]}}}, @IFLA_NUM_TX_QUEUES={0x8, 0x1f, 0x9}]}, 0x40}}, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x4, 0x5}, 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00'}, 0x10) r6 = socket$can_raw(0x1d, 0x3, 0x1) setsockopt$CAN_RAW_ERR_FILTER(r6, 0x65, 0x2, &(0x7f0000000400)=0x3, 0x4) setsockopt(r6, 0x65, 0x1, &(0x7f0000000080), 0x1d0) ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, 0x0) bind$can_raw(r6, &(0x7f00000001c0), 0x10) pipe2$9p(0x0, 0x0) 12.294879089s ago: executing program 3 (id=2760): r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r0) ptrace$setregset(0x4205, r0, 0x1, &(0x7f0000000000)={&(0x7f0000003080)="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", 0x2fa}) 12.132254595s ago: executing program 3 (id=2761): socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x20000000000}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x10, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_open_procfs(0x0, 0x0) epoll_create1(0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r3, 0x0, 0x0) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x0, 0x0) chdir(&(0x7f0000000240)='./file0\x00') mkdir(&(0x7f0000000000)='./control\x00', 0x0) open$dir(&(0x7f00000002c0)='./control/file0\x00', 0xc4540, 0x0) open(&(0x7f0000022ff6)='./control\x00', 0x0, 0x0) rmdir(&(0x7f0000000040)='./control\x00') 10.928794353s ago: executing program 3 (id=2763): r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r0, 0x29, 0x35, &(0x7f0000000000)=0x8000, 0x4) setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000140)=ANY=[], 0x8) bind$inet6(r0, 0x0, 0x0) setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x3b, &(0x7f0000000080)=ANY=[], 0x8) recvmmsg(r0, &(0x7f000000a2c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000005ac0)=""/17, 0x11}}], 0x1, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x44000, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c) 10.851659156s ago: executing program 0 (id=2764): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f00000002c0)={'wg2\x00', 0x0}) sendmsg$WG_CMD_SET_DEVICE(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001300)=ANY=[@ANYBLOB='h\x00', @ANYRES16=r2, @ANYBLOB="05002abd7000fddbdf25010000004c0008804800008024000100dbfffffffffffffffffffffffffffffffffffffffff0ffffffffffffffffffff050009801c000080060001000200000008000200ffffffff050003004200000008000100", @ANYRES32=r3], 0x68}}, 0x40) 10.689793846s ago: executing program 0 (id=2766): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x50, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b7040000000000008500000043"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) syz_clone(0x640c7016, 0x0, 0x0, 0x0, 0x0, 0x0) 9.574979323s ago: executing program 3 (id=2775): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f00000002c0)={'wg2\x00', 0x0}) sendmsg$WG_CMD_SET_DEVICE(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001300)=ANY=[@ANYBLOB='h\x00', @ANYRES16=r2, @ANYBLOB="05002abd7000fddbdf25010000004c0008804800008024000100dbfffffffffffffffffffffffffffffffffffffffff0ffffffffffffffffffff050009801c000080060001000200000008000200ffffffff050003004200000008000100", @ANYRES32=r3], 0x68}}, 0x40) 8.699102156s ago: executing program 3 (id=2776): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xc, 0xd944, 0xdffffdfb, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x10}, 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10) socketpair$nbd(0x1, 0x1, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TUNSETOFFLOAD(r1, 0xc004743e, 0x20001400) ioctl$TUNSETOFFLOAD(r1, 0x8004745a, 0x2000000c) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1}) r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r4 = openat$cgroup_subtree(r3, &(0x7f0000000200), 0x2, 0x0) write$cgroup_subtree(r4, &(0x7f0000000400)=ANY=[@ANYBLOB='-cpu'], 0x5) write$cgroup_subtree(r4, &(0x7f0000000300)=ANY=[@ANYBLOB="2b6320d23fbb0758011e3715fec883a6ac52d88882530a7eea90572f93c3af1bdc0e7eefe7db0484e331745daf66cb9fdbe615fe7d3609780800c773b23ec53ba87e4aba74820b0469f411e60b761f2270bd1db1e2145d3606a21dc694b2e4e80127f3eb140932d71944bd0f5f03489c1aa170beb4ae4d6f25e1ec845081e798629558d83b5ab59601266ea61746544c2d"], 0xb) ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000180)={'gre0\x00', &(0x7f0000000100)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0xc, 0x4, 0x0, 0x0, 0x30, 0x2, 0x0, 0x0, 0x0, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@timestamp={0x44, 0x1c, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x200000, 0xffffffff, 0x6]}]}}}}}) userfaultfd(0x801) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0) 7.315357124s ago: executing program 1 (id=2782): r0 = syz_clone(0x3000000, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$netlink(r1, &(0x7f0000002500)={0x0, 0x0, &(0x7f0000001e40)=[{&(0x7f0000000a00)={0x10, 0x28, 0x20, 0x70bd25, 0x25dfdbff}, 0x10}], 0x1, &(0x7f0000002380)=[@cred={{0x1c, 0x1, 0x2, {r0}}}, @rights={{0x10}}], 0x30}, 0x4004080) 7.164359398s ago: executing program 1 (id=2783): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_DELFLOWTABLE={0x20, 0x18, 0xa, 0x101, 0xb00, 0x0, {0x1}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0x48}}, 0x0) 6.50476042s ago: executing program 2 (id=2784): r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r0, 0x29, 0x35, &(0x7f0000000000)=0x8000, 0x4) setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000140)=ANY=[], 0x8) bind$inet6(r0, 0x0, 0x0) setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x3b, &(0x7f0000000080)=ANY=[], 0x8) recvmmsg(r0, &(0x7f000000a2c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000005ac0)=""/17, 0x11}}], 0x1, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x44000, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c) 6.396340203s ago: executing program 1 (id=2785): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f00000002c0)={'wg2\x00', 0x0}) sendmsg$WG_CMD_SET_DEVICE(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001300)=ANY=[@ANYBLOB='h\x00', @ANYRES16=r2, @ANYBLOB="05002abd7000fddbdf25010000004c0008804800008024000100dbfffffffffffffffffffffffffffffffffffffffff0ffffffffffffffffffff050009801c000080060001000200000008000200ffffffff050003004200000008000100", @ANYRES32=r3], 0x68}}, 0x40) 6.331514799s ago: executing program 1 (id=2786): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) syz_emit_ethernet(0x0, 0x0, 0x0) r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) r5 = fanotify_init(0x200, 0x0) fanotify_mark(r5, 0x201, 0x4800003e, r4, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events.local\x00', 0x275a, 0x0) 6.131299559s ago: executing program 3 (id=2787): prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket(0x10, 0x803, 0x0) sendmsg$SMC_PNETID_GET(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0) getsockname$packet(r4, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14) sendmsg$nl_route(r3, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x4, 0x5}, 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00'}, 0x10) r5 = socket$can_raw(0x1d, 0x3, 0x1) setsockopt$CAN_RAW_ERR_FILTER(r5, 0x65, 0x2, &(0x7f0000000400)=0x3, 0x4) setsockopt(r5, 0x65, 0x1, &(0x7f0000000080), 0x1d0) ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, 0x0) bind$can_raw(r5, &(0x7f00000001c0), 0x10) pipe2$9p(0x0, 0x0) 4.440311573s ago: executing program 2 (id=2788): recvmmsg(0xffffffffffffffff, &(0x7f0000000080)=[{{0x0, 0x0, 0x0}}], 0x40000000000012d, 0x2, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=""/25, 0x13}}], 0x1, 0x0, 0x0) setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x6, &(0x7f0000000180)=0x6, 0x4) setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000140)=0x6, 0x4) bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) syz_emit_ethernet(0x36, &(0x7f00000002c0)={@broadcast, @link_local, @void, {@ipv4={0x800, @udp={{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty, {[@timestamp={0x44, 0x4, 0xc6}]}}, {0x0, 0x4e20, 0x10, 0x0, @gue={{0x2}}}}}}}, 0x0) 4.364575664s ago: executing program 2 (id=2789): r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000d00000295"], &(0x7f0000000700)='GPL\x00'}, 0x90) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000740)={r0, 0xe0, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000011000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r3}, 0x10) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000780)={r1}, 0x4) 4.281345043s ago: executing program 2 (id=2790): r0 = semget$private(0x0, 0x6, 0x0) semtimedop(0x0, &(0x7f0000000180)=[{0x0, 0xfff}], 0x1, 0x0) semtimedop(0x0, &(0x7f0000000040)=[{}, {}], 0x2, 0x0) semop(r0, &(0x7f00000000c0)=[{0x1, 0x0, 0x800}], 0x1) semctl$SETALL(0x0, 0x0, 0x11, &(0x7f00000003c0)) 4.100377832s ago: executing program 2 (id=2791): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000100), 0xfecc) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r0, 0x0) r1 = socket(0xa, 0x6, 0x0) getsockopt$inet6_mreq(r1, 0x10d, 0xf9, 0x0, &(0x7f0000000000)) 4.08843778s ago: executing program 2 (id=2792): socket$nl_xfrm(0x10, 0x3, 0x6) r0 = semget(0xffffffffffffffff, 0x3, 0x410) prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1) r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) ioctl$VHOST_SET_OWNER(r1, 0xaf01, 0x0) r2 = eventfd2(0x0, 0x0) ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000000)={0x0, r2}) semtimedop(r0, 0x0, 0x0, 0x0) clock_getres(0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r3 = getpid() sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7) r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x2c41, 0x10) flock(r4, 0x5) r5 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0) flock(r5, 0x2) timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21}, &(0x7f0000000040)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r6 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0) flock(r6, 0x2) sendmsg$key(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0) 2.250176384s ago: executing program 1 (id=2793): gettid() openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000d8d60b007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7020000ffff0000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10) kcmp(0x0, 0x0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff) r3 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r6 = socket$inet6_udplite(0xa, 0x2, 0x88) sendmsg$inet6(r6, &(0x7f0000002280)={&(0x7f0000001e40)={0xa, 0x4e24, 0x0, @remote}, 0x1c, 0x0, 0x0, &(0x7f0000003700)=ANY=[@ANYBLOB="b005000000000000290000003600000000b2"], 0x5b0}, 0x20008001) sendmsg$inet6(r6, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000280)="3cb7e9e5c30a05c41dd519ab070a98338518476f7b4ee0b1c320fdc6d96ca36805a6391803b3e80000000008b2d6896eb095a97590d01089d7e1a85df4dfa1c226da1baab7e9474cd7c25d7fcb8e77d641098a19ee", 0x55}], 0x1}, 0x0) r7 = socket$inet6_icmp(0xa, 0x2, 0x3a) setsockopt$inet6_IPV6_XFRM_POLICY(r7, 0x29, 0x23, &(0x7f00000004c0)={{{@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @in=@loopback, 0x4e21, 0x4, 0x4e20, 0x7f, 0x2, 0xa0, 0x20, 0x89874b02b691363f, 0x0, 0xee01}, {0xbddc, 0x400000000000000, 0x3, 0x3, 0x9, 0x9, 0x7, 0x6}, {0xf07, 0x4, 0x0, 0x7}, 0x7fffffff, 0x6e6bc0, 0x1, 0x0, 0x5, 0x1}, {{@in=@loopback, 0x4d3, 0x3c}, 0x2, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x34ff, 0x0, 0x3, 0x3, 0x4, 0xe6b}}, 0xe8) 0s ago: executing program 1 (id=2795): sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x0) ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'sit0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0xf, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast, @remote, {[@timestamp={0x44, 0x1c, 0x0, 0x0, 0x0, [0x401, 0x0, 0x0, 0x0, 0x0, 0x0]}, @timestamp_prespec={0x44, 0x4}, @timestamp_prespec={0x44, 0x4}, @noop]}}}}}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x0) kernel console output (not intermixed with test programs): atadv_slave_1 [ 754.207988][T11355] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 754.248646][T11355] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 754.289857][T11355] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 754.320772][T11355] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 754.353592][T11355] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 755.181563][T11607] binder: 11603:11607 ioctl c0306201 0 returned -14 [ 755.871384][T11355] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 756.118677][T11355] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 756.161506][T11355] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 756.170268][T11355] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 756.179286][T11355] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 756.640189][ T2518] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 756.685359][ T2518] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 757.061641][ T2518] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 757.124139][ T2518] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 760.307294][T11651] binder: 11641:11651 ioctl c0306201 0 returned -14 [ 768.628826][T11741] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1978'. [ 782.144168][ T4613] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 782.157620][ T4613] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 782.167586][ T4613] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 782.178844][ T4613] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 782.186788][ T4613] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 782.195000][ T4613] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 782.390246][T10789] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 782.424895][T10789] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 782.436841][T10789] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 782.457496][T10789] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 782.466581][T10789] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 782.474098][T10789] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 782.554405][T10789] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 782.583619][ T4613] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 782.591833][ T4613] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 782.600136][ T4613] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 782.608347][ T4613] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 782.615796][ T4613] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 783.190170][T11798] chnl_net:caif_netlink_parms(): no params data found [ 783.339383][T11798] bridge0: port 1(bridge_slave_0) entered blocking state [ 783.353041][T11798] bridge0: port 1(bridge_slave_0) entered disabled state [ 783.360372][T11798] bridge_slave_0: entered allmulticast mode [ 783.375177][T11798] bridge_slave_0: entered promiscuous mode [ 783.390760][T11798] bridge0: port 2(bridge_slave_1) entered blocking state [ 783.400594][T11798] bridge0: port 2(bridge_slave_1) entered disabled state [ 783.414653][T11798] bridge_slave_1: entered allmulticast mode [ 783.438581][T11798] bridge_slave_1: entered promiscuous mode [ 783.509300][T11798] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 783.531040][T11798] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 783.628858][T11798] team0: Port device team_slave_0 added [ 783.673308][T11798] team0: Port device team_slave_1 added [ 783.767439][T11798] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 783.781340][T11798] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 783.815674][T11798] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 783.839655][T11798] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 783.852620][T11798] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 783.889009][T11798] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 783.960121][T11798] hsr_slave_0: entered promiscuous mode [ 783.975935][T11798] hsr_slave_1: entered promiscuous mode [ 783.988937][T11798] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 784.003262][T11798] Cannot create hsr debugfs directory [ 784.340753][T11798] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 784.391542][T10789] Bluetooth: hci4: command tx timeout [ 784.635401][T11826] netlink: 'syz.0.2002': attribute type 8 has an invalid length. [ 784.707448][T10789] Bluetooth: hci6: command tx timeout [ 784.707492][ T5238] Bluetooth: hci1: command tx timeout [ 784.746182][T11798] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 784.962987][T11798] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 785.060958][T11794] chnl_net:caif_netlink_parms(): no params data found [ 785.134219][T11798] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 785.494185][T11794] bridge0: port 1(bridge_slave_0) entered blocking state [ 785.502071][T11794] bridge0: port 1(bridge_slave_0) entered disabled state [ 785.509242][T11794] bridge_slave_0: entered allmulticast mode [ 785.521130][T11794] bridge_slave_0: entered promiscuous mode [ 785.530011][T11794] bridge0: port 2(bridge_slave_1) entered blocking state [ 785.546370][T11794] bridge0: port 2(bridge_slave_1) entered disabled state [ 785.555142][T11794] bridge_slave_1: entered allmulticast mode [ 785.562635][T11794] bridge_slave_1: entered promiscuous mode [ 785.663422][T11801] chnl_net:caif_netlink_parms(): no params data found [ 785.681065][T11798] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 785.696425][T11794] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 785.709555][T11794] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 785.734218][T11798] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 785.752888][T11798] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 785.815499][ T53] bridge_slave_0: left allmulticast mode [ 785.830904][ T53] bridge_slave_0: left promiscuous mode [ 785.837201][ T53] bridge0: port 1(bridge_slave_0) entered disabled state [ 786.262177][ T53] dvmrp5 (unregistering): left allmulticast mode [ 786.461459][ T5238] Bluetooth: hci4: command tx timeout [ 786.841636][ T5238] Bluetooth: hci6: command tx timeout [ 786.849896][T10789] Bluetooth: hci1: command tx timeout [ 786.935720][ T53] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 786.967544][ T53] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 786.988152][ T53] bond0 (unregistering): Released all slaves [ 787.124945][T11798] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 787.215404][T11794] team0: Port device team_slave_0 added [ 787.318624][T11794] team0: Port device team_slave_1 added [ 787.509700][T11801] bridge0: port 1(bridge_slave_0) entered blocking state [ 787.523762][T11801] bridge0: port 1(bridge_slave_0) entered disabled state [ 787.531069][T11801] bridge_slave_0: entered allmulticast mode [ 787.539769][T11801] bridge_slave_0: entered promiscuous mode [ 787.602282][T11794] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 787.609866][T11794] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 787.636572][T11794] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 787.651118][T11794] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 787.658503][T11794] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 787.693556][T11794] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 787.723935][T11801] bridge0: port 2(bridge_slave_1) entered blocking state [ 787.739186][T11801] bridge0: port 2(bridge_slave_1) entered disabled state [ 787.763877][T11801] bridge_slave_1: entered allmulticast mode [ 787.780163][T11801] bridge_slave_1: entered promiscuous mode [ 787.811024][ T53] hsr_slave_0: left promiscuous mode [ 787.819841][ T53] hsr_slave_1: left promiscuous mode [ 787.830994][ T53] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 787.839215][ T53] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 788.467243][ T53] pimreg (unregistering): left allmulticast mode [ 788.553453][T10789] Bluetooth: hci4: command tx timeout [ 788.721803][ T7196] usb 1-1: new high-speed USB device number 20 using dummy_hcd [ 788.861676][ T5238] Bluetooth: hci6: command tx timeout [ 788.867288][T10789] Bluetooth: hci1: command tx timeout [ 788.921607][ T7196] usb 1-1: Using ep0 maxpacket: 16 [ 788.937832][ T7196] usb 1-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1 [ 788.956020][ T7196] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 788.965303][ T7196] usb 1-1: Product: syz [ 788.970825][ T53] team0 (unregistering): Port device team_slave_1 removed [ 788.978396][ T7196] usb 1-1: Manufacturer: syz [ 788.985782][ T7196] usb 1-1: SerialNumber: syz [ 788.996796][ T7196] usb 1-1: config 0 descriptor?? [ 789.036936][ T53] team0 (unregistering): Port device team_slave_0 removed [ 789.639166][T11801] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 789.674909][T11801] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 789.702993][T11794] hsr_slave_0: entered promiscuous mode [ 789.709809][T11794] hsr_slave_1: entered promiscuous mode [ 789.716877][T11794] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 789.727440][T11794] Cannot create hsr debugfs directory [ 789.738058][T11877] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 789.897467][T11801] team0: Port device team_slave_0 added [ 789.932976][T11801] team0: Port device team_slave_1 added [ 790.016000][T11798] 8021q: adding VLAN 0 to HW filter on device bond0 [ 790.075441][T11801] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 790.088366][T11801] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 790.115320][T11801] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 790.137836][T11801] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 790.157429][T11801] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 790.185119][T11801] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 790.634468][T10789] Bluetooth: hci4: command tx timeout [ 790.982024][T10789] Bluetooth: hci1: command tx timeout [ 790.982228][ T5238] Bluetooth: hci6: command tx timeout [ 793.219396][ T7196] usb 1-1: USB disconnect, device number 20 [ 793.253238][T11798] 8021q: adding VLAN 0 to HW filter on device team0 [ 793.437680][ T1833] bridge0: port 1(bridge_slave_0) entered blocking state [ 793.444900][ T1833] bridge0: port 1(bridge_slave_0) entered forwarding state [ 793.520139][T11801] hsr_slave_0: entered promiscuous mode [ 793.527553][T11801] hsr_slave_1: entered promiscuous mode [ 793.534776][T11801] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 793.544471][T11801] Cannot create hsr debugfs directory [ 793.674629][T11794] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 793.753307][ T1283] bridge0: port 2(bridge_slave_1) entered blocking state [ 793.760497][ T1283] bridge0: port 2(bridge_slave_1) entered forwarding state [ 793.885753][T11794] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 793.957150][T11798] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 794.001556][T11798] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 794.199254][T11794] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 794.409023][T11794] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 794.764486][ T35] bridge_slave_1: left allmulticast mode [ 794.770290][ T35] bridge_slave_1: left promiscuous mode [ 794.806638][ T35] bridge0: port 2(bridge_slave_1) entered disabled state [ 794.845451][ T35] bridge_slave_0: left allmulticast mode [ 794.866549][ T35] bridge_slave_0: left promiscuous mode [ 794.882322][ T35] bridge0: port 1(bridge_slave_0) entered disabled state [ 794.913164][ T35] bridge_slave_1: left allmulticast mode [ 794.933451][ T35] bridge_slave_1: left promiscuous mode [ 794.952726][ T35] bridge0: port 2(bridge_slave_1) entered disabled state [ 794.971768][ T35] bridge_slave_0: left allmulticast mode [ 794.977597][ T35] bridge_slave_0: left promiscuous mode [ 794.992707][ T35] bridge0: port 1(bridge_slave_0) entered disabled state [ 796.743093][ T35] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 796.755093][ T35] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 796.766058][ T35] bond0 (unregistering): Released all slaves [ 796.909461][ T35] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 796.921920][ T35] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 796.934650][ T35] bond0 (unregistering): Released all slaves [ 797.234021][T11798] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 797.543926][T11794] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 797.615662][T11794] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 797.742222][T11794] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 797.961131][T11794] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 798.281605][T11798] veth0_vlan: entered promiscuous mode [ 798.565480][T11798] veth1_vlan: entered promiscuous mode [ 798.710793][ T35] hsr_slave_0: left promiscuous mode [ 798.717214][T10789] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 798.728388][T10789] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 798.736600][T10789] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 798.748877][T10789] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 798.756837][T10789] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 798.764441][T10789] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 798.802541][ T35] hsr_slave_1: left promiscuous mode [ 798.822061][ T35] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 798.834117][ T35] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 798.847304][ T35] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 798.858982][ T35] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 798.876939][ T35] hsr_slave_0: left promiscuous mode [ 798.892060][ T35] hsr_slave_1: left promiscuous mode [ 798.898295][ T35] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 798.916203][ T35] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 798.929391][ T35] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 798.941339][ T29] kauditd_printk_skb: 23 callbacks suppressed [ 798.941357][ T29] audit: type=1326 audit(1725510812.547:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11927 comm="syz.0.2038" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa7f2f7cef9 code=0x0 [ 798.977281][ T35] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 799.063357][ T35] veth1_macvtap: left promiscuous mode [ 799.069041][ T35] veth0_macvtap: left promiscuous mode [ 799.082736][ T35] veth1_vlan: left promiscuous mode [ 799.088110][ T35] veth0_vlan: left promiscuous mode [ 799.101283][ T35] veth1_macvtap: left promiscuous mode [ 799.106873][ T35] veth0_macvtap: left promiscuous mode [ 799.120937][ T35] veth1_vlan: left promiscuous mode [ 799.128841][ T35] veth0_vlan: left promiscuous mode [ 800.436192][ T35] team0 (unregistering): Port device team_slave_1 removed [ 800.486735][ T35] team0 (unregistering): Port device team_slave_0 removed [ 800.876119][T10789] Bluetooth: hci0: command tx timeout [ 801.531044][ T35] team0 (unregistering): Port device team_slave_1 removed [ 801.585809][ T35] team0 (unregistering): Port device team_slave_0 removed [ 802.177742][T11938] netlink: 116 bytes leftover after parsing attributes in process `syz.0.2041'. [ 802.344359][T11801] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 802.358835][T11798] veth0_macvtap: entered promiscuous mode [ 802.424568][T11801] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 802.437196][T11801] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 802.488153][T11801] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 802.539101][T11798] veth1_macvtap: entered promiscuous mode [ 802.611080][T11798] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 802.650543][T11798] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 802.660726][T11798] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 802.672164][T11798] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 802.692396][T11798] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 802.798314][T11798] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 802.810449][T11798] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 802.836031][T11798] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 802.849359][T11798] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 802.881165][T11798] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 802.906234][T11794] 8021q: adding VLAN 0 to HW filter on device bond0 [ 802.941588][T10789] Bluetooth: hci0: command tx timeout [ 802.956410][T11798] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 802.972569][T11798] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 802.988820][T11798] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 802.999534][T11798] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 803.069645][T11956] netlink: 116 bytes leftover after parsing attributes in process `syz.0.2048'. [ 803.206669][T11794] 8021q: adding VLAN 0 to HW filter on device team0 [ 803.326828][ T1833] bridge0: port 1(bridge_slave_0) entered blocking state [ 803.334074][ T1833] bridge0: port 1(bridge_slave_0) entered forwarding state [ 803.355409][ T1833] bridge0: port 2(bridge_slave_1) entered blocking state [ 803.362572][ T1833] bridge0: port 2(bridge_slave_1) entered forwarding state [ 803.473667][T11961] syzkaller0: entered promiscuous mode [ 803.479233][T11961] syzkaller0: entered allmulticast mode [ 803.492816][T11932] chnl_net:caif_netlink_parms(): no params data found [ 803.524055][T11801] 8021q: adding VLAN 0 to HW filter on device bond0 [ 805.031438][T10789] Bluetooth: hci0: command tx timeout [ 805.644461][ T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 805.646919][T11801] 8021q: adding VLAN 0 to HW filter on device team0 [ 805.652910][ T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 805.787923][ T35] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 805.799448][ T29] audit: type=1326 audit(1725510819.397:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11965 comm="syz.0.2050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7f2f7cef9 code=0x7ffc0000 [ 805.822743][ T29] audit: type=1326 audit(1725510819.397:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11965 comm="syz.0.2050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7f2f7cef9 code=0x7ffc0000 [ 805.847076][ T29] audit: type=1326 audit(1725510819.397:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11965 comm="syz.0.2050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fa7f2f7cef9 code=0x7ffc0000 [ 805.869190][ T29] audit: type=1326 audit(1725510819.397:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11965 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7f2f7cef9 code=0x7ffc0000 [ 805.893464][ T29] audit: type=1326 audit(1725510819.397:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11965 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7f2f7cef9 code=0x7ffc0000 [ 805.928950][ T29] audit: type=1326 audit(1725510819.397:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11965 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fa7f2f7cef9 code=0x7ffc0000 [ 805.990290][ T2496] bridge0: port 1(bridge_slave_0) entered blocking state [ 805.997579][ T2496] bridge0: port 1(bridge_slave_0) entered forwarding state [ 806.006189][ T29] audit: type=1326 audit(1725510819.397:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11965 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7f2f7cef9 code=0x7ffc0000 [ 806.033448][ T29] audit: type=1326 audit(1725510819.397:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11965 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7f2f7cef9 code=0x7ffc0000 [ 806.076631][ T1283] bridge0: port 2(bridge_slave_1) entered blocking state [ 806.083861][ T1283] bridge0: port 2(bridge_slave_1) entered forwarding state [ 806.116990][ T35] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 806.131161][T11932] bridge0: port 1(bridge_slave_0) entered blocking state [ 806.138813][T11932] bridge0: port 1(bridge_slave_0) entered disabled state [ 806.146707][T11932] bridge_slave_0: entered allmulticast mode [ 806.154570][T11932] bridge_slave_0: entered promiscuous mode [ 806.170947][T11932] bridge0: port 2(bridge_slave_1) entered blocking state [ 806.186597][T11932] bridge0: port 2(bridge_slave_1) entered disabled state [ 806.194217][T11932] bridge_slave_1: entered allmulticast mode [ 806.201223][T11932] bridge_slave_1: entered promiscuous mode [ 806.241982][T11932] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 806.252570][ T966] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 806.258950][T11932] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 806.269599][ T966] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 806.300541][ T35] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 806.390290][T11932] team0: Port device team_slave_0 added [ 806.414552][T11932] team0: Port device team_slave_1 added [ 806.458764][ T35] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 806.539314][T11932] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 806.556728][T11932] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 806.589369][T11932] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 806.630610][T11801] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 806.666382][T11801] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 806.693330][T11932] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 806.700289][T11932] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 806.729395][T11932] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 806.929122][T11932] hsr_slave_0: entered promiscuous mode [ 806.944555][T11932] hsr_slave_1: entered promiscuous mode [ 806.967808][T11932] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 806.977931][T11932] Cannot create hsr debugfs directory [ 807.026185][ T35] bridge_slave_0: left allmulticast mode [ 807.035931][ T35] bridge_slave_0: left promiscuous mode [ 807.047934][ T35] bridge0: port 1(bridge_slave_0) entered disabled state [ 807.103228][T10789] Bluetooth: hci0: command tx timeout [ 808.024517][ T35] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 808.037387][ T35] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 808.049145][ T35] bond0 (unregistering): Released all slaves [ 808.080413][T11988] netlink: 'syz.0.2054': attribute type 29 has an invalid length. [ 808.089066][T11988] netlink: 'syz.0.2054': attribute type 2 has an invalid length. [ 808.102025][T11988] netlink: 'syz.0.2054': attribute type 2 has an invalid length. [ 808.109795][T11988] netlink: 'syz.0.2054': attribute type 1 has an invalid length. [ 808.120172][T11988] netlink: 'syz.0.2054': attribute type 37 has an invalid length. [ 808.133891][T11988] netlink: 'syz.0.2054': attribute type 2 has an invalid length. [ 808.141891][T11988] bridge0: port 1(bridge_slave_0) entered disabled state [ 808.149359][T11988] netlink: 59 bytes leftover after parsing attributes in process `syz.0.2054'. [ 808.270319][T11794] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 808.290778][T11801] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 808.646351][ T35] hsr_slave_0: left promiscuous mode [ 808.666253][ T35] hsr_slave_1: left promiscuous mode [ 808.692540][ T35] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 808.771231][ T35] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 808.786656][T12017] binder: 12016:12017 ioctl c0306201 0 returned -14 [ 808.795771][ T35] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 808.833948][ T35] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 808.880917][ T35] veth1_macvtap: left promiscuous mode [ 808.901840][ T35] veth0_macvtap: left promiscuous mode [ 808.907467][ T35] veth1_vlan: left promiscuous mode [ 808.922092][ T35] veth0_vlan: left promiscuous mode [ 809.026338][ T1271] ieee802154 phy0 wpan0: encryption failed: -22 [ 809.033733][ T1271] ieee802154 phy1 wpan1: encryption failed: -22 [ 809.735352][ T35] team0 (unregistering): Port device team_slave_1 removed [ 809.805493][ T35] team0 (unregistering): Port device team_slave_0 removed [ 810.444926][T11794] veth0_vlan: entered promiscuous mode [ 810.475232][T11801] veth0_vlan: entered promiscuous mode [ 810.559259][T11794] veth1_vlan: entered promiscuous mode [ 810.806541][T11801] veth1_vlan: entered promiscuous mode [ 811.256526][T11794] veth0_macvtap: entered promiscuous mode [ 811.520182][T11801] veth0_macvtap: entered promiscuous mode [ 811.546112][T11794] veth1_macvtap: entered promiscuous mode [ 811.587308][T11801] veth1_macvtap: entered promiscuous mode [ 811.721051][T11794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 811.736135][T11794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 811.749325][T11794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 811.765892][T11794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 811.777697][T11794] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 811.803760][T12043] netlink: 116 bytes leftover after parsing attributes in process `syz.3.2069'. [ 811.866772][T11801] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 811.877749][T11801] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 811.899901][T11801] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 811.918920][T11801] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 811.928995][T11801] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 811.955362][T11801] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 811.983297][T11801] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 812.019563][T11794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 812.030874][T11794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 812.044475][T11794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 812.055357][T11794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 812.088352][T11794] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 812.128336][T11794] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 812.151711][T11794] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 812.165330][T11794] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 812.179669][T11794] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 812.195563][T12049] binder: 12048:12049 ioctl 4018620d 0 returned -22 [ 812.208457][T11932] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 812.272944][T11801] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 812.300091][T11801] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 812.319935][T11801] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 812.333149][T11801] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 812.343200][T11801] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 812.354408][T11801] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 812.366901][T11801] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 812.378840][T11932] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 812.442484][T11932] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 812.457231][T11801] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 812.483831][T11801] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 812.492743][T11801] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 812.501606][T11801] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 812.621898][T11932] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 812.816312][ T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 812.854663][ T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 813.008060][ T966] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 813.045870][ T966] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 813.191449][ T966] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 813.226761][ T966] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 813.367455][ T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 813.401315][ T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 813.511216][T11932] 8021q: adding VLAN 0 to HW filter on device bond0 [ 813.578075][T11932] 8021q: adding VLAN 0 to HW filter on device team0 [ 813.639376][ T1833] bridge0: port 1(bridge_slave_0) entered blocking state [ 813.646593][ T1833] bridge0: port 1(bridge_slave_0) entered forwarding state [ 813.724399][ T1833] bridge0: port 2(bridge_slave_1) entered blocking state [ 813.731629][ T1833] bridge0: port 2(bridge_slave_1) entered forwarding state [ 815.398379][T11932] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 815.507680][T11932] veth0_vlan: entered promiscuous mode [ 815.546205][T11932] veth1_vlan: entered promiscuous mode [ 815.621571][T12081] geneve2: entered promiscuous mode [ 815.630541][T12081] geneve2: entered allmulticast mode [ 815.656823][T11932] veth0_macvtap: entered promiscuous mode [ 815.686517][T11932] veth1_macvtap: entered promiscuous mode [ 815.719796][T11932] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 815.738063][T11932] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 815.749736][T11932] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 815.757987][T12087] binder: BINDER_SET_CONTEXT_MGR already set [ 815.776653][T12087] binder: 12086:12087 ioctl 4018620d 20000040 returned -16 [ 815.791068][T11932] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 815.794880][T12087] binder: 12086:12087 ioctl c0306201 0 returned -14 [ 815.816819][T11932] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 815.846059][T11932] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 815.880047][T11932] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 815.893926][T11932] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 815.906435][T11932] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 815.921420][ T941] usb 3-1: new high-speed USB device number 23 using dummy_hcd [ 815.969329][T11932] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 815.996041][T11932] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 816.019312][T11932] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 816.038525][T11932] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 816.055245][T11932] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 816.067385][T11932] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 816.077530][T11932] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 816.089979][T11932] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 816.103562][T11932] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 816.117237][ T941] usb 3-1: Using ep0 maxpacket: 8 [ 816.127360][ T941] usb 3-1: config 179 has an invalid interface number: 65 but max is 0 [ 816.138247][ T941] usb 3-1: config 179 has no interface number 0 [ 816.142822][T11932] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 816.153540][ T941] usb 3-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 64, changing to 10 [ 816.162219][T11932] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 816.165335][ T941] usb 3-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 1029, setting to 1024 [ 816.185394][ T941] usb 3-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 816.197288][T11932] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 816.209518][ T941] usb 3-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid wMaxPacketSize 0 [ 816.213733][T11932] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 816.234028][ T941] usb 3-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 816.291862][ T941] usb 3-1: config 179 interface 65 has no altsetting 0 [ 816.350522][ T941] usb 3-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00 [ 816.404234][ T966] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 816.423650][ T941] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 816.453198][ T966] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 816.471149][T12083] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 816.527920][ T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 816.587513][ T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 816.718430][ T941] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:179.65/input/input20 [ 817.003971][ T941] usb 3-1: USB disconnect, device number 23 [ 817.004035][ C0] xpad 3-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19 [ 817.095440][ T941] xpad 3-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19 [ 817.246872][T12113] netlink: 116 bytes leftover after parsing attributes in process `syz.0.2089'. [ 817.466434][T12115] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check. [ 818.111791][T12126] binder: 12124:12126 ioctl c0306201 0 returned -14 [ 820.338401][T12147] netlink: 116 bytes leftover after parsing attributes in process `syz.1.2100'. [ 823.303994][T12174] binder: 12173:12174 ioctl c0306201 0 returned -14 [ 829.078196][ T29] audit: type=1326 audit(1725510842.257:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12215 comm="syz.2.2123" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f17d357cef9 code=0x0 [ 829.461568][ T29] audit: type=1326 audit(1725510843.067:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12225 comm="syz.4.2127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f409c97cef9 code=0x7ffc0000 [ 830.020083][ T29] audit: type=1326 audit(1725510843.077:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12225 comm="syz.4.2127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f409c97cef9 code=0x7ffc0000 [ 830.382096][ T29] audit: type=1326 audit(1725510843.087:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12225 comm="syz.4.2127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f409c97cef9 code=0x7ffc0000 [ 830.502150][ T29] audit: type=1326 audit(1725510843.087:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12225 comm="syz.4.2127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f409c97cef9 code=0x7ffc0000 [ 830.590579][T12237] netlink: 116 bytes leftover after parsing attributes in process `syz.4.2129'. [ 830.624300][ T29] audit: type=1326 audit(1725510843.087:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12225 comm="syz.4.2127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f409c97cef9 code=0x7ffc0000 [ 830.751544][ T29] audit: type=1326 audit(1725510843.087:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12225 comm="syz.4.2127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f409c97cef9 code=0x7ffc0000 [ 830.837551][ T29] audit: type=1326 audit(1725510843.087:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12225 comm="syz.4.2127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f409c97cef9 code=0x7ffc0000 [ 830.869837][ T29] audit: type=1326 audit(1725510843.087:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12225 comm="syz.4.2127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f409c97cef9 code=0x7ffc0000 [ 830.999376][ T29] audit: type=1326 audit(1725510843.087:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12225 comm="syz.4.2127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f409c97cef9 code=0x7ffc0000 [ 835.602053][T12293] Option ' ' to dns_resolver key: bad/missing value [ 838.291899][T12309] netlink: 'syz.2.2156': attribute type 13 has an invalid length. [ 838.363110][T12309] EXT4-fs (sda1): resizing filesystem from 262144 to 262144 blocks [ 840.157031][T10789] Bluetooth: hci1: command 0x0406 tx timeout [ 843.240458][T12355] sit0: entered promiscuous mode [ 843.251544][T12355] sit0: entered allmulticast mode [ 843.463618][T12365] syz.2.2177[12365] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 843.463807][T12365] syz.2.2177[12365] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 843.812731][ T29] kauditd_printk_skb: 23 callbacks suppressed [ 843.812787][ T29] audit: type=1326 audit(1725510857.407:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12359 comm="syz.3.2176" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff72877cef9 code=0x0 [ 848.320931][ T29] audit: type=1326 audit(1725510861.927:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12402 comm="syz.1.2189" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8a55b7cef9 code=0x0 [ 849.028987][T12410] team0: entered promiscuous mode [ 849.046907][T12410] team_slave_0: entered promiscuous mode [ 849.067624][T12410] team_slave_1: entered promiscuous mode [ 849.084053][T12410] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 849.498459][T12427] xt_socket: unknown flags 0x8 [ 852.652515][T12454] bridge0: entered promiscuous mode [ 852.670202][T12454] bridge0: entered allmulticast mode [ 852.811400][ T7210] usb 1-1: new high-speed USB device number 21 using dummy_hcd [ 853.011572][ T7210] usb 1-1: Using ep0 maxpacket: 16 [ 853.027337][ T7210] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7 [ 853.059456][ T7210] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0 [ 853.089770][ T7210] usb 1-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 853.111096][ T7210] usb 1-1: config 1 interface 2 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0 [ 853.137608][ T7210] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 853.158929][ T7210] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 856.021795][ T7210] usb 1-1: Product: syz [ 856.033831][ T7210] usb 1-1: Manufacturer: syz [ 856.176740][ T7210] usb 1-1: SerialNumber: syz [ 856.226107][ T7210] usb 1-1: can't set config #1, error -71 [ 858.048778][ T7210] usb 1-1: USB disconnect, device number 21 [ 858.706097][T12478] binder: 12469:12478 ioctl c0306201 0 returned -14 [ 862.575449][T12517] binder: 12510:12517 ioctl c0306201 0 returned -14 [ 867.401486][T12550] binder: 12546:12550 ioctl c0306201 0 returned -14 [ 868.696127][ T29] audit: type=1326 audit(1725510882.297:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12567 comm="syz.2.2248" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17d357cef9 code=0x7ffc0000 [ 868.768187][ T29] audit: type=1326 audit(1725510882.297:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12567 comm="syz.2.2248" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17d357cef9 code=0x7ffc0000 [ 868.924340][ T29] audit: type=1326 audit(1725510882.297:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12567 comm="syz.2.2248" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f17d357cef9 code=0x7ffc0000 [ 869.007998][ T29] audit: type=1326 audit(1725510882.307:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12567 comm="syz.2.2248" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17d357cef9 code=0x7ffc0000 [ 869.089298][ T29] audit: type=1326 audit(1725510882.307:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12567 comm="syz.2.2248" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17d357cef9 code=0x7ffc0000 [ 869.232675][ T29] audit: type=1326 audit(1725510882.307:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12567 comm="syz.2.2248" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f17d357cef9 code=0x7ffc0000 [ 869.299909][ T29] audit: type=1326 audit(1725510882.317:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12567 comm="syz.2.2248" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17d357cef9 code=0x7ffc0000 [ 869.332519][ T29] audit: type=1326 audit(1725510882.317:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12567 comm="syz.2.2248" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17d357cef9 code=0x7ffc0000 [ 869.361185][ T29] audit: type=1326 audit(1725510882.317:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12567 comm="syz.2.2248" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f17d357cef9 code=0x7ffc0000 [ 869.390119][ T29] audit: type=1326 audit(1725510882.327:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12567 comm="syz.2.2248" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17d357cef9 code=0x7ffc0000 [ 869.780359][T12580] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 870.483389][ T1271] ieee802154 phy0 wpan0: encryption failed: -22 [ 870.490105][ T1271] ieee802154 phy1 wpan1: encryption failed: -22 [ 870.527311][T12594] fuse: Unknown parameter '00000000000000000004' [ 877.915565][T12614] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 879.108807][T12639] binder: BINDER_SET_CONTEXT_MGR already set [ 879.136346][T12641] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 879.147797][T12639] binder: 12637:12639 ioctl 4018620d 20000040 returned -16 [ 879.367391][T12651] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 880.531645][T12677] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2288'. [ 882.318002][ T7205] usb 4-1: new high-speed USB device number 14 using dummy_hcd [ 882.450874][T12703] binder: 12700:12703 ioctl c0306201 0 returned -14 [ 882.521589][ T7205] usb 4-1: Using ep0 maxpacket: 8 [ 882.535457][ T7205] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 882.624131][ T7205] usb 4-1: New USB device found, idVendor=8086, idProduct=0b03, bcdDevice=f4.28 [ 882.726787][ T7205] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 882.802128][ T7205] usb 4-1: Product: syz [ 882.850499][ T7205] usb 4-1: Manufacturer: syz [ 882.951362][ T7205] usb 4-1: SerialNumber: syz [ 882.977549][ T7205] usb 4-1: config 0 descriptor?? [ 883.274047][ T7205] usb 4-1: Found UVC 0.00 device syz (8086:0b03) [ 883.290694][ T7205] usb 4-1: No valid video chain found. [ 883.308924][ T7205] usb 4-1: USB disconnect, device number 14 [ 885.401784][T12742] binder: 12741:12742 unknown command 0 [ 885.418659][T12742] binder: 12741:12742 ioctl c0306201 20000a80 returned -22 [ 885.565114][T12744] netlink: 'syz.3.2313': attribute type 4 has an invalid length. [ 886.007446][T12747] netlink: 'syz.3.2313': attribute type 4 has an invalid length. [ 889.192750][T12777] binder: BINDER_SET_CONTEXT_MGR already set [ 889.221154][T12777] binder: 12776:12777 ioctl 4018620d 20000040 returned -16 [ 892.084649][T12822] Bluetooth: MGMT ver 1.23 [ 910.884650][T11802] Bluetooth: hci6: command 0x0406 tx timeout [ 910.890675][T11802] Bluetooth: hci4: command 0x0406 tx timeout [ 915.760290][ T5238] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 915.770679][ T5238] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 915.779879][ T5238] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 915.788109][ T5238] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 915.796583][ T5238] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 915.803934][ T5238] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 917.356241][T12893] chnl_net:caif_netlink_parms(): no params data found [ 917.901534][ T5238] Bluetooth: hci2: command tx timeout [ 918.063341][T12893] bridge0: port 1(bridge_slave_0) entered blocking state [ 918.081802][T12893] bridge0: port 1(bridge_slave_0) entered disabled state [ 918.089093][T12893] bridge_slave_0: entered allmulticast mode [ 918.136131][T12893] bridge_slave_0: entered promiscuous mode [ 918.171890][T12893] bridge0: port 2(bridge_slave_1) entered blocking state [ 918.209643][T12893] bridge0: port 2(bridge_slave_1) entered disabled state [ 918.240179][T12893] bridge_slave_1: entered allmulticast mode [ 918.263182][T12893] bridge_slave_1: entered promiscuous mode [ 918.426168][T12893] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 918.493663][T12893] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 918.673579][T12893] team0: Port device team_slave_0 added [ 918.714665][T12893] team0: Port device team_slave_1 added [ 918.898686][T12893] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 918.915992][T12893] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 919.038373][T12893] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 919.101144][T12893] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 919.140773][T12893] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 920.002037][ T5238] Bluetooth: hci2: command tx timeout [ 920.964854][T12893] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 921.965294][ T53] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 922.135873][ T5238] Bluetooth: hci2: command tx timeout [ 923.461429][T12948] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2374'. [ 924.221600][ T5238] Bluetooth: hci2: command tx timeout [ 924.523534][ T53] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 926.354031][ T53] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 926.411103][T12893] hsr_slave_0: entered promiscuous mode [ 926.444887][T12893] hsr_slave_1: entered promiscuous mode [ 926.477221][T12893] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 926.495171][T12893] Cannot create hsr debugfs directory [ 926.842188][ T53] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 927.004772][ T29] kauditd_printk_skb: 20 callbacks suppressed [ 927.004790][ T29] audit: type=1326 audit(1725510940.617:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12957 comm="syz.2.2379" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f17d357cef9 code=0x0 [ 927.802549][ T53] bridge_slave_0: left allmulticast mode [ 927.825191][ T53] bridge_slave_0: left promiscuous mode [ 927.851343][ T53] bridge0: port 1(bridge_slave_0) entered disabled state [ 928.081766][ T4613] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 928.093882][ T4613] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 928.104841][ T4613] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 928.121852][ T4613] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 928.136844][ T4613] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 928.150958][ T4613] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 929.880415][ T53] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 929.948301][ T53] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 929.982177][ T53] bond0 (unregistering): Released all slaves [ 930.221722][ T4613] Bluetooth: hci3: command tx timeout [ 930.622059][T13007] binder: 13006:13007 ioctl c018620c 20000000 returned -22 [ 930.758056][ T53] hsr_slave_0: left promiscuous mode [ 930.818134][ T53] hsr_slave_1: left promiscuous mode [ 930.825018][ T53] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 930.856136][ T53] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 930.879255][ T53] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 930.900807][ T53] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 930.981118][ T53] team0: left promiscuous mode [ 931.011506][ T53] team_slave_0: left promiscuous mode [ 931.017712][ T53] team_slave_1: left promiscuous mode [ 931.038146][ T53] veth1_macvtap: left promiscuous mode [ 931.045958][ T53] veth0_macvtap: left promiscuous mode [ 931.066518][ T53] veth1_vlan: left promiscuous mode [ 931.077991][ T53] veth0_vlan: left promiscuous mode [ 931.154610][T13017] x_tables: unsorted entry at hook 2 [ 931.992925][ T1271] ieee802154 phy0 wpan0: encryption failed: -22 [ 932.007924][ T1271] ieee802154 phy1 wpan1: encryption failed: -22 [ 932.307142][ T4613] Bluetooth: hci3: command tx timeout [ 932.805758][ T53] team0 (unregistering): Port device team_slave_1 removed [ 932.868297][ T53] team0 (unregistering): Port device team_slave_0 removed [ 933.051342][ T941] usb 3-1: new high-speed USB device number 24 using dummy_hcd [ 933.246383][ T941] usb 3-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36 [ 933.258089][ T941] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 933.271038][ T941] usb 3-1: Product: syz [ 933.275293][ T941] usb 3-1: Manufacturer: syz [ 933.280004][ T941] usb 3-1: SerialNumber: syz [ 933.295794][ T941] usb 3-1: config 0 descriptor?? [ 933.306002][ T941] ch341 3-1:0.0: ch341-uart converter detected [ 933.865864][T12893] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 933.898500][T12893] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 933.930444][T12893] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 933.938919][ T941] usb 3-1: failed to send control message: -71 [ 933.952470][ T941] ch341-uart ttyUSB0: probe with driver ch341-uart failed with error -71 [ 933.973932][T12893] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 933.988822][ T941] usb 3-1: USB disconnect, device number 24 [ 933.998425][ T941] ch341 3-1:0.0: device disconnected [ 934.006692][T12978] chnl_net:caif_netlink_parms(): no params data found [ 934.311676][T12978] bridge0: port 1(bridge_slave_0) entered blocking state [ 934.321488][T12978] bridge0: port 1(bridge_slave_0) entered disabled state [ 934.346097][T12978] bridge_slave_0: entered allmulticast mode [ 934.363415][T12978] bridge_slave_0: entered promiscuous mode [ 934.382005][ T4613] Bluetooth: hci3: command tx timeout [ 934.473865][T12978] bridge0: port 2(bridge_slave_1) entered blocking state [ 934.517302][T12978] bridge0: port 2(bridge_slave_1) entered disabled state [ 934.531754][T12978] bridge_slave_1: entered allmulticast mode [ 934.546431][T12978] bridge_slave_1: entered promiscuous mode [ 934.775182][ T53] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 935.059865][ T29] audit: type=1326 audit(1725510948.667:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13055 comm="syz.3.2411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff72877cef9 code=0x7ffc0000 [ 935.153256][T12978] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 935.180386][ T29] audit: type=1326 audit(1725510948.667:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13055 comm="syz.3.2411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff72877cef9 code=0x7ffc0000 [ 935.211648][ T29] audit: type=1326 audit(1725510948.667:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13055 comm="syz.3.2411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff72877cef9 code=0x7ffc0000 [ 935.252353][ T29] audit: type=1326 audit(1725510948.667:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13055 comm="syz.3.2411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff72877cef9 code=0x7ffc0000 [ 935.291212][ T29] audit: type=1326 audit(1725510948.667:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13055 comm="syz.3.2411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff72877cef9 code=0x7ffc0000 [ 935.367108][ T29] audit: type=1326 audit(1725510948.667:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13055 comm="syz.3.2411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff72877cef9 code=0x7ffc0000 [ 935.639465][ T29] audit: type=1326 audit(1725510948.667:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13055 comm="syz.3.2411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff72877cef9 code=0x7ffc0000 [ 935.910708][ T29] audit: type=1326 audit(1725510948.667:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13055 comm="syz.3.2411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff72877cef9 code=0x7ffc0000 [ 935.961441][ T29] audit: type=1326 audit(1725510948.667:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13055 comm="syz.3.2411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=312 compat=0 ip=0x7ff72877cef9 code=0x7ffc0000 [ 936.025287][ T29] audit: type=1326 audit(1725510948.667:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13055 comm="syz.3.2411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff72877cef9 code=0x7ffc0000 [ 936.147023][ T53] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 936.220775][T12978] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 936.361703][ T7200] kernel write not supported for file /snd/seq (pid: 7200 comm: kworker/0:15) [ 936.486265][ T53] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 936.517024][ T4613] Bluetooth: hci3: command tx timeout [ 937.293608][T12978] team0: Port device team_slave_0 added [ 937.414132][ T53] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 937.480733][T12978] team0: Port device team_slave_1 added [ 937.624918][T13079] geneve2: entered promiscuous mode [ 937.636094][T13079] geneve2: entered allmulticast mode [ 937.661963][T12978] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 937.668953][T12978] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 937.751277][T12978] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 937.880682][T12978] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 937.897041][T12978] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 937.967734][T12978] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 938.814970][T12893] 8021q: adding VLAN 0 to HW filter on device bond0 [ 938.872812][T12978] hsr_slave_0: entered promiscuous mode [ 938.885983][T12978] hsr_slave_1: entered promiscuous mode [ 938.899395][ T53] bridge_slave_1: left allmulticast mode [ 938.910223][ T53] bridge_slave_1: left promiscuous mode [ 938.919931][ T53] bridge0: port 2(bridge_slave_1) entered disabled state [ 938.994728][ T7204] usb 2-1: new high-speed USB device number 16 using dummy_hcd [ 939.055934][ T53] bridge_slave_0: left allmulticast mode [ 939.069957][ T53] bridge_slave_0: left promiscuous mode [ 939.099405][ T53] bridge0: port 1(bridge_slave_0) entered disabled state [ 939.221701][ T7204] usb 2-1: Using ep0 maxpacket: 16 [ 939.251037][ T7204] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 939.358018][ T7204] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 939.453591][ T7204] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 939.584098][ T7204] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 939.703408][ T7204] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 939.763040][ T7204] usb 2-1: config 0 descriptor?? [ 940.242133][ T7204] HID 045e:07da: Invalid code 65791 type 1 [ 940.274545][ T7204] input: HID 045e:07da as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:045E:07DA.000F/input/input21 [ 940.320623][ T7204] microsoft 0003:045E:07DA.000F: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0 [ 940.481211][ T53] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 940.503831][ T7204] usb 2-1: USB disconnect, device number 16 [ 940.527028][ T53] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 940.555679][ T53] bond0 (unregistering): Released all slaves [ 940.880399][T12893] 8021q: adding VLAN 0 to HW filter on device team0 [ 940.956703][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 940.963974][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 941.525438][ T1283] bridge0: port 2(bridge_slave_1) entered blocking state [ 941.532608][ T1283] bridge0: port 2(bridge_slave_1) entered forwarding state [ 941.591065][ T53] hsr_slave_0: left promiscuous mode [ 941.631775][ T53] hsr_slave_1: left promiscuous mode [ 941.643366][ T53] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 941.685952][ T53] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 941.731953][ T53] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 941.792638][ T53] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 941.861429][ T53] veth1_macvtap: left promiscuous mode [ 941.873677][ T53] veth0_macvtap: left promiscuous mode [ 941.889694][ T53] veth1_vlan: left promiscuous mode [ 941.898707][ T53] veth0_vlan: left promiscuous mode [ 943.272775][ T53] team0 (unregistering): Port device team_slave_1 removed [ 943.344626][ T53] team0 (unregistering): Port device team_slave_0 removed [ 944.748383][T12978] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 944.774780][T12978] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 944.815155][T12978] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 945.079335][T12978] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 945.188745][T12893] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 945.560721][T12893] veth0_vlan: entered promiscuous mode [ 946.190174][T12978] 8021q: adding VLAN 0 to HW filter on device bond0 [ 946.315848][T12893] veth1_vlan: entered promiscuous mode [ 946.532810][T12978] 8021q: adding VLAN 0 to HW filter on device team0 [ 946.623480][T11889] bridge0: port 1(bridge_slave_0) entered blocking state [ 946.630710][T11889] bridge0: port 1(bridge_slave_0) entered forwarding state [ 946.680655][T11889] bridge0: port 2(bridge_slave_1) entered blocking state [ 946.687899][T11889] bridge0: port 2(bridge_slave_1) entered forwarding state [ 946.796928][T12893] veth0_macvtap: entered promiscuous mode [ 946.860154][T12893] veth1_macvtap: entered promiscuous mode [ 946.974645][T12893] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 947.235289][T12893] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 947.281385][T12893] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 947.312140][T12893] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 947.359185][T12893] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 947.380531][T12893] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 947.407979][T12893] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 947.538044][T12893] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 947.611294][T12893] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 947.621153][T12893] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 947.711386][T12893] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 947.758200][T12893] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 947.818908][T12893] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 947.999757][T12893] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 948.193721][T12893] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 948.233953][T12893] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 948.262728][T12893] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 948.306766][T12893] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 948.507862][T12978] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 948.787613][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 948.822104][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 948.921804][T11889] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 948.964631][T11889] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 949.513336][T12978] veth0_vlan: entered promiscuous mode [ 949.550316][T12978] veth1_vlan: entered promiscuous mode [ 949.688871][T12978] veth0_macvtap: entered promiscuous mode [ 949.719646][T12978] veth1_macvtap: entered promiscuous mode [ 949.791195][T12978] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 949.827468][T13225] x_tables: unsorted entry at hook 2 [ 949.831406][T12978] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 949.867104][T12978] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 949.882322][T12978] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 949.919435][T12978] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 949.946172][T12978] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 949.966106][T12978] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 949.986920][T12978] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 950.000393][T12978] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 950.043013][T13229] tipc: Started in network mode [ 950.064434][T13229] tipc: Node identity 2, cluster identity 4711 [ 950.070648][T13229] tipc: Node number set to 2 [ 950.108739][T12978] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 950.133941][T12978] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 950.151244][T12978] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 950.181315][T12978] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 950.194766][T12978] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 950.214901][T12978] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 950.234561][T12978] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 950.245312][T12978] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 950.263953][T12978] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 950.305340][T12978] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 950.344179][T12978] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 950.375757][T12978] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 950.411462][T12978] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 950.763589][ T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 950.786430][ T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 950.925501][ T966] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 950.948043][ T966] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 970.474900][T13408] hub 9-0:1.0: USB hub found [ 970.490146][T13408] hub 9-0:1.0: 8 ports detected [ 970.561326][ T7205] usb 2-1: new high-speed USB device number 17 using dummy_hcd [ 970.753148][T13404] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2527'. [ 970.797865][T13404] vlan2: entered promiscuous mode [ 970.801451][ T7205] usb 2-1: Using ep0 maxpacket: 8 [ 970.836711][ T7205] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0 [ 970.859119][ T7205] usb 2-1: New USB device found, idVendor=04e7, idProduct=0020, bcdDevice=36.e1 [ 970.885721][ T7205] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 970.897545][ T7205] usb 2-1: Product: syz [ 970.903559][ T7205] usb 2-1: Manufacturer: syz [ 970.910444][ T7205] usb 2-1: SerialNumber: syz [ 970.936897][ T7205] usb 2-1: config 0 descriptor?? [ 970.961754][ T7205] input: syz syz as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input22 [ 973.278551][ T7205] usb 2-1: USB disconnect, device number 17 [ 973.311083][T13409] syz.2.2528 (13409): drop_caches: 2 [ 978.042664][T13483] serio: Serial port ptm0 [ 979.575901][ T4613] Bluetooth: hci3: link tx timeout [ 979.583674][ T4613] Bluetooth: hci3: killing stalled connection 11:aa:aa:aa:aa:aa [ 981.667254][ T4613] Bluetooth: hci3: command 0x0406 tx timeout [ 985.703706][T13589] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2593'. [ 985.748821][T13589] team0: entered promiscuous mode [ 985.765128][T13589] team_slave_0: entered promiscuous mode [ 985.792034][T13589] team_slave_1: entered promiscuous mode [ 985.813741][T13589] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 986.558237][T13606] veth0_vlan: entered allmulticast mode [ 986.688629][T13609] veth0_vlan: left promiscuous mode [ 986.708957][T13609] veth0_vlan: entered promiscuous mode [ 990.048867][ T29] kauditd_printk_skb: 43 callbacks suppressed [ 990.048888][ T29] audit: type=1326 audit(1725511003.657:324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13629 comm="syz.3.2610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff72877cef9 code=0x7ffc0000 [ 990.410081][ T29] audit: type=1326 audit(1725511003.657:325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13629 comm="syz.3.2610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff72877cef9 code=0x7ffc0000 [ 990.474378][ T29] audit: type=1326 audit(1725511003.687:326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13629 comm="syz.3.2610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7ff72877cef9 code=0x7ffc0000 [ 990.620677][ T29] audit: type=1326 audit(1725511004.227:327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13629 comm="syz.3.2610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff72877cef9 code=0x7ffc0000 [ 990.690888][ T29] audit: type=1326 audit(1725511004.227:328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13629 comm="syz.3.2610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff72877cef9 code=0x7ffc0000 [ 990.918126][ T29] audit: type=1326 audit(1725511004.527:329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13642 comm="syz.1.2611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a55b7cef9 code=0x7ffc0000 [ 990.994378][ T29] audit: type=1326 audit(1725511004.527:330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13642 comm="syz.1.2611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8a55b7cef9 code=0x7ffc0000 [ 991.090382][ T29] audit: type=1326 audit(1725511004.527:331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13642 comm="syz.1.2611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a55b7cef9 code=0x7ffc0000 [ 991.160618][T13648] netlink: 64 bytes leftover after parsing attributes in process `syz.1.2617'. [ 991.177968][ T29] audit: type=1326 audit(1725511004.557:332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13642 comm="syz.1.2611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=295 compat=0 ip=0x7f8a55b7cef9 code=0x7ffc0000 [ 991.251358][ T7210] usb 4-1: new high-speed USB device number 15 using dummy_hcd [ 991.260501][ T29] audit: type=1326 audit(1725511004.557:333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13642 comm="syz.1.2611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a55b7cef9 code=0x7ffc0000 [ 991.983128][ T7210] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x31, changing to 0x1 [ 992.013631][ T7210] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid maxpacket 13364, setting to 64 [ 992.050062][ T7210] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b [ 992.085008][ T7210] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 992.529130][ T7210] usb 4-1: config 0 descriptor?? [ 993.345094][ T1271] ieee802154 phy0 wpan0: encryption failed: -22 [ 993.361494][ T1271] ieee802154 phy1 wpan1: encryption failed: -22 [ 994.530700][T13665] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2621'. [ 994.611711][ T7210] usb 4-1: can't set config #0, error -71 [ 994.639888][ T7210] usb 4-1: USB disconnect, device number 15 [ 996.537564][T13713] syz.3.2638[13713] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 996.537728][T13713] syz.3.2638[13713] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 999.053101][T13714] syzkaller0: entered promiscuous mode [ 999.075260][T13714] syzkaller0: entered allmulticast mode [ 999.085360][T13719] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2639'. [ 1002.848638][T13763] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2653'. [ 1003.186389][ T29] kauditd_printk_skb: 9 callbacks suppressed [ 1003.186410][ T29] audit: type=1326 audit(1725511016.797:343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13771 comm="syz.1.2659" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f8a55b7cef9 code=0x0 [ 1003.850158][T13799] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2667'. [ 1004.058628][T13804] xt_socket: unknown flags 0x8 [ 1006.735023][T13827] netlink: 'syz.3.2675': attribute type 12 has an invalid length. [ 1013.157879][T13882] xt_socket: unknown flags 0x8 [ 1025.117703][T11802] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 1025.128440][T11802] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 1025.136834][T11802] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 1025.146051][T11802] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 1025.155662][T11802] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 1025.163360][T11802] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 1025.848791][T13980] chnl_net:caif_netlink_parms(): no params data found [ 1026.141354][ T5238] Bluetooth: hci0: command 0x0406 tx timeout [ 1027.261762][ T4613] Bluetooth: hci4: command tx timeout [ 1027.358753][T13980] bridge0: port 1(bridge_slave_0) entered blocking state [ 1027.401401][T13980] bridge0: port 1(bridge_slave_0) entered disabled state [ 1027.441598][T13980] bridge_slave_0: entered allmulticast mode [ 1027.472137][T13980] bridge_slave_0: entered promiscuous mode [ 1027.499720][T13980] bridge0: port 2(bridge_slave_1) entered blocking state [ 1027.527750][T13980] bridge0: port 2(bridge_slave_1) entered disabled state [ 1027.548115][T13980] bridge_slave_1: entered allmulticast mode [ 1027.565906][T13980] bridge_slave_1: entered promiscuous mode [ 1027.584553][T14002] ·U*: renamed from vxcan1 (while UP) [ 1027.779143][T13980] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1027.852090][T13980] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1029.341448][ T5238] Bluetooth: hci4: command tx timeout [ 1029.414846][T13980] team0: Port device team_slave_0 added [ 1029.453269][T13980] team0: Port device team_slave_1 added [ 1031.191001][T13980] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1031.231453][T13980] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1031.333153][T14032] 9pnet_fd: p9_fd_create_tcp (14032): problem connecting socket to 127.0.0.1 [ 1031.342386][T13980] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1031.389945][T13980] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1031.420164][T13980] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1031.468701][ T5238] Bluetooth: hci4: command 0x040f tx timeout [ 1031.586184][T13980] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1032.627773][T13980] hsr_slave_0: entered promiscuous mode [ 1032.711957][T13980] hsr_slave_1: entered promiscuous mode [ 1033.767971][ T4613] Bluetooth: hci4: command 0x040f tx timeout [ 1033.861322][T13980] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1033.916970][T13980] Cannot create hsr debugfs directory [ 1035.258629][T14081] binder: BINDER_SET_CONTEXT_MGR already set [ 1035.272375][T14081] binder: 14080:14081 ioctl 4018620d 20000040 returned -16 [ 1035.821722][ T4613] Bluetooth: hci4: command 0x040f tx timeout [ 1038.272683][ T11] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1038.334819][T14118] vlan2: entered promiscuous mode [ 1038.340208][T14118] vlan2: entered allmulticast mode [ 1038.345800][T14118] hsr_slave_1: entered allmulticast mode [ 1038.367247][T14118] hsr_slave_1: left allmulticast mode [ 1038.493884][ T11] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1038.615352][ T11] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1040.290342][ T11] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1040.322247][ T29] audit: type=1326 audit(1725511053.937:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14136 comm="syz.2.2777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17d357cef9 code=0x7ffc0000 [ 1040.585367][ T29] audit: type=1326 audit(1725511053.937:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14136 comm="syz.2.2777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17d357cef9 code=0x7ffc0000 [ 1040.641373][ T29] audit: type=1326 audit(1725511053.957:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14136 comm="syz.2.2777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f17d357cef9 code=0x7ffc0000 [ 1040.663716][ T29] audit: type=1326 audit(1725511053.957:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14136 comm="syz.2.2777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17d357cef9 code=0x7ffc0000 [ 1040.692948][ T29] audit: type=1326 audit(1725511053.957:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14136 comm="syz.2.2777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17d357cef9 code=0x7ffc0000 [ 1040.725454][ T29] audit: type=1326 audit(1725511053.957:349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14136 comm="syz.2.2777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f17d357cef9 code=0x7ffc0000 [ 1040.777375][ T29] audit: type=1326 audit(1725511053.957:350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14136 comm="syz.2.2777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17d357cef9 code=0x7ffc0000 [ 1040.845508][ T29] audit: type=1326 audit(1725511053.957:351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14136 comm="syz.2.2777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17d357cef9 code=0x7ffc0000 [ 1040.908188][ T29] audit: type=1326 audit(1725511053.957:352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14136 comm="syz.2.2777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f17d357cef9 code=0x7ffc0000 [ 1040.965119][ T29] audit: type=1326 audit(1725511053.967:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14136 comm="syz.2.2777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17d357cef9 code=0x7ffc0000 [ 1041.501520][ T5238] Bluetooth: hci2: command 0x0406 tx timeout [ 1042.959049][ T11] bridge_slave_1: left allmulticast mode [ 1043.070143][ T11] bridge_slave_1: left promiscuous mode [ 1043.160752][ T11] bridge0: port 2(bridge_slave_1) entered disabled state [ 1043.681811][ T11] bridge_slave_0: left allmulticast mode [ 1043.740926][ T11] bridge_slave_0: left promiscuous mode [ 1043.798784][ T11] bridge0: port 1(bridge_slave_0) entered disabled state [ 1045.522175][ T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1045.567951][ T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1045.600827][ T11] bond0 (unregistering): Released all slaves [ 1046.525244][ T29] kauditd_printk_skb: 23 callbacks suppressed [ 1046.525264][ T29] audit: type=1326 audit(1725511060.137:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14182 comm="syz.1.2793" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a55b7cef9 code=0x7ffc0000 [ 1046.835722][ T29] audit: type=1326 audit(1725511060.137:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14182 comm="syz.1.2793" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a55b7cef9 code=0x7ffc0000 [ 1046.867882][ T29] audit: type=1326 audit(1725511060.167:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14182 comm="syz.1.2793" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8a55b7cef9 code=0x7ffc0000 [ 1048.391380][ T29] audit: type=1326 audit(1725511060.167:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14182 comm="syz.1.2793" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a55b7cef9 code=0x7ffc0000 [ 1048.751414][ T29] audit: type=1326 audit(1725511060.167:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14182 comm="syz.1.2793" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a55b7cef9 code=0x7ffc0000 [ 1048.833777][ T29] audit: type=1326 audit(1725511060.167:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14182 comm="syz.1.2793" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8a55b7cef9 code=0x7ffc0000 [ 1048.913192][ T29] audit: type=1326 audit(1725511060.167:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14182 comm="syz.1.2793" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a55b7cef9 code=0x7ffc0000 [ 1049.001908][ T29] audit: type=1326 audit(1725511060.167:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14182 comm="syz.1.2793" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a55b7cef9 code=0x7ffc0000 [ 1049.078572][ T29] audit: type=1326 audit(1725511060.167:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14182 comm="syz.1.2793" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8a55b7cef9 code=0x7ffc0000 [ 1049.138262][ T29] audit: type=1326 audit(1725511060.167:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14182 comm="syz.1.2793" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a55b7cef9 code=0x7ffc0000 [ 1049.394413][ T5238] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 1049.405515][ T5238] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 1049.414248][ T5238] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 1049.424388][ T5238] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 1049.432357][ T5238] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 1049.440230][ T5238] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 1049.818148][T14190] chnl_net:caif_netlink_parms(): no params data found [ 1049.989930][T14190] bridge0: port 1(bridge_slave_0) entered blocking state [ 1050.006157][T14190] bridge0: port 1(bridge_slave_0) entered disabled state [ 1050.017302][T14190] bridge_slave_0: entered allmulticast mode [ 1050.030108][T14190] bridge_slave_0: entered promiscuous mode [ 1050.045622][T14190] bridge0: port 2(bridge_slave_1) entered blocking state [ 1050.061029][T14190] bridge0: port 2(bridge_slave_1) entered disabled state [ 1050.069367][T14190] bridge_slave_1: entered allmulticast mode [ 1050.086043][T14190] bridge_slave_1: entered promiscuous mode [ 1050.159015][T14190] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1050.185206][T14190] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1050.279770][T14190] team0: Port device team_slave_0 added [ 1050.299118][T14190] team0: Port device team_slave_1 added [ 1050.368957][T14190] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1050.385865][T14190] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1050.420787][T14190] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1050.443493][T14190] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1050.461046][T14190] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1050.497796][T14190] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1050.609100][T14190] hsr_slave_0: entered promiscuous mode [ 1050.625445][T14190] hsr_slave_1: entered promiscuous mode [ 1050.637111][T14190] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1050.649145][T14190] Cannot create hsr debugfs directory [ 1051.501629][ T5238] Bluetooth: hci3: command tx timeout [ 1053.316615][ T4613] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 1053.331630][ T4613] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 1053.340022][ T4613] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 1053.348470][ T4613] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 1053.356461][ T4613] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 1053.363947][ T4613] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 1053.581831][ T4613] Bluetooth: hci3: command tx timeout [ 1053.733727][T14199] chnl_net:caif_netlink_parms(): no params data found [ 1053.891659][T14199] bridge0: port 1(bridge_slave_0) entered blocking state [ 1053.898843][T14199] bridge0: port 1(bridge_slave_0) entered disabled state [ 1053.917225][T14199] bridge_slave_0: entered allmulticast mode [ 1053.925479][T14199] bridge_slave_0: entered promiscuous mode [ 1053.947042][T14199] bridge0: port 2(bridge_slave_1) entered blocking state [ 1053.964289][T14199] bridge0: port 2(bridge_slave_1) entered disabled state [ 1053.972658][T14199] bridge_slave_1: entered allmulticast mode [ 1053.980430][T14199] bridge_slave_1: entered promiscuous mode [ 1054.077651][T14199] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1054.103356][T14199] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1054.195875][T14199] team0: Port device team_slave_0 added [ 1054.217983][T14199] team0: Port device team_slave_1 added [ 1054.297506][T14199] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1054.310657][T14199] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1054.341699][T14199] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1054.364057][T14199] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1054.371044][T14199] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1054.408786][T14199] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1054.510323][T14199] hsr_slave_0: entered promiscuous mode [ 1054.527446][T14199] hsr_slave_1: entered promiscuous mode [ 1054.538929][T14199] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1054.558116][T14199] Cannot create hsr debugfs directory [ 1054.801398][ T1271] ieee802154 phy0 wpan0: encryption failed: -22 [ 1054.808145][ T1271] ieee802154 phy1 wpan1: encryption failed: -22 [ 1055.354602][ T5238] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 1055.371479][ T5238] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 1055.380429][ T5238] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 1055.390253][ T5238] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 1055.399247][ T5238] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 1055.407969][ T5238] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 1055.421580][ T4613] Bluetooth: hci5: command tx timeout [ 1055.661756][ T5238] Bluetooth: hci3: command tx timeout [ 1055.805099][T14208] chnl_net:caif_netlink_parms(): no params data found [ 1055.966653][T14208] bridge0: port 1(bridge_slave_0) entered blocking state [ 1055.981638][T14208] bridge0: port 1(bridge_slave_0) entered disabled state [ 1055.988955][T14208] bridge_slave_0: entered allmulticast mode [ 1056.008786][T14208] bridge_slave_0: entered promiscuous mode [ 1056.031069][T14208] bridge0: port 2(bridge_slave_1) entered blocking state [ 1056.049128][T14208] bridge0: port 2(bridge_slave_1) entered disabled state [ 1056.059057][T14208] bridge_slave_1: entered allmulticast mode [ 1056.084108][T14208] bridge_slave_1: entered promiscuous mode [ 1056.183857][T14208] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1056.206123][T14208] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1056.309063][T14208] team0: Port device team_slave_0 added [ 1056.330025][T14208] team0: Port device team_slave_1 added [ 1056.406200][T14208] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1056.421613][T14208] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1056.457874][T14208] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1056.484744][T14208] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1056.501236][T14208] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1056.539964][T14208] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1056.646674][T14208] hsr_slave_0: entered promiscuous mode [ 1056.664813][T14208] hsr_slave_1: entered promiscuous mode [ 1056.683819][T14208] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1056.703395][T14208] Cannot create hsr debugfs directory [ 1057.501532][ T5238] Bluetooth: hci7: command tx timeout [ 1057.508151][ T5238] Bluetooth: hci5: command tx timeout [ 1057.741722][ T5238] Bluetooth: hci3: command tx timeout [ 1059.591970][ T5238] Bluetooth: hci5: command tx timeout [ 1059.597441][ T5238] Bluetooth: hci7: command tx timeout [ 1059.973867][ T4613] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1 [ 1060.001589][ T4613] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9 [ 1060.010440][ T4613] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9 [ 1060.019609][ T4613] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4 [ 1060.027483][ T4613] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3 [ 1060.034988][ T4613] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2 [ 1060.483737][T14217] chnl_net:caif_netlink_parms(): no params data found [ 1060.696866][T14217] bridge0: port 1(bridge_slave_0) entered blocking state [ 1060.719113][T14217] bridge0: port 1(bridge_slave_0) entered disabled state [ 1060.726739][T14217] bridge_slave_0: entered allmulticast mode [ 1060.734779][T14217] bridge_slave_0: entered promiscuous mode [ 1060.755647][T14217] bridge0: port 2(bridge_slave_1) entered blocking state [ 1060.775062][T14217] bridge0: port 2(bridge_slave_1) entered disabled state [ 1060.797839][T14217] bridge_slave_1: entered allmulticast mode [ 1060.812341][T14217] bridge_slave_1: entered promiscuous mode [ 1060.912954][T14217] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1060.938503][T14217] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1061.045484][T14217] team0: Port device team_slave_0 added [ 1061.068505][T14217] team0: Port device team_slave_1 added [ 1061.145401][T14217] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1061.165378][T14217] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1061.221637][T14217] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1061.244127][T14217] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1061.251110][T14217] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1061.305868][T14217] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1061.420754][T14217] hsr_slave_0: entered promiscuous mode [ 1061.440902][T14217] hsr_slave_1: entered promiscuous mode [ 1061.450500][T14217] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1061.470695][T14217] Cannot create hsr debugfs directory [ 1061.672004][ T5238] Bluetooth: hci5: command tx timeout [ 1061.677492][ T4613] Bluetooth: hci7: command tx timeout [ 1062.061622][ T4613] Bluetooth: hci8: command tx timeout [ 1063.741742][ T4613] Bluetooth: hci7: command tx timeout [ 1064.141419][ T5238] Bluetooth: hci8: command tx timeout [ 1066.221725][ T5238] Bluetooth: hci8: command tx timeout [ 1068.301408][ T5238] Bluetooth: hci8: command tx timeout [ 1085.607518][ T4613] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1 [ 1085.624721][ T4613] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9 [ 1085.633641][ T4613] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9 [ 1085.643073][ T4613] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4 [ 1085.650917][ T4613] Bluetooth: hci9: unexpected cc 0x0c25 length: 249 > 3 [ 1085.658699][ T4613] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2 [ 1086.123813][T14226] chnl_net:caif_netlink_parms(): no params data found [ 1086.334195][T14226] bridge0: port 1(bridge_slave_0) entered blocking state [ 1086.351485][T14226] bridge0: port 1(bridge_slave_0) entered disabled state [ 1086.358844][T14226] bridge_slave_0: entered allmulticast mode [ 1086.380027][T14226] bridge_slave_0: entered promiscuous mode [ 1086.405176][T14226] bridge0: port 2(bridge_slave_1) entered blocking state [ 1086.421305][T14226] bridge0: port 2(bridge_slave_1) entered disabled state [ 1086.428650][T14226] bridge_slave_1: entered allmulticast mode [ 1086.449758][T14226] bridge_slave_1: entered promiscuous mode [ 1086.552167][T14226] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1086.575575][T14226] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1086.697443][T14226] team0: Port device team_slave_0 added [ 1086.720173][T14226] team0: Port device team_slave_1 added [ 1086.811404][T14226] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1086.818410][T14226] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1086.859392][T14226] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1086.890199][T14226] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1086.907737][T14226] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1086.934354][T14226] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1087.063238][T14226] hsr_slave_0: entered promiscuous mode [ 1087.083595][T14226] hsr_slave_1: entered promiscuous mode [ 1087.102092][T14226] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1087.121222][T14226] Cannot create hsr debugfs directory [ 1087.752165][ T4613] Bluetooth: hci9: command tx timeout [ 1089.821773][ T4613] Bluetooth: hci9: command tx timeout [ 1091.911440][ T4613] Bluetooth: hci9: command tx timeout [ 1093.981795][ T5238] Bluetooth: hci9: command tx timeout [ 1109.572178][ T4613] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1 [ 1109.584405][ T4613] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9 [ 1109.592981][ T4613] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9 [ 1109.601375][ T4613] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4 [ 1109.610271][ T4613] Bluetooth: hci10: unexpected cc 0x0c25 length: 249 > 3 [ 1109.617836][ T4613] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2 [ 1110.091637][T14235] chnl_net:caif_netlink_parms(): no params data found [ 1110.300852][T14235] bridge0: port 1(bridge_slave_0) entered blocking state [ 1110.309848][T14235] bridge0: port 1(bridge_slave_0) entered disabled state [ 1110.321658][T14235] bridge_slave_0: entered allmulticast mode [ 1110.341405][T14235] bridge_slave_0: entered promiscuous mode [ 1110.358543][T14235] bridge0: port 2(bridge_slave_1) entered blocking state [ 1110.391647][T14235] bridge0: port 2(bridge_slave_1) entered disabled state [ 1110.399076][T14235] bridge_slave_1: entered allmulticast mode [ 1110.422728][T14235] bridge_slave_1: entered promiscuous mode [ 1110.509613][T14235] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1110.542588][T14235] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1110.644912][T14235] team0: Port device team_slave_0 added [ 1110.671845][T14235] team0: Port device team_slave_1 added [ 1110.750652][T14235] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1110.771364][T14235] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1110.816629][T14235] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1110.844304][T14235] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1110.867925][T14235] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1110.909792][T14235] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1111.032996][T14235] hsr_slave_0: entered promiscuous mode [ 1111.051950][T14235] hsr_slave_1: entered promiscuous mode [ 1111.063215][T14235] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1111.086821][T14235] Cannot create hsr debugfs directory [ 1111.661852][ T4613] Bluetooth: hci10: command tx timeout [ 1113.442848][ T5238] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1 [ 1113.455063][ T5238] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9 [ 1113.463714][ T5238] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9 [ 1113.473836][ T5238] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4 [ 1113.481846][ T5238] Bluetooth: hci11: unexpected cc 0x0c25 length: 249 > 3 [ 1113.489396][ T5238] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2 [ 1113.741845][ T4613] Bluetooth: hci10: command tx timeout [ 1113.957739][T14244] chnl_net:caif_netlink_parms(): no params data found [ 1114.163837][T14244] bridge0: port 1(bridge_slave_0) entered blocking state [ 1114.171029][T14244] bridge0: port 1(bridge_slave_0) entered disabled state [ 1114.191602][T14244] bridge_slave_0: entered allmulticast mode [ 1114.211355][T14244] bridge_slave_0: entered promiscuous mode [ 1114.233093][T14244] bridge0: port 2(bridge_slave_1) entered blocking state [ 1114.240354][T14244] bridge0: port 2(bridge_slave_1) entered disabled state [ 1114.261663][T14244] bridge_slave_1: entered allmulticast mode [ 1114.281528][T14244] bridge_slave_1: entered promiscuous mode [ 1114.372090][T14244] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1114.405681][T14244] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1114.502665][T14244] team0: Port device team_slave_0 added [ 1114.524538][T14244] team0: Port device team_slave_1 added [ 1114.595623][T14244] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1114.611475][T14244] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1114.659935][T14244] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1114.691004][T14244] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1114.717530][T14244] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1114.751218][T14244] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1114.893564][T14244] hsr_slave_0: entered promiscuous mode [ 1114.922017][T14244] hsr_slave_1: entered promiscuous mode [ 1114.950675][T14244] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1114.982851][T14244] Cannot create hsr debugfs directory [ 1115.581441][ T4613] Bluetooth: hci11: command tx timeout [ 1115.684478][ T5238] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1 [ 1115.694892][ T5238] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9 [ 1115.711392][ T5238] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9 [ 1115.720738][ T5238] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4 [ 1115.729000][ T5238] Bluetooth: hci12: unexpected cc 0x0c25 length: 249 > 3 [ 1115.736821][ T5238] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2 [ 1115.821952][ T5238] Bluetooth: hci10: command tx timeout [ 1116.199968][T14253] chnl_net:caif_netlink_parms(): no params data found [ 1116.238990][ T1271] ieee802154 phy0 wpan0: encryption failed: -22 [ 1116.245436][ T1271] ieee802154 phy1 wpan1: encryption failed: -22 [ 1116.443814][T14253] bridge0: port 1(bridge_slave_0) entered blocking state [ 1116.451022][T14253] bridge0: port 1(bridge_slave_0) entered disabled state [ 1116.471630][T14253] bridge_slave_0: entered allmulticast mode [ 1116.491438][T14253] bridge_slave_0: entered promiscuous mode [ 1116.515137][T14253] bridge0: port 2(bridge_slave_1) entered blocking state [ 1116.531293][T14253] bridge0: port 2(bridge_slave_1) entered disabled state [ 1116.538577][T14253] bridge_slave_1: entered allmulticast mode [ 1116.564409][T14253] bridge_slave_1: entered promiscuous mode [ 1116.644820][T14253] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1116.676010][T14253] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1116.769888][T14253] team0: Port device team_slave_0 added [ 1116.796070][T14253] team0: Port device team_slave_1 added [ 1116.895808][T14253] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1116.911238][T14253] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1116.971215][T14253] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1116.994565][T14253] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1117.011261][T14253] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1117.057407][T14253] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1117.183391][T14253] hsr_slave_0: entered promiscuous mode [ 1117.202473][T14253] hsr_slave_1: entered promiscuous mode [ 1117.213786][T14253] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1117.231289][T14253] Cannot create hsr debugfs directory [ 1117.663020][ T5238] Bluetooth: hci11: command tx timeout [ 1117.821535][ T5238] Bluetooth: hci12: command tx timeout [ 1117.901978][ T5238] Bluetooth: hci10: command tx timeout [ 1119.741631][ T5238] Bluetooth: hci11: command tx timeout [ 1119.903633][ T5238] Bluetooth: hci12: command tx timeout [ 1120.492375][ T4613] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1 [ 1120.502985][ T4613] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9 [ 1120.511696][ T4613] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9 [ 1120.520240][ T4613] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4 [ 1120.530096][ T4613] Bluetooth: hci13: unexpected cc 0x0c25 length: 249 > 3 [ 1120.537981][ T4613] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2 [ 1121.014611][T14262] chnl_net:caif_netlink_parms(): no params data found [ 1121.224436][T14262] bridge0: port 1(bridge_slave_0) entered blocking state [ 1121.243092][T14262] bridge0: port 1(bridge_slave_0) entered disabled state [ 1121.250466][T14262] bridge_slave_0: entered allmulticast mode [ 1121.275506][T14262] bridge_slave_0: entered promiscuous mode [ 1121.294756][T14262] bridge0: port 2(bridge_slave_1) entered blocking state [ 1121.308430][T14262] bridge0: port 2(bridge_slave_1) entered disabled state [ 1121.331662][T14262] bridge_slave_1: entered allmulticast mode [ 1121.339379][T14262] bridge_slave_1: entered promiscuous mode [ 1121.440136][T14262] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1121.474084][T14262] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1121.575173][T14262] team0: Port device team_slave_0 added [ 1121.595288][T14262] team0: Port device team_slave_1 added [ 1121.677204][T14262] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1121.691813][T14262] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1121.739676][T14262] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1121.781614][T14262] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1121.788608][T14262] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1121.832727][ T5238] Bluetooth: hci11: command tx timeout [ 1121.861587][T14262] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1121.982529][ T5238] Bluetooth: hci12: command tx timeout [ 1121.989806][T14262] hsr_slave_0: entered promiscuous mode [ 1122.002334][T14262] hsr_slave_1: entered promiscuous mode [ 1122.021527][T14262] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1122.031098][T14262] Cannot create hsr debugfs directory [ 1122.631912][ T5238] Bluetooth: hci13: command tx timeout [ 1124.073341][ T5238] Bluetooth: hci12: command tx timeout [ 1124.701446][ T5238] Bluetooth: hci13: command tx timeout [ 1126.781491][ T5238] Bluetooth: hci13: command tx timeout [ 1128.861506][ T5238] Bluetooth: hci13: command tx timeout [ 1146.002843][ T4613] Bluetooth: hci14: unexpected cc 0x0c03 length: 249 > 1 [ 1146.021550][ T4613] Bluetooth: hci14: unexpected cc 0x1003 length: 249 > 9 [ 1146.031104][ T4613] Bluetooth: hci14: unexpected cc 0x1001 length: 249 > 9 [ 1146.040440][ T4613] Bluetooth: hci14: unexpected cc 0x0c23 length: 249 > 4 [ 1146.049733][ T4613] Bluetooth: hci14: unexpected cc 0x0c25 length: 249 > 3 [ 1146.057428][ T4613] Bluetooth: hci14: unexpected cc 0x0c38 length: 249 > 2 [ 1146.549400][T14273] chnl_net:caif_netlink_parms(): no params data found [ 1146.761105][T14273] bridge0: port 1(bridge_slave_0) entered blocking state [ 1146.771713][T14273] bridge0: port 1(bridge_slave_0) entered disabled state [ 1146.779056][T14273] bridge_slave_0: entered allmulticast mode [ 1146.806400][T14273] bridge_slave_0: entered promiscuous mode [ 1146.824578][T14273] bridge0: port 2(bridge_slave_1) entered blocking state [ 1146.841351][T14273] bridge0: port 2(bridge_slave_1) entered disabled state [ 1146.848706][T14273] bridge_slave_1: entered allmulticast mode [ 1146.873667][T14273] bridge_slave_1: entered promiscuous mode [ 1146.971003][T14273] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1147.004726][T14273] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1147.134764][T14273] team0: Port device team_slave_0 added [ 1147.155981][T14273] team0: Port device team_slave_1 added [ 1147.241815][T14273] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1147.248827][T14273] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1147.296563][T14273] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1147.321595][T14273] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1147.328622][T14273] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1147.384020][T14273] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1147.497898][T14273] hsr_slave_0: entered promiscuous mode [ 1147.513625][T14273] hsr_slave_1: entered promiscuous mode [ 1147.531719][T14273] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1147.539335][T14273] Cannot create hsr debugfs directory [ 1148.142002][ T5238] Bluetooth: hci14: command tx timeout [ 1149.025749][ T5238] Bluetooth: hci4: command 0x040f tx timeout [ 1150.221803][ T5238] Bluetooth: hci14: command tx timeout [ 1152.301624][ T5238] Bluetooth: hci14: command tx timeout [ 1154.391721][ T5238] Bluetooth: hci14: command tx timeout [ 1169.582431][ T4613] Bluetooth: hci15: unexpected cc 0x0c03 length: 249 > 1 [ 1169.593464][ T4613] Bluetooth: hci15: unexpected cc 0x1003 length: 249 > 9 [ 1169.602462][ T4613] Bluetooth: hci15: unexpected cc 0x1001 length: 249 > 9 [ 1169.610836][ T4613] Bluetooth: hci15: unexpected cc 0x0c23 length: 249 > 4 [ 1169.632686][ T4613] Bluetooth: hci15: unexpected cc 0x0c25 length: 249 > 3 [ 1169.644408][ T4613] Bluetooth: hci15: unexpected cc 0x0c38 length: 249 > 2 [ 1170.112774][T14286] chnl_net:caif_netlink_parms(): no params data found [ 1170.314287][T14286] bridge0: port 1(bridge_slave_0) entered blocking state [ 1170.331261][T14286] bridge0: port 1(bridge_slave_0) entered disabled state [ 1170.338575][T14286] bridge_slave_0: entered allmulticast mode [ 1170.364407][T14286] bridge_slave_0: entered promiscuous mode [ 1170.384346][T14286] bridge0: port 2(bridge_slave_1) entered blocking state [ 1170.401278][T14286] bridge0: port 2(bridge_slave_1) entered disabled state [ 1170.408618][T14286] bridge_slave_1: entered allmulticast mode [ 1170.433074][T14286] bridge_slave_1: entered promiscuous mode [ 1170.523774][T14286] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1170.556293][T14286] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1170.665814][T14286] team0: Port device team_slave_0 added [ 1170.685310][T14286] team0: Port device team_slave_1 added [ 1170.768900][T14286] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1170.781630][T14286] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1170.836169][T14286] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1170.850196][T14286] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1170.870104][T14286] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1170.920755][T14286] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1171.039094][T14286] hsr_slave_0: entered promiscuous mode [ 1171.063099][T14286] hsr_slave_1: entered promiscuous mode [ 1171.069853][T14286] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1171.091539][T14286] Cannot create hsr debugfs directory [ 1171.741609][ T4613] Bluetooth: hci15: command tx timeout [ 1173.630460][T11802] Bluetooth: hci16: unexpected cc 0x0c03 length: 249 > 1 [ 1173.643657][T11802] Bluetooth: hci16: unexpected cc 0x1003 length: 249 > 9 [ 1173.652845][T11802] Bluetooth: hci16: unexpected cc 0x1001 length: 249 > 9 [ 1173.663646][T11802] Bluetooth: hci16: unexpected cc 0x0c23 length: 249 > 4 [ 1173.671661][T11802] Bluetooth: hci16: unexpected cc 0x0c25 length: 249 > 3 [ 1173.679244][T11802] Bluetooth: hci16: unexpected cc 0x0c38 length: 249 > 2 [ 1173.822888][T11802] Bluetooth: hci15: command tx timeout [ 1174.158873][T14295] chnl_net:caif_netlink_parms(): no params data found [ 1174.364679][T14295] bridge0: port 1(bridge_slave_0) entered blocking state [ 1174.381483][T14295] bridge0: port 1(bridge_slave_0) entered disabled state [ 1174.388854][T14295] bridge_slave_0: entered allmulticast mode [ 1174.413556][T14295] bridge_slave_0: entered promiscuous mode [ 1174.430581][T14295] bridge0: port 2(bridge_slave_1) entered blocking state [ 1174.451385][T14295] bridge0: port 2(bridge_slave_1) entered disabled state [ 1174.459897][T14295] bridge_slave_1: entered allmulticast mode [ 1174.483468][T14295] bridge_slave_1: entered promiscuous mode [ 1174.575889][T14295] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1174.606246][T14295] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1174.624873][ T5238] Bluetooth: hci3: command 0x0406 tx timeout [ 1174.719640][T14295] team0: Port device team_slave_0 added [ 1174.743414][T14295] team0: Port device team_slave_1 added [ 1174.825207][T14295] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1174.841362][T14295] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1174.901574][T14295] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1174.931783][T14295] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1174.938815][T14295] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1174.994515][T14295] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1175.113637][T14295] hsr_slave_0: entered promiscuous mode [ 1175.133229][T14295] hsr_slave_1: entered promiscuous mode [ 1175.151962][T14295] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1175.159585][T14295] Cannot create hsr debugfs directory [ 1175.752238][ T4613] Bluetooth: hci16: command tx timeout [ 1175.901786][ T5238] Bluetooth: hci15: command tx timeout [ 1176.540820][ T4613] Bluetooth: hci17: unexpected cc 0x0c03 length: 249 > 1 [ 1176.552364][ T4613] Bluetooth: hci17: unexpected cc 0x1003 length: 249 > 9 [ 1176.560982][ T4613] Bluetooth: hci17: unexpected cc 0x1001 length: 249 > 9 [ 1176.569598][ T4613] Bluetooth: hci17: unexpected cc 0x0c23 length: 249 > 4 [ 1176.579419][ T4613] Bluetooth: hci17: unexpected cc 0x0c25 length: 249 > 3 [ 1176.587127][ T4613] Bluetooth: hci17: unexpected cc 0x0c38 length: 249 > 2 [ 1177.069158][T14304] chnl_net:caif_netlink_parms(): no params data found [ 1177.284126][T14304] bridge0: port 1(bridge_slave_0) entered blocking state [ 1177.301269][T14304] bridge0: port 1(bridge_slave_0) entered disabled state [ 1177.308699][T14304] bridge_slave_0: entered allmulticast mode [ 1177.333302][T14304] bridge_slave_0: entered promiscuous mode [ 1177.363417][T14304] bridge0: port 2(bridge_slave_1) entered blocking state [ 1177.382154][T14304] bridge0: port 2(bridge_slave_1) entered disabled state [ 1177.389518][T14304] bridge_slave_1: entered allmulticast mode [ 1177.417617][T14304] bridge_slave_1: entered promiscuous mode [ 1177.505225][T14304] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1177.533828][T14304] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1177.643731][T14304] team0: Port device team_slave_0 added [ 1177.674125][ T1271] ieee802154 phy0 wpan0: encryption failed: -22 [ 1177.680481][ T1271] ieee802154 phy1 wpan1: encryption failed: -22 [ 1177.690953][T14304] team0: Port device team_slave_1 added [ 1177.766571][T14304] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1177.781460][T14304] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1177.821765][T14312] Bluetooth: hci16: command tx timeout [ 1177.841293][T14304] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1177.871312][T14304] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1177.878383][T14304] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1177.941485][T14304] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1177.981724][T14312] Bluetooth: hci15: command tx timeout [ 1178.073502][T14304] hsr_slave_0: entered promiscuous mode [ 1178.091873][T14304] hsr_slave_1: entered promiscuous mode [ 1178.098555][T14304] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1178.121369][T14304] Cannot create hsr debugfs directory [ 1178.621629][T14312] Bluetooth: hci17: command tx timeout [ 1179.758624][T14312] Bluetooth: hci5: command 0x0406 tx timeout [ 1179.764863][T10789] Bluetooth: hci7: command 0x0406 tx timeout [ 1179.901606][ T5238] Bluetooth: hci16: command tx timeout [ 1180.702365][ T5238] Bluetooth: hci17: command tx timeout [ 1181.071921][T14312] Bluetooth: hci18: unexpected cc 0x0c03 length: 249 > 1 [ 1181.084480][T14312] Bluetooth: hci18: unexpected cc 0x1003 length: 249 > 9 [ 1181.093781][T14312] Bluetooth: hci18: unexpected cc 0x1001 length: 249 > 9 [ 1181.102393][T14312] Bluetooth: hci18: unexpected cc 0x0c23 length: 249 > 4 [ 1181.112184][T14312] Bluetooth: hci18: unexpected cc 0x0c25 length: 249 > 3 [ 1181.119761][T14312] Bluetooth: hci18: unexpected cc 0x0c38 length: 249 > 2 [ 1181.589647][T14314] chnl_net:caif_netlink_parms(): no params data found [ 1181.801092][T14314] bridge0: port 1(bridge_slave_0) entered blocking state [ 1181.808685][T14314] bridge0: port 1(bridge_slave_0) entered disabled state [ 1181.821456][T14314] bridge_slave_0: entered allmulticast mode [ 1181.843341][T14314] bridge_slave_0: entered promiscuous mode [ 1181.863055][T14314] bridge0: port 2(bridge_slave_1) entered blocking state [ 1181.870239][T14314] bridge0: port 2(bridge_slave_1) entered disabled state [ 1181.890729][T14314] bridge_slave_1: entered allmulticast mode [ 1181.911466][T14314] bridge_slave_1: entered promiscuous mode [ 1181.981758][ T5238] Bluetooth: hci16: command tx timeout [ 1181.992976][T14314] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1182.026359][T14314] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1182.124172][T14314] team0: Port device team_slave_0 added [ 1182.153138][T14314] team0: Port device team_slave_1 added [ 1182.237861][T14314] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1182.261361][T14314] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1182.311168][T14314] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1182.338949][T14314] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1182.361453][T14314] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1182.411493][T14314] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1182.529355][T14314] hsr_slave_0: entered promiscuous mode [ 1182.553607][T14314] hsr_slave_1: entered promiscuous mode [ 1182.561659][T14314] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1182.569278][T14314] Cannot create hsr debugfs directory [ 1182.794992][ T5238] Bluetooth: hci17: command tx timeout [ 1183.181842][ T4613] Bluetooth: hci18: command tx timeout [ 1184.861620][ T4613] Bluetooth: hci8: command 0x0406 tx timeout [ 1184.867816][ T4613] Bluetooth: hci17: command tx timeout [ 1185.261589][ T5238] Bluetooth: hci18: command tx timeout [ 1187.341757][ T5238] Bluetooth: hci18: command tx timeout [ 1189.421557][ T5238] Bluetooth: hci18: command tx timeout [ 1205.821808][ T30] INFO: task kworker/u8:0:11 blocked for more than 143 seconds. [ 1205.829514][ T30] Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0 [ 1205.841495][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1205.850235][ T30] task:kworker/u8:0 state:D stack:21104 pid:11 tgid:11 ppid:2 flags:0x00004000 [ 1205.881148][ T30] Workqueue: netns cleanup_net SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 1205.901544][ T30] Call Trace: [ 1205.904885][ T30] [ 1205.907850][ T30] __schedule+0x17ae/0x4a10 [ 1205.931448][ T30] ? __pfx___schedule+0x10/0x10 [ 1205.936477][ T30] ? __pfx_lock_release+0x10/0x10 [ 1205.971326][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 1205.976863][ T30] ? kthread_data+0x52/0xd0 [ 1206.001500][ T30] ? schedule+0x90/0x320 [ 1206.005877][ T30] ? wq_worker_sleeping+0x66/0x240 [ 1206.011031][ T30] ? schedule+0x90/0x320 [ 1206.041498][ T30] schedule+0x14b/0x320 [ 1206.045863][ T30] schedule_preempt_disabled+0x13/0x30 [ 1206.071173][ T30] __mutex_lock+0x6a4/0xd70 [ 1206.075747][ T30] ? __mutex_lock+0x527/0xd70 [ 1206.080462][ T30] ? ieee80211_unregister_hw+0x55/0x2c0 [ 1206.114765][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 1206.119976][ T30] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 1206.204829][ T30] ? rcu_is_watching+0x15/0xb0 [ 1206.209702][ T30] ieee80211_unregister_hw+0x55/0x2c0 [ 1206.272584][ T30] mac80211_hwsim_del_radio+0x2c4/0x4c0 [ 1206.278236][ T30] ? __pfx_mac80211_hwsim_del_radio+0x10/0x10 [ 1206.302867][ T30] hwsim_exit_net+0x5c1/0x670 [ 1206.307638][ T30] ? __pfx_hwsim_exit_net+0x10/0x10 [ 1206.321160][ T30] ? __ip_vs_dev_cleanup_batch+0x239/0x260 [ 1206.327037][ T30] cleanup_net+0x802/0xcc0 [ 1206.352554][ T30] ? __pfx_cleanup_net+0x10/0x10 [ 1206.357587][ T30] ? process_scheduled_works+0x945/0x1830 [ 1206.371268][ T30] process_scheduled_works+0xa2c/0x1830 [ 1206.376902][ T30] ? __pfx_process_scheduled_works+0x10/0x10 [ 1206.391265][ T30] ? assign_work+0x364/0x3d0 [ 1206.395922][ T30] worker_thread+0x86d/0xd10 [ 1206.400574][ T30] ? __kthread_parkme+0x169/0x1d0 [ 1206.431155][ T30] ? __pfx_worker_thread+0x10/0x10 [ 1206.436347][ T30] kthread+0x2f0/0x390 [ 1206.440473][ T30] ? __pfx_worker_thread+0x10/0x10 [ 1206.453894][ T30] ? __pfx_kthread+0x10/0x10 [ 1206.458559][ T30] ret_from_fork+0x4b/0x80 [ 1206.481377][ T30] ? __pfx_kthread+0x10/0x10 [ 1206.486057][ T30] ret_from_fork_asm+0x1a/0x30 [ 1206.490880][ T30] [ 1206.505148][ T30] INFO: task kworker/u8:7:1833 blocked for more than 144 seconds. [ 1206.521144][ T30] Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0 [ 1206.528810][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1206.561146][ T30] task:kworker/u8:7 state:D stack:18760 pid:1833 tgid:1833 ppid:2 flags:0x00004000 [ 1206.583350][ T30] Workqueue: events_unbound linkwatch_event [ 1206.589324][ T30] Call Trace: [ 1206.601153][ T30] [ 1206.604137][ T30] __schedule+0x17ae/0x4a10 [ 1206.621384][ T30] ? __pfx___schedule+0x10/0x10 [ 1206.626308][ T30] ? __pfx_lock_release+0x10/0x10 [ 1206.641150][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 1206.646658][ T30] ? kthread_data+0x52/0xd0 [ 1206.661150][ T30] ? schedule+0x90/0x320 [ 1206.665453][ T30] ? wq_worker_sleeping+0x66/0x240 [ 1206.670606][ T30] ? schedule+0x90/0x320 [ 1206.691339][ T30] schedule+0x14b/0x320 [ 1206.695563][ T30] schedule_preempt_disabled+0x13/0x30 [ 1206.701067][ T30] __mutex_lock+0x6a4/0xd70 [ 1206.721294][ T30] ? __mutex_lock+0x527/0xd70 [ 1206.726034][ T30] ? linkwatch_event+0xe/0x60 [ 1206.730746][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 1206.751284][ T30] ? preempt_schedule_thunk+0x1a/0x30 [ 1206.756710][ T30] ? process_scheduled_works+0x945/0x1830 [ 1206.771165][ T30] linkwatch_event+0xe/0x60 [ 1206.775715][ T30] process_scheduled_works+0xa2c/0x1830 [ 1206.791177][ T30] ? __pfx_process_scheduled_works+0x10/0x10 [ 1206.797218][ T30] ? assign_work+0x364/0x3d0 [ 1206.821156][ T30] worker_thread+0x86d/0xd10 [ 1206.825815][ T30] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 1206.841287][ T30] ? __kthread_parkme+0x169/0x1d0 [ 1206.846366][ T30] ? __pfx_worker_thread+0x10/0x10 [ 1206.861411][ T30] kthread+0x2f0/0x390 [ 1206.865543][ T30] ? __pfx_worker_thread+0x10/0x10 [ 1206.870714][ T30] ? __pfx_kthread+0x10/0x10 [ 1206.891391][ T30] ret_from_fork+0x4b/0x80 [ 1206.895869][ T30] ? __pfx_kthread+0x10/0x10 [ 1206.900501][ T30] ret_from_fork_asm+0x1a/0x30 [ 1206.921238][ T30] [ 1206.924421][ T30] INFO: task kworker/1:11:7204 blocked for more than 144 seconds. [ 1206.941350][ T30] Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0 [ 1206.949022][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1206.981578][ T30] task:kworker/1:11 state:D stack:19824 pid:7204 tgid:7204 ppid:2 flags:0x00004000 [ 1207.001239][ T30] Workqueue: events_power_efficient crda_timeout_work [ 1207.008076][ T30] Call Trace: [ 1207.017222][ T30] [ 1207.020204][ T30] __schedule+0x17ae/0x4a10 [ 1207.041406][ T30] ? __pfx___schedule+0x10/0x10 [ 1207.046318][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 1207.061177][ T30] ? __pfx_lock_release+0x10/0x10 [ 1207.066262][ T30] ? kick_pool+0x1bd/0x620 [ 1207.070731][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 1207.091251][ T30] ? lockdep_hardirqs_on+0x99/0x150 [ 1207.096514][ T30] ? schedule+0x90/0x320 [ 1207.100826][ T30] schedule+0x14b/0x320 [ 1207.119577][ T30] schedule_preempt_disabled+0x13/0x30 [ 1207.132793][ T30] __mutex_lock+0x6a4/0xd70 [ 1207.137356][ T30] ? __mutex_lock+0x527/0xd70 [ 1207.151199][ T30] ? crda_timeout_work+0x15/0x50 [ 1207.156203][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 1207.171194][ T30] ? process_scheduled_works+0x945/0x1830 [ 1207.176972][ T30] crda_timeout_work+0x15/0x50 [ 1207.191215][ T30] process_scheduled_works+0xa2c/0x1830 [ 1207.196855][ T30] ? __pfx_process_scheduled_works+0x10/0x10 [ 1207.222088][ T30] ? assign_work+0x364/0x3d0 [ 1207.226762][ T30] worker_thread+0x86d/0xd10 [ 1207.245931][ T30] ? __kthread_parkme+0x169/0x1d0 [ 1207.251042][ T30] ? __pfx_worker_thread+0x10/0x10 [ 1207.271177][ T30] kthread+0x2f0/0x390 [ 1207.275351][ T30] ? __pfx_worker_thread+0x10/0x10 [ 1207.280505][ T30] ? __pfx_kthread+0x10/0x10 [ 1207.301382][ T30] ret_from_fork+0x4b/0x80 [ 1207.305897][ T30] ? __pfx_kthread+0x10/0x10 [ 1207.310543][ T30] ret_from_fork_asm+0x1a/0x30 [ 1207.321279][ T30] [ 1207.331200][ T30] INFO: task kworker/1:12:7205 blocked for more than 144 seconds. [ 1207.339059][ T30] Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0 [ 1207.371181][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1207.379911][ T30] task:kworker/1:12 state:D stack:18800 pid:7205 tgid:7205 ppid:2 flags:0x00004000 [ 1207.411340][ T30] Workqueue: events switchdev_deferred_process_work [ 1207.418019][ T30] Call Trace: [ 1207.431485][ T30] [ 1207.434483][ T30] __schedule+0x17ae/0x4a10 [ 1207.439076][ T30] ? __pfx___schedule+0x10/0x10 [ 1207.461320][ T30] ? __pfx_lock_release+0x10/0x10 [ 1207.466435][ T30] ? preempt_schedule_thunk+0x1a/0x30 [ 1207.481210][ T30] ? schedule+0x90/0x320 [ 1207.485522][ T30] schedule+0x14b/0x320 [ 1207.489730][ T30] schedule_preempt_disabled+0x13/0x30 [ 1207.511884][ T30] __mutex_lock+0x6a4/0xd70 [ 1207.516459][ T30] ? __mutex_lock+0x527/0xd70 [ 1207.529068][ T30] ? switchdev_deferred_process_work+0xe/0x20 [ 1207.541362][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 1207.546445][ T30] ? preempt_schedule_thunk+0x1a/0x30 [ 1207.561485][ T30] ? process_scheduled_works+0x945/0x1830 [ 1207.567258][ T30] switchdev_deferred_process_work+0xe/0x20 [ 1207.591344][ T30] process_scheduled_works+0xa2c/0x1830 [ 1207.596985][ T30] ? __pfx_process_scheduled_works+0x10/0x10 [ 1207.611215][ T30] ? assign_work+0x364/0x3d0 [ 1207.615863][ T30] worker_thread+0x86d/0xd10 [ 1207.620510][ T30] ? __kthread_parkme+0x169/0x1d0 [ 1207.641393][ T30] ? __pfx_worker_thread+0x10/0x10 [ 1207.646573][ T30] kthread+0x2f0/0x390 [ 1207.650686][ T30] ? __pfx_worker_thread+0x10/0x10 [ 1207.671379][ T30] ? __pfx_kthread+0x10/0x10 [ 1207.676033][ T30] ret_from_fork+0x4b/0x80 [ 1207.680497][ T30] ? __pfx_kthread+0x10/0x10 [ 1207.702780][ T30] ret_from_fork_asm+0x1a/0x30 [ 1207.707626][ T30] [ 1207.710677][ T30] INFO: task kworker/u8:4:11889 blocked for more than 145 seconds. [ 1207.733956][ T30] Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0 [ 1207.751248][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1207.759962][ T30] task:kworker/u8:4 state:D stack:19960 pid:11889 tgid:11889 ppid:2 flags:0x00004000 [ 1207.791399][ T30] Workqueue: ipv6_addrconf addrconf_dad_work [ 1207.797452][ T30] Call Trace: [ 1207.800755][ T30] [ 1207.821644][ T30] __schedule+0x17ae/0x4a10 [ 1207.826246][ T30] ? __pfx___schedule+0x10/0x10 [ 1207.836567][ T30] ? __pfx_lock_release+0x10/0x10 [ 1207.851278][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 1207.856787][ T30] ? kthread_data+0x52/0xd0 [ 1207.871202][ T30] ? schedule+0x90/0x320 [ 1207.875584][ T30] ? wq_worker_sleeping+0x66/0x240 [ 1207.880745][ T30] ? schedule+0x90/0x320 [ 1207.901583][ T30] schedule+0x14b/0x320 [ 1207.905819][ T30] schedule_preempt_disabled+0x13/0x30 [ 1207.922380][ T30] __mutex_lock+0x6a4/0xd70 [ 1207.926971][ T30] ? mark_lock+0x9a/0x350 [ 1207.938732][ T30] ? __mutex_lock+0x527/0xd70 [ 1207.951147][ T30] ? addrconf_dad_work+0xd0/0x16f0 [ 1207.956321][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 1207.971235][ T30] addrconf_dad_work+0xd0/0x16f0 [ 1207.976243][ T30] ? __pfx_addrconf_dad_work+0x10/0x10 [ 1207.991172][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 1207.997611][ T30] ? process_scheduled_works+0x945/0x1830 [ 1208.021292][ T30] process_scheduled_works+0xa2c/0x1830 [ 1208.026925][ T30] ? __pfx_process_scheduled_works+0x10/0x10 [ 1208.041315][ T30] ? assign_work+0x364/0x3d0 [ 1208.045970][ T30] worker_thread+0x86d/0xd10 [ 1208.050613][ T30] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 1208.071458][ T30] ? __kthread_parkme+0x169/0x1d0 [ 1208.076560][ T30] ? __pfx_worker_thread+0x10/0x10 [ 1208.101785][ T30] kthread+0x2f0/0x390 [ 1208.105932][ T30] ? __pfx_worker_thread+0x10/0x10 [ 1208.111079][ T30] ? __pfx_kthread+0x10/0x10 [ 1208.122363][ T30] ret_from_fork+0x4b/0x80 [ 1208.126865][ T30] ? __pfx_kthread+0x10/0x10 [ 1208.144249][ T30] ret_from_fork_asm+0x1a/0x30 [ 1208.149102][ T30] [ 1208.161215][ T30] INFO: task syz-executor:13980 blocked for more than 145 seconds. [ 1208.169154][ T30] Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0 [ 1208.201283][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1208.210004][ T30] task:syz-executor state:D stack:21136 pid:13980 tgid:13980 ppid:1 flags:0x00004006 [ 1208.243348][ T30] Call Trace: [ 1208.251189][ T30] [ 1208.254171][ T30] __schedule+0x17ae/0x4a10 [ 1208.258763][ T30] ? __pfx___schedule+0x10/0x10 [ 1208.281160][ T30] ? __pfx_lock_release+0x10/0x10 [ 1208.286270][ T30] ? schedule+0x90/0x320 [ 1208.290644][ T30] schedule+0x14b/0x320 [ 1208.311423][ T30] schedule_timeout+0xb0/0x310 [ 1208.316262][ T30] ? __pfx_schedule_timeout+0x10/0x10 [ 1208.331237][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 1208.337320][ T30] ? wait_for_completion+0x2fe/0x620 [ 1208.351226][ T30] ? wait_for_completion+0x2fe/0x620 [ 1208.356586][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 1208.392950][ T30] ? lockdep_hardirqs_on+0x99/0x150 [ 1208.398271][ T30] ? wait_for_completion+0x2fe/0x620 [ 1208.403715][ T30] wait_for_completion+0x355/0x620 [ 1208.408882][ T30] ? __pfx_wait_for_completion+0x10/0x10 [ 1208.431404][ T30] __flush_work+0xab1/0xd00 [ 1208.435993][ T30] ? __flush_work+0xe6/0xd00 [ 1208.440633][ T30] ? __pfx___flush_work+0x10/0x10 [ 1208.462033][ T30] ? __pfx_wq_barrier_func+0x10/0x10 [ 1208.467411][ T30] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 1208.481216][ T30] ? rcu_is_watching+0x15/0xb0 [ 1208.486053][ T30] nsim_fib_destroy+0xa1/0x180 [ 1208.490855][ T30] nsim_dev_reload_destroy+0x2e3/0x490 [ 1208.521509][ T30] ? __pfx_nsim_bus_remove+0x10/0x10 [ 1208.526959][ T30] nsim_drv_remove+0x58/0x160 [ 1208.541911][ T30] device_release_driver_internal+0x4a9/0x7c0 [ 1208.548053][ T30] bus_remove_device+0x34f/0x420 [ 1208.561294][ T30] device_del+0x57a/0x9b0 [ 1208.565697][ T30] ? __pfx_device_del+0x10/0x10 [ 1208.570598][ T30] device_unregister+0x20/0xc0 [ 1208.591153][ T30] del_device_store+0x363/0x480 [ 1208.596104][ T30] ? __pfx_del_device_store+0x10/0x10 [ 1208.612538][ T30] ? sysfs_kf_write+0x182/0x2a0 [ 1208.617450][ T30] ? bus_attr_store+0x4f/0xa0 [ 1208.641153][ T30] ? __pfx_sysfs_kf_write+0x10/0x10 [ 1208.646420][ T30] kernfs_fop_write_iter+0x3a1/0x500 [ 1208.655448][ T30] vfs_write+0xa72/0xc90 [ 1208.659759][ T30] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 1208.681153][ T30] ? __pfx_vfs_write+0x10/0x10 [ 1208.685987][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 1208.701579][ T30] ? blkcg_maybe_throttle_current+0x1ab/0xb80 [ 1208.707712][ T30] ksys_write+0x1a0/0x2c0 [ 1208.722838][ T30] ? __pfx_ksys_write+0x10/0x10 [ 1208.727746][ T30] ? do_syscall_64+0x100/0x230 [ 1208.741221][ T30] ? do_syscall_64+0xb6/0x230 [ 1208.745955][ T30] do_syscall_64+0xf3/0x230 [ 1208.750488][ T30] ? clear_bhb_loop+0x35/0x90 [ 1208.771149][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1208.777103][ T30] RIP: 0033:0x7fbddd37b9df [ 1208.801385][ T30] RSP: 002b:00007ffe12349710 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 1208.809890][ T30] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007fbddd37b9df [ 1208.832949][ T30] RDX: 0000000000000001 RSI: 00007ffe12349760 RDI: 0000000000000005 [ 1208.840970][ T30] RBP: 00007fbddd3f00bd R08: 0000000000000000 R09: 00007ffe12349567 [ 1208.871440][ T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 1208.879470][ T30] R13: 00007ffe12349760 R14: 00007fbdde064620 R15: 0000000000000003 [ 1208.901307][ T30] [ 1208.904477][ T30] INFO: task syz.3.2787:14162 blocked for more than 146 seconds. [ 1208.921242][ T30] Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0 [ 1208.928922][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1208.963108][ T30] task:syz.3.2787 state:D stack:24672 pid:14162 tgid:14162 ppid:11798 flags:0x00004004 [ 1208.981419][ T30] Call Trace: [ 1208.984766][ T30] [ 1208.987729][ T30] __schedule+0x17ae/0x4a10 [ 1209.001285][ T30] ? __pfx___schedule+0x10/0x10 [ 1209.006204][ T30] ? __pfx_lock_release+0x10/0x10 [ 1209.022297][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 1209.027841][ T30] ? schedule+0x90/0x320 [ 1209.041157][ T30] schedule+0x14b/0x320 [ 1209.045379][ T30] schedule_preempt_disabled+0x13/0x30 [ 1209.050880][ T30] __mutex_lock+0x6a4/0xd70 [ 1209.081332][ T30] ? __mutex_lock+0x527/0xd70 [ 1209.086090][ T30] ? raw_release+0x1b8/0x8b0 [ 1209.090718][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 1209.111392][ T30] ? do_raw_spin_unlock+0x13c/0x8b0 [ 1209.116661][ T30] raw_release+0x1b8/0x8b0 [ 1209.131636][ T30] sock_close+0xbc/0x240 [ 1209.135985][ T30] ? __pfx_sock_close+0x10/0x10 [ 1209.140881][ T30] __fput+0x24a/0x8a0 [ 1209.151267][ T30] task_work_run+0x24f/0x310 [ 1209.155919][ T30] ? __pfx_task_work_run+0x10/0x10 [ 1209.161068][ T30] ? syscall_exit_to_user_mode+0xa3/0x370 [ 1209.191409][ T30] syscall_exit_to_user_mode+0x168/0x370 [ 1209.197116][ T30] do_syscall_64+0x100/0x230 [ 1209.211203][ T30] ? clear_bhb_loop+0x35/0x90 [ 1209.216152][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1209.231152][ T30] RIP: 0033:0x7ff72877cef9 [ 1209.242686][ T30] RSP: 002b:00007ffdca183088 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 1209.261754][ T30] RAX: 0000000000000000 RBX: 00007ff728937a80 RCX: 00007ff72877cef9 [ 1209.283378][ T30] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003 [ 1209.301238][ T30] RBP: 00007ff728937a80 R08: 0000000000000006 R09: 00007ffdca18337f [ 1209.309269][ T30] R10: 00000000003ff770 R11: 0000000000000246 R12: 00000000000febe1 [ 1209.331214][ T30] R13: 00007ffdca183190 R14: 0000000000000032 R15: ffffffffffffffff [ 1209.339300][ T30] [ 1209.361580][ T30] INFO: task syz.1.2795:14187 blocked for more than 146 seconds. [ 1209.369335][ T30] Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0 [ 1209.393023][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1209.411187][ T30] task:syz.1.2795 state:D stack:24672 pid:14187 tgid:14187 ppid:11932 flags:0x00004004 [ 1209.431176][ T30] Call Trace: [ 1209.434502][ T30] [ 1209.437466][ T30] __schedule+0x17ae/0x4a10 [ 1209.451222][ T30] ? __pfx___schedule+0x10/0x10 [ 1209.456137][ T30] ? __pfx_lock_release+0x10/0x10 [ 1209.471163][ T30] ? schedule+0x90/0x320 [ 1209.481547][ T30] schedule+0x14b/0x320 [ 1209.485772][ T30] schedule_timeout+0xb0/0x310 [ 1209.490576][ T30] ? __pfx_schedule_timeout+0x10/0x10 [ 1209.521347][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 1209.527418][ T30] ? wait_for_completion+0x2fe/0x620 [ 1209.541230][ T30] ? wait_for_completion+0x2fe/0x620 [ 1209.548439][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 1209.561194][ T30] ? lockdep_hardirqs_on+0x99/0x150 [ 1209.566439][ T30] ? wait_for_completion+0x2fe/0x620 [ 1209.591839][ T30] wait_for_completion+0x355/0x620 [ 1209.597032][ T30] ? __pfx_wait_for_completion+0x10/0x10 [ 1209.611154][ T30] ? __init_swait_queue_head+0xae/0x150 [ 1209.616765][ T30] __synchronize_srcu+0x357/0x400 [ 1209.631223][ T30] ? __pfx___synchronize_srcu+0x10/0x10 [ 1209.636830][ T30] ? __pfx_wakeme_after_rcu+0x10/0x10 [ 1209.651227][ T30] ? ktime_get_mono_fast_ns+0x303/0x320 [ 1209.656831][ T30] ? synchronize_srcu+0x2c3/0x2e0 [ 1209.679475][ T30] mmu_notifier_unregister+0x2ca/0x3c0 [ 1209.685371][ T30] ? mmu_notifier_unregister+0xab/0x3c0 [ 1209.690984][ T30] kvm_put_kvm+0xca1/0x1300 [ 1209.711290][ T30] kvm_vm_release+0x46/0x50 [ 1209.715856][ T30] ? __pfx_kvm_vm_release+0x10/0x10 [ 1209.732954][ T30] __fput+0x24a/0x8a0 [ 1209.737058][ T30] task_work_run+0x24f/0x310 [ 1209.751201][ T30] ? __pfx_task_work_run+0x10/0x10 [ 1209.756466][ T30] ? syscall_exit_to_user_mode+0xa3/0x370 [ 1209.771168][ T30] syscall_exit_to_user_mode+0x168/0x370 [ 1209.776857][ T30] do_syscall_64+0x100/0x230 [ 1209.801336][ T30] ? clear_bhb_loop+0x35/0x90 [ 1209.806145][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1209.821600][ T30] RIP: 0033:0x7f8a55b7cef9 [ 1209.826589][ T30] RSP: 002b:00007ffc0afa7968 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 1209.853307][ T30] RAX: 0000000000000000 RBX: 00000000001000df RCX: 00007f8a55b7cef9 [ 1209.861607][ T30] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003 [ 1209.869624][ T30] RBP: 00007f8a55d37a80 R08: 0000000000000001 R09: 00007ffc0afa7c5f [ 1209.901143][ T30] R10: 00007f8a55a00000 R11: 0000000000000246 R12: 0000000000100192 [ 1209.909178][ T30] R13: 00007ffc0afa7a70 R14: 0000000000000032 R15: ffffffffffffffff [ 1209.931359][ T30] [ 1209.941376][ T30] INFO: task syz-executor:14190 blocked for more than 147 seconds. [ 1209.949322][ T30] Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0 [ 1209.971148][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1209.979877][ T30] task:syz-executor state:D stack:21728 pid:14190 tgid:14190 ppid:1 flags:0x00000004 [ 1210.011368][ T30] Call Trace: [ 1210.014722][ T30] [ 1210.017684][ T30] __schedule+0x17ae/0x4a10 [ 1210.041421][ T30] ? __pfx___schedule+0x10/0x10 [ 1210.046362][ T30] ? __pfx_lock_release+0x10/0x10 [ 1210.061340][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 1210.066896][ T30] ? schedule+0x90/0x320 [ 1210.081232][ T30] schedule+0x14b/0x320 [ 1210.085473][ T30] schedule_preempt_disabled+0x13/0x30 [ 1210.101151][ T30] __mutex_lock+0x6a4/0xd70 [ 1210.105729][ T30] ? __mutex_lock+0x527/0xd70 [ 1210.110443][ T30] ? del_device_store+0xfc/0x480 [ 1210.131436][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 1210.136645][ T30] del_device_store+0xfc/0x480 [ 1210.151208][ T30] ? __pfx_del_device_store+0x10/0x10 [ 1210.156644][ T30] ? sysfs_kf_write+0x182/0x2a0 [ 1210.171221][ T30] ? bus_attr_store+0x4f/0xa0 [ 1210.175951][ T30] ? __pfx_sysfs_kf_write+0x10/0x10 [ 1210.191508][ T30] kernfs_fop_write_iter+0x3a1/0x500 [ 1210.196879][ T30] vfs_write+0xa72/0xc90 [ 1210.218697][ T30] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 1210.225243][ T30] ? __pfx_vfs_write+0x10/0x10 [ 1210.230082][ T30] ksys_write+0x1a0/0x2c0 [ 1210.251414][ T30] ? __pfx_ksys_write+0x10/0x10 [ 1210.256350][ T30] ? do_syscall_64+0x100/0x230 [ 1210.271270][ T30] ? do_syscall_64+0xb6/0x230 [ 1210.276052][ T30] do_syscall_64+0xf3/0x230 [ 1210.280592][ T30] ? clear_bhb_loop+0x35/0x90 [ 1210.301154][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1210.307212][ T30] RIP: 0033:0x7fbe90d7b9df [ 1210.321452][ T30] RSP: 002b:00007ffc2f4e4780 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 1210.329935][ T30] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007fbe90d7b9df [ 1210.361150][ T30] RDX: 0000000000000001 RSI: 00007ffc2f4e47d0 RDI: 0000000000000005 [ 1210.371609][ T30] RBP: 00007fbe90df00bd R08: 0000000000000000 R09: 00007ffc2f4e45d7 [ 1210.379636][ T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 1210.411144][ T30] R13: 00007ffc2f4e47d0 R14: 00007fbe91a64620 R15: 0000000000000003 [ 1210.419195][ T30] [ 1210.431243][ T30] INFO: task syz-executor:14199 blocked for more than 147 seconds. [ 1210.439170][ T30] Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0 [ 1210.468673][ T4613] Bluetooth: hci9: command 0x0406 tx timeout [ 1210.475096][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1210.491202][ T30] task:syz-executor state:D stack:21728 pid:14199 tgid:14199 ppid:1 flags:0x00000004 [ 1210.521147][ T30] Call Trace: [ 1210.524569][ T30] [ 1210.527542][ T30] __schedule+0x17ae/0x4a10 [ 1210.541173][ T30] ? __pfx___schedule+0x10/0x10 [ 1210.546128][ T30] ? __pfx_lock_release+0x10/0x10 [ 1210.561208][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 1210.566730][ T30] ? schedule+0x90/0x320 [ 1210.571018][ T30] schedule+0x14b/0x320 [ 1210.591151][ T30] schedule_preempt_disabled+0x13/0x30 [ 1210.596675][ T30] __mutex_lock+0x6a4/0xd70 [ 1210.611151][ T30] ? __mutex_lock+0x527/0xd70 [ 1210.615880][ T30] ? del_device_store+0xfc/0x480 [ 1210.620863][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 1210.651170][ T30] del_device_store+0xfc/0x480 [ 1210.656026][ T30] ? __pfx_del_device_store+0x10/0x10 [ 1210.671340][ T30] ? sysfs_kf_write+0x182/0x2a0 [ 1210.676299][ T30] ? bus_attr_store+0x4f/0xa0 [ 1210.681008][ T30] ? __pfx_sysfs_kf_write+0x10/0x10 [ 1210.701660][ T30] kernfs_fop_write_iter+0x3a1/0x500 [ 1210.711393][ T30] vfs_write+0xa72/0xc90 [ 1210.715708][ T30] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 1210.742591][ T30] ? __pfx_vfs_write+0x10/0x10 [ 1210.747486][ T30] ksys_write+0x1a0/0x2c0 [ 1210.752141][ T30] ? __pfx_ksys_write+0x10/0x10 [ 1210.757036][ T30] ? do_syscall_64+0x100/0x230 [ 1210.771146][ T30] ? do_syscall_64+0xb6/0x230 [ 1210.775866][ T30] do_syscall_64+0xf3/0x230 [ 1210.780402][ T30] ? clear_bhb_loop+0x35/0x90 [ 1210.801636][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1210.821409][ T30] RIP: 0033:0x7f089617b9df [ 1210.825882][ T30] RSP: 002b:00007ffe5f469610 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 1210.851466][ T30] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f089617b9df [ 1210.859490][ T30] RDX: 0000000000000001 RSI: 00007ffe5f469660 RDI: 0000000000000005 [ 1210.881289][ T30] RBP: 00007f08961f00bd R08: 0000000000000000 R09: 00007ffe5f469467 [ 1210.889310][ T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 1210.911492][ T30] R13: 00007ffe5f469660 R14: 00007f0896e64620 R15: 0000000000000003 [ 1210.919538][ T30] [ 1210.941914][ T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings [ 1210.961268][ T30] INFO: task syz-executor:14208 blocked for more than 148 seconds. [ 1210.969226][ T30] Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0 [ 1210.991330][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1211.000068][ T30] task:syz-executor state:D stack:21728 pid:14208 tgid:14208 ppid:1 flags:0x00000004 [ 1211.031747][ T30] Call Trace: [ 1211.035090][ T30] [ 1211.038053][ T30] __schedule+0x17ae/0x4a10 [ 1211.061672][ T30] ? __pfx___schedule+0x10/0x10 [ 1211.066604][ T30] ? __pfx_lock_release+0x10/0x10 [ 1211.081199][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 1211.086731][ T30] ? schedule+0x90/0x320 [ 1211.091028][ T30] schedule+0x14b/0x320 [ 1211.111199][ T30] schedule_preempt_disabled+0x13/0x30 [ 1211.121471][ T30] __mutex_lock+0x6a4/0xd70 [ 1211.126036][ T30] ? __mutex_lock+0x527/0xd70 [ 1211.130755][ T30] ? del_device_store+0xfc/0x480 [ 1211.151412][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 1211.156525][ T30] del_device_store+0xfc/0x480 [ 1211.171249][ T30] ? __pfx_del_device_store+0x10/0x10 [ 1211.176680][ T30] ? sysfs_kf_write+0x182/0x2a0 [ 1211.201147][ T30] ? bus_attr_store+0x4f/0xa0 [ 1211.205883][ T30] ? __pfx_sysfs_kf_write+0x10/0x10 [ 1211.221145][ T30] kernfs_fop_write_iter+0x3a1/0x500 [ 1211.226600][ T30] vfs_write+0xa72/0xc90 [ 1211.230893][ T30] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 1211.251419][ T30] ? __pfx_vfs_write+0x10/0x10 [ 1211.256284][ T30] ksys_write+0x1a0/0x2c0 [ 1211.260664][ T30] ? __pfx_ksys_write+0x10/0x10 [ 1211.281486][ T30] ? do_syscall_64+0x100/0x230 [ 1211.286317][ T30] ? do_syscall_64+0xb6/0x230 [ 1211.291035][ T30] do_syscall_64+0xf3/0x230 [ 1211.311386][ T30] ? clear_bhb_loop+0x35/0x90 [ 1211.316129][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1211.341522][ T30] RIP: 0033:0x7ff16197b9df [ 1211.346003][ T30] RSP: 002b:00007ffdd5b0ecd0 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 1211.361142][ T30] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007ff16197b9df [ 1211.381229][ T30] RDX: 0000000000000001 RSI: 00007ffdd5b0ed20 RDI: 0000000000000005 [ 1211.389266][ T30] RBP: 00007ff1619f00bd R08: 0000000000000000 R09: 00007ffdd5b0eb27 [ 1211.411376][ T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 1211.433510][ T30] R13: 00007ffdd5b0ed20 R14: 00007ff162664620 R15: 0000000000000003 [ 1211.451163][ T30] [ 1211.454234][ T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings [ 1211.481503][ T30] INFO: task syz-executor:14217 blocked for more than 149 seconds. [ 1211.489443][ T30] Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0 [ 1211.511245][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1211.519969][ T30] task:syz-executor state:D stack:21728 pid:14217 tgid:14217 ppid:1 flags:0x00000004 [ 1211.551424][ T30] Call Trace: [ 1211.554760][ T30] [ 1211.557722][ T30] __schedule+0x17ae/0x4a10 [ 1211.571171][ T30] ? __pfx___schedule+0x10/0x10 [ 1211.576086][ T30] ? __pfx_lock_release+0x10/0x10 [ 1211.601407][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 1211.606943][ T30] ? schedule+0x90/0x320 [ 1211.621214][ T30] schedule+0x14b/0x320 [ 1211.627135][ T30] schedule_preempt_disabled+0x13/0x30 [ 1211.641249][ T30] __mutex_lock+0x6a4/0xd70 [ 1211.645811][ T30] ? __mutex_lock+0x527/0xd70 [ 1211.650529][ T30] ? del_device_store+0xfc/0x480 [ 1211.671159][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 1211.676297][ T30] del_device_store+0xfc/0x480 [ 1211.691213][ T30] ? __pfx_del_device_store+0x10/0x10 [ 1211.696664][ T30] ? sysfs_kf_write+0x182/0x2a0 [ 1211.711205][ T30] ? bus_attr_store+0x4f/0xa0 [ 1211.715933][ T30] ? __pfx_sysfs_kf_write+0x10/0x10 [ 1211.741594][ T30] kernfs_fop_write_iter+0x3a1/0x500 [ 1211.746938][ T30] vfs_write+0xa72/0xc90 [ 1211.763142][ T30] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 1211.769000][ T30] ? __pfx_vfs_write+0x10/0x10 [ 1211.781195][ T30] ksys_write+0x1a0/0x2c0 [ 1211.785584][ T30] ? __pfx_ksys_write+0x10/0x10 [ 1211.790480][ T30] ? do_syscall_64+0x100/0x230 [ 1211.811370][ T30] ? do_syscall_64+0xb6/0x230 [ 1211.816108][ T30] do_syscall_64+0xf3/0x230 [ 1211.820700][ T30] ? clear_bhb_loop+0x35/0x90 [ 1211.841281][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1211.847231][ T30] RIP: 0033:0x7f8e18d7b9df [ 1211.861154][ T30] RSP: 002b:00007fff117ab150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 1211.869641][ T30] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f8e18d7b9df [ 1211.901045][ T30] RDX: 0000000000000001 RSI: 00007fff117ab1a0 RDI: 0000000000000005 [ 1211.909652][ T30] RBP: 00007f8e18df00bd R08: 0000000000000000 R09: 00007fff117aafa7 [ 1211.932518][ T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 1211.940563][ T30] R13: 00007fff117ab1a0 R14: 00007f8e19a64620 R15: 0000000000000003 [ 1211.971415][ T30] [ 1211.974497][ T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings [ 1211.991332][ T30] [ 1211.991332][ T30] Showing all locks held in the system: [ 1211.999096][ T30] 4 locks held by kworker/u8:0/11: [ 1212.021431][ T30] #0: ffff88801b6e3148 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 1212.041230][ T30] #1: ffffc90000107d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 1212.061626][ T30] #2: ffffffff8fa6cc90 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0 [ 1212.081169][ T30] #3: ffffffff8fa79848 (rtnl_mutex){+.+.}-{3:3}, at: ieee80211_unregister_hw+0x55/0x2c0 [ 1212.111271][ T30] 3 locks held by kworker/u8:1/12: [ 1212.116526][ T30] 1 lock held by khungtaskd/30: [ 1212.131188][ T30] #0: ffffffff8e738320 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0 [ 1212.151193][ T30] 3 locks held by kworker/u8:7/1833: [ 1212.156567][ T30] #0: ffff88801a889148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 1212.191418][ T30] #1: ffffc90004c37d00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 1212.211222][ T30] #2: ffffffff8fa79848 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60 [ 1212.220425][ T30] 2 locks held by getty/4984: [ 1212.239533][ T30] #0: ffff8880309c10a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 1212.257076][ T30] #1: ffffc9000312b2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6ac/0x1e00 [ 1212.281286][ T30] 3 locks held by kworker/0:11/7196: [ 1212.286662][ T30] 3 locks held by kworker/1:11/7204: [ 1212.312630][ T30] #0: ffff88801a881948 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 1212.331215][ T30] #1: ffffc90002db7d00 ((crda_timeout).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 1212.361821][ T30] #2: ffffffff8fa79848 (rtnl_mutex){+.+.}-{3:3}, at: crda_timeout_work+0x15/0x50 [ 1212.374282][ T30] 3 locks held by kworker/1:12/7205: [ 1212.379608][ T30] #0: ffff88801a880948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 1212.411383][ T30] #1: ffffc900020efd00 (deferred_process_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 1212.431145][ T30] #2: ffffffff8fa79848 (rtnl_mutex){+.+.}-{3:3}, at: switchdev_deferred_process_work+0xe/0x20 [ 1212.461642][ T30] 3 locks held by kworker/u8:4/11889: [ 1212.467098][ T30] #0: ffff88802fead148 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 1212.491175][ T30] #1: ffffc900031d7d00 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 1212.520315][ T30] #2: ffffffff8fa79848 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_dad_work+0xd0/0x16f0 [ 1212.543183][ T30] 6 locks held by syz-executor/13980: [ 1212.550367][ T30] #0: ffff888023ddc420 (sb_writers#8){.+.+}-{0:0}, at: vfs_write+0x227/0xc90 [ 1212.571250][ T30] #1: ffff8880323d8c88 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x1eb/0x500 [ 1212.591212][ T30] #2: ffff888027b6c3c8 (kn->active#50){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x20f/0x500 [ 1212.611197][ T30] #3: ffffffff8f313e68 (nsim_bus_dev_list_lock){+.+.}-{3:3}, at: del_device_store+0xfc/0x480 [ 1212.631189][ T30] #4: ffff88807eedd0e8 (&dev->mutex){....}-{3:3}, at: device_release_driver_internal+0xce/0x7c0 [ 1212.661148][ T30] #5: ffff88807eede250 (&devlink->lock_key#32){+.+.}-{3:3}, at: nsim_drv_remove+0x50/0x160 [ 1212.678918][ T30] 2 locks held by syz.0.2766/14112: [ 1212.691172][ T30] 2 locks held by syz.3.2787/14162: [ 1212.696412][ T30] #0: ffff8880788f0808 (&sb->s_type->i_mutex_key#9){+.+.}-{3:3}, at: sock_close+0x90/0x240 [ 1212.731145][ T30] #1: ffffffff8fa79848 (rtnl_mutex){+.+.}-{3:3}, at: raw_release+0x1b8/0x8b0 [ 1212.740128][ T30] 1 lock held by syz.2.2792/14179: [ 1212.762966][ T30] 4 locks held by syz-executor/14190: [ 1212.768397][ T30] #0: ffff888023ddc420 (sb_writers#8){.+.+}-{0:0}, at: vfs_write+0x227/0xc90 [ 1212.791327][ T30] #1: ffff88802956c488 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x1eb/0x500 [ 1212.811147][ T30] #2: ffff888027b6c3c8 (kn->active#50){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x20f/0x500 [ 1212.831192][ T30] #3: ffffffff8f313e68 (nsim_bus_dev_list_lock){+.+.}-{3:3}, at: del_device_store+0xfc/0x480 [ 1212.851189][ T30] 4 locks held by syz-executor/14199: [ 1212.862197][ T30] #0: ffff888023ddc420 (sb_writers#8){.+.+}-{0:0}, at: vfs_write+0x227/0xc90 [ 1212.881273][ T30] #1: ffff88805f226088 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x1eb/0x500 [ 1212.911461][ T30] #2: ffff888027b6c3c8 (kn->active#50){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x20f/0x500 [ 1212.931291][ T30] #3: ffffffff8f313e68 (nsim_bus_dev_list_lock){+.+.}-{3:3}, at: del_device_store+0xfc/0x480 [ 1212.951275][ T30] 4 locks held by syz-executor/14208: [ 1212.958441][ T30] #0: ffff888023ddc420 (sb_writers#8){.+.+}-{0:0}, at: vfs_write+0x227/0xc90 [ 1212.981150][ T30] #1: ffff88805d204c88 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x1eb/0x500 [ 1212.990997][ T30] #2: ffff888027b6c3c8 (kn->active#50){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x20f/0x500 [ 1213.021147][ T30] #3: ffffffff8f313e68 (nsim_bus_dev_list_lock){+.+.}-{3:3}, at: del_device_store+0xfc/0x480 [ 1213.051512][ T30] 4 locks held by syz-executor/14217: [ 1213.056936][ T30] #0: ffff888023ddc420 (sb_writers#8){.+.+}-{0:0}, at: vfs_write+0x227/0xc90 [ 1213.081227][ T30] #1: ffff88807a80e488 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x1eb/0x500 [ 1213.101158][ T30] #2: ffff888027b6c3c8 (kn->active#50){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x20f/0x500 [ 1213.121521][ T30] #3: ffffffff8f313e68 (nsim_bus_dev_list_lock){+.+.}-{3:3}, at: del_device_store+0xfc/0x480 [ 1213.141245][ T30] 4 locks held by syz-executor/14226: [ 1213.146693][ T30] #0: ffff888023ddc420 (sb_writers#8){.+.+}-{0:0}, at: vfs_write+0x227/0xc90 [ 1213.181146][ T30] #1: ffff88807c001888 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x1eb/0x500 [ 1213.191000][ T30] #2: ffff888027b6c3c8 (kn->active#50){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x20f/0x500 [ 1213.221154][ T30] #3: ffffffff8f313e68 (nsim_bus_dev_list_lock){+.+.}-{3:3}, at: del_device_store+0xfc/0x480 [ 1213.241514][ T30] 4 locks held by syz-executor/14235: [ 1213.246948][ T30] #0: ffff888023ddc420 (sb_writers#8){.+.+}-{0:0}, at: vfs_write+0x227/0xc90 [ 1213.271581][ T30] #1: ffff888028492888 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x1eb/0x500 [ 1213.291318][ T30] #2: ffff888027b6c3c8 (kn->active#50){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x20f/0x500 [ 1213.311145][ T30] #3: ffffffff8f313e68 (nsim_bus_dev_list_lock){+.+.}-{3:3}, at: del_device_store+0xfc/0x480 [ 1213.342922][ T30] 4 locks held by syz-executor/14244: [ 1213.348355][ T30] #0: ffff888023ddc420 (sb_writers#8){.+.+}-{0:0}, at: vfs_write+0x227/0xc90 [ 1213.365928][ T30] #1: ffff88805cb38488 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x1eb/0x500 [ 1213.391361][ T30] #2: ffff888027b6c3c8 (kn->active#50){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x20f/0x500 [ 1213.411346][ T30] #3: ffffffff8f313e68 (nsim_bus_dev_list_lock){+.+.}-{3:3}, at: del_device_store+0xfc/0x480 [ 1213.431358][ T30] 4 locks held by syz-executor/14253: [ 1213.436781][ T30] #0: ffff888023ddc420 (sb_writers#8){.+.+}-{0:0}, at: vfs_write+0x227/0xc90 [ 1213.461356][ T30] #1: ffff88805bd5a088 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x1eb/0x500 [ 1213.481532][ T30] #2: ffff888027b6c3c8 (kn->active#50){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x20f/0x500 [ 1213.514985][ T30] #3: ffffffff8f313e68 (nsim_bus_dev_list_lock){+.+.}-{3:3}, at: del_device_store+0xfc/0x480 [ 1213.525841][ T30] 4 locks held by syz-executor/14262: [ 1213.541145][ T30] #0: ffff888023ddc420 (sb_writers#8){.+.+}-{0:0}, at: vfs_write+0x227/0xc90 [ 1213.550142][ T30] #1: ffff88802991d888 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x1eb/0x500 [ 1213.581144][ T30] #2: ffff888027b6c3c8 (kn->active#50){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x20f/0x500 [ 1213.601243][ T30] #3: ffffffff8f313e68 (nsim_bus_dev_list_lock){+.+.}-{3:3}, at: del_device_store+0xfc/0x480 [ 1213.619692][ T30] 4 locks held by syz-executor/14273: [ 1213.631139][ T30] #0: ffff888023ddc420 (sb_writers#8){.+.+}-{0:0}, at: vfs_write+0x227/0xc90 [ 1213.640119][ T30] #1: ffff8880810a7488 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x1eb/0x500 [ 1213.671144][ T30] #2: ffff888027b6c3c8 (kn->active#50){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x20f/0x500 [ 1213.701145][ T30] #3: ffffffff8f313e68 (nsim_bus_dev_list_lock){+.+.}-{3:3}, at: del_device_store+0xfc/0x480 [ 1213.721485][ T30] 4 locks held by syz-executor/14286: [ 1213.726900][ T30] #0: ffff888023ddc420 (sb_writers#8){.+.+}-{0:0}, at: vfs_write+0x227/0xc90 [ 1213.751861][ T30] #1: ffff888067b78488 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x1eb/0x500 [ 1213.770712][ T30] #2: ffff888027b6c3c8 (kn->active#50){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x20f/0x500 [ 1213.791169][ T30] #3: ffffffff8f313e68 (nsim_bus_dev_list_lock){+.+.}-{3:3}, at: del_device_store+0xfc/0x480 [ 1213.811148][ T30] 4 locks held by syz-executor/14295: [ 1213.816562][ T30] #0: ffff888023ddc420 (sb_writers#8){.+.+}-{0:0}, at: vfs_write+0x227/0xc90 [ 1213.841144][ T30] #1: ffff888086c49c88 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x1eb/0x500 [ 1213.850989][ T30] #2: ffff888027b6c3c8 (kn->active#50){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x20f/0x500 [ 1213.891169][ T30] #3: ffffffff8f313e68 (nsim_bus_dev_list_lock){+.+.}-{3:3}, at: del_device_store+0xfc/0x480 [ 1213.911155][ T30] 4 locks held by syz-executor/14304: [ 1213.916568][ T30] #0: ffff888023ddc420 (sb_writers#8){.+.+}-{0:0}, at: vfs_write+0x227/0xc90 [ 1213.941382][ T30] #1: ffff888025b21888 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x1eb/0x500 [ 1213.961346][ T30] #2: ffff888027b6c3c8 (kn->active#50){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x20f/0x500 [ 1213.981454][ T30] #3: ffffffff8f313e68 (nsim_bus_dev_list_lock){+.+.}-{3:3}, at: del_device_store+0xfc/0x480 [ 1214.011421][ T30] 4 locks held by syz-executor/14314: [ 1214.016869][ T30] #0: ffff888023ddc420 (sb_writers#8){.+.+}-{0:0}, at: vfs_write+0x227/0xc90 [ 1214.042614][ T30] #1: ffff888033880488 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x1eb/0x500 [ 1214.061427][ T30] #2: ffff888027b6c3c8 (kn->active#50){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x20f/0x500 [ 1214.082983][ T30] #3: ffffffff8f313e68 (nsim_bus_dev_list_lock){+.+.}-{3:3}, at: del_device_store+0xfc/0x480 [ 1214.101826][ T30] [ 1214.104211][ T30] ============================================= [ 1214.104211][ T30] [ 1214.121239][ T30] NMI backtrace for cpu 1 [ 1214.125617][ T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0 [ 1214.136229][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 1214.146309][ T30] Call Trace: [ 1214.149616][ T30] [ 1214.152572][ T30] dump_stack_lvl+0x241/0x360 [ 1214.157375][ T30] ? __pfx_dump_stack_lvl+0x10/0x10 [ 1214.162609][ T30] ? __pfx__printk+0x10/0x10 [ 1214.167254][ T30] ? vprintk_emit+0x667/0x7c0 [ 1214.171965][ T30] ? __pfx_vprintk_emit+0x10/0x10 [ 1214.177043][ T30] nmi_cpu_backtrace+0x49c/0x4d0 [ 1214.182041][ T30] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 1214.187542][ T30] ? _printk+0xd5/0x120 [ 1214.191741][ T30] ? __pfx__printk+0x10/0x10 [ 1214.196368][ T30] ? __wake_up_klogd+0xcc/0x110 [ 1214.201259][ T30] ? __pfx__printk+0x10/0x10 [ 1214.205876][ T30] ? __rcu_read_unlock+0xa1/0x110 [ 1214.210956][ T30] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 1214.216991][ T30] nmi_trigger_cpumask_backtrace+0x198/0x320 [ 1214.223015][ T30] watchdog+0xff4/0x1040 [ 1214.227299][ T30] ? watchdog+0x1ea/0x1040 [ 1214.231772][ T30] ? __pfx_watchdog+0x10/0x10 [ 1214.236489][ T30] kthread+0x2f0/0x390 [ 1214.240603][ T30] ? __pfx_watchdog+0x10/0x10 [ 1214.245321][ T30] ? __pfx_kthread+0x10/0x10 [ 1214.249967][ T30] ret_from_fork+0x4b/0x80 [ 1214.254421][ T30] ? __pfx_kthread+0x10/0x10 [ 1214.259048][ T30] ret_from_fork_asm+0x1a/0x30 [ 1214.263880][ T30] [ 1214.269514][ T30] Sending NMI from CPU 1 to CPUs 0: [ 1214.275220][ C0] NMI backtrace for cpu 0 [ 1214.275235][ C0] CPU: 0 UID: 0 PID: 14179 Comm: syz.2.2792 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0 [ 1214.275257][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 1214.275268][ C0] RIP: 0010:get_sigframe+0x75/0x700 [ 1214.275295][ C0] Code: 60 b3 8a b5 41 48 c7 44 24 68 54 96 e1 8d 48 c7 44 24 70 f0 65 32 81 48 8d 4c 24 60 48 c1 e9 03 48 b8 f1 f1 f1 f1 00 f2 f2 f2 <4a> 89 04 21 66 42 c7 44 21 09 f3 f3 48 89 4c 24 20 42 c6 44 21 0b [ 1214.275312][ C0] RSP: 0018:ffffc90004b4fb20 EFLAGS: 00000a02 [ 1214.275328][ C0] RAX: f2f2f200f1f1f1f1 RBX: ffffc90004b4fe00 RCX: 1ffff92000969f70 [ 1214.275349][ C0] RDX: 00000000000001b8 RSI: ffffc90004b4ff58 RDI: ffffc90004b4fe00 [ 1214.275362][ C0] RBP: ffffc90004b4fc30 R08: ffffffff81327b1b R09: 1ffff1100fde42ad [ 1214.275375][ C0] R10: dffffc0000000000 R11: ffffed100fde42ae R12: dffffc0000000000 [ 1214.275389][ C0] R13: 1ffff92000969fa8 R14: ffffc90004b4ff58 R15: 1ffff92000969fa4 [ 1214.275404][ C0] FS: 00007f17d42b76c0(0000) GS:ffff8880b8800000(0000) knlGS:0000000000000000 [ 1214.275420][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1214.275434][ C0] CR2: 000000002006b000 CR3: 000000005f10c000 CR4: 00000000003526f0 [ 1214.275449][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1214.275461][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1214.275472][ C0] Call Trace: [ 1214.275480][ C0] [ 1214.275488][ C0] ? nmi_cpu_backtrace+0x3c2/0x4d0 [ 1214.275514][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 1214.275542][ C0] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 1214.275565][ C0] ? nmi_handle+0x2a/0x5a0 [ 1214.275593][ C0] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 1214.275615][ C0] ? nmi_handle+0x14f/0x5a0 [ 1214.275633][ C0] ? nmi_handle+0x2a/0x5a0 [ 1214.275651][ C0] ? get_sigframe+0x75/0x700 [ 1214.275673][ C0] ? default_do_nmi+0x63/0x160 [ 1214.275698][ C0] ? exc_nmi+0x123/0x1f0 [ 1214.275721][ C0] ? end_repeat_nmi+0xf/0x53 [ 1214.275748][ C0] ? x64_setup_rt_frame+0x14b/0xcc0 [ 1214.275773][ C0] ? get_sigframe+0x75/0x700 [ 1214.275795][ C0] ? get_sigframe+0x75/0x700 [ 1214.275818][ C0] ? get_sigframe+0x75/0x700 [ 1214.275840][ C0] [ 1214.275846][ C0] [ 1214.275853][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 1214.275883][ C0] ? __pfx_get_sigframe+0x10/0x10 [ 1214.275931][ C0] x64_setup_rt_frame+0x180/0xcc0 [ 1214.275954][ C0] ? _raw_spin_unlock_irq+0x29/0x50 [ 1214.275981][ C0] ? _raw_spin_unlock_irq+0x2e/0x50 [ 1214.276017][ C0] ? __pfx_x64_setup_rt_frame+0x10/0x10 [ 1214.276047][ C0] arch_do_signal_or_restart+0x458/0x860 [ 1214.276072][ C0] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 1214.276096][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 1214.276129][ C0] ? syscall_exit_to_user_mode+0xa3/0x370 [ 1214.276151][ C0] syscall_exit_to_user_mode+0xc9/0x370 [ 1214.276174][ C0] do_syscall_64+0x100/0x230 [ 1214.276194][ C0] ? clear_bhb_loop+0x35/0x90 [ 1214.276219][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1214.276242][ C0] RIP: 0033:0x7f17d357cef7 [ 1214.276257][ C0] Code: ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 <0f> 05 48 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 [ 1214.276272][ C0] RSP: 002b:00007f17d42b7038 EFLAGS: 00000246 [ 1214.276287][ C0] RAX: 0000000000000049 RBX: 00007f17d3735f80 RCX: 00007f17d357cef9 [ 1214.276300][ C0] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000007 [ 1214.276311][ C0] RBP: 00007f17d35ef01e R08: 0000000000000000 R09: 0000000000000000 [ 1214.276323][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1214.276334][ C0] R13: 0000000000000000 R14: 00007f17d3735f80 R15: 00007ffeed072158 [ 1214.276363][ C0] [ 1214.662355][ T30] Kernel panic - not syncing: hung_task: blocked tasks [ 1214.669249][ T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0 [ 1214.679895][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 1214.689975][ T30] Call Trace: [ 1214.693277][ T30] [ 1214.696231][ T30] dump_stack_lvl+0x241/0x360 [ 1214.700952][ T30] ? __pfx_dump_stack_lvl+0x10/0x10 [ 1214.706186][ T30] ? __pfx__printk+0x10/0x10 [ 1214.710803][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 1214.716830][ T30] ? vscnprintf+0x5d/0x90 [ 1214.721221][ T30] panic+0x349/0x860 [ 1214.725176][ T30] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 1214.731383][ T30] ? __pfx_panic+0x10/0x10 [ 1214.735827][ T30] ? tick_nohz_tick_stopped+0x82/0xb0 [ 1214.741257][ T30] ? __irq_work_queue_local+0x137/0x410 [ 1214.746841][ T30] ? preempt_schedule_thunk+0x1a/0x30 [ 1214.752329][ T30] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 1214.758538][ T30] ? nmi_trigger_cpumask_backtrace+0x2d4/0x320 [ 1214.764733][ T30] ? nmi_trigger_cpumask_backtrace+0x2d9/0x320 [ 1214.770926][ T30] watchdog+0x1033/0x1040 [ 1214.775302][ T30] ? watchdog+0x1ea/0x1040 [ 1214.779764][ T30] ? __pfx_watchdog+0x10/0x10 [ 1214.784479][ T30] kthread+0x2f0/0x390 [ 1214.788589][ T30] ? __pfx_watchdog+0x10/0x10 [ 1214.793315][ T30] ? __pfx_kthread+0x10/0x10 [ 1214.797944][ T30] ret_from_fork+0x4b/0x80 [ 1214.802410][ T30] ? __pfx_kthread+0x10/0x10 [ 1214.807133][ T30] ret_from_fork_asm+0x1a/0x30 [ 1214.811951][ T30] [ 1214.815151][ T30] Kernel Offset: disabled [ 1214.819479][ T30] Rebooting in 86400 seconds..