last executing test programs: 5.662544229s ago: executing program 0 (id=540): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) syz_genetlink_get_family_id$ipvs(0x0, 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000080)=@newqdisc={0x30, 0x24, 0x4ee4e6a52ff56461, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x4}}]}, 0x30}}, 0x0) sendmsg$BATADV_CMD_GET_MESH(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)=ANY=[@ANYBLOB, @ANYBLOB], 0x2c}, 0x1, 0x0, 0x0, 0x804}, 0x4000000) 5.504921592s ago: executing program 0 (id=542): sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="4400000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="81ffffff000000001c0012800b00010067726574617000000c000280080001"], 0x44}}, 0x0) writev(0xffffffffffffffff, &(0x7f0000000400)=[{&(0x7f00000000c0)="390000001000111867090707a640400f0021ff3f30000000170a00170000000004003700090003", 0x27}], 0x1) r0 = socket$kcm(0x10, 0x2, 0x10) r1 = socket$can_raw(0x1d, 0x3, 0x1) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f0000000000)=0x190, 0x4) ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000100)={'vcan0\x00', 0x0}) bind$can_raw(r1, &(0x7f00000001c0), 0x10) recvmmsg(r1, &(0x7f0000000040)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) setsockopt$CAN_RAW_RECV_OWN_MSGS(r1, 0x65, 0x4, &(0x7f0000000580)=0x1, 0x4) sendmsg$can_raw(r1, &(0x7f0000000440)={&(0x7f0000000780)={0x1d, r2}, 0x10, &(0x7f0000000200)={&(0x7f0000000140)=@can={{}, 0x0, 0x0, 0x0, 0x0, "400000008b20aaf0"}, 0x10}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000000080)=@newtaction={0x60, 0x30, 0x0, 0x0, 0x0, {}, [{0x4c, 0x1, [@m_skbedit={0x48, 0x1, 0x0, 0x0, {{0xc}, {0x1c, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PARMS={0x18}]}, {0x4}, {0xc}, {0xc, 0x9}}}]}]}, 0x60}}, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e02003c000b05d25a806f8c6394f90324fc602f00001550000100053582c137153e370248018086dd1700d1bd", 0x33fe0}], 0x1}, 0x0) 5.212477126s ago: executing program 0 (id=545): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000800)={'wlan1\x00', 0x0}) r4 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_NEW_KEY(r5, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000080)={0x2c, r4, 0x801, 0x2, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_KEY={0x10, 0x50, 0x0, 0x1, [@NL80211_KEY_SEQ={0x4}, @NL80211_KEY_CIPHER={0x8, 0x3, 0xfac05}]}]}, 0x2c}}, 0x0) sendmsg$NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={&(0x7f0000000280)={0x44, r4, 0x200, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_SCAN_SSIDS={0x1c, 0x2d, 0x0, 0x1, [{0xa, 0x0, @default_ibss_ssid}, {0xa, 0x0, @default_ibss_ssid}]}, @NL80211_ATTR_SCAN_FREQUENCIES={0xc, 0x2c, 0x0, 0x1, [{0x8}]}]}, 0x44}}, 0x0) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x2c, r2, 0x400, 0x70bd29, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0xfffffff7, 0x4d}}}}, [@NL80211_ATTR_MESH_ID={0xa}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4840}, 0x64000804) r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6}]}) mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x20, &(0x7f0000000000)=0x7ffffffd, 0x4) r7 = openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0) mount$fuse(0x0, 0x0, &(0x7f0000000140), 0x0, 0x0) read$FUSE(r7, 0x0, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) ioctl$KDGKBDIACR(0xffffffffffffffff, 0x4b4a, 0x0) write$FUSE_INIT(r7, &(0x7f00000004c0)={0x50, 0x0, 0x0, {0x7, 0x9, 0x0, 0x18292}}, 0x50) read$FUSE(r7, &(0x7f0000006580)={0x2020}, 0x2020) truncate(&(0x7f0000000080)='./file0\x00', 0x0) syz_fuse_handle_req(r7, 0x0, 0x0, &(0x7f000000d8c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f000000d540)={0x78, 0x0, 0x0, {0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0xee00}}}, 0x0, 0x0, 0x0, 0x0, 0x0}) write$FUSE_INIT(r7, 0x0, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_SEND(r6, 0xc0502103, &(0x7f00000001c0)) 4.420539565s ago: executing program 1 (id=556): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) syz_emit_ethernet(0x2a, &(0x7f0000000000)={@dev, @empty, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, @address_request={0x11, 0x0, 0x0, 0x3}}}}}, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x6, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) 4.303211105s ago: executing program 0 (id=558): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x2, &(0x7f00000000c0)=0x7a, 0x4) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4) sendmmsg$inet(r0, &(0x7f0000000cc0)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000700)="acc841985992b79554acfc02163bb0fb2bb293e68702bb40b6b870bde5700d368744361ae9fce3a4ff6bb3", 0x2b}, {&(0x7f0000000a40)="57f43d3d654f1df092b799441d169633d1d1894111b5a3c8478fae6b707eae36cb8b36766a8655eea82f228813884f36d33c54425ae53fc22d34b7ce824d6f2d3a101bd856f854bcb974b8cbc66dbee64789ef8676cca87791b1a247a1f3b1c3b8c6c1b9433dfee3aa4095c23939a89140d5ec40b7ecd62a9928022bd9604ef9099c062caaebf6383f66826edbf6299d4c3b2135eb07ad28166406e8c280c4", 0x9f}], 0x2}}, {{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000300)="b5d3838236773268a73daecfa0fdc5beb5a7ac332a11523627b41db31da6be0055bf716aa2b23b97d43cc40c632f6b9850f364ba0831ed0d6f7157f204275aa850d992d81ba6ab984bd809254e847b644cf6459a8139c3ebba62168141343c853896523ffb04131b2786acc44a57f5b1bd33cdaef8dd3c0526b7454eefe5153c5778ce05c77e962fd6bf3a4b9eb05654e64f1867398e202b4920e9ebc08f6e6dc652a12e45445030e069f44b", 0xac}, {&(0x7f0000000500)="e47ecfc6ce6d4d9cc5a0fbf98f301803da3adfbec8a1d5324076b744b24bc7cf83120d4819726e827d90219c7100dc54801b32c3a9a69a238db1f4d16464062d870e812ee381b6b3c234824a4a4475f9ee81286836e549ff446b00", 0x5b}, {&(0x7f0000000840)="fbdd17a812c727337dc6c74dcb077562b57a440dbf7711ba245a62b76d46b0f19e6ff608ef9e5fbb4a8cfb02e28403582ceb8031acc767", 0x37}], 0x3}}], 0x2, 0xc0) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4) sendto$inet(r0, 0x0, 0x0, 0x11, 0x0, 0x0) 4.252579273s ago: executing program 1 (id=559): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x2, &(0x7f00000000c0)=0x7a, 0x4) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) sendmmsg$inet(r0, &(0x7f00000005c0)=[{{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000040)="ea6b17ea8864e3c1a0bd5a2ae785cbbc01f1068f", 0x14}, {&(0x7f0000000200)="19739f7fac52218cf2fc8f65b8d98c0f83933c81ac10eace439ec1179e6f6ac1805a7c2d71036c595c9a1d1a0da0902d34fe2e9c1d478316d7778ecd61faf050", 0x40}, {&(0x7f0000000180)="eab5c4b5f6fa1dbd03adac7ade3441ca1ea66ac40c893c7b29f40bc52f", 0x1d}, {&(0x7f0000000380)="a79ac56190c9b80da78998536fde9fe74ae46b7826629c343fbd153a4c9feffd52b315482b3283a1ecf86809f3bc2118f3b899259558b0c20ef2c9456c36f47529ad1e135b2cd9b1d7c475", 0x4b}, {&(0x7f0000000640)="358b3a55301453dd840f0ca83e9ffdfd8e6dfab7613a2e457738c296a2a1f406efdcd844491d21edc31ed3e43a5b315065d6d131907ea2be8f03466e842bbd2851f5c734246c50c98b9611f39f3c0be75a1d253213d8494e9be4afb11af086f20cca95eb8aeb8dc46afdc277370236994826e3e1bf92c370498bb97e7d9ee7446fc873fcfa08eb5eb9fd2b05aa3d06e989726620888caa2729f6e5f2bd24ffd047ee5e", 0xa3}, {&(0x7f0000000880)="d2a35647371f3041a5d88a6507d460f4328357d9c2dd6742eec135ae5d930bf910eb5590822fdcb2ad8f1b631036bff50f40706f9e1075b4a266ee683d334acc4ed90883b0e4bc2bc69773124e12ecd4977384006fb9879d1d0ad4d42072e81e9e8e13d0084e96702f9e3f152bd57f6ef3962fa2ab4ef465a807ab66f3bd7b3446276b3ff9a7e7ef25eff97d430e0d95489712968cd5460afe37207081b553268068600e8f3ca8db02395eaf322743799a32480cf32f8fcb66bf91036ea9876c05e410ccfd8a", 0xc6}], 0x6}}], 0x1, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4) sendmmsg$inet(r0, &(0x7f0000000cc0)=[{{0x0, 0x0, &(0x7f00000009c0)=[{&(0x7f0000000400)="029993440c7a0c95d3bb8cf353fd63c588ffa39f0ff0fced20927ea4b2a247d082247558bef6b2b2cd6a0dffece1b36526e9388c344fb7ac429e434ccb0330483c0604aaf296d8218e240055cb92f17b1b47fd7b1b178ca0d1c470154ed985a179f87c9bc40206c86df931fbbe", 0x6d}, {&(0x7f0000000e00)="ec75d081fcb7e79634ec1a1abfdebb6a38b0c57cc77b83d2eea81aad8f73b36abc2019cb08fcaaec9647a07d0a0965f0f1e39afd84e7e2523aaded5e09aa1e36fcc90c269ad6d38d57619127cee4253655c33b71054226c3b00b9ee6ae29f0b07bc6fe7981126ca804c1f64e6c19ba36b2778c5f4a1c58625fe19516af43c9870c5b8191e237", 0x86}, {&(0x7f0000000f00)="397d5f2edc82d0337ae5ab9ee47d", 0xe}], 0x3}}, {{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000740)="b1f56ee29c433328d3b2a83bd97e37007087acae7568edff43ed556d7677", 0x1e}, {&(0x7f0000000ac0)="5700003d654fdca8417119f092b799441d169633d1d1894111b5a3c8472f228813884f36d33c54425ae53fc22d34b7ce824d6f2d3a101bd856f854bcb974b8cbc66dbee64789ef8676cca8770a00a247a1f3b1c3b80ad9332363f1d9632484a13d1ecb2a77558f151e966afa38b461981eb61ee91eca10673c680c015a29cdc4e0db43efa6ea74a7a1dbe5d6e492307f80cb4c839ba4b73617", 0x99}], 0x2}}, {{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000300)="b5d3838236773268a73d", 0xa}, {0x0}], 0x2}}], 0x3, 0xc0) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4) sendto$inet(r0, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27) 4.064727522s ago: executing program 3 (id=562): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r0, 0x9) r1 = socket$inet_smc(0x2b, 0x1, 0x0) connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10) 4.064540901s ago: executing program 0 (id=563): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) add_key$fscrypt_v1(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000080)={[{0x9}]}) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000003c0)={[0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x2004cb], 0x0, 0x200}) ioctl$KVM_SET_PIT2(r1, 0x4070aea0, &(0x7f0000000240)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 3.541137515s ago: executing program 2 (id=565): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000380)={0x0, 0x54}}, 0x0) 3.365765042s ago: executing program 2 (id=567): pipe(&(0x7f0000000100)) r0 = socket(0x1, 0x803, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)) r2 = socket(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="540000001000030400e2ffffffffff0700000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b0001006970766c616e0000140002800600020000000000060001000200000008000500", @ANYRES32=r1, @ANYBLOB='\b\x00\n\x00'], 0x54}}, 0x0) 3.252627166s ago: executing program 1 (id=568): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000800)={'wlan1\x00', 0x0}) r4 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_NEW_KEY(r5, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000080)={0x2c, r4, 0x801, 0x2, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_KEY={0x10, 0x50, 0x0, 0x1, [@NL80211_KEY_SEQ={0x4}, @NL80211_KEY_CIPHER={0x8, 0x3, 0xfac05}]}]}, 0x2c}}, 0x0) sendmsg$NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={&(0x7f0000000280)={0x44, r4, 0x200, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_SCAN_SSIDS={0x1c, 0x2d, 0x0, 0x1, [{0xa, 0x0, @default_ibss_ssid}, {0xa, 0x0, @default_ibss_ssid}]}, @NL80211_ATTR_SCAN_FREQUENCIES={0xc, 0x2c, 0x0, 0x1, [{0x8}]}]}, 0x44}}, 0x0) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x2c, r2, 0x400, 0x70bd29, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0xfffffff7, 0x4d}}}}, [@NL80211_ATTR_MESH_ID={0xa}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4840}, 0x64000804) r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6}]}) mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x20, &(0x7f0000000000)=0x7ffffffd, 0x4) r7 = openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0) mount$fuse(0x0, 0x0, &(0x7f0000000140), 0x0, 0x0) read$FUSE(r7, 0x0, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) ioctl$KDGKBDIACR(0xffffffffffffffff, 0x4b4a, 0x0) write$FUSE_INIT(r7, &(0x7f00000004c0)={0x50, 0x0, 0x0, {0x7, 0x9, 0x0, 0x18292}}, 0x50) read$FUSE(r7, &(0x7f0000006580)={0x2020}, 0x2020) truncate(&(0x7f0000000080)='./file0\x00', 0x0) syz_fuse_handle_req(r7, 0x0, 0x0, &(0x7f000000d8c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f000000d540)={0x78, 0x0, 0x0, {0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0xee00}}}, 0x0, 0x0, 0x0, 0x0, 0x0}) write$FUSE_INIT(r7, 0x0, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_SEND(r6, 0xc0502103, &(0x7f00000001c0)) 3.15897561s ago: executing program 3 (id=569): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000026c0)=@delchain={0x3c, 0x65, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff2}}, [@filter_kind_options=@f_route={{0xa}, {0xc, 0x2, [@TCA_ROUTE4_CLASSID={0x8, 0x1, {0xa, 0xe}}]}}]}, 0x3c}}, 0x0) r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000005c0)=@newqdisc={0x24, 0x24, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x9}}}, 0x24}}, 0x0) sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000580)={0x0, 0x34}}, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x64}, {&(0x7f0000000280)=""/85, 0x55}, {&(0x7f0000000fc0)=""/4096, 0x1000}, {0x0}, {&(0x7f0000000980)=""/73, 0x49}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x9a}, {&(0x7f00000001c0)=""/17, 0x11}], 0x8, &(0x7f0000000600)=""/191, 0xbf, 0xb00}}], 0x1, 0x0, &(0x7f0000003700)={0x77359400}) 2.973467679s ago: executing program 2 (id=571): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x9}]}, 0x0) getsockopt$inet_sctp6_SCTP_MAX_BURST(r1, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000300)=0x8) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f0000000000)={r2, 0x5, 0xe8}, 0x8) 2.890495067s ago: executing program 3 (id=572): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={{0x14}, [@NFT_MSG_DELSETELEM={0x14, 0xe, 0xa, 0x101}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x3c}}, 0x0) 2.839347458s ago: executing program 4 (id=573): r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) sendto$inet6(r0, 0x0, 0x0, 0x20044081, 0x0, 0x0) setsockopt$inet6_tcp_TLS_TX(r0, 0x6, 0x1, &(0x7f00000000c0)=@ccm_128={{0x304}, "3a7de480b8b91355", "74acd9ea8ab801bfb3006a72bbf08fa3", "e56f882e", "9ba1177a20f6bbbb"}, 0x28) 2.766079217s ago: executing program 2 (id=574): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a0000000180100002020702500000000002020207b1af8ff00000000bfa1000000000000070100"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r0 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="4800000010001fff0000056800080000faff0000", @ANYRES32=0x0, @ANYBLOB="c30c424700000000280012800a00010076786c616e00000018000280140012"], 0x48}}, 0x400400c0) sendmmsg$alg(r0, &(0x7f00000000c0), 0x492492492492627, 0x0) 2.627517702s ago: executing program 3 (id=575): syz_emit_ethernet(0x0, 0x0, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_int(r0, 0x0, 0x3, 0x0, 0x0) setsockopt$inet_int(r0, 0x0, 0xb, &(0x7f0000000140)=0x10, 0x4) syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x3}, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x4, 0x0, 0x12, 0x0, 0x3f18, {0x5, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @loopback, @loopback}, "00186371ae9b1c03"}}}}}, 0x0) recvmmsg(r0, &(0x7f0000000540)=[{{0x0, 0x0, 0x0}, 0x5}], 0x1, 0x2002, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) recvmmsg(r0, &(0x7f00000024c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000800)=""/186, 0xba}], 0x1}, 0x8}, {{0x0, 0x0, 0x0}, 0x7}], 0x2, 0x0, 0x0) 2.523501993s ago: executing program 4 (id=576): r0 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c) setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x3, @mcast2}}}, 0x108) syz_emit_ethernet(0x46, &(0x7f0000000540)={@link_local, @remote, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "010100", 0x10, 0x11, 0x0, @empty, @mcast2, {[], {0x0, 0xe22, 0x10, 0x0, @gue={{0x2}}}}}}}}, 0x0) 2.396872451s ago: executing program 4 (id=577): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000380)={0x0, 0x54}}, 0x0) 2.327416404s ago: executing program 2 (id=578): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) recvmmsg(r0, &(0x7f0000000300)=[{{0x0, 0x0, 0x0}, 0x10000}], 0x1, 0x2, 0x0) sendmsg$IPSET_CMD_LIST(r0, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000400)=ANY=[@ANYBLOB="2400000007060108000004000000000000000000080006400000a6ff050001000700000036646e3bbcc510"], 0x24}, 0x1, 0x0, 0x0, 0x400c840}, 0xc0) 2.275739376s ago: executing program 1 (id=579): r0 = socket(0x2a, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) socket$tipc(0x1e, 0x2, 0x0) getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000005c0)=@newqdisc={0x40, 0x24, 0xf0b, 0x2, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0xb}, {0xfff1, 0xffff}, {0xa}}, [@TCA_EGRESS_BLOCK={0x8, 0xe, 0x4}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x36767a45}, @qdisc_kind_options=@q_clsact={0xb}]}, 0x40}, 0x1, 0x0, 0x0, 0x8804}, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0) 2.187457203s ago: executing program 4 (id=580): r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000180)={'wlan0\x00', 0x0}) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_STATION(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000200)={0x34, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_MAC={0x15, 0x6, @device_b}, @NL80211_ATTR_STA_CAPABILITY={0x6}, @NL80211_ATTR_STA_FLAGS={0x4}]}, 0x34}}, 0x0) 2.07341928s ago: executing program 2 (id=581): socket$inet6_udp(0xa, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r2 = socket$unix(0x1, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x70, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x39, 0xe, {{{}, {}, @device_a, @device_b}, 0x0, @default, 0x0, @void, @void, @void, @val={0x4, 0x6}, @val={0x6, 0x2}, @void, @val={0x25, 0x3, {0x0, 0x88}}, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_P2P_OPPPS={0x5}, @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x70}}, 0x0) sched_setaffinity(0x0, 0xffffffffffffffca, &(0x7f0000000040)=0x10001) r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) preadv(r4, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) keyctl$update(0x2, 0x0, 0x0, 0x0) openat$nullb(0xffffffffffffff9c, 0x0, 0x0, 0x0) r5 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="44000000020601080000000000000000000000000500010006000000050005000a00000005000400000000000900020073797a31000000000c000300686173683a69700043ae0897fdbe37b004b57d8795c94955ed0acb4a9a3f7c5459f57496cb4f14a4abad48acf1c2f2c307a88896140cf80abf8583dc145dcc500214e2aa66cfded9ce936b51ed490e0d4739c6379f972e"], 0x44}}, 0x0) ioctl$CEC_RECEIVE(0xffffffffffffffff, 0xc0386106, 0x0) r6 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_FLUSH(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000040601030000000000200000000000000500010007"], 0x1c}}, 0x0) r7 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0) close(0xffffffffffffffff) r8 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r8, 0xc04064a0, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0}) r9 = getpid() ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r7, 0xc1105517, &(0x7f0000000340)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x6, 0x0, 0x4, r9, 0x0, 0x0, 'syz1\x00', 0x0}) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x10, 0x6, &(0x7f0000000340)=ANY=[@ANYBLOB="050000000000000071112d0000000000851000000200000085a562f70000000095000000000000009500a50500000000c8650b2cfc43f7d6b9d96df6264d9d088ed70469cdb4665e42063f11e6c09edb5d205622dc2c6264d6f7a24ac7dc0f635849c878cce7b785ab0be88795f1e055ed0f2899be730d207ed3f9fece99b274005d59a5"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) socket$inet6_sctp(0xa, 0x5, 0x84) socket$inet(0x2, 0x4000000000000001, 0x0) 2.066996176s ago: executing program 1 (id=582): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000026c0)=@delchain={0x3c, 0x65, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff2}}, [@filter_kind_options=@f_route={{0xa}, {0xc, 0x2, [@TCA_ROUTE4_CLASSID={0x8, 0x1, {0xa, 0xe}}]}}]}, 0x3c}}, 0x0) r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000005c0)=@newqdisc={0x24, 0x24, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x9}}}, 0x24}}, 0x0) sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000580)={0x0, 0x34}}, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x64}, {&(0x7f0000000280)=""/85, 0x55}, {&(0x7f0000000400)=""/106, 0x6a}, {&(0x7f0000000980)=""/73, 0x49}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x9a}, {&(0x7f00000001c0)=""/17, 0x11}], 0x7, &(0x7f0000000600)=""/191, 0xbf, 0xb00}}], 0x1, 0x0, &(0x7f0000003700)={0x77359400}) 948.648183ms ago: executing program 4 (id=583): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000001c0)="d8000000140081044e81f782db46b904021d000025000000040000a118000200ff02000100000e1208000f0100810401a80316ea1f000b40032a5f54c92011148ed08734843cb12b00000803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef075c0100000000000000cb090000001fb791643a5e835913b06218a07445d6d930dfe1d9d322fe7c9fd68775730d16a4683f52eb4edbb57a5025ccca9e00360d8bcc0000000000000080bb9ad809d5e1cace81b341", 0xbd}], 0x1, 0x0, 0x0, 0x7400}, 0x0) 665.905502ms ago: executing program 3 (id=584): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=ANY=[@ANYBLOB="700200001300290a000000000000000007000000", @ANYRES32, @ANYBLOB="00000010010c8013000c800c00058008000000000000000800038064001d80050006000000a8793b4a204d56fe000014000500714a7de97cbbf6efb23805de6e098626f19bf90d0002003a288e5e5b5b5a40000000006100078014000400293a028fd6f55a2314000400e48f01e49713f0c2d87a2d78991d392e63ef80ae01afcef9dbe0f088d80500060000000000130002006272696467655f736c6176655f30000007000200293a000005000600000000000800410000005b0018002580140004004d2906d0880fc8acc30fe2020f"], 0x270}}, 0x20041050) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a310000000040000000030a010200000000000000000100000009000300739c7a320000000014000480080002400000000008000140000000050900010073797a310000000044000000050a01020000000000000000010000000c00024000000000000000010900010073797a310000000018000480"], 0xcc}}, 0x0) 460.177812ms ago: executing program 1 (id=585): r0 = socket$kcm(0x10, 0x2, 0x10) getsockopt(0xffffffffffffffff, 0x200000000114, 0x271c, &(0x7f0000c35fff)=""/1, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e020023000b02d25a806f8c6394f95d24fc60040f030047000000053582c137153e370248018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 324.368058ms ago: executing program 0 (id=586): r0 = socket(0xa, 0x3, 0x3a) setsockopt$MRT6_DEL_MIF(r0, 0x29, 0xc8, 0x0, 0xc000000) r1 = socket$inet6(0xa, 0x802, 0x88) sendto$inet6(r1, 0x0, 0x0, 0x6008800, &(0x7f0000000180)={0xa, 0x4e23, 0x0, @mcast1}, 0x1c) sendto$inet6(r1, 0x0, 0x0, 0x0, 0x0, 0x0) 150.028249ms ago: executing program 4 (id=587): socket$nl_netfilter(0x10, 0x3, 0xc) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=@newlink={0x3c, 0x10, 0x44b, 0x0, 0x25dfdbfb, {0x7a}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_VLAN_STATS_PER_PORT={0x5}]}}}]}, 0x3c}}, 0x0) 0s ago: executing program 3 (id=588): bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x16, 0x0, 0x4, 0xffff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(0xffffffffffffffff, 0xc0096616, &(0x7f0000000100)={0x2, [0x0, 0x0]}) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$nl_route(r1, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0) getsockname$packet(r1, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x28a) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000540)=ANY=[@ANYBLOB="38000000100039042cbd70000000000000000000", @ANYRES32=r2, @ANYBLOB="41000000000000001800128008000100677265000c00028008000100364a1958a0a8cac526dbc5ba7efc81ae428118e168f7a048e01694261c9400a5be2ea23d234210ea8a32ad072d3eae940d73095f21145a18c83124c2b22a8efcfd9fc9295138ccc33bc7111a1c85eb34ee83db", @ANYBLOB], 0x38}, 0x1, 0x0, 0x0, 0x80}, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000002c0)=ANY=[@ANYBLOB="380000001000390400"/20, @ANYRES32=r2, @ANYRES16=r0], 0x38}}, 0x10000) kernel console output (not intermixed with test programs): ackets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 74.226516][ T5256] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 74.227704][ T5238] Bluetooth: hci3: command tx timeout [ 74.245966][ T5253] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 74.253550][ T5253] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 74.275559][ T5238] Bluetooth: hci4: command tx timeout [ 74.281036][ T5253] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 74.315986][ T5252] hsr_slave_0: entered promiscuous mode [ 74.322706][ T5252] hsr_slave_1: entered promiscuous mode [ 74.331810][ T5255] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 74.338926][ T5255] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 74.365536][ T5255] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 74.378333][ T5255] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 74.385380][ T5255] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 74.411871][ T5255] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 74.450324][ T5254] hsr_slave_0: entered promiscuous mode [ 74.456928][ T5254] hsr_slave_1: entered promiscuous mode [ 74.464123][ T5254] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 74.472581][ T5254] Cannot create hsr debugfs directory [ 74.505572][ T5256] hsr_slave_0: entered promiscuous mode [ 74.512698][ T5256] hsr_slave_1: entered promiscuous mode [ 74.518771][ T5256] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 74.527098][ T5256] Cannot create hsr debugfs directory [ 74.577818][ T5253] hsr_slave_0: entered promiscuous mode [ 74.587396][ T5253] hsr_slave_1: entered promiscuous mode [ 74.594275][ T5253] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 74.602607][ T5253] Cannot create hsr debugfs directory [ 74.635571][ T5255] hsr_slave_0: entered promiscuous mode [ 74.641961][ T5255] hsr_slave_1: entered promiscuous mode [ 74.648030][ T5255] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 74.655776][ T5255] Cannot create hsr debugfs directory [ 75.040816][ T5256] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 75.063765][ T5256] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 75.084760][ T5256] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 75.101977][ T5256] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 75.119412][ T5254] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 75.140305][ T5254] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 75.150712][ T5254] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 75.162103][ T5254] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 75.216060][ T5253] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 75.239492][ T5253] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 75.256713][ T5253] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 75.267843][ T5253] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 75.398228][ T5255] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 75.408960][ T5255] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 75.423563][ T5255] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 75.446124][ T5255] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 75.532323][ T5252] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 75.545758][ T5252] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 75.573292][ T5252] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 75.587170][ T5252] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 75.628558][ T5254] 8021q: adding VLAN 0 to HW filter on device bond0 [ 75.657901][ T5256] 8021q: adding VLAN 0 to HW filter on device bond0 [ 75.668171][ T5253] 8021q: adding VLAN 0 to HW filter on device bond0 [ 75.712937][ T5254] 8021q: adding VLAN 0 to HW filter on device team0 [ 75.742712][ T2990] bridge0: port 1(bridge_slave_0) entered blocking state [ 75.750511][ T2990] bridge0: port 1(bridge_slave_0) entered forwarding state [ 75.777936][ T5256] 8021q: adding VLAN 0 to HW filter on device team0 [ 75.788932][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 75.796164][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 75.812202][ T5253] 8021q: adding VLAN 0 to HW filter on device team0 [ 75.835481][ T5255] 8021q: adding VLAN 0 to HW filter on device bond0 [ 75.858219][ T186] bridge0: port 1(bridge_slave_0) entered blocking state [ 75.865724][ T186] bridge0: port 1(bridge_slave_0) entered forwarding state [ 75.899168][ T186] bridge0: port 1(bridge_slave_0) entered blocking state [ 75.906834][ T186] bridge0: port 1(bridge_slave_0) entered forwarding state [ 75.944328][ T186] bridge0: port 2(bridge_slave_1) entered blocking state [ 75.951802][ T186] bridge0: port 2(bridge_slave_1) entered forwarding state [ 75.963232][ T186] bridge0: port 2(bridge_slave_1) entered blocking state [ 75.971229][ T186] bridge0: port 2(bridge_slave_1) entered forwarding state [ 75.998029][ T5255] 8021q: adding VLAN 0 to HW filter on device team0 [ 76.036715][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 76.044097][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 76.102295][ T186] bridge0: port 2(bridge_slave_1) entered blocking state [ 76.109520][ T186] bridge0: port 2(bridge_slave_1) entered forwarding state [ 76.162144][ T5253] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 76.190361][ T5238] Bluetooth: hci2: command tx timeout [ 76.190453][ T4619] Bluetooth: hci1: command tx timeout [ 76.199933][ T5248] Bluetooth: hci0: command tx timeout [ 76.233294][ T5255] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 76.270700][ T5248] Bluetooth: hci3: command tx timeout [ 76.278680][ T5256] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 76.298178][ T5254] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 76.340747][ T5255] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 76.354876][ T5248] Bluetooth: hci4: command tx timeout [ 76.369454][ T5253] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 76.406040][ T5252] 8021q: adding VLAN 0 to HW filter on device bond0 [ 76.456521][ T5252] 8021q: adding VLAN 0 to HW filter on device team0 [ 76.484738][ T5255] veth0_vlan: entered promiscuous mode [ 76.498605][ T5256] veth0_vlan: entered promiscuous mode [ 76.516166][ T5256] veth1_vlan: entered promiscuous mode [ 76.527631][ T2990] bridge0: port 1(bridge_slave_0) entered blocking state [ 76.534915][ T2990] bridge0: port 1(bridge_slave_0) entered forwarding state [ 76.567288][ T2990] bridge0: port 2(bridge_slave_1) entered blocking state [ 76.574445][ T2990] bridge0: port 2(bridge_slave_1) entered forwarding state [ 76.591153][ T5255] veth1_vlan: entered promiscuous mode [ 76.621931][ T5254] veth0_vlan: entered promiscuous mode [ 76.657847][ T5254] veth1_vlan: entered promiscuous mode [ 76.699305][ T5253] veth0_vlan: entered promiscuous mode [ 76.725502][ T5255] veth0_macvtap: entered promiscuous mode [ 76.752768][ T5255] veth1_macvtap: entered promiscuous mode [ 76.762045][ T5256] veth0_macvtap: entered promiscuous mode [ 76.796281][ T5253] veth1_vlan: entered promiscuous mode [ 76.806626][ T5256] veth1_macvtap: entered promiscuous mode [ 76.818702][ T5254] veth0_macvtap: entered promiscuous mode [ 76.851996][ T5256] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 76.862501][ T5254] veth1_macvtap: entered promiscuous mode [ 76.876069][ T5256] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 76.894083][ T5255] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 76.905316][ T5255] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 76.918033][ T5255] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 76.932335][ T5256] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.941486][ T5256] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.951438][ T5256] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.962705][ T5256] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.988147][ T5255] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 77.004518][ T5255] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 77.016306][ T5255] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 77.051969][ T5255] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.062412][ T5255] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.073742][ T5255] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.085230][ T5255] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.102776][ T5253] veth0_macvtap: entered promiscuous mode [ 77.130575][ T5254] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 77.141440][ T5254] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 77.152133][ T5254] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 77.163460][ T5254] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 77.174738][ T5254] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 77.184182][ T5253] veth1_macvtap: entered promiscuous mode [ 77.219911][ T5254] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 77.233754][ T5254] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 77.244427][ T5254] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 77.254977][ T5254] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 77.267159][ T5254] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 77.282987][ T5252] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 77.317202][ T5254] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.326416][ T5254] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.335853][ T5254] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.347496][ T5254] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.362174][ T5253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 77.373838][ T5253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 77.384879][ T5253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 77.396551][ T5253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 77.407336][ T5253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 77.418042][ T5253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 77.431756][ T5253] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 77.477864][ T70] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 77.496618][ T5253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 77.499239][ T70] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 77.507863][ T5253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 77.527175][ T5253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 77.538010][ T5253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 77.548958][ T5253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 77.560886][ T5253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 77.571950][ T5253] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 77.583171][ T5253] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.592085][ T5253] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.601856][ T5253] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.611071][ T5253] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.760128][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 77.764969][ T5252] veth0_vlan: entered promiscuous mode [ 77.770203][ T70] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 77.782861][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 77.795285][ T70] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 77.821136][ T5252] veth1_vlan: entered promiscuous mode [ 77.891237][ T5256] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 77.905286][ T5252] veth0_macvtap: entered promiscuous mode [ 77.937289][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 77.947763][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 77.983581][ T5252] veth1_macvtap: entered promiscuous mode [ 77.992901][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 78.002298][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 78.035869][ T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 78.044184][ T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 78.060935][ T5252] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 78.073207][ T5252] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 78.083785][ T5252] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 78.094827][ T5252] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 78.105742][ T5252] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 78.121284][ T5252] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 78.136506][ T5252] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 78.149431][ T5252] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 78.166049][ T5252] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 78.218484][ T5252] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 78.234462][ T5252] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 78.245733][ T5252] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 78.257211][ T5252] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 78.267816][ T5252] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 78.280157][ T5252] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 78.291074][ T5252] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 78.302418][ T5252] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 78.315934][ T5252] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 78.332112][ T5248] Bluetooth: hci0: command tx timeout [ 78.338419][ T5248] Bluetooth: hci2: command tx timeout [ 78.344618][ T5248] Bluetooth: hci1: command tx timeout [ 78.352200][ T5248] Bluetooth: hci3: command tx timeout [ 78.405319][ T186] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 78.420591][ T186] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 78.431749][ T4619] Bluetooth: hci4: command tx timeout [ 78.497546][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 78.527301][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 78.555695][ T5252] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.579785][ T5252] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.588867][ T5252] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.615042][ T5252] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.669192][ T5302] Zero length message leads to an empty skb [ 78.777039][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 78.789667][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 78.882076][ T5303] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6'. [ 78.956526][ T29] audit: type=1326 audit(1727886943.731:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5306 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5dc77dff9 code=0x7ffc0000 [ 79.004374][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 79.089006][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 79.104400][ T29] audit: type=1326 audit(1727886943.731:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5306 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5dc77dff9 code=0x7ffc0000 [ 79.141101][ T29] audit: type=1326 audit(1727886943.731:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5306 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa5dc77dff9 code=0x7ffc0000 [ 79.173408][ T29] audit: type=1326 audit(1727886943.731:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5306 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5dc77dff9 code=0x7ffc0000 [ 79.233151][ T29] audit: type=1326 audit(1727886943.731:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5306 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5dc77dff9 code=0x7ffc0000 [ 79.281646][ T29] audit: type=1326 audit(1727886943.731:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5306 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fa5dc77dff9 code=0x7ffc0000 [ 79.310981][ T29] audit: type=1326 audit(1727886943.731:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5306 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5dc77dff9 code=0x7ffc0000 [ 79.333787][ T29] audit: type=1326 audit(1727886943.731:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5306 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5dc77dff9 code=0x7ffc0000 [ 79.356848][ T29] audit: type=1326 audit(1727886943.731:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5306 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=c000003e syscall=50 compat=0 ip=0x7fa5dc77dff9 code=0x7ffc0000 [ 79.380311][ T29] audit: type=1326 audit(1727886943.731:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5306 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5dc77dff9 code=0x7ffc0000 [ 79.575272][ T5319] tipc: Started in network mode [ 79.621128][ T5319] tipc: Node identity , cluster identity 4711 [ 79.627296][ T5319] tipc: Failed to obtain node identity [ 79.634138][ T5319] tipc: Enabling of bearer rejected, failed to enable media [ 79.750963][ T5329] IPVS: sync thread started: state = MASTER, mcast_ifn = team_slave_1, syncid = 3, id = 0 [ 80.015466][ T5332] syz.2.15 uses obsolete (PF_INET,SOCK_PACKET) [ 80.430176][ T4619] Bluetooth: hci3: command tx timeout [ 80.430544][ T5248] Bluetooth: hci1: command tx timeout [ 80.435743][ T5238] Bluetooth: hci2: command tx timeout [ 80.442343][ T5242] Bluetooth: hci0: command tx timeout [ 80.510036][ T5242] Bluetooth: hci4: command tx timeout [ 81.489667][ T5389] netlink: 48 bytes leftover after parsing attributes in process `syz.2.39'. [ 81.861601][ T5400] netlink: 8 bytes leftover after parsing attributes in process `syz.0.44'. [ 81.872250][ T5400] netlink: 8 bytes leftover after parsing attributes in process `syz.0.44'. [ 82.419693][ T5415] IPVS: sync thread started: state = MASTER, mcast_ifn = team_slave_1, syncid = 0, id = 0 [ 83.450512][ T5438] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 83.825660][ T5450] input: syz0 as /devices/virtual/input/input5 [ 84.732801][ T5477] binder: 5473:5477 ioctl 810c9365 20000980 returned -22 [ 84.816409][ T186] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 84.872350][ T5474] netlink: 'syz.3.79': attribute type 4 has an invalid length. [ 85.059120][ T186] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 85.114129][ T29] kauditd_printk_skb: 101 callbacks suppressed [ 85.114150][ T29] audit: type=1326 audit(1727886949.901:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5486 comm="syz.2.87" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60d777dff9 code=0x7ffc0000 [ 85.223542][ T29] audit: type=1326 audit(1727886949.941:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5486 comm="syz.2.87" exe="/root/syz-executor" sig=0 arch=c000003e syscall=93 compat=0 ip=0x7f60d777dff9 code=0x7ffc0000 [ 85.348921][ T29] audit: type=1326 audit(1727886949.941:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5486 comm="syz.2.87" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60d777dff9 code=0x7ffc0000 [ 85.452394][ T186] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 85.461146][ T29] audit: type=1326 audit(1727886949.941:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5486 comm="syz.2.87" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60d777dff9 code=0x7ffc0000 [ 85.688512][ T186] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 85.744463][ T5248] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 85.754325][ T5248] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 85.763319][ T5248] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 85.772702][ T5248] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 85.781797][ T5248] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 85.791722][ T5248] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 85.939886][ T5512] netlink: 12 bytes leftover after parsing attributes in process `syz.1.99'. [ 85.949067][ T5512] netlink: 8 bytes leftover after parsing attributes in process `syz.1.99'. [ 86.359943][ T186] bridge_slave_1: left allmulticast mode [ 86.386504][ T186] bridge_slave_1: left promiscuous mode [ 86.416089][ T186] bridge0: port 2(bridge_slave_1) entered disabled state [ 86.487025][ T186] bridge_slave_0: left allmulticast mode [ 86.502365][ T186] bridge_slave_0: left promiscuous mode [ 86.508736][ T186] bridge0: port 1(bridge_slave_0) entered disabled state [ 86.913674][ T5248] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 86.923565][ T5248] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 86.948602][ T5248] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 86.985014][ T5248] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 86.996446][ T5248] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 87.041938][ T5248] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 87.173308][ T8] cfg80211: failed to load regulatory.db [ 87.338068][ T186] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 87.356882][ T186] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 87.369232][ T186] bond0 (unregistering): Released all slaves [ 87.715182][ T29] audit: type=1326 audit(1727886952.501:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5549 comm="syz.0.116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c8c37dff9 code=0x7ffc0000 [ 87.781917][ T29] audit: type=1326 audit(1727886952.501:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5549 comm="syz.0.116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c8c37dff9 code=0x7ffc0000 [ 87.886763][ T5248] Bluetooth: hci1: command tx timeout [ 87.908916][ T29] audit: type=1326 audit(1727886952.541:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5549 comm="syz.0.116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5c8c37dff9 code=0x7ffc0000 [ 87.933253][ T29] audit: type=1326 audit(1727886952.541:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5549 comm="syz.0.116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c8c37dff9 code=0x7ffc0000 [ 87.998329][ T29] audit: type=1326 audit(1727886952.541:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5549 comm="syz.0.116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c8c37dff9 code=0x7ffc0000 [ 88.106580][ T29] audit: type=1326 audit(1727886952.541:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5549 comm="syz.0.116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5c8c37dff9 code=0x7ffc0000 [ 88.596640][ T5510] chnl_net:caif_netlink_parms(): no params data found [ 88.724382][ T5543] chnl_net:caif_netlink_parms(): no params data found [ 88.783272][ T5242] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 88.803448][ T5242] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 88.821177][ T5242] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 88.876826][ T5242] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 88.888265][ T5242] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 88.910645][ T5242] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 88.999241][ T186] hsr_slave_0: left promiscuous mode [ 89.017191][ T186] hsr_slave_1: left promiscuous mode [ 89.024903][ T186] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 89.032804][ T186] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 89.041889][ T186] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 89.050230][ T186] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 89.073812][ T5242] Bluetooth: hci3: command tx timeout [ 89.077327][ T186] veth1_macvtap: left promiscuous mode [ 89.085879][ T186] veth0_macvtap: left promiscuous mode [ 89.092993][ T186] veth1_vlan: left promiscuous mode [ 89.099407][ T186] veth0_vlan: left promiscuous mode [ 89.768166][ T186] team0 (unregistering): Port device team_slave_1 removed [ 89.815292][ T186] team0 (unregistering): Port device team_slave_0 removed [ 89.954356][ T5242] Bluetooth: hci1: command tx timeout [ 90.600037][ T29] kauditd_printk_skb: 44 callbacks suppressed [ 90.600060][ T29] audit: type=1326 audit(1727886955.371:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5610 comm="syz.0.135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c8c37dff9 code=0x7ffc0000 [ 90.691011][ T29] audit: type=1326 audit(1727886955.371:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5610 comm="syz.0.135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c8c37dff9 code=0x7ffc0000 [ 90.713809][ T29] audit: type=1326 audit(1727886955.371:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5610 comm="syz.0.135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=274 compat=0 ip=0x7f5c8c37dff9 code=0x7ffc0000 [ 90.758179][ T29] audit: type=1326 audit(1727886955.371:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5610 comm="syz.0.135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c8c37dff9 code=0x7ffc0000 [ 90.810291][ T29] audit: type=1326 audit(1727886955.371:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5610 comm="syz.0.135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c8c37dff9 code=0x7ffc0000 [ 90.874900][ T5510] bridge0: port 1(bridge_slave_0) entered blocking state [ 90.883036][ T5510] bridge0: port 1(bridge_slave_0) entered disabled state [ 90.890647][ T5510] bridge_slave_0: entered allmulticast mode [ 90.898688][ T5510] bridge_slave_0: entered promiscuous mode [ 91.005335][ T5242] Bluetooth: hci0: command tx timeout [ 91.025898][ T5510] bridge0: port 2(bridge_slave_1) entered blocking state [ 91.038185][ T5510] bridge0: port 2(bridge_slave_1) entered disabled state [ 91.062730][ T5510] bridge_slave_1: entered allmulticast mode [ 91.092058][ T5510] bridge_slave_1: entered promiscuous mode [ 91.151333][ T5242] Bluetooth: hci3: command tx timeout [ 91.240402][ T5543] bridge0: port 1(bridge_slave_0) entered blocking state [ 91.247759][ T5543] bridge0: port 1(bridge_slave_0) entered disabled state [ 91.286238][ T5543] bridge_slave_0: entered allmulticast mode [ 91.315239][ T5543] bridge_slave_0: entered promiscuous mode [ 91.396394][ T5510] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 91.436271][ T5543] bridge0: port 2(bridge_slave_1) entered blocking state [ 91.460584][ T5543] bridge0: port 2(bridge_slave_1) entered disabled state [ 91.467940][ T5543] bridge_slave_1: entered allmulticast mode [ 91.482019][ T5543] bridge_slave_1: entered promiscuous mode [ 91.508213][ T5510] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 91.712149][ T5510] team0: Port device team_slave_0 added [ 91.846213][ T5543] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 91.882882][ T5510] team0: Port device team_slave_1 added [ 91.982158][ T5543] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 92.030097][ T5242] Bluetooth: hci1: command tx timeout [ 92.072953][ T5660] netlink: 'syz.3.149': attribute type 4 has an invalid length. [ 92.102968][ T5660] binder: 5656:5660 ioctl 810c9365 20000980 returned -22 [ 92.124580][ T5543] team0: Port device team_slave_0 added [ 92.155183][ T5510] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 92.173783][ T5510] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 92.201075][ T5510] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 92.215794][ T5590] chnl_net:caif_netlink_parms(): no params data found [ 92.233301][ T5543] team0: Port device team_slave_1 added [ 92.297462][ T186] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 92.340358][ T5510] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 92.349263][ T29] audit: type=1326 audit(1727886957.131:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5663 comm="syz.3.151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f147357dff9 code=0x7ffc0000 [ 92.367868][ T5510] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 92.380859][ T29] audit: type=1326 audit(1727886957.131:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5663 comm="syz.3.151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f147357dff9 code=0x7ffc0000 [ 92.457002][ T5510] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 92.478383][ T29] audit: type=1326 audit(1727886957.141:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5663 comm="syz.3.151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7f147357dff9 code=0x7ffc0000 [ 92.575648][ T5543] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 92.579873][ T29] audit: type=1326 audit(1727886957.221:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5663 comm="syz.3.151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f147357dff9 code=0x7ffc0000 [ 92.603535][ T5543] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 92.622079][ T29] audit: type=1326 audit(1727886957.221:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5663 comm="syz.3.151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f147357dff9 code=0x7ffc0000 [ 92.694654][ T5543] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 92.761913][ T186] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 92.801983][ T5674] loop7: detected capacity change from 0 to 16384 [ 92.916382][ T5543] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 92.936490][ T5543] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 92.964083][ T5543] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 92.975077][ T5675] Invalid logical block size (1) [ 93.070349][ T5242] Bluetooth: hci0: command tx timeout [ 93.076106][ T186] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 93.171682][ T5681] netlink: 16 bytes leftover after parsing attributes in process `syz.0.156'. [ 93.232077][ T5242] Bluetooth: hci3: command tx timeout [ 93.281926][ T186] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 93.437351][ T5510] hsr_slave_0: entered promiscuous mode [ 93.454419][ T5510] hsr_slave_1: entered promiscuous mode [ 93.606092][ T5543] hsr_slave_0: entered promiscuous mode [ 93.635278][ T5543] hsr_slave_1: entered promiscuous mode [ 93.654286][ T5543] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 93.675617][ T5543] Cannot create hsr debugfs directory [ 93.698023][ T5590] bridge0: port 1(bridge_slave_0) entered blocking state [ 93.718794][ T5590] bridge0: port 1(bridge_slave_0) entered disabled state [ 93.742595][ T5590] bridge_slave_0: entered allmulticast mode [ 93.769772][ T5590] bridge_slave_0: entered promiscuous mode [ 93.791111][ T5590] bridge0: port 2(bridge_slave_1) entered blocking state [ 93.846775][ T5590] bridge0: port 2(bridge_slave_1) entered disabled state [ 93.856326][ T5590] bridge_slave_1: entered allmulticast mode [ 93.866771][ T5590] bridge_slave_1: entered promiscuous mode [ 94.109955][ T5242] Bluetooth: hci1: command tx timeout [ 94.166416][ T5590] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 94.216028][ T5590] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 94.414882][ T5590] team0: Port device team_slave_0 added [ 94.505705][ T5590] team0: Port device team_slave_1 added [ 94.613772][ T186] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 94.827267][ T186] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 94.941606][ T5590] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 94.962383][ T5590] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 94.991091][ T5590] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 95.062913][ T186] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 95.100355][ T5590] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 95.107385][ T5590] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 95.159692][ T5590] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 95.160024][ T5242] Bluetooth: hci0: command tx timeout [ 95.214608][ T5717] netlink: 28 bytes leftover after parsing attributes in process `syz.3.165'. [ 95.311368][ T186] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 95.323190][ T5242] Bluetooth: hci3: command tx timeout [ 95.488908][ T5590] hsr_slave_0: entered promiscuous mode [ 95.529496][ T5590] hsr_slave_1: entered promiscuous mode [ 95.559812][ T5590] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 95.567466][ T5590] Cannot create hsr debugfs directory [ 96.226136][ T186] bridge_slave_1: left allmulticast mode [ 96.232231][ T186] bridge_slave_1: left promiscuous mode [ 96.258983][ T186] bridge0: port 2(bridge_slave_1) entered disabled state [ 96.270796][ T186] bridge_slave_0: left allmulticast mode [ 96.276540][ T186] bridge_slave_0: left promiscuous mode [ 96.296142][ T186] bridge0: port 1(bridge_slave_0) entered disabled state [ 96.357270][ T186] bridge_slave_1: left allmulticast mode [ 96.391956][ T186] bridge_slave_1: left promiscuous mode [ 96.398179][ T186] bridge0: port 2(bridge_slave_1) entered disabled state [ 96.411189][ T186] bridge_slave_0: left allmulticast mode [ 96.416927][ T186] bridge_slave_0: left promiscuous mode [ 96.430429][ T186] bridge0: port 1(bridge_slave_0) entered disabled state [ 97.229772][ T5242] Bluetooth: hci0: command tx timeout [ 97.364928][ T186] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 97.377168][ T186] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 97.402013][ T186] bond0 (unregistering): Released all slaves [ 97.506831][ T186] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 97.519243][ T186] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 97.531540][ T186] bond0 (unregistering): Released all slaves [ 97.700509][ T186] IPVS: stopping master sync thread 5415 ... [ 98.424074][ T5248] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 98.433759][ T5248] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 98.449911][ T5248] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 98.465941][ T5248] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 98.473809][ T5248] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 98.482130][ T5248] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 98.640526][ T186] hsr_slave_0: left promiscuous mode [ 98.647908][ T186] hsr_slave_1: left promiscuous mode [ 98.673505][ T186] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 98.689739][ T186] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 98.705272][ T186] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 98.714160][ T186] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 98.739784][ T186] hsr_slave_0: left promiscuous mode [ 98.746340][ T186] hsr_slave_1: left promiscuous mode [ 98.756912][ T186] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 98.765072][ T186] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 98.775337][ T186] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 98.786884][ T186] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 98.824548][ T186] veth1_macvtap: left promiscuous mode [ 98.830858][ T186] veth0_macvtap: left promiscuous mode [ 98.836816][ T186] veth1_vlan: left promiscuous mode [ 98.842385][ T186] veth0_vlan: left promiscuous mode [ 98.854053][ T186] veth1_macvtap: left promiscuous mode [ 98.859900][ T186] veth0_macvtap: left promiscuous mode [ 98.865516][ T186] veth1_vlan: left promiscuous mode [ 98.871062][ T186] veth0_vlan: left promiscuous mode [ 99.517828][ T186] team0 (unregistering): Port device team_slave_1 removed [ 99.564924][ T186] team0 (unregistering): Port device team_slave_0 removed [ 100.356022][ T186] team0 (unregistering): Port device team_slave_1 removed [ 100.402895][ T186] team0 (unregistering): Port device team_slave_0 removed [ 100.523115][ T5242] Bluetooth: hci2: command tx timeout [ 101.221866][ T5756] chnl_net:caif_netlink_parms(): no params data found [ 101.371091][ T5510] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 101.390358][ T5510] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 101.483735][ T5510] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 101.508139][ T5756] bridge0: port 1(bridge_slave_0) entered blocking state [ 101.533655][ T5756] bridge0: port 1(bridge_slave_0) entered disabled state [ 101.550295][ T5756] bridge_slave_0: entered allmulticast mode [ 101.560105][ T5756] bridge_slave_0: entered promiscuous mode [ 101.581069][ T5756] bridge0: port 2(bridge_slave_1) entered blocking state [ 101.588243][ T5756] bridge0: port 2(bridge_slave_1) entered disabled state [ 101.604278][ T5756] bridge_slave_1: entered allmulticast mode [ 101.615653][ T5756] bridge_slave_1: entered promiscuous mode [ 101.636575][ T5510] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 101.743033][ T5756] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 101.763382][ T5756] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 101.883534][ T5756] team0: Port device team_slave_0 added [ 101.921820][ T5756] team0: Port device team_slave_1 added [ 102.047699][ T5756] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 102.069744][ T5756] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 102.103727][ T5756] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 102.107301][ T29] kauditd_printk_skb: 5 callbacks suppressed [ 102.107321][ T29] audit: type=1326 audit(1727886966.891:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5795 comm="syz.3.178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f147357dff9 code=0x7ffc0000 [ 102.134091][ T5756] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 102.162747][ T5756] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 102.190046][ T29] audit: type=1326 audit(1727886966.891:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5795 comm="syz.3.178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f147357dff9 code=0x7ffc0000 [ 102.227083][ T29] audit: type=1326 audit(1727886966.901:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5795 comm="syz.3.178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=228 compat=0 ip=0x7f147357dff9 code=0x7ffc0000 [ 102.251697][ T5756] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 102.312872][ T29] audit: type=1326 audit(1727886966.901:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5795 comm="syz.3.178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f147357dff9 code=0x7ffc0000 [ 102.350570][ T29] audit: type=1326 audit(1727886966.901:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5795 comm="syz.3.178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f147357dff9 code=0x7ffc0000 [ 102.383884][ T29] audit: type=1326 audit(1727886966.901:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5795 comm="syz.3.178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f147357dff9 code=0x7ffc0000 [ 102.414505][ T29] audit: type=1326 audit(1727886966.911:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5795 comm="syz.3.178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f147357dff9 code=0x7ffc0000 [ 102.443570][ T5756] hsr_slave_0: entered promiscuous mode [ 102.450952][ T5756] hsr_slave_1: entered promiscuous mode [ 102.457427][ T5756] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 102.465237][ T5756] Cannot create hsr debugfs directory [ 102.470841][ T29] audit: type=1326 audit(1727886966.911:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5795 comm="syz.3.178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f147357dff9 code=0x7ffc0000 [ 102.496818][ T29] audit: type=1326 audit(1727886966.911:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5795 comm="syz.3.178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f147357dff9 code=0x7ffc0000 [ 102.563543][ T29] audit: type=1326 audit(1727886966.911:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5795 comm="syz.3.178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f147357dff9 code=0x7ffc0000 [ 102.589933][ T5242] Bluetooth: hci2: command tx timeout [ 102.605159][ T5590] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 102.628986][ T5590] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 102.731127][ T186] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 102.757690][ T5590] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 102.776150][ T5590] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 102.830311][ T186] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 102.914562][ T186] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 102.937568][ T5543] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 102.964488][ T5543] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 102.976009][ T5543] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 103.007936][ T186] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 103.040085][ T5543] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 103.084380][ T5510] 8021q: adding VLAN 0 to HW filter on device bond0 [ 103.173016][ T5510] 8021q: adding VLAN 0 to HW filter on device team0 [ 103.263005][ T5668] bridge0: port 1(bridge_slave_0) entered blocking state [ 103.270199][ T5668] bridge0: port 1(bridge_slave_0) entered forwarding state [ 103.296768][ T186] bridge_slave_1: left allmulticast mode [ 103.303141][ T186] bridge_slave_1: left promiscuous mode [ 103.308907][ T186] bridge0: port 2(bridge_slave_1) entered disabled state [ 103.335156][ T186] bridge_slave_0: left allmulticast mode [ 103.341204][ T186] bridge_slave_0: left promiscuous mode [ 103.346944][ T186] bridge0: port 1(bridge_slave_0) entered disabled state [ 103.696613][ T186] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 103.708929][ T186] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 103.721125][ T186] bond0 (unregistering): Released all slaves [ 103.758752][ T5668] bridge0: port 2(bridge_slave_1) entered blocking state [ 103.765981][ T5668] bridge0: port 2(bridge_slave_1) entered forwarding state [ 103.887562][ T5590] 8021q: adding VLAN 0 to HW filter on device bond0 [ 103.931214][ T5590] 8021q: adding VLAN 0 to HW filter on device team0 [ 103.991008][ T5668] bridge0: port 1(bridge_slave_0) entered blocking state [ 103.998290][ T5668] bridge0: port 1(bridge_slave_0) entered forwarding state [ 104.074336][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 104.081788][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 104.118555][ T186] hsr_slave_0: left promiscuous mode [ 104.135686][ T186] hsr_slave_1: left promiscuous mode [ 104.146369][ T186] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 104.154680][ T186] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 104.167424][ T186] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 104.175204][ T186] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 104.194191][ T186] veth1_macvtap: left promiscuous mode [ 104.201239][ T186] veth0_macvtap: left promiscuous mode [ 104.206971][ T186] veth1_vlan: left promiscuous mode [ 104.212607][ T186] veth0_vlan: left promiscuous mode [ 104.681116][ T5242] Bluetooth: hci2: command tx timeout [ 104.824887][ T186] team0 (unregistering): Port device team_slave_1 removed [ 104.866293][ T186] team0 (unregistering): Port device team_slave_0 removed [ 105.278918][ T5543] 8021q: adding VLAN 0 to HW filter on device bond0 [ 105.293712][ T5819] netlink: 'syz.3.188': attribute type 27 has an invalid length. [ 105.356319][ T5819] bridge0: port 2(bridge_slave_1) entered disabled state [ 105.364881][ T5819] bridge0: port 1(bridge_slave_0) entered disabled state [ 105.470106][ T5819] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 105.486472][ T5819] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 105.562064][ T5819] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 105.572922][ T5819] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 105.582827][ T5819] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 105.592099][ T5819] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 105.749029][ T5543] 8021q: adding VLAN 0 to HW filter on device team0 [ 105.806742][ T5756] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 105.872770][ T5756] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 105.971903][ T5756] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 105.988423][ T35] bridge0: port 1(bridge_slave_0) entered blocking state [ 105.996087][ T35] bridge0: port 1(bridge_slave_0) entered forwarding state [ 106.013175][ T35] bridge0: port 2(bridge_slave_1) entered blocking state [ 106.020929][ T35] bridge0: port 2(bridge_slave_1) entered forwarding state [ 106.047393][ T5510] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 106.076056][ T5756] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 106.167396][ T5543] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 106.212249][ T5590] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 106.292738][ T5510] veth0_vlan: entered promiscuous mode [ 106.349298][ T5510] veth1_vlan: entered promiscuous mode [ 106.401779][ T5543] veth0_vlan: entered promiscuous mode [ 106.433142][ T5543] veth1_vlan: entered promiscuous mode [ 106.459252][ T5590] veth0_vlan: entered promiscuous mode [ 106.485496][ T5756] 8021q: adding VLAN 0 to HW filter on device bond0 [ 106.518071][ T5510] veth0_macvtap: entered promiscuous mode [ 106.538872][ T5590] veth1_vlan: entered promiscuous mode [ 106.565188][ T5510] veth1_macvtap: entered promiscuous mode [ 106.615012][ T5756] 8021q: adding VLAN 0 to HW filter on device team0 [ 106.653922][ T5543] veth0_macvtap: entered promiscuous mode [ 106.673860][ T70] bridge0: port 1(bridge_slave_0) entered blocking state [ 106.681171][ T70] bridge0: port 1(bridge_slave_0) entered forwarding state [ 106.718836][ T5510] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 106.738832][ T5543] veth1_macvtap: entered promiscuous mode [ 106.755918][ T5242] Bluetooth: hci2: command tx timeout [ 106.768175][ T70] bridge0: port 2(bridge_slave_1) entered blocking state [ 106.775426][ T70] bridge0: port 2(bridge_slave_1) entered forwarding state [ 106.794949][ T5510] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 106.857870][ T5590] veth0_macvtap: entered promiscuous mode [ 106.872731][ T5543] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 106.916095][ T5543] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 106.941196][ T5543] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 106.975897][ T5590] veth1_macvtap: entered promiscuous mode [ 107.011695][ T5510] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.039396][ T5510] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.071487][ T5510] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.109777][ T5510] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.136751][ T5543] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 107.154940][ T5543] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 107.176665][ T5543] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 107.239217][ T5543] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.278295][ T5543] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.288176][ T5543] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.298519][ T5543] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.388927][ T5590] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 107.430260][ T5590] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 107.449874][ T5590] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 107.469116][ T5590] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 107.481395][ T5590] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 107.493435][ T5590] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 107.504017][ T5590] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 107.514528][ T5590] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 107.526415][ T5590] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 107.537683][ T5590] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 107.585613][ T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 107.614831][ T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 107.702917][ T5590] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.712786][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 107.722456][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 107.730143][ T5590] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.738897][ T5590] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.761436][ T5590] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.801060][ T5756] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 107.939150][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 107.969753][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 108.165921][ T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 108.186508][ T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 108.290483][ T5817] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 108.316619][ T5817] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 108.467675][ T186] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 108.493599][ T186] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 108.516336][ T5756] veth0_vlan: entered promiscuous mode [ 108.630700][ T5756] veth1_vlan: entered promiscuous mode [ 108.800207][ T5756] veth0_macvtap: entered promiscuous mode [ 108.826806][ T5756] veth1_macvtap: entered promiscuous mode [ 108.924890][ T5756] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 108.956410][ T5756] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 108.973984][ T5756] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 109.011076][ T5893] binder: 5887:5893 ioctl 810c9365 20000980 returned -22 [ 109.020381][ T5756] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 109.054145][ T5756] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 109.071516][ T5756] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 109.103526][ T5756] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 109.127887][ T5891] netlink: 'syz.3.198': attribute type 4 has an invalid length. [ 109.223089][ T5756] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 109.257206][ T5756] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 109.269503][ T5756] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 109.299646][ T5756] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 109.321257][ T5756] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 109.345179][ T5756] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 109.366068][ T5756] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 109.417901][ T5756] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.440609][ T5756] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.455129][ T5756] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.521915][ T5756] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.818229][ T5921] xt_ecn: cannot match TCP bits for non-tcp packets [ 110.351021][ T70] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.359103][ T70] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.539136][ T5949] binder: 5938:5949 ioctl 810c9365 20000980 returned -22 [ 110.554235][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.578513][ T5945] netlink: 'syz.3.209': attribute type 4 has an invalid length. [ 110.587788][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.817709][ T5817] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 110.986848][ T5817] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 111.113026][ T29] kauditd_printk_skb: 3 callbacks suppressed [ 111.113049][ T29] audit: type=1326 audit(1727886975.891:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5962 comm="syz.2.215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f894ff7dff9 code=0x7ffc0000 [ 111.197152][ T5817] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 111.225011][ T29] audit: type=1326 audit(1727886975.891:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5962 comm="syz.2.215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f894ff7dff9 code=0x7ffc0000 [ 111.349695][ T29] audit: type=1326 audit(1727886975.901:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5962 comm="syz.2.215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f894ff7dff9 code=0x7ffc0000 [ 111.395535][ T5817] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 111.450721][ T29] audit: type=1326 audit(1727886975.901:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5962 comm="syz.2.215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f894ff7dff9 code=0x7ffc0000 [ 111.538581][ T29] audit: type=1326 audit(1727886975.901:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5962 comm="syz.2.215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f894ff7dff9 code=0x7ffc0000 [ 111.577151][ T29] audit: type=1326 audit(1727886975.901:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5962 comm="syz.2.215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f894ff7dff9 code=0x7ffc0000 [ 111.645785][ T29] audit: type=1326 audit(1727886975.901:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5962 comm="syz.2.215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f894ff7dff9 code=0x7ffc0000 [ 111.753254][ T29] audit: type=1326 audit(1727886975.901:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5962 comm="syz.2.215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f894ff7dff9 code=0x7ffc0000 [ 111.815998][ T5987] input: syz1 as /devices/virtual/input/input7 [ 111.841892][ T29] audit: type=1326 audit(1727886975.901:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5962 comm="syz.2.215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f894ff7dff9 code=0x7ffc0000 [ 111.868550][ T5248] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 111.891823][ T5248] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 111.907021][ T5248] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 111.915197][ T29] audit: type=1326 audit(1727886975.901:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5962 comm="syz.2.215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=237 compat=0 ip=0x7f894ff7dff9 code=0x7ffc0000 [ 111.958199][ T5248] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 111.971107][ T5248] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 111.989822][ T5248] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 112.104193][ T5817] bridge_slave_1: left allmulticast mode [ 112.126701][ T5817] bridge_slave_1: left promiscuous mode [ 112.179895][ T5817] bridge0: port 2(bridge_slave_1) entered disabled state [ 112.210842][ T5817] bridge_slave_0: left allmulticast mode [ 112.216590][ T5817] bridge_slave_0: left promiscuous mode [ 112.245027][ T5817] bridge0: port 1(bridge_slave_0) entered disabled state [ 112.389113][ T6008] binder: 6001:6008 ioctl 810c9365 20000980 returned -22 [ 113.203938][ T5817] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 113.225222][ T5817] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 113.244756][ T5817] bond0 (unregistering): Released all slaves [ 113.309018][ T6003] netlink: 'syz.4.225': attribute type 4 has an invalid length. [ 113.387935][ T6037] netlink: 'syz.3.233': attribute type 4 has an invalid length. [ 113.400738][ T6039] netlink: 'syz.3.233': attribute type 4 has an invalid length. [ 114.068589][ T5817] hsr_slave_0: left promiscuous mode [ 114.094112][ T6068] netlink: 165 bytes leftover after parsing attributes in process `syz.4.242'. [ 114.110807][ T5248] Bluetooth: hci0: command tx timeout [ 114.119190][ T5817] hsr_slave_1: left promiscuous mode [ 114.145750][ T6068] netlink: 277 bytes leftover after parsing attributes in process `syz.4.242'. [ 114.184191][ T5817] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 114.208208][ T5817] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 114.248930][ T5817] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 114.274477][ T5817] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 114.370122][ T5817] veth1_macvtap: left promiscuous mode [ 114.389785][ T5817] veth0_macvtap: left promiscuous mode [ 114.415696][ T5817] veth1_vlan: left promiscuous mode [ 114.436213][ T5817] veth0_vlan: left promiscuous mode [ 114.641688][ T5242] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 114.657477][ T5242] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 114.666183][ T5242] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 114.678517][ T5242] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 114.690670][ T5242] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 114.698610][ T5242] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 115.195013][ T5817] team0 (unregistering): Port device team_slave_1 removed [ 115.241926][ T5817] team0 (unregistering): Port device team_slave_0 removed [ 115.659734][ T6083] netlink: 'syz.4.244': attribute type 4 has an invalid length. [ 115.692469][ T6085] netlink: 'syz.4.244': attribute type 4 has an invalid length. [ 115.815523][ T5995] chnl_net:caif_netlink_parms(): no params data found [ 115.892900][ T6105] netlink: 'syz.4.247': attribute type 4 has an invalid length. [ 116.189864][ T5995] bridge0: port 1(bridge_slave_0) entered blocking state [ 116.189988][ T5242] Bluetooth: hci0: command tx timeout [ 116.239430][ T5995] bridge0: port 1(bridge_slave_0) entered disabled state [ 116.284278][ T5995] bridge_slave_0: entered allmulticast mode [ 116.297132][ T5995] bridge_slave_0: entered promiscuous mode [ 116.306270][ T5995] bridge0: port 2(bridge_slave_1) entered blocking state [ 116.313884][ T5995] bridge0: port 2(bridge_slave_1) entered disabled state [ 116.323722][ T5995] bridge_slave_1: entered allmulticast mode [ 116.332836][ T5995] bridge_slave_1: entered promiscuous mode [ 116.409718][ T5995] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 116.448020][ T5995] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 116.458476][ T6125] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 116.558935][ T5995] team0: Port device team_slave_0 added [ 116.612552][ T5995] team0: Port device team_slave_1 added [ 116.728322][ T5995] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 116.748441][ T5995] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 116.787409][ T5242] Bluetooth: hci3: command tx timeout [ 116.799690][ T5995] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 116.884106][ T5995] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 116.923607][ T5995] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 116.965101][ T5995] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 117.005359][ T5817] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 117.117147][ T5817] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 117.157045][ T6095] chnl_net:caif_netlink_parms(): no params data found [ 117.226786][ T5817] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 117.257963][ T5995] hsr_slave_0: entered promiscuous mode [ 117.278454][ T5995] hsr_slave_1: entered promiscuous mode [ 117.295468][ T5995] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 117.312607][ T5995] Cannot create hsr debugfs directory [ 117.428819][ T5817] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 117.719235][ T6095] bridge0: port 1(bridge_slave_0) entered blocking state [ 117.737154][ T6095] bridge0: port 1(bridge_slave_0) entered disabled state [ 117.745616][ T6095] bridge_slave_0: entered allmulticast mode [ 117.766067][ T6095] bridge_slave_0: entered promiscuous mode [ 117.793464][ T6095] bridge0: port 2(bridge_slave_1) entered blocking state [ 117.825263][ T6095] bridge0: port 2(bridge_slave_1) entered disabled state [ 117.861188][ T6095] bridge_slave_1: entered allmulticast mode [ 117.887202][ T6095] bridge_slave_1: entered promiscuous mode [ 118.003059][ T6095] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 118.025504][ T6172] netlink: 48 bytes leftover after parsing attributes in process `syz.0.258'. [ 118.053851][ T6095] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 118.188493][ T5817] bridge_slave_1: left allmulticast mode [ 118.194948][ T5817] bridge_slave_1: left promiscuous mode [ 118.203957][ T5817] bridge0: port 2(bridge_slave_1) entered disabled state [ 118.238009][ T5817] bridge_slave_0: left allmulticast mode [ 118.244368][ T5817] bridge_slave_0: left promiscuous mode [ 118.250977][ T5817] bridge0: port 1(bridge_slave_0) entered disabled state [ 118.279705][ T5242] Bluetooth: hci0: command tx timeout [ 118.526910][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 118.535648][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 118.546464][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 118.802889][ T5817] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 118.828546][ T5817] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 118.837779][ T5242] Bluetooth: hci3: command tx timeout [ 118.852666][ T5817] bond0 (unregistering): Released all slaves [ 118.875679][ T6095] team0: Port device team_slave_0 added [ 118.989366][ T6095] team0: Port device team_slave_1 added [ 119.029788][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 119.038210][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 119.270250][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 119.324433][ T6095] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 119.338206][ T6095] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 119.364210][ C0] vkms_vblank_simulate: vblank timer overrun [ 119.383605][ T6095] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 119.563940][ T6193] Invalid logical block size (1) [ 119.664185][ T6095] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 119.689807][ T6095] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 119.716132][ C0] vkms_vblank_simulate: vblank timer overrun [ 119.726772][ T29] kauditd_printk_skb: 24 callbacks suppressed [ 119.726792][ T29] audit: type=1326 audit(1727886984.511:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6191 comm="syz.0.268" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3353f7dff9 code=0x0 [ 119.772773][ T6095] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 120.121397][ T5817] hsr_slave_0: left promiscuous mode [ 120.145250][ T5248] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 120.159508][ T5817] hsr_slave_1: left promiscuous mode [ 120.161480][ T5248] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 120.174348][ T5817] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 120.182309][ T5248] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 120.184597][ T5817] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 120.198650][ T5248] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 120.209006][ T5248] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 120.217768][ T5248] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 120.223549][ T5817] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 120.235856][ T5817] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 120.259190][ T5817] veth1_macvtap: left promiscuous mode [ 120.265119][ T5817] veth0_macvtap: left promiscuous mode [ 120.280302][ T5817] veth1_vlan: left promiscuous mode [ 120.285703][ T5817] veth0_vlan: left promiscuous mode [ 120.350108][ T5248] Bluetooth: hci0: command tx timeout [ 120.913494][ T5248] Bluetooth: hci3: command tx timeout [ 121.211844][ T5817] team0 (unregistering): Port device team_slave_1 removed [ 121.265847][ T5817] team0 (unregistering): Port device team_slave_0 removed [ 121.843868][ T6095] hsr_slave_0: entered promiscuous mode [ 121.857861][ T6095] hsr_slave_1: entered promiscuous mode [ 121.867370][ T6095] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 121.886318][ T6095] Cannot create hsr debugfs directory [ 122.245257][ T5995] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 122.272749][ T5995] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 122.303416][ T5995] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 122.331363][ T5995] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 122.365065][ T5248] Bluetooth: hci1: command tx timeout [ 122.604102][ T6208] chnl_net:caif_netlink_parms(): no params data found [ 122.805916][ T5817] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 122.990517][ T5248] Bluetooth: hci3: command tx timeout [ 123.016360][ T6208] bridge0: port 1(bridge_slave_0) entered blocking state [ 123.037790][ T6208] bridge0: port 1(bridge_slave_0) entered disabled state [ 123.047900][ T6208] bridge_slave_0: entered allmulticast mode [ 123.055871][ T6208] bridge_slave_0: entered promiscuous mode [ 123.068703][ T6208] bridge0: port 2(bridge_slave_1) entered blocking state [ 123.080068][ T6208] bridge0: port 2(bridge_slave_1) entered disabled state [ 123.088260][ T6208] bridge_slave_1: entered allmulticast mode [ 123.110811][ T6208] bridge_slave_1: entered promiscuous mode [ 123.207337][ T5817] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 123.386078][ T5817] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 123.438069][ T6208] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 123.471530][ T6208] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 123.544797][ T5817] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 123.573736][ T5995] 8021q: adding VLAN 0 to HW filter on device bond0 [ 123.663667][ T6208] team0: Port device team_slave_0 added [ 123.696965][ T6208] team0: Port device team_slave_1 added [ 123.813396][ T6208] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 123.832554][ T6208] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 123.873027][ T6208] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 123.936153][ T6208] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 123.943737][ T6208] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 123.971224][ T6208] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 124.048849][ T5995] 8021q: adding VLAN 0 to HW filter on device team0 [ 124.111209][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 124.118529][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 124.136283][ T5817] bridge_slave_1: left allmulticast mode [ 124.143996][ T5817] bridge_slave_1: left promiscuous mode [ 124.150741][ T5817] bridge0: port 2(bridge_slave_1) entered disabled state [ 124.162497][ T5817] bridge_slave_0: left allmulticast mode [ 124.168242][ T5817] bridge_slave_0: left promiscuous mode [ 124.174485][ T5817] bridge0: port 1(bridge_slave_0) entered disabled state [ 124.431977][ T5248] Bluetooth: hci1: command tx timeout [ 124.813097][ T5817] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 124.825918][ T5817] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 124.839128][ T5817] bond0 (unregistering): Released all slaves [ 124.854375][ T6095] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 124.864907][ T6095] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 124.949916][ T6095] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 124.982369][ T6095] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 125.033637][ T6208] hsr_slave_0: entered promiscuous mode [ 125.045883][ T6208] hsr_slave_1: entered promiscuous mode [ 125.065560][ T6208] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 125.073766][ T6208] Cannot create hsr debugfs directory [ 125.126302][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 125.133550][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 125.362496][ T5817] hsr_slave_0: left promiscuous mode [ 125.372738][ T5817] hsr_slave_1: left promiscuous mode [ 125.380874][ T5817] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 125.388458][ T5817] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 125.412789][ T5817] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 125.430026][ T5817] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 125.458076][ T5817] veth1_macvtap: left promiscuous mode [ 125.477095][ T5817] veth0_macvtap: left promiscuous mode [ 125.486562][ T5817] veth1_vlan: left promiscuous mode [ 125.501184][ T5817] veth0_vlan: left promiscuous mode [ 126.417163][ T5817] team0 (unregistering): Port device team_slave_1 removed [ 126.463183][ T5817] team0 (unregistering): Port device team_slave_0 removed [ 126.510841][ T5248] Bluetooth: hci1: command tx timeout [ 127.327216][ T6095] 8021q: adding VLAN 0 to HW filter on device bond0 [ 127.347105][ T6095] 8021q: adding VLAN 0 to HW filter on device team0 [ 127.359096][ T5668] bridge0: port 1(bridge_slave_0) entered blocking state [ 127.366327][ T5668] bridge0: port 1(bridge_slave_0) entered forwarding state [ 127.437816][ T5668] bridge0: port 2(bridge_slave_1) entered blocking state [ 127.445037][ T5668] bridge0: port 2(bridge_slave_1) entered forwarding state [ 127.558822][ T5995] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 127.892616][ T5242] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 127.936041][ T5242] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 127.952612][ T5242] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 127.970996][ T5242] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 127.985532][ T5242] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 127.995388][ T5242] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 128.034017][ T5995] veth0_vlan: entered promiscuous mode [ 128.056197][ T5995] veth1_vlan: entered promiscuous mode [ 128.127643][ T5995] veth0_macvtap: entered promiscuous mode [ 128.150952][ T5995] veth1_macvtap: entered promiscuous mode [ 128.202810][ T5817] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 128.266625][ T6095] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 128.297116][ T5817] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 128.345686][ T5995] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 128.356650][ T5995] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 128.368041][ T5995] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 128.387860][ T6208] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 128.416184][ T5817] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 128.441492][ T5995] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 128.452333][ T5995] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 128.468303][ T5995] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 128.476252][ T6208] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 128.520936][ T5817] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 128.538930][ T6208] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 128.563063][ T6208] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 128.588752][ T5995] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 128.598114][ T5248] Bluetooth: hci1: command tx timeout [ 128.604863][ T5995] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 128.614869][ T5995] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 128.623806][ T5995] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 128.840204][ T5817] bridge_slave_1: left allmulticast mode [ 128.846014][ T5817] bridge_slave_1: left promiscuous mode [ 128.852241][ T5817] bridge0: port 2(bridge_slave_1) entered disabled state [ 128.872856][ T5817] bridge_slave_0: left allmulticast mode [ 128.878639][ T5817] bridge_slave_0: left promiscuous mode [ 128.889211][ T5817] bridge0: port 1(bridge_slave_0) entered disabled state [ 129.250273][ T5817] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 129.262133][ T5817] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 129.274420][ T5817] bond0 (unregistering): Released all slaves [ 129.300090][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 129.310091][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 129.408608][ T6095] veth0_vlan: entered promiscuous mode [ 129.450536][ T6371] chnl_net:caif_netlink_parms(): no params data found [ 129.566874][ T6095] veth1_vlan: entered promiscuous mode [ 129.677243][ T5668] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 129.688860][ T5668] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 129.736784][ T6208] 8021q: adding VLAN 0 to HW filter on device bond0 [ 129.922581][ T6095] veth0_macvtap: entered promiscuous mode [ 129.946753][ T6371] bridge0: port 1(bridge_slave_0) entered blocking state [ 129.958054][ T6371] bridge0: port 1(bridge_slave_0) entered disabled state [ 129.967570][ T6371] bridge_slave_0: entered allmulticast mode [ 129.975607][ T6371] bridge_slave_0: entered promiscuous mode [ 130.005969][ T6371] bridge0: port 2(bridge_slave_1) entered blocking state [ 130.015625][ T6371] bridge0: port 2(bridge_slave_1) entered disabled state [ 130.027416][ T6371] bridge_slave_1: entered allmulticast mode [ 130.035300][ T6371] bridge_slave_1: entered promiscuous mode [ 130.039911][ T5242] Bluetooth: hci2: command tx timeout [ 130.057569][ T5817] hsr_slave_0: left promiscuous mode [ 130.065970][ T5817] hsr_slave_1: left promiscuous mode [ 130.075418][ T5817] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 130.084083][ T5817] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 130.110237][ T5817] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 130.118286][ T5817] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 130.153067][ T5817] veth1_macvtap: left promiscuous mode [ 130.159147][ T5817] veth0_macvtap: left promiscuous mode [ 130.169822][ T5817] veth1_vlan: left promiscuous mode [ 130.175445][ T5817] veth0_vlan: left promiscuous mode [ 130.868681][ T5817] team0 (unregistering): Port device team_slave_1 removed [ 130.946420][ T5817] team0 (unregistering): Port device team_slave_0 removed [ 131.688173][ T6095] veth1_macvtap: entered promiscuous mode [ 131.834686][ T6208] 8021q: adding VLAN 0 to HW filter on device team0 [ 131.844236][ T6371] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 131.885235][ T6371] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 131.970598][ T6095] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 131.993191][ T6095] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 132.012481][ T6095] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 132.068744][ T6371] team0: Port device team_slave_0 added [ 132.111972][ T6095] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 132.116979][ T5248] Bluetooth: hci2: command tx timeout [ 132.123610][ T6095] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 132.145822][ T6095] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 132.171017][ T6371] team0: Port device team_slave_1 added [ 132.193824][ T52] bridge0: port 1(bridge_slave_0) entered blocking state [ 132.201328][ T52] bridge0: port 1(bridge_slave_0) entered forwarding state [ 132.259768][ T52] bridge0: port 2(bridge_slave_1) entered blocking state [ 132.266967][ T52] bridge0: port 2(bridge_slave_1) entered forwarding state [ 132.318479][ T6095] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 132.330040][ T6095] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 132.345652][ T6095] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 132.355530][ T6095] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 132.475415][ T6371] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 132.497913][ T6371] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 132.535466][ T6371] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 132.563034][ T6371] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 132.571179][ T6371] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 132.607409][ T6371] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 132.744038][ T6371] hsr_slave_0: entered promiscuous mode [ 132.783268][ T6371] hsr_slave_1: entered promiscuous mode [ 132.921012][ T5668] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 132.951919][ T5668] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 133.025318][ T6208] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 133.164829][ T5817] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 133.186778][ T5817] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 133.231325][ T1267] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.237921][ T1267] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.354849][ T6208] veth0_vlan: entered promiscuous mode [ 133.432993][ T6208] veth1_vlan: entered promiscuous mode [ 133.461157][ T5290] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 133.563848][ T6208] veth0_macvtap: entered promiscuous mode [ 133.613447][ T6208] veth1_macvtap: entered promiscuous mode [ 133.660931][ T5290] usb 2-1: Using ep0 maxpacket: 32 [ 133.689350][ T6208] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 133.718260][ T5290] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 133.731305][ T6208] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 133.752632][ T6208] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 133.756044][ T5290] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 133.784853][ T6208] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 133.796097][ T5290] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5 [ 133.818838][ T6208] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 133.828369][ T5290] usb 2-1: New USB device found, idVendor=0458, idProduct=5011, bcdDevice= 0.00 [ 133.865517][ T5290] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 133.866345][ T6208] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 133.921183][ T5290] usb 2-1: config 0 descriptor?? [ 133.950305][ T6208] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 133.980100][ T6208] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 134.012980][ T6208] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 134.035679][ T6208] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 134.090878][ T6208] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 134.114183][ T6208] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 134.143950][ T6208] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 134.179827][ T6208] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 134.191198][ T5248] Bluetooth: hci2: command tx timeout [ 134.404533][ T6446] capability: warning: `syz.2.313' uses 32-bit capabilities (legacy support in use) [ 134.442384][ T5290] input: HID 0458:5011 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:0458:5011.0001/input/input8 [ 134.461851][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 134.480259][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 134.492680][ T6452] netlink: 191416 bytes leftover after parsing attributes in process `syz.3.314'. [ 134.501274][ T6371] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 134.531019][ T6371] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 134.552570][ T6448] netlink: set zone limit has 4 unknown bytes [ 134.563154][ T5290] input: HID 0458:5011 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:0458:5011.0001/input/input9 [ 134.686732][ T6371] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 134.723017][ T5290] kye 0003:0458:5011.0001: input,hiddev0,hidraw0: USB HID v0.00 Mouse [HID 0458:5011] on usb-dummy_hcd.1-1/input0 [ 134.788740][ T6371] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 134.902867][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 134.927436][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 135.178901][ T6371] 8021q: adding VLAN 0 to HW filter on device bond0 [ 135.244702][ T186] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 135.256170][ T6371] 8021q: adding VLAN 0 to HW filter on device team0 [ 135.267297][ T186] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 135.322415][ T6094] bridge0: port 1(bridge_slave_0) entered blocking state [ 135.329648][ T6094] bridge0: port 1(bridge_slave_0) entered forwarding state [ 135.393779][ T6094] bridge0: port 2(bridge_slave_1) entered blocking state [ 135.401632][ T6094] bridge0: port 2(bridge_slave_1) entered forwarding state [ 135.593334][ C0] kye 0003:0458:5011.0001: usb_submit_urb(ctrl) failed: -1 [ 135.661185][ T6371] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 135.727097][ T6371] veth0_vlan: entered promiscuous mode [ 135.766838][ T6371] veth1_vlan: entered promiscuous mode [ 135.818734][ T6371] veth0_macvtap: entered promiscuous mode [ 135.837528][ T6371] veth1_macvtap: entered promiscuous mode [ 135.865245][ T6371] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 135.877140][ T6371] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 135.896388][ T6371] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 135.908610][ T6371] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 135.924820][ T6371] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 135.936127][ T6371] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 135.955669][ T6371] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 135.985362][ T6371] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 135.997933][ T6371] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 136.014162][ T6371] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 136.026030][ T6371] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 136.038508][ T6371] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 136.049843][ T6371] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 136.062515][ T6371] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 136.149466][ T6371] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 136.167529][ T6371] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 136.203250][ T6371] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 136.218812][ T6371] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 136.230723][ T6473] binder_alloc: 6472: binder_alloc_buf, no vma [ 136.269816][ T5248] Bluetooth: hci2: command tx timeout [ 136.387090][ T5291] usb 2-1: USB disconnect, device number 2 [ 136.427615][ T52] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 136.482190][ T52] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 136.643789][ T6094] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 136.700817][ T6094] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 137.181789][ T6503] netlink: 96 bytes leftover after parsing attributes in process `syz.1.327'. [ 138.623147][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 138.631890][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 138.959875][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 138.990070][ T5248] Bluetooth: hci2: command tx timeout [ 139.108143][ T29] audit: type=1326 audit(1727887003.861:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6567 comm="syz.4.351" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fc56477dff9 code=0x0 [ 139.173858][ T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!! [ 139.911915][ T5291] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 140.111946][ T5291] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 140.153869][ T5291] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 140.196096][ T5291] usb 3-1: New USB device found, idVendor=1038, idProduct=12b6, bcdDevice= 0.00 [ 140.210466][ T6580] netlink: 12 bytes leftover after parsing attributes in process `syz.3.353'. [ 140.229813][ T5291] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 140.260948][ T5291] usb 3-1: config 0 descriptor?? [ 140.375225][ T6585] binder_alloc: 6583: binder_alloc_buf, no vma [ 140.399314][ T6586] netlink: 'syz.1.355': attribute type 4 has an invalid length. [ 140.471186][ T6588] binder: 6584:6588 ioctl 810c9365 20000980 returned -22 [ 140.558930][ T6591] netlink: 12 bytes leftover after parsing attributes in process `syz.0.356'. [ 140.855336][ T5291] steelseries 0003:1038:12B6.0002: unknown main item tag 0x0 [ 140.864516][ T5291] steelseries 0003:1038:12B6.0002: unknown main item tag 0x0 [ 140.890156][ T5291] steelseries 0003:1038:12B6.0002: unknown main item tag 0x0 [ 140.923120][ T5291] steelseries 0003:1038:12B6.0002: unknown main item tag 0x0 [ 140.958909][ T5291] steelseries 0003:1038:12B6.0002: unknown main item tag 0x0 [ 140.995865][ T5291] steelseries 0003:1038:12B6.0002: unknown main item tag 0x0 [ 141.023836][ T5291] steelseries 0003:1038:12B6.0002: unknown main item tag 0x0 [ 141.074816][ T5291] steelseries 0003:1038:12B6.0002: hidraw0: USB HID v0.00 Device [HID 1038:12b6] on usb-dummy_hcd.2-1/input0 [ 141.585969][ T6619] netlink: 28 bytes leftover after parsing attributes in process `syz.3.367'. [ 141.602974][ T5248] Bluetooth: Wrong link type (-71) [ 141.635716][ T6619] netlink: 'syz.3.367': attribute type 7 has an invalid length. [ 141.668693][ T6619] netlink: 'syz.3.367': attribute type 8 has an invalid length. [ 141.709766][ T6619] netlink: 4 bytes leftover after parsing attributes in process `syz.3.367'. [ 141.781459][ T6619] erspan0: entered promiscuous mode [ 141.801748][ T6619] batadv_slave_1: entered promiscuous mode [ 141.814576][ T6619] gretap0: entered promiscuous mode [ 141.843539][ T6619] hsr1: Slave A (erspan0) is not up; please bring it up to get a fully working HSR network [ 141.869999][ T6619] hsr1: Slave B (batadv_slave_1) is not up; please bring it up to get a fully working HSR network [ 141.900868][ T6619] hsr1: Interlink (gretap0) is not up; please bring it up to get a fully working HSR network [ 142.178045][ T6628] netlink: 'syz.4.370': attribute type 4 has an invalid length. [ 142.259842][ T6633] binder: 6627:6633 ioctl 810c9365 20000980 returned -22 [ 142.282177][ T6617] netlink: 8 bytes leftover after parsing attributes in process `syz.0.366'. [ 142.320025][ T6617] netlink: 8 bytes leftover after parsing attributes in process `syz.0.366'. [ 142.339962][ T5291] steelseries 0003:1038:12B6.0002: hid_hw_raw_request() failed with -71 [ 142.402018][ T5291] usb 3-1: USB disconnect, device number 2 [ 142.553564][ T6637] kvm: emulating exchange as write [ 143.020859][ T6658] mmap: syz.3.378 (6658) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 143.070901][ T6658] binder_alloc: binder_alloc_mmap_handler: 6652 20ffc000-20ffd000 already mapped failed -16 [ 143.293766][ T6667] netlink: 8 bytes leftover after parsing attributes in process `syz.2.383'. [ 143.412552][ T6670] netlink: 'syz.1.384': attribute type 4 has an invalid length. [ 143.427227][ T6670] binder: 6668:6670 ioctl 810c9365 20000980 returned -22 [ 143.455642][ T6672] netlink: 'syz.2.385': attribute type 21 has an invalid length. [ 143.465135][ T6672] netlink: 128 bytes leftover after parsing attributes in process `syz.2.385'. [ 143.483135][ T6672] netlink: 'syz.2.385': attribute type 5 has an invalid length. [ 143.492321][ T6672] netlink: 3 bytes leftover after parsing attributes in process `syz.2.385'. [ 144.569674][ T5290] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 144.757777][ T5290] usb 4-1: Using ep0 maxpacket: 16 [ 144.773559][ T5290] usb 4-1: unable to get BOS descriptor or descriptor too short [ 144.789865][ T5290] usb 4-1: unable to read config index 0 descriptor/start: -71 [ 144.804576][ T5290] usb 4-1: can't read configurations, error -71 [ 145.071684][ T5248] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0 [ 145.080972][ T5248] Bluetooth: hci0: Injecting HCI hardware error event [ 145.089968][ T5248] Bluetooth: hci0: hardware error 0x00 [ 147.173237][ T29] audit: type=1800 audit(1727887011.961:231): pid=6723 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.399" name="/" dev="fuse" ino=1 res=0 errno=0 [ 147.200957][ T5248] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 147.837083][ T6742] netlink: 28 bytes leftover after parsing attributes in process `syz.4.408'. [ 147.876532][ T6742] netlink: 'syz.4.408': attribute type 7 has an invalid length. [ 147.909688][ T6742] netlink: 'syz.4.408': attribute type 8 has an invalid length. [ 147.920676][ T6742] netlink: 4 bytes leftover after parsing attributes in process `syz.4.408'. [ 149.296987][ T6094] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 149.541257][ T6094] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 149.690619][ T6765] syz.3.409 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 149.712935][ T6094] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 150.046357][ T5242] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 150.062038][ T5242] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 150.092511][ T5242] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 150.148324][ T6094] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 150.161197][ T5242] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 150.306538][ T6094] bridge_slave_1: left allmulticast mode [ 150.314161][ T6094] bridge_slave_1: left promiscuous mode [ 150.320183][ T5242] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 150.320498][ T6094] bridge0: port 2(bridge_slave_1) entered disabled state [ 150.337768][ T5242] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 150.454364][ T6094] bridge_slave_0: left allmulticast mode [ 150.460263][ T6094] bridge_slave_0: left promiscuous mode [ 150.466060][ T6094] bridge0: port 1(bridge_slave_0) entered disabled state [ 151.517063][ T6094] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 151.545294][ T6094] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 151.573989][ T6094] bond0 (unregistering): Released all slaves [ 151.593103][ T6773] netlink: 28 bytes leftover after parsing attributes in process `syz.2.420'. [ 151.617065][ T6773] netlink: 'syz.2.420': attribute type 7 has an invalid length. [ 151.655086][ T6773] netlink: 'syz.2.420': attribute type 8 has an invalid length. [ 151.673172][ T6773] netlink: 4 bytes leftover after parsing attributes in process `syz.2.420'. [ 152.416660][ T6094] hsr_slave_0: left promiscuous mode [ 152.430000][ T5248] Bluetooth: hci2: command tx timeout [ 152.489704][ T6094] hsr_slave_1: left promiscuous mode [ 152.528983][ T6094] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 152.559174][ T6094] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 152.640615][ T6094] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 152.654629][ T6094] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 152.773987][ T6094] veth1_macvtap: left promiscuous mode [ 152.793519][ T6094] veth0_macvtap: left promiscuous mode [ 152.812622][ T6094] veth1_vlan: left promiscuous mode [ 152.825333][ C1] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:2. Sending cookies. [ 152.833732][ T6094] veth0_vlan: left promiscuous mode [ 154.048119][ T6832] fuse: Invalid rootmode [ 154.519686][ T5248] Bluetooth: hci2: command tx timeout [ 154.795348][ T6094] team0 (unregistering): Port device team_slave_1 removed [ 154.874547][ T6094] team0 (unregistering): Port device team_slave_0 removed [ 155.447454][ T6835] netlink: 28 bytes leftover after parsing attributes in process `syz.3.432'. [ 155.458043][ T6835] netlink: 'syz.3.432': attribute type 7 has an invalid length. [ 155.466278][ T6835] netlink: 'syz.3.432': attribute type 8 has an invalid length. [ 155.474522][ T6835] netlink: 4 bytes leftover after parsing attributes in process `syz.3.432'. [ 155.615730][ T6841] capability: warning: `syz.3.433' uses deprecated v2 capabilities in a way that may be insecure [ 155.823541][ T6775] chnl_net:caif_netlink_parms(): no params data found [ 156.165879][ T6775] bridge0: port 1(bridge_slave_0) entered blocking state [ 156.175578][ T6775] bridge0: port 1(bridge_slave_0) entered disabled state [ 156.183047][ T6775] bridge_slave_0: entered allmulticast mode [ 156.221687][ T6775] bridge_slave_0: entered promiscuous mode [ 156.298744][ T6775] bridge0: port 2(bridge_slave_1) entered blocking state [ 156.327777][ T6775] bridge0: port 2(bridge_slave_1) entered disabled state [ 156.346885][ T6775] bridge_slave_1: entered allmulticast mode [ 156.370967][ T6775] bridge_slave_1: entered promiscuous mode [ 156.488093][ T6775] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 156.523911][ T6867] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 156.542010][ T6775] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 156.597710][ T5248] Bluetooth: hci2: command tx timeout [ 156.745476][ T6775] team0: Port device team_slave_0 added [ 156.765144][ T6775] team0: Port device team_slave_1 added [ 156.969879][ T6775] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 156.988368][ T6775] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 157.046057][ T6775] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 157.063590][ T6775] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 157.077920][ T6775] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 157.144931][ T6775] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 157.312073][ T6775] hsr_slave_0: entered promiscuous mode [ 157.333671][ T6775] hsr_slave_1: entered promiscuous mode [ 158.519730][ T6895] batadv_slave_1: entered promiscuous mode [ 158.620163][ T6894] batadv_slave_1: left promiscuous mode [ 158.670417][ T5248] Bluetooth: hci2: command tx timeout [ 158.791333][ T6775] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 158.884368][ T6906] netlink: 24 bytes leftover after parsing attributes in process `syz.1.444'. [ 158.950300][ T6775] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 158.973599][ T6775] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 158.988449][ T6775] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 159.229780][ T5248] Bluetooth: hci1: command tx timeout [ 159.400099][ T6920] input: syz0 as /devices/virtual/input/input11 [ 159.412465][ T6775] 8021q: adding VLAN 0 to HW filter on device bond0 [ 159.527551][ T6775] 8021q: adding VLAN 0 to HW filter on device team0 [ 159.543331][ T5817] bridge0: port 1(bridge_slave_0) entered blocking state [ 159.550589][ T5817] bridge0: port 1(bridge_slave_0) entered forwarding state [ 159.629018][ T35] bridge0: port 2(bridge_slave_1) entered blocking state [ 159.636297][ T35] bridge0: port 2(bridge_slave_1) entered forwarding state [ 159.932458][ T6775] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 160.105825][ T6775] veth0_vlan: entered promiscuous mode [ 160.162539][ T6775] veth1_vlan: entered promiscuous mode [ 160.272398][ T6775] veth0_macvtap: entered promiscuous mode [ 160.325774][ T6775] veth1_macvtap: entered promiscuous mode [ 160.427484][ T6775] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 160.459461][ T6775] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 160.487930][ T6775] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 160.519358][ T6775] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 160.539677][ T6775] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 160.571916][ T6775] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 160.607180][ T6775] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 160.647607][ T6943] netlink: 'syz.2.450': attribute type 58 has an invalid length. [ 160.709837][ T6943] netlink: 20 bytes leftover after parsing attributes in process `syz.2.450'. [ 160.795920][ T6775] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 160.854173][ T6775] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 160.900873][ T6775] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 160.949647][ T6775] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 160.991212][ T6775] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 161.029621][ T6775] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 161.061053][ T6775] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 161.084921][ T6775] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 161.109647][ T6775] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 161.124332][ T6775] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 161.146553][ T6775] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 161.444796][ T186] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 161.516192][ T186] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 161.673074][ T70] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 161.732836][ T70] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 163.105971][ T29] audit: type=1326 audit(1727887027.891:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7013 comm="syz.4.467" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc56477dff9 code=0x0 [ 164.470067][ T29] audit: type=1326 audit(1727887029.251:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7033 comm="syz.4.469" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc56477dff9 code=0x0 [ 164.816070][ T7040] netlink: 12 bytes leftover after parsing attributes in process `syz.2.471'. [ 165.423309][ T29] audit: type=1326 audit(1727887030.211:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7055 comm="syz.3.478" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f147357dff9 code=0x0 [ 166.054529][ T46] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 166.248525][ T46] usb 1-1: device descriptor read/64, error -71 [ 166.531441][ T46] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 166.699661][ T46] usb 1-1: device descriptor read/64, error -71 [ 166.810222][ T46] usb usb1-port1: attempt power cycle [ 167.150568][ T46] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 167.203150][ T46] usb 1-1: device descriptor read/8, error -71 [ 167.467214][ T46] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 167.519816][ T46] usb 1-1: device descriptor read/8, error -71 [ 167.631970][ T46] usb usb1-port1: unable to enumerate USB device [ 168.981307][ T29] audit: type=1326 audit(1727887033.761:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7101 comm="syz.1.495" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8b31b7dff9 code=0x0 [ 169.139096][ T7108] netlink: 8 bytes leftover after parsing attributes in process `syz.2.498'. [ 169.671443][ C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 170.002947][ T7132] netlink: 8 bytes leftover after parsing attributes in process `syz.2.510'. [ 170.441480][ T7146] Invalid logical block size (1) [ 170.477042][ T7153] workqueue: name exceeds WQ_NAME_LEN. Truncating to: †< )Ù2¼”›U7‘Åä‹¡ô¾ÐËÝ;&!éi‡¼ [ 170.680610][ T29] audit: type=1326 audit(1727887035.471:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7158 comm="syz.0.519" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa229f7dff9 code=0x0 [ 170.891785][ T7166] netlink: 'syz.3.522': attribute type 10 has an invalid length. [ 170.936036][ T7166] team0: Port device netdevsim0 added [ 171.002636][ T7166] netlink: 'syz.3.522': attribute type 10 has an invalid length. [ 171.079426][ T7166] team0: Failed to send options change via netlink (err -105) [ 171.105443][ T7166] team0: Failed to send port change of device netdevsim0 via netlink (err -105) [ 171.147830][ T7166] team0: Port device netdevsim0 removed [ 171.175931][ T7166] bond0: (slave netdevsim0): Enslaving as an active interface with an up link [ 172.139174][ T7211] netlink: 16 bytes leftover after parsing attributes in process `syz.2.541'. [ 172.265824][ T7213] netlink: 'syz.0.542': attribute type 9 has an invalid length. [ 172.286324][ T7213] netlink: 134660 bytes leftover after parsing attributes in process `syz.0.542'. [ 172.491591][ T29] audit: type=1326 audit(1727887037.251:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.0.545" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa229f7dff9 code=0x0 [ 172.498600][ T7222] warning: `syz.4.546' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 173.078672][ T7241] x_tables: duplicate underflow at hook 1 [ 173.857354][ T7244] team0 (unregistering): Port device team_slave_0 removed [ 173.905097][ T7244] team0 (unregistering): Port device team_slave_1 removed [ 174.522496][ T29] audit: type=1326 audit(1727887039.311:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7275 comm="syz.1.568" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8b31b7dff9 code=0x0 [ 174.990248][ T7289] netlink: 'syz.2.574': attribute type 18 has an invalid length. [ 175.043614][ T7289] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 175.053127][ T7289] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 175.062090][ T7289] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 175.070952][ T7289] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 175.593759][ T7302] netlink: 'syz.4.580': attribute type 11 has an invalid length. [ 176.994332][ T7305] sched: DL replenish lagged too much [ 177.501564][ T7316] netlink: 'syz.1.585': attribute type 3 has an invalid length. [ 177.599814][ T7316] netlink: 130984 bytes leftover after parsing attributes in process `syz.1.585'. [ 186.550671][ T5242] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 186.562765][ T5242] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 186.571322][ T5242] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 186.582350][ T5242] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 186.594118][ T5242] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 186.603978][ T5242] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 188.233243][ T5242] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 188.268181][ T5242] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 188.281206][ T5242] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 188.289776][ T5242] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 188.297539][ T5242] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 188.305100][ T5242] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 188.446111][ T5248] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 188.460053][ T5248] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 188.468676][ T5248] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 188.477319][ T5248] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 188.485560][ T5248] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 188.494745][ T5248] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 188.669732][ T5242] Bluetooth: hci5: command tx timeout [ 188.968426][ T5248] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1 [ 188.978329][ T5248] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9 [ 188.990523][ T5248] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9 [ 189.002669][ T5248] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4 [ 189.017232][ T5248] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3 [ 189.026773][ T5248] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2 [ 189.151194][ T5242] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1 [ 189.162973][ T5242] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9 [ 189.171508][ T5242] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9 [ 189.190743][ T5242] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4 [ 189.198576][ T5242] Bluetooth: hci9: unexpected cc 0x0c25 length: 249 > 3 [ 189.210807][ T5242] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2 [ 190.349868][ T5248] Bluetooth: hci6: command tx timeout [ 190.509725][ T5248] Bluetooth: hci7: command tx timeout [ 190.749825][ T5248] Bluetooth: hci5: command tx timeout [ 191.069813][ T5248] Bluetooth: hci8: command tx timeout [ 191.309778][ T5248] Bluetooth: hci9: command tx timeout [ 192.429943][ T5248] Bluetooth: hci6: command tx timeout [ 192.589940][ T5248] Bluetooth: hci7: command tx timeout [ 192.831318][ T5248] Bluetooth: hci5: command tx timeout [ 193.153248][ T5248] Bluetooth: hci8: command tx timeout [ 193.390444][ T5248] Bluetooth: hci9: command tx timeout [ 194.509817][ T5248] Bluetooth: hci6: command tx timeout [ 194.686668][ T5248] Bluetooth: hci7: command tx timeout [ 194.696451][ T1267] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.703199][ T1267] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.909753][ T5238] Bluetooth: hci5: command tx timeout [ 195.229855][ T5238] Bluetooth: hci8: command tx timeout [ 195.469773][ T5238] Bluetooth: hci9: command tx timeout [ 196.590820][ T5238] Bluetooth: hci6: command tx timeout [ 196.754132][ T5238] Bluetooth: hci7: command tx timeout [ 196.759805][ T5248] Bluetooth: hci4: command 0x0406 tx timeout [ 197.309728][ T5238] Bluetooth: hci8: command tx timeout [ 197.549851][ T5238] Bluetooth: hci9: command tx timeout [ 237.710027][ T5248] Bluetooth: hci3: command 0x0406 tx timeout [ 242.832489][ T4619] Bluetooth: hci1: command 0x0406 tx timeout [ 247.045587][ T5243] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1 [ 247.055054][ T5243] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9 [ 247.063563][ T5243] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9 [ 247.071896][ T5243] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4 [ 247.083038][ T5243] Bluetooth: hci10: unexpected cc 0x0c25 length: 249 > 3 [ 247.092552][ T5243] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2 [ 248.732681][ T5247] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1 [ 248.743013][ T5247] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9 [ 248.752279][ T5236] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9 [ 248.760560][ T5236] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1 [ 248.772204][ T5236] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9 [ 248.781319][ T5236] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4 [ 248.791439][ T5236] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9 [ 248.800289][ T5236] Bluetooth: hci11: unexpected cc 0x0c25 length: 249 > 3 [ 248.813275][ T5236] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2 [ 248.849970][ T5247] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4 [ 248.861385][ T5247] Bluetooth: hci12: unexpected cc 0x0c25 length: 249 > 3 [ 248.869058][ T5247] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2 [ 249.444617][ T5243] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1 [ 249.461787][ T5243] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9 [ 249.471456][ T5243] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9 [ 249.482042][ T5243] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4 [ 249.509329][ T7367] Bluetooth: hci13: unexpected cc 0x0c25 length: 249 > 3 [ 249.517386][ T7367] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2 [ 249.620112][ T7367] Bluetooth: hci14: unexpected cc 0x0c03 length: 249 > 1 [ 249.642470][ T7367] Bluetooth: hci14: unexpected cc 0x1003 length: 249 > 9 [ 249.653766][ T7367] Bluetooth: hci14: unexpected cc 0x1001 length: 249 > 9 [ 249.662538][ T7367] Bluetooth: hci14: unexpected cc 0x0c23 length: 249 > 4 [ 249.675445][ T7367] Bluetooth: hci14: unexpected cc 0x0c25 length: 249 > 3 [ 249.683747][ T7367] Bluetooth: hci14: unexpected cc 0x0c38 length: 249 > 2 [ 256.115492][ T1267] ieee802154 phy0 wpan0: encryption failed: -22 [ 256.122070][ T1267] ieee802154 phy1 wpan1: encryption failed: -22 [ 273.555211][ T7367] Bluetooth: hci2: command 0x0406 tx timeout [ 299.450651][ T5243] Bluetooth: hci14: command tx timeout [ 300.989919][ T7365] Bluetooth: hci10: command tx timeout [ 301.072037][ T7365] Bluetooth: hci11: command tx timeout [ 301.309706][ T7365] Bluetooth: hci12: command tx timeout [ 301.389787][ T7365] Bluetooth: hci13: command tx timeout [ 301.469637][ T7365] Bluetooth: hci14: command tx timeout [ 303.069610][ T7365] Bluetooth: hci10: command tx timeout [ 303.155542][ T7365] Bluetooth: hci11: command tx timeout [ 303.389785][ T7365] Bluetooth: hci12: command tx timeout [ 303.469804][ T7365] Bluetooth: hci13: command tx timeout [ 303.549786][ T7365] Bluetooth: hci14: command tx timeout [ 305.149692][ T7365] Bluetooth: hci10: command tx timeout [ 305.229946][ T7365] Bluetooth: hci11: command tx timeout [ 305.475592][ T7365] Bluetooth: hci12: command tx timeout [ 305.549740][ T7365] Bluetooth: hci13: command tx timeout [ 305.629690][ T7365] Bluetooth: hci14: command tx timeout [ 307.236566][ T7365] Bluetooth: hci10: command tx timeout [ 307.311238][ T5247] Bluetooth: hci11: command tx timeout [ 307.508286][ T5243] Bluetooth: hci15: unexpected cc 0x0c03 length: 249 > 1 [ 307.518293][ T5243] Bluetooth: hci15: unexpected cc 0x1003 length: 249 > 9 [ 307.529671][ T5243] Bluetooth: hci15: unexpected cc 0x1001 length: 249 > 9 [ 307.540048][ T5243] Bluetooth: hci15: unexpected cc 0x0c23 length: 249 > 4 [ 307.549611][ T5243] Bluetooth: hci12: command tx timeout [ 307.559785][ T5243] Bluetooth: hci15: unexpected cc 0x0c25 length: 249 > 3 [ 307.568261][ T5243] Bluetooth: hci15: unexpected cc 0x0c38 length: 249 > 2 [ 307.639841][ T5243] Bluetooth: hci13: command tx timeout [ 309.273156][ T7365] Bluetooth: hci16: unexpected cc 0x0c03 length: 249 > 1 [ 309.292673][ T7365] Bluetooth: hci16: unexpected cc 0x1003 length: 249 > 9 [ 309.309771][ T7365] Bluetooth: hci16: unexpected cc 0x1001 length: 249 > 9 [ 309.319730][ T7365] Bluetooth: hci16: unexpected cc 0x0c23 length: 249 > 4 [ 309.328111][ T7365] Bluetooth: hci16: unexpected cc 0x0c25 length: 249 > 3 [ 309.337704][ T7365] Bluetooth: hci16: unexpected cc 0x0c38 length: 249 > 2 [ 309.390732][ T5243] Bluetooth: hci5: command 0x0406 tx timeout [ 309.435966][ T7365] Bluetooth: hci17: unexpected cc 0x0c03 length: 249 > 1 [ 309.445739][ T7365] Bluetooth: hci17: unexpected cc 0x1003 length: 249 > 9 [ 309.470210][ T7365] Bluetooth: hci17: unexpected cc 0x1001 length: 249 > 9 [ 309.480865][ T7365] Bluetooth: hci17: unexpected cc 0x0c23 length: 249 > 4 [ 309.490357][ T7365] Bluetooth: hci17: unexpected cc 0x0c25 length: 249 > 3 [ 309.500684][ T7365] Bluetooth: hci17: unexpected cc 0x0c38 length: 249 > 2 [ 309.629770][ T7365] Bluetooth: hci15: command tx timeout [ 310.018475][ T5238] Bluetooth: hci18: unexpected cc 0x0c03 length: 249 > 1 [ 310.029129][ T5238] Bluetooth: hci18: unexpected cc 0x1003 length: 249 > 9 [ 310.038770][ T5238] Bluetooth: hci18: unexpected cc 0x1001 length: 249 > 9 [ 310.047436][ T5238] Bluetooth: hci18: unexpected cc 0x0c23 length: 249 > 4 [ 310.061923][ T5238] Bluetooth: hci18: unexpected cc 0x0c25 length: 249 > 3 [ 310.070391][ T5238] Bluetooth: hci18: unexpected cc 0x0c38 length: 249 > 2 [ 310.216947][ T5248] Bluetooth: hci19: unexpected cc 0x0c03 length: 249 > 1 [ 310.229199][ T5248] Bluetooth: hci19: unexpected cc 0x1003 length: 249 > 9 [ 310.239619][ T5248] Bluetooth: hci19: unexpected cc 0x1001 length: 249 > 9 [ 310.247984][ T5248] Bluetooth: hci19: unexpected cc 0x0c23 length: 249 > 4 [ 310.259422][ T5248] Bluetooth: hci19: unexpected cc 0x0c25 length: 249 > 3 [ 310.269196][ T5248] Bluetooth: hci19: unexpected cc 0x0c38 length: 249 > 2 [ 311.389726][ T7365] Bluetooth: hci16: command tx timeout [ 311.709665][ T7365] Bluetooth: hci15: command tx timeout [ 313.469636][ T7365] Bluetooth: hci16: command tx timeout [ 313.789639][ T7365] Bluetooth: hci15: command tx timeout [ 314.526446][ T7367] Bluetooth: hci8: command 0x0406 tx timeout [ 314.547985][ T7367] Bluetooth: hci6: command 0x0406 tx timeout [ 314.554241][ T7365] Bluetooth: hci9: command 0x0406 tx timeout [ 314.560454][ T7367] Bluetooth: hci7: command 0x0406 tx timeout [ 315.549601][ T7392] Bluetooth: hci16: command tx timeout [ 315.869785][ T7392] Bluetooth: hci15: command tx timeout [ 317.553683][ T1267] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.565191][ T1267] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.629847][ T7392] Bluetooth: hci16: command tx timeout [ 334.190922][ T30] INFO: task kworker/u8:5:186 blocked for more than 143 seconds. [ 334.198906][ T30] Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0 [ 334.242854][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 334.279519][ T30] task:kworker/u8:5 state:D stack:20848 pid:186 tgid:186 ppid:2 flags:0x00004000 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 334.379195][ T30] Workqueue: cfg80211 cfg80211_dfs_channels_update_work [ 334.419650][ T30] Call Trace: [ 334.423025][ T30] [ 334.426042][ T30] __schedule+0x1895/0x4b30 [ 334.493993][ T30] ? __pfx___schedule+0x10/0x10 [ 334.529618][ T30] ? __pfx_lock_release+0x10/0x10 [ 334.534750][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 334.599720][ T30] ? kthread_data+0x52/0xd0 [ 334.604387][ T30] ? schedule+0x90/0x320 [ 334.608697][ T30] ? wq_worker_sleeping+0x66/0x240 [ 334.666015][ T30] ? schedule+0x90/0x320 [ 334.688167][ T30] schedule+0x14b/0x320 [ 334.707260][ T30] schedule_preempt_disabled+0x13/0x30 [ 334.739568][ T30] __mutex_lock+0x6a7/0xd70 [ 334.750158][ T30] ? __mutex_lock+0x52a/0xd70 [ 334.754940][ T30] ? cfg80211_dfs_channels_update_work+0xbf/0x610 [ 334.799572][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 334.804703][ T30] cfg80211_dfs_channels_update_work+0xbf/0x610 [ 334.854158][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 334.879592][ T30] ? __pfx_cfg80211_dfs_channels_update_work+0x10/0x10 [ 334.886571][ T30] ? process_scheduled_works+0x976/0x1850 [ 334.935592][ T30] process_scheduled_works+0xa63/0x1850 [ 334.947975][ T30] ? __pfx_process_scheduled_works+0x10/0x10 [ 334.969991][ T30] ? assign_work+0x364/0x3d0 [ 334.974692][ T30] worker_thread+0x870/0xd30 [ 334.979347][ T30] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 335.034278][ T30] ? __kthread_parkme+0x169/0x1d0 [ 335.059504][ T30] ? __pfx_worker_thread+0x10/0x10 [ 335.064725][ T30] kthread+0x2f0/0x390 [ 335.068861][ T30] ? __pfx_worker_thread+0x10/0x10 [ 335.124475][ T30] ? __pfx_kthread+0x10/0x10 [ 335.129173][ T30] ret_from_fork+0x4b/0x80 [ 335.159612][ T30] ? __pfx_kthread+0x10/0x10 [ 335.164326][ T30] ret_from_fork_asm+0x1a/0x30 [ 335.169176][ T30] [ 335.199735][ T30] INFO: task syz.1.585:7316 blocked for more than 144 seconds. [ 335.207381][ T30] Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0 [ 335.285757][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 335.309868][ T30] task:syz.1.585 state:D stack:25808 pid:7316 tgid:7315 ppid:5995 flags:0x00004004 [ 335.337378][ T30] Call Trace: [ 335.346007][ T30] [ 335.349006][ T30] __schedule+0x1895/0x4b30 [ 335.369615][ T30] ? __pfx___schedule+0x10/0x10 [ 335.385542][ T30] ? __pfx_lock_release+0x10/0x10 [ 335.405614][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 335.414841][ T30] ? schedule+0x90/0x320 [ 335.419173][ T30] schedule+0x14b/0x320 [ 335.439520][ T30] schedule_preempt_disabled+0x13/0x30 [ 335.445087][ T30] __mutex_lock+0x6a7/0xd70 [ 335.462647][ T30] ? __mutex_lock+0x52a/0xd70 [ 335.467463][ T30] ? nl80211_pre_doit+0x5f/0x8b0 [ 335.494411][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 335.505626][ T30] ? genl_family_rcv_msg_attrs_parse+0xa3/0x290 [ 335.524102][ T30] ? __nla_parse+0x40/0x60 [ 335.528624][ T30] nl80211_pre_doit+0x5f/0x8b0 [ 335.546630][ T30] genl_rcv_msg+0xaaa/0xec0 [ 335.559519][ T30] ? mark_lock+0x9a/0x360 [ 335.575174][ T30] ? __pfx_genl_rcv_msg+0x10/0x10 [ 335.599416][ T30] ? __pfx_lock_acquire+0x10/0x10 [ 335.604663][ T30] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 335.620617][ T30] ? __pfx_nl80211_set_mac_acl+0x10/0x10 [ 335.626443][ T30] ? __pfx_nl80211_post_doit+0x10/0x10 [ 335.652747][ T30] ? __pfx___might_resched+0x10/0x10 [ 335.658231][ T30] netlink_rcv_skb+0x1e3/0x430 [ 335.683886][ T30] ? __pfx_genl_rcv_msg+0x10/0x10 [ 335.689066][ T30] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 335.714610][ T30] ? __netlink_deliver_tap+0x77e/0x7c0 [ 335.729382][ T30] genl_rcv+0x28/0x40 [ 335.744318][ T30] netlink_unicast+0x7f6/0x990 [ 335.749197][ T30] ? __pfx_netlink_unicast+0x10/0x10 [ 335.769694][ T30] ? __virt_addr_valid+0x183/0x530 [ 335.774925][ T30] ? __check_object_size+0x48e/0x900 [ 335.796448][ T30] netlink_sendmsg+0x8e4/0xcb0 [ 335.806895][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 335.826225][ T30] ? aa_sock_msg_perm+0x91/0x160 [ 335.842374][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 335.847841][ T30] __sock_sendmsg+0x221/0x270 [ 335.868997][ T30] ____sys_sendmsg+0x52a/0x7e0 [ 335.889619][ T30] ? __pfx_____sys_sendmsg+0x10/0x10 [ 335.895037][ T30] __sys_sendmsg+0x292/0x380 [ 335.915901][ T30] ? __pfx___sys_sendmsg+0x10/0x10 [ 335.939172][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 335.951912][ T30] ? do_syscall_64+0x100/0x230 [ 335.956758][ T30] ? do_syscall_64+0xb6/0x230 [ 335.982028][ T30] do_syscall_64+0xf3/0x230 [ 335.986637][ T30] ? clear_bhb_loop+0x35/0x90 [ 336.008550][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 336.029547][ T30] RIP: 0033:0x7f8b31b7dff9 [ 336.034070][ T30] RSP: 002b:00007f8b32a3b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 336.065625][ T30] RAX: ffffffffffffffda RBX: 00007f8b31d35f80 RCX: 00007f8b31b7dff9 [ 336.089533][ T30] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 336.110965][ T30] RBP: 00007f8b31bf0296 R08: 0000000000000000 R09: 0000000000000000 [ 336.119027][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 336.158369][ T30] R13: 0000000000000000 R14: 00007f8b31d35f80 R15: 00007f8b31e5fa28 [ 336.186584][ T30] [ 336.192248][ T30] INFO: task syz.0.586:7320 blocked for more than 145 seconds. [ 336.236730][ T30] Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0 [ 336.254766][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 336.269023][ T30] task:syz.0.586 state:D stack:27392 pid:7320 tgid:7319 ppid:6775 flags:0x00000004 [ 336.288544][ T30] Call Trace: [ 336.292294][ T30] [ 336.295384][ T30] __schedule+0x1895/0x4b30 [ 336.306746][ T30] ? __pfx___schedule+0x10/0x10 [ 336.312070][ T30] ? __pfx_lock_release+0x10/0x10 [ 336.317169][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 336.331210][ T30] ? schedule+0x90/0x320 [ 336.335553][ T30] schedule+0x14b/0x320 [ 336.346330][ T30] schedule_preempt_disabled+0x13/0x30 [ 336.352318][ T30] __mutex_lock+0x6a7/0xd70 [ 336.356973][ T30] ? __mutex_lock+0x52a/0xd70 [ 336.370495][ T30] ? ip6_mroute_setsockopt+0x367/0x1340 [ 336.376294][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 336.388974][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 336.395774][ T30] ip6_mroute_setsockopt+0x367/0x1340 [ 336.409127][ T30] ? __pfx_ip6_mroute_setsockopt+0x10/0x10 [ 336.415405][ T30] ? __schedule+0x189d/0x4b30 [ 336.426519][ T30] ? __pfx___schedule+0x10/0x10 [ 336.432028][ T30] do_ipv6_setsockopt+0x48c/0x3630 [ 336.437234][ T30] ? __pfx_do_ipv6_setsockopt+0x10/0x10 [ 336.449510][ T30] ? schedule+0x90/0x320 [ 336.453844][ T30] ? schedule+0x155/0x320 [ 336.458360][ T30] ? aa_label_sk_perm+0x4f3/0x6c0 [ 336.471175][ T30] ? futex_wait_queue+0x14e/0x1d0 [ 336.476313][ T30] ? __futex_wait+0x287/0x320 [ 336.487053][ T30] ? __pfx_aa_label_sk_perm+0x10/0x10 [ 336.495363][ T30] ? __pfx___might_resched+0x10/0x10 [ 336.506309][ T30] ? __lock_acquire+0x1384/0x2050 [ 336.514446][ T30] ipv6_setsockopt+0x5d/0x170 [ 336.519201][ T30] rawv6_setsockopt+0x327/0x740 [ 336.528316][ T30] ? __pfx_aa_sk_perm+0x10/0x10 [ 336.536064][ T30] ? __pfx_rawv6_setsockopt+0x10/0x10 [ 336.546722][ T30] ? __fget_files+0x29/0x470 [ 336.554128][ T30] ? aa_sock_opt_perm+0x79/0x120 [ 336.559153][ T30] ? sock_common_setsockopt+0x37/0xc0 [ 336.568764][ T30] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 336.577551][ T30] do_sock_setsockopt+0x3af/0x720 [ 336.591867][ T30] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 336.597527][ T30] ? __fget_files+0x29/0x470 [ 336.606658][ T30] ? __fget_files+0x3f3/0x470 [ 336.614209][ T30] ? __fget_files+0x29/0x470 [ 336.618900][ T30] __sys_setsockopt+0x1a2/0x250 [ 336.629162][ T30] __x64_sys_setsockopt+0xb5/0xd0 [ 336.637119][ T30] do_syscall_64+0xf3/0x230 [ 336.645640][ T30] ? clear_bhb_loop+0x35/0x90 [ 336.653246][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 336.659355][ T30] RIP: 0033:0x7fa229f7dff9 [ 336.668269][ T30] RSP: 002b:00007fa22acee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 336.685423][ T30] RAX: ffffffffffffffda RBX: 00007fa22a135f80 RCX: 00007fa229f7dff9 [ 336.695985][ T30] RDX: 00000000000000c8 RSI: 0000000000000029 RDI: 0000000000000003 [ 336.711547][ T30] RBP: 00007fa229ff0296 R08: 000000000c000000 R09: 0000000000000000 [ 336.724885][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 336.735948][ T30] R13: 0000000000000000 R14: 00007fa22a135f80 R15: 00007fa22a25fa28 [ 336.748252][ T30] [ 336.755258][ T30] INFO: task syz.4.587:7323 blocked for more than 145 seconds. [ 336.768197][ T30] Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0 [ 336.779389][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 336.792279][ T30] task:syz.4.587 state:D stack:27136 pid:7323 tgid:7322 ppid:6208 flags:0x00000004 [ 336.807032][ T30] Call Trace: [ 336.816206][ T30] [ 336.819216][ T30] __schedule+0x1895/0x4b30 [ 336.826752][ T30] ? __pfx___schedule+0x10/0x10 [ 336.835600][ T30] ? __pfx_lock_release+0x10/0x10 [ 336.843571][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 336.849117][ T30] ? schedule+0x90/0x320 [ 336.858656][ T30] schedule+0x14b/0x320 [ 336.865685][ T30] schedule_preempt_disabled+0x13/0x30 [ 336.875082][ T30] __mutex_lock+0x6a7/0xd70 [ 336.882393][ T30] ? __mutex_lock+0x52a/0xd70 [ 336.887137][ T30] ? rtnetlink_rcv_msg+0x6e6/0xcf0 [ 336.896123][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 336.906855][ T30] rtnetlink_rcv_msg+0x6e6/0xcf0 [ 336.914414][ T30] ? rtnetlink_rcv_msg+0x1a7/0xcf0 [ 336.924696][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 336.931838][ T30] ? ref_tracker_free+0x643/0x7e0 [ 336.936934][ T30] netlink_rcv_skb+0x1e3/0x430 [ 336.948225][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 336.955360][ T30] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 336.966198][ T30] ? netlink_deliver_tap+0x2e/0x1b0 [ 336.973163][ T30] netlink_unicast+0x7f6/0x990 [ 336.978028][ T30] ? __pfx_netlink_unicast+0x10/0x10 [ 336.989509][ T30] ? __virt_addr_valid+0x183/0x530 [ 336.995069][ T30] ? __check_object_size+0x48e/0x900 [ 337.008399][ T30] netlink_sendmsg+0x8e4/0xcb0 [ 337.013791][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 337.020044][ T30] ? aa_sock_msg_perm+0x91/0x160 [ 337.025299][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 337.037714][ T30] __sock_sendmsg+0x221/0x270 [ 337.044138][ T30] ____sys_sendmsg+0x52a/0x7e0 [ 337.049027][ T30] ? __pfx_____sys_sendmsg+0x10/0x10 [ 337.060865][ T30] __sys_sendmsg+0x292/0x380 [ 337.065668][ T30] ? __pfx___sys_sendmsg+0x10/0x10 [ 337.075125][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 337.085746][ T30] ? do_syscall_64+0x100/0x230 [ 337.094991][ T30] ? do_syscall_64+0xb6/0x230 [ 337.103594][ T30] do_syscall_64+0xf3/0x230 [ 337.108192][ T30] ? clear_bhb_loop+0x35/0x90 [ 337.117061][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 337.128957][ T30] RIP: 0033:0x7fc56477dff9 [ 337.137388][ T30] RSP: 002b:00007fc5655f3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 337.149118][ T30] RAX: ffffffffffffffda RBX: 00007fc564935f80 RCX: 00007fc56477dff9 [ 337.167969][ T30] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000004 [ 337.178875][ T30] RBP: 00007fc5647f0296 R08: 0000000000000000 R09: 0000000000000000 [ 337.189557][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 337.197876][ T30] R13: 0000000000000000 R14: 00007fc564935f80 R15: 00007fc564a5fa28 [ 337.215316][ T30] [ 337.218416][ T30] INFO: task syz.3.588:7325 blocked for more than 146 seconds. [ 337.228972][ T30] Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0 [ 337.247205][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 337.258239][ T30] task:syz.3.588 state:D stack:27392 pid:7325 tgid:7324 ppid:5256 flags:0x00000004 [ 337.275831][ T30] Call Trace: [ 337.279295][ T30] [ 337.283036][ T30] __schedule+0x1895/0x4b30 [ 337.287640][ T30] ? __pfx___schedule+0x10/0x10 [ 337.299038][ T30] ? __pfx_lock_release+0x10/0x10 [ 337.307241][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 337.319882][ T30] ? schedule+0x90/0x320 [ 337.324280][ T30] schedule+0x14b/0x320 [ 337.328516][ T30] schedule_preempt_disabled+0x13/0x30 [ 337.341697][ T30] __mutex_lock+0x6a7/0xd70 [ 337.346317][ T30] ? __mutex_lock+0x52a/0xd70 [ 337.356272][ T30] ? rtnetlink_rcv_msg+0x6e6/0xcf0 [ 337.363667][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 337.368785][ T30] rtnetlink_rcv_msg+0x6e6/0xcf0 [ 337.379132][ T30] ? rtnetlink_rcv_msg+0x1a7/0xcf0 [ 337.387345][ T30] ? __lock_acquire+0x1384/0x2050 [ 337.397511][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 337.404711][ T30] netlink_rcv_skb+0x1e3/0x430 [ 337.415846][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 337.423399][ T30] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 337.429134][ T30] ? netlink_deliver_tap+0x2e/0x1b0 [ 337.441535][ T30] netlink_unicast+0x7f6/0x990 [ 337.446395][ T30] ? __pfx_netlink_unicast+0x10/0x10 [ 337.457067][ T30] ? __virt_addr_valid+0x183/0x530 [ 337.463812][ T30] ? __check_object_size+0x48e/0x900 [ 337.469175][ T30] netlink_sendmsg+0x8e4/0xcb0 [ 337.481157][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 337.486542][ T30] ? aa_sock_msg_perm+0x91/0x160 [ 337.498012][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 337.503870][ T30] __sock_sendmsg+0x221/0x270 [ 337.508720][ T30] ____sys_sendmsg+0x52a/0x7e0 [ 337.522783][ T30] ? __pfx_____sys_sendmsg+0x10/0x10 [ 337.528277][ T30] __sys_sendmsg+0x292/0x380 [ 337.537532][ T30] ? __pfx___sys_sendmsg+0x10/0x10 [ 337.545794][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 337.558075][ T30] ? do_syscall_64+0x100/0x230 [ 337.565781][ T30] ? do_syscall_64+0xb6/0x230 [ 337.574757][ T30] do_syscall_64+0xf3/0x230 [ 337.583055][ T30] ? clear_bhb_loop+0x35/0x90 [ 337.587931][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 337.598328][ T30] RIP: 0033:0x7f147357dff9 [ 337.607161][ T30] RSP: 002b:00007f14743bc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 337.623698][ T30] RAX: ffffffffffffffda RBX: 00007f1473735f80 RCX: 00007f147357dff9 [ 337.633551][ T30] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000005 [ 337.648355][ T30] RBP: 00007f14735f0296 R08: 0000000000000000 R09: 0000000000000000 [ 337.664302][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 337.674365][ T30] R13: 0000000000000000 R14: 00007f1473735f80 R15: 00007f147385fa28 [ 337.687788][ T30] [ 337.693071][ T30] INFO: task syz.3.588:7326 blocked for more than 146 seconds. [ 337.707371][ T30] Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0 [ 337.718277][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 337.734250][ T30] task:syz.3.588 state:D stack:26720 pid:7326 tgid:7324 ppid:5256 flags:0x00000004 [ 337.747361][ T30] Call Trace: [ 337.756047][ T30] [ 337.759237][ T30] __schedule+0x1895/0x4b30 [ 337.765699][ T30] ? __pfx___schedule+0x10/0x10 [ 337.776223][ T30] ? __pfx_lock_release+0x10/0x10 [ 337.782956][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 337.788678][ T30] ? schedule+0x90/0x320 [ 337.801468][ T30] schedule+0x14b/0x320 [ 337.805733][ T30] schedule_preempt_disabled+0x13/0x30 [ 337.817343][ T30] __mutex_lock+0x6a7/0xd70 [ 337.824118][ T30] ? __mutex_lock+0x52a/0xd70 [ 337.828952][ T30] ? rtnetlink_rcv_msg+0x6e6/0xcf0 [ 337.839536][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 337.844657][ T30] rtnetlink_rcv_msg+0x6e6/0xcf0 [ 337.855911][ T30] ? rtnetlink_rcv_msg+0x1a7/0xcf0 [ 337.861586][ T30] ? __lock_acquire+0x1384/0x2050 [ 337.866698][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 337.880351][ T30] netlink_rcv_skb+0x1e3/0x430 [ 337.885213][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 337.897537][ T30] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 337.903335][ T30] ? netlink_deliver_tap+0x2e/0x1b0 [ 337.908604][ T30] netlink_unicast+0x7f6/0x990 [ 337.920218][ T30] ? __pfx_netlink_unicast+0x10/0x10 [ 337.925764][ T30] ? __virt_addr_valid+0x183/0x530 [ 337.938080][ T30] ? __check_object_size+0x48e/0x900 [ 337.944041][ T30] netlink_sendmsg+0x8e4/0xcb0 [ 337.948890][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 337.960949][ T30] ? aa_sock_msg_perm+0x91/0x160 [ 337.965978][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 337.977833][ T30] __sock_sendmsg+0x221/0x270 [ 337.984254][ T30] ____sys_sendmsg+0x52a/0x7e0 [ 337.989109][ T30] ? __pfx_____sys_sendmsg+0x10/0x10 [ 337.999655][ T30] __sys_sendmsg+0x292/0x380 [ 338.004347][ T30] ? __pfx___sys_sendmsg+0x10/0x10 [ 338.016293][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 338.026172][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 338.040838][ T30] ? exc_page_fault+0x590/0x8c0 [ 338.045799][ T30] ? do_syscall_64+0xb6/0x230 [ 338.057283][ T30] do_syscall_64+0xf3/0x230 [ 338.063586][ T30] ? clear_bhb_loop+0x35/0x90 [ 338.068353][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 338.079586][ T30] RIP: 0033:0x7f147357dff9 [ 338.084186][ T30] RSP: 002b:00007f147439b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 338.099815][ T30] RAX: ffffffffffffffda RBX: 00007f1473736058 RCX: 00007f147357dff9 [ 338.107985][ T30] RDX: 0000000000010000 RSI: 0000000020000080 RDI: 0000000000000003 [ 338.122780][ T30] RBP: 00007f14735f0296 R08: 0000000000000000 R09: 0000000000000000 [ 338.135312][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 338.149137][ T30] R13: 0000000000000001 R14: 00007f1473736058 R15: 00007f147385fa28 [ 338.160227][ T30] [ 338.163376][ T30] INFO: task syz-executor:7331 blocked for more than 147 seconds. [ 338.181595][ T30] Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0 [ 338.189316][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 338.215459][ T30] task:syz-executor state:D stack:26768 pid:7331 tgid:7331 ppid:1 flags:0x00004004 [ 338.233570][ T30] Call Trace: [ 338.236929][ T30] [ 338.244169][ T30] __schedule+0x1895/0x4b30 [ 338.249348][ T30] ? __pfx___schedule+0x10/0x10 [ 338.259949][ T30] ? __pfx_lock_release+0x10/0x10 [ 338.265089][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 338.279531][ T30] ? schedule+0x90/0x320 [ 338.283871][ T30] schedule+0x14b/0x320 [ 338.288093][ T30] schedule_preempt_disabled+0x13/0x30 [ 338.304621][ T30] __mutex_lock+0x6a7/0xd70 [ 338.309215][ T30] ? __mutex_lock+0x52a/0xd70 [ 338.317153][ T30] ? register_nexthop_notifier+0x84/0x290 [ 338.328220][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 338.337388][ T30] ? __asan_memset+0x23/0x50 [ 338.346300][ T30] register_nexthop_notifier+0x84/0x290 [ 338.356395][ T30] ? __pfx_lockdep_init_map_type+0x10/0x10 [ 338.367348][ T30] ? __pfx_debug_check_no_locks_freed+0x10/0x10 [ 338.374123][ T30] ? __pfx_register_nexthop_notifier+0x10/0x10 [ 338.386576][ T30] ? __asan_memset+0x23/0x50 [ 338.391706][ T30] ops_init+0x31e/0x590 [ 338.396007][ T30] ? lockdep_init_map_type+0xa1/0x910 [ 338.408063][ T30] setup_net+0x287/0x9e0 [ 338.414116][ T30] ? __pfx_down_read_killable+0x10/0x10 [ 338.425907][ T30] ? __pfx_setup_net+0x10/0x10 [ 338.432064][ T30] copy_net_ns+0x33f/0x570 [ 338.436821][ T30] create_new_namespaces+0x425/0x7b0 [ 338.449188][ T30] unshare_nsproxy_namespaces+0x124/0x180 [ 338.456928][ T30] ksys_unshare+0x619/0xc10 [ 338.468356][ T30] ? __pfx_ksys_unshare+0x10/0x10 [ 338.473894][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 338.486358][ T30] ? do_syscall_64+0x100/0x230 [ 338.491642][ T30] __x64_sys_unshare+0x38/0x40 [ 338.496461][ T30] do_syscall_64+0xf3/0x230 [ 338.507447][ T30] ? clear_bhb_loop+0x35/0x90 [ 338.514202][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 338.526865][ T30] RIP: 0033:0x7f9b0857f7f7 [ 338.532533][ T30] RSP: 002b:00007f9b0885ffa8 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 338.548567][ T30] RAX: ffffffffffffffda RBX: 00007f9b085f1a85 RCX: 00007f9b0857f7f7 [ 338.558763][ T30] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000000 [ 338.573839][ T30] RBP: 0000000000000000 R08: 00007f9b09267d60 R09: 0000000000000000 [ 338.584265][ T30] R10: 0000000000000000 R11: 0000000000000206 R12: 000000000000000c [ 338.599247][ T30] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000 [ 338.609182][ T30] [ 338.617391][ T30] INFO: task syz-executor:7337 blocked for more than 147 seconds. [ 338.626978][ T30] Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0 [ 338.639542][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 338.648336][ T30] task:syz-executor state:D stack:26816 pid:7337 tgid:7337 ppid:1 flags:0x00004006 [ 338.665250][ T30] Call Trace: [ 338.668623][ T30] [ 338.673239][ T30] __schedule+0x1895/0x4b30 [ 338.678093][ T30] ? __pfx___schedule+0x10/0x10 [ 338.691274][ T30] ? __pfx_lock_release+0x10/0x10 [ 338.696405][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 338.709014][ T30] ? schedule+0x90/0x320 [ 338.713770][ T30] schedule+0x14b/0x320 [ 338.718010][ T30] schedule_preempt_disabled+0x13/0x30 [ 338.729510][ T30] __mutex_lock+0x6a7/0xd70 [ 338.736370][ T30] ? __mutex_lock+0x52a/0xd70 [ 338.746710][ T30] ? register_nexthop_notifier+0x84/0x290 [ 338.756570][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 338.767717][ T30] ? __asan_memset+0x23/0x50 [ 338.775245][ T30] register_nexthop_notifier+0x84/0x290 [ 338.784902][ T30] ? __pfx_lockdep_init_map_type+0x10/0x10 [ 338.793890][ T30] ? __pfx_debug_check_no_locks_freed+0x10/0x10 [ 338.804622][ T30] ? __pfx_register_nexthop_notifier+0x10/0x10 [ 338.814875][ T30] ? __asan_memset+0x23/0x50 [ 338.823495][ T30] ops_init+0x31e/0x590 [ 338.827740][ T30] ? lockdep_init_map_type+0xa1/0x910 [ 338.836171][ T30] setup_net+0x287/0x9e0 [ 338.845610][ T30] ? __pfx_down_read_killable+0x10/0x10 [ 338.855273][ T30] ? __pfx_setup_net+0x10/0x10 [ 338.864480][ T30] copy_net_ns+0x33f/0x570 [ 338.868987][ T30] create_new_namespaces+0x425/0x7b0 [ 338.877279][ T30] unshare_nsproxy_namespaces+0x124/0x180 [ 338.887370][ T30] ksys_unshare+0x619/0xc10 [ 338.894995][ T30] ? __pfx_ksys_unshare+0x10/0x10 [ 338.905342][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 338.914687][ T30] ? do_syscall_64+0x100/0x230 [ 338.923857][ T30] __x64_sys_unshare+0x38/0x40 [ 338.928787][ T30] do_syscall_64+0xf3/0x230 [ 338.936234][ T30] ? clear_bhb_loop+0x35/0x90 [ 338.948845][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 338.957850][ T30] RIP: 0033:0x7f7c57d7f7f7 [ 338.967073][ T30] RSP: 002b:00007f7c5805ffa8 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 338.979044][ T30] RAX: ffffffffffffffda RBX: 00007f7c57df1a85 RCX: 00007f7c57d7f7f7 [ 338.989833][ T30] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000000 [ 338.998249][ T30] RBP: 0000000000000000 R08: 00007f7c58a67d60 R09: 0000000000000000 [ 339.013494][ T30] R10: 0000000000000000 R11: 0000000000000206 R12: 000000000000000c [ 339.025349][ T30] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000 [ 339.037795][ T30] [ 339.046831][ T30] INFO: task syz-executor:7339 blocked for more than 148 seconds. [ 339.061360][ T30] Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0 [ 339.069158][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 339.083463][ T30] task:syz-executor state:D stack:26032 pid:7339 tgid:7339 ppid:1 flags:0x00004004 [ 339.098736][ T30] Call Trace: [ 339.106163][ T30] [ 339.109184][ T30] __schedule+0x1895/0x4b30 [ 339.117161][ T30] ? __pfx___schedule+0x10/0x10 [ 339.126035][ T30] ? __pfx_lock_release+0x10/0x10 [ 339.136236][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 339.145751][ T30] ? schedule+0x90/0x320 [ 339.154391][ T30] schedule+0x14b/0x320 [ 339.158652][ T30] schedule_preempt_disabled+0x13/0x30 [ 339.168804][ T30] __mutex_lock+0x6a7/0xd70 [ 339.177726][ T30] ? __mutex_lock+0x52a/0xd70 [ 339.186686][ T30] ? register_nexthop_notifier+0x84/0x290 [ 339.195815][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 339.204989][ T30] ? __asan_memset+0x23/0x50 [ 339.212885][ T30] register_nexthop_notifier+0x84/0x290 [ 339.218532][ T30] ? __pfx_lockdep_init_map_type+0x10/0x10 [ 339.238489][ T30] ? __pfx_debug_check_no_locks_freed+0x10/0x10 [ 339.245509][ T30] ? __pfx_register_nexthop_notifier+0x10/0x10 [ 339.260029][ T30] ? __asan_memset+0x23/0x50 [ 339.265660][ T30] ops_init+0x31e/0x590 [ 339.276417][ T30] ? lockdep_init_map_type+0xa1/0x910 [ 339.283736][ T30] setup_net+0x287/0x9e0 [ 339.288259][ T30] ? __pfx_down_read_killable+0x10/0x10 [ 339.299258][ T30] ? __pfx_setup_net+0x10/0x10 [ 339.306081][ T30] copy_net_ns+0x33f/0x570 [ 339.319619][ T30] create_new_namespaces+0x425/0x7b0 [ 339.325029][ T30] unshare_nsproxy_namespaces+0x124/0x180 [ 339.338813][ T30] ksys_unshare+0x619/0xc10 [ 339.343877][ T30] ? __pfx_ksys_unshare+0x10/0x10 [ 339.349162][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 339.360032][ T30] ? do_syscall_64+0x100/0x230 [ 339.364987][ T30] __x64_sys_unshare+0x38/0x40 [ 339.377282][ T30] do_syscall_64+0xf3/0x230 [ 339.382279][ T30] ? clear_bhb_loop+0x35/0x90 [ 339.387022][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 339.400042][ T30] RIP: 0033:0x7fe88317f7f7 [ 339.404535][ T30] RSP: 002b:00007fe88345ffa8 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 339.421164][ T30] RAX: ffffffffffffffda RBX: 00007fe8831f1a85 RCX: 00007fe88317f7f7 [ 339.429217][ T30] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000000 [ 339.439557][ T30] RBP: 0000000000000000 R08: 00007fe883e67d60 R09: 0000000000000000 [ 339.447619][ T30] R10: 0000000000000000 R11: 0000000000000206 R12: 000000000000000c [ 339.464590][ T30] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000 [ 339.476405][ T30] [ 339.483491][ T30] INFO: task syz-executor:7341 blocked for more than 148 seconds. [ 339.495378][ T30] Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0 [ 339.507437][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 339.519059][ T30] task:syz-executor state:D stack:26736 pid:7341 tgid:7341 ppid:1 flags:0x00004006 [ 339.535803][ T30] Call Trace: [ 339.539177][ T30] [ 339.544111][ T30] __schedule+0x1895/0x4b30 [ 339.548802][ T30] ? __pfx___schedule+0x10/0x10 [ 339.561654][ T30] ? __pfx_lock_release+0x10/0x10 [ 339.567050][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 339.577088][ T30] ? schedule+0x90/0x320 [ 339.584763][ T30] schedule+0x14b/0x320 [ 339.589012][ T30] schedule_preempt_disabled+0x13/0x30 [ 339.602736][ T30] __mutex_lock+0x6a7/0xd70 [ 339.607418][ T30] ? __mutex_lock+0x52a/0xd70 [ 339.616320][ T30] ? register_nexthop_notifier+0x84/0x290 [ 339.625043][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 339.635752][ T30] ? __asan_memset+0x23/0x50 [ 339.643162][ T30] register_nexthop_notifier+0x84/0x290 [ 339.648785][ T30] ? __pfx_lockdep_init_map_type+0x10/0x10 [ 339.658675][ T30] ? __pfx_debug_check_no_locks_freed+0x10/0x10 [ 339.668904][ T30] ? __pfx_register_nexthop_notifier+0x10/0x10 [ 339.683133][ T30] ? __asan_memset+0x23/0x50 [ 339.687832][ T30] ops_init+0x31e/0x590 [ 339.694251][ T30] ? lockdep_init_map_type+0xa1/0x910 [ 339.704791][ T30] setup_net+0x287/0x9e0 [ 339.709206][ T30] ? __pfx_down_read_killable+0x10/0x10 [ 339.717809][ T30] ? __pfx_setup_net+0x10/0x10 [ 339.727802][ T30] copy_net_ns+0x33f/0x570 [ 339.734005][ T30] create_new_namespaces+0x425/0x7b0 [ 339.744516][ T30] unshare_nsproxy_namespaces+0x124/0x180 [ 339.752001][ T30] ksys_unshare+0x619/0xc10 [ 339.756911][ T30] ? __pfx_ksys_unshare+0x10/0x10 [ 339.770074][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 339.776171][ T30] ? do_syscall_64+0x100/0x230 [ 339.788353][ T30] __x64_sys_unshare+0x38/0x40 [ 339.793872][ T30] do_syscall_64+0xf3/0x230 [ 339.799020][ T30] ? clear_bhb_loop+0x35/0x90 [ 339.812122][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 339.818117][ T30] RIP: 0033:0x7f8ca9d7f7f7 [ 339.827929][ T30] RSP: 002b:00007f8caa05ffa8 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 339.838122][ T30] RAX: ffffffffffffffda RBX: 00007f8ca9df1a85 RCX: 00007f8ca9d7f7f7 [ 339.853871][ T30] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000000 [ 339.863710][ T30] RBP: 0000000000000000 R08: 00007f8caaa67d60 R09: 0000000000000000 [ 339.879812][ T30] R10: 0000000000000000 R11: 0000000000000206 R12: 000000000000000c [ 339.887889][ T30] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000 [ 339.903637][ T30] [ 339.906819][ T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings [ 339.923419][ T30] INFO: task syz-executor:7343 blocked for more than 149 seconds. [ 339.935456][ T30] Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0 [ 339.947295][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 339.959035][ T30] task:syz-executor state:D stack:26128 pid:7343 tgid:7343 ppid:1 flags:0x00004004 [ 339.978157][ T30] Call Trace: [ 339.981897][ T30] [ 339.985362][ T30] __schedule+0x1895/0x4b30 [ 339.996463][ T30] ? __pfx___schedule+0x10/0x10 [ 340.001821][ T30] ? __pfx_lock_release+0x10/0x10 [ 340.006947][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 340.019094][ T30] ? schedule+0x90/0x320 [ 340.023526][ T30] schedule+0x14b/0x320 [ 340.027847][ T30] schedule_preempt_disabled+0x13/0x30 [ 340.041724][ T30] __mutex_lock+0x6a7/0xd70 [ 340.046723][ T30] ? __mutex_lock+0x52a/0xd70 [ 340.055994][ T30] ? register_nexthop_notifier+0x84/0x290 [ 340.065852][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 340.077565][ T30] ? __asan_memset+0x23/0x50 [ 340.085536][ T30] register_nexthop_notifier+0x84/0x290 [ 340.095733][ T30] ? __pfx_lockdep_init_map_type+0x10/0x10 [ 340.105649][ T30] ? __pfx_debug_check_no_locks_freed+0x10/0x10 [ 340.116496][ T30] ? __pfx_register_nexthop_notifier+0x10/0x10 [ 340.125536][ T30] ? __asan_memset+0x23/0x50 [ 340.134177][ T30] ops_init+0x31e/0x590 [ 340.138599][ T30] ? lockdep_init_map_type+0xa1/0x910 [ 340.147337][ T30] setup_net+0x287/0x9e0 [ 340.155593][ T30] ? __pfx_down_read_killable+0x10/0x10 [ 340.165241][ T30] ? __pfx_setup_net+0x10/0x10 [ 340.175337][ T30] copy_net_ns+0x33f/0x570 [ 340.183034][ T30] create_new_namespaces+0x425/0x7b0 [ 340.188413][ T30] unshare_nsproxy_namespaces+0x124/0x180 [ 340.199581][ T30] ksys_unshare+0x619/0xc10 [ 340.204190][ T30] ? __pfx_ksys_unshare+0x10/0x10 [ 340.209364][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 340.223808][ T30] ? do_syscall_64+0x100/0x230 [ 340.228847][ T30] __x64_sys_unshare+0x38/0x40 [ 340.238341][ T30] do_syscall_64+0xf3/0x230 [ 340.245858][ T30] ? clear_bhb_loop+0x35/0x90 [ 340.256501][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 340.265364][ T30] RIP: 0033:0x7f980017f7f7 [ 340.275390][ T30] RSP: 002b:00007f980045ffa8 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 340.293569][ T30] RAX: ffffffffffffffda RBX: 00007f98001f1a85 RCX: 00007f980017f7f7 [ 340.307098][ T30] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000000 [ 340.319481][ T30] RBP: 0000000000000000 R08: 00007f9800e67d60 R09: 0000000000000000 [ 340.327531][ T30] R10: 0000000000000000 R11: 0000000000000206 R12: 000000000000000c [ 340.342700][ T30] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000 [ 340.358652][ T30] [ 340.365169][ T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings [ 340.379626][ T30] [ 340.379626][ T30] Showing all locks held in the system: [ 340.387415][ T30] 4 locks held by kworker/u8:0/11: [ 340.402529][ T30] #0: ffff8880b863ea98 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0xb0/0x140 [ 340.418965][ T30] #1: ffff8880b8728948 (&per_cpu_ptr(group->pcpu, cpu)->seq){-.-.}-{0:0}, at: psi_task_switch+0x441/0x770 [ 340.439341][ T30] #2: ffff8880272cc388 (&wb->work_lock){..-.}-{2:2}, at: wb_workfn+0xfa7/0x1090 [ 340.448700][ T30] #3: ffff8880b872a718 (&base->lock){-.-.}-{2:2}, at: lock_timer_base+0x112/0x240 [ 340.464715][ T30] 3 locks held by kworker/u8:1/12: [ 340.472064][ T30] #0: ffff88814babc948 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850 [ 340.489937][ T30] #1: ffffc90000117d00 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850 [ 340.511098][ T30] #2: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0x19/0x30 [ 340.527427][ T30] 1 lock held by khungtaskd/30: [ 340.532941][ T30] #0: ffffffff8e937de0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0 [ 340.549125][ T30] 3 locks held by kworker/u8:3/52: [ 340.556244][ T30] #0: ffff88801ac89148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850 [ 340.574553][ T30] #1: ffffc90000bd7d00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850 [ 340.588434][ T30] #2: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60 [ 340.611169][ T30] 5 locks held by kworker/u9:0/54: [ 340.616359][ T30] #0: ffff88804b10c948 ((wq_completion)hci9){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850 [ 340.632737][ T30] #1: ffffc90000bf7d00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850 [ 340.653870][ T30] #2: ffff888011e44d80 (&hdev->req_lock){+.+.}-{3:3}, at: hci_cmd_sync_work+0x1ec/0x400 [ 340.666900][ T30] #3: ffff888011e44078 (&hdev->lock){+.+.}-{3:3}, at: hci_abort_conn_sync+0x1ea/0xde0 [ 340.681045][ T30] #4: ffffffff8fe3dfa8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_conn_failed+0x15d/0x300 [ 340.698001][ T30] 3 locks held by kworker/u8:5/186: [ 340.706406][ T30] #0: ffff888021aab148 ((wq_completion)cfg80211){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850 [ 340.721894][ T30] #1: ffffc90002e4fd00 ((work_completion)(&(&rdev->dfs_update_channels_wk)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850 [ 340.744735][ T30] #2: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: cfg80211_dfs_channels_update_work+0xbf/0x610 [ 340.756248][ T30] 5 locks held by kworker/u9:1/4619: [ 340.768553][ T30] #0: ffff88807da61148 ((wq_completion)hci7){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850 [ 340.788115][ T30] #1: ffffc9000dccfd00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850 [ 340.808760][ T30] #2: ffff88806f20cd80 (&hdev->req_lock){+.+.}-{3:3}, at: hci_cmd_sync_work+0x1ec/0x400 [ 340.819246][ T30] #3: ffff88806f20c078 (&hdev->lock){+.+.}-{3:3}, at: hci_abort_conn_sync+0x1ea/0xde0 [ 340.836574][ T30] #4: ffffffff8fe3dfa8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_conn_failed+0x15d/0x300 [ 340.847256][ T30] 2 locks held by getty/4989: [ 340.858392][ T30] #0: ffff88803262a0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 340.870106][ T30] #1: ffffc900031332f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6a6/0x1e00 [ 340.887572][ T30] 4 locks held by kworker/u9:3/5238: [ 340.894455][ T30] #0: ffff888060aef948 ((wq_completion)hci18#2){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850 [ 340.911061][ T30] #1: ffffc9000369fd00 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850 [ 340.929225][ T30] #2: ffff88803a49c078 (&hdev->lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x97/0xaf0 [ 340.939917][ T30] #3: ffffffff8fe3dfa8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x4c3/0xaf0 [ 340.958307][ T30] 5 locks held by kworker/u9:4/5242: [ 340.964295][ T30] #0: ffff888063a29948 ((wq_completion)hci6){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850 [ 340.979824][ T30] #1: ffffc900036ffd00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850 [ 341.001494][ T30] #2: ffff888012210d80 (&hdev->req_lock){+.+.}-{3:3}, at: hci_cmd_sync_work+0x1ec/0x400 [ 341.018257][ T30] #3: ffff888012210078 (&hdev->lock){+.+.}-{3:3}, at: hci_abort_conn_sync+0x1ea/0xde0 [ 341.030275][ T30] #4: ffffffff8fe3dfa8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_conn_failed+0x15d/0x300 [ 341.047736][ T30] 4 locks held by kworker/u9:5/5243: [ 341.054744][ T30] #0: ffff8880903ea148 ((wq_completion)hci17#2){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850 [ 341.069791][ T30] #1: ffffc90003ad7d00 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850 [ 341.090199][ T30] #2: ffff88803eefc078 (&hdev->lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x97/0xaf0 [ 341.107765][ T30] #3: ffffffff8fe3dfa8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x4c3/0xaf0 [ 341.119263][ T30] 5 locks held by kworker/u9:6/5247: [ 341.133829][ T30] #0: ffff888052db4948 ((wq_completion)hci5){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850 [ 341.147970][ T30] #1: ffffc90003b07d00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850 [ 341.167911][ T30] #2: ffff88807a958d80 (&hdev->req_lock){+.+.}-{3:3}, at: hci_cmd_sync_work+0x1ec/0x400 [ 341.180004][ T30] #3: ffff88807a958078 (&hdev->lock){+.+.}-{3:3}, at: hci_abort_conn_sync+0x1ea/0xde0 [ 341.197395][ T30] #4: ffffffff8fe3dfa8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_conn_failed+0x15d/0x300 [ 341.208546][ T30] 4 locks held by kworker/u9:7/5248: [ 341.221417][ T30] #0: ffff8880519f1148 ((wq_completion)hci19#2){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850 [ 341.240520][ T30] #1: ffffc90003c1fd00 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850 [ 341.257957][ T30] #2: ffff8880505f4078 (&hdev->lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x97/0xaf0 [ 341.271174][ T30] #3: ffffffff8fe3dfa8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x4c3/0xaf0 [ 341.287919][ T30] 3 locks held by kworker/0:5/5289: [ 341.295138][ T30] 8 locks held by kworker/0:7/5292: [ 341.306980][ T30] 3 locks held by kworker/1:7/5297: [ 341.326823][ T30] #0: ffff88801ac81948 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850 [ 341.345999][ T30] #1: ffffc90003f87d00 ((reg_check_chans).work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850 [ 341.358744][ T30] #2: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: reg_check_chans_work+0x99/0xfd0 [ 341.375750][ T30] 2 locks held by syz.1.585/7316: [ 341.381297][ T30] #0: ffffffff8fd374b0 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40 [ 341.399599][ T30] #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: nl80211_pre_doit+0x5f/0x8b0 [ 341.417849][ T30] 1 lock held by syz.0.586/7320: [ 341.423315][ T30] #0: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: ip6_mroute_setsockopt+0x367/0x1340 [ 341.439602][ T30] 1 lock held by syz.4.587/7323: [ 341.444621][ T30] #0: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0 [ 341.461808][ T30] 1 lock held by syz.3.588/7325: [ 341.466816][ T30] #0: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0 [ 341.482822][ T30] 1 lock held by syz.3.588/7326: [ 341.487927][ T30] #0: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0 [ 341.507265][ T30] 2 locks held by syz-executor/7331: [ 341.513097][ T30] #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570 [ 341.529802][ T30] #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 [ 341.547605][ T30] 2 locks held by syz-executor/7337: [ 341.553465][ T30] #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570 [ 341.569395][ T30] #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 [ 341.587489][ T30] 2 locks held by syz-executor/7339: [ 341.593247][ T30] #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570 [ 341.609976][ T30] #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 [ 341.627583][ T30] 2 locks held by syz-executor/7341: [ 341.633547][ T30] #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570 [ 341.649744][ T30] #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 [ 341.666590][ T30] 2 locks held by syz-executor/7343: [ 341.673938][ T30] #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570 [ 341.689508][ T30] #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 [ 341.706930][ T30] 2 locks held by syz-executor/7354: [ 341.714210][ T30] #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570 [ 341.729879][ T30] #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 [ 341.746173][ T30] 5 locks held by kworker/u9:8/7361: [ 341.752004][ T30] #0: ffff888046d6f948 ((wq_completion)hci8){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850 [ 341.771185][ T30] #1: ffffc90026cc7d00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850 [ 341.789616][ T30] #2: ffff888032774d80 (&hdev->req_lock){+.+.}-{3:3}, at: hci_cmd_sync_work+0x1ec/0x400 [ 341.807322][ T30] #3: ffff888032774078 (&hdev->lock){+.+.}-{3:3}, at: hci_abort_conn_sync+0x1ea/0xde0 [ 341.818645][ T30] #4: ffffffff8fe3dfa8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_conn_failed+0x15d/0x300 [ 341.838620][ T30] 2 locks held by syz-executor/7362: [ 341.844583][ T30] #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570 [ 341.861349][ T30] #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 [ 341.880090][ T30] 2 locks held by syz-executor/7363: [ 341.885533][ T30] #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570 [ 341.903353][ T30] #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 [ 341.918891][ T30] 2 locks held by syz-executor/7368: [ 341.927690][ T30] #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570 [ 341.941410][ T30] #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 [ 341.957512][ T30] 2 locks held by syz-executor/7369: [ 341.965860][ T30] #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570 [ 341.979554][ T30] #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 [ 341.997882][ T30] 2 locks held by dhcpcd/7371: [ 342.003115][ T30] #0: ffff8880455a0258 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x32/0xcb0 [ 342.015823][ T30] #1: ffffffff8e93d378 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x451/0x830 [ 342.036094][ T30] 2 locks held by syz-executor/7377: [ 342.043220][ T30] #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570 [ 342.058264][ T30] #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 [ 342.070805][ T30] 2 locks held by syz-executor/7386: [ 342.076272][ T30] #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570 [ 342.094823][ T30] #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 [ 342.105837][ T30] 2 locks held by syz-executor/7387: [ 342.118631][ T30] #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570 [ 342.134919][ T30] #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 [ 342.147257][ T30] 2 locks held by syz-executor/7389: [ 342.158360][ T30] #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570 [ 342.170003][ T30] #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 [ 342.187722][ T30] 2 locks held by syz-executor/7391: [ 342.195851][ T30] #0: ffffffff8fcc4c50 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570 [ 342.213688][ T30] #1: ffffffff8fcd1748 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290 [ 342.233655][ T30] [ 342.236060][ T30] ============================================= [ 342.236060][ T30] [ 342.246999][ T30] NMI backtrace for cpu 1 [ 342.251482][ T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0 [ 342.262613][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 342.272743][ T30] Call Trace: [ 342.276066][ T30] [ 342.279050][ T30] dump_stack_lvl+0x241/0x360 [ 342.283785][ T30] ? __pfx_dump_stack_lvl+0x10/0x10 [ 342.289031][ T30] ? __pfx__printk+0x10/0x10 [ 342.293697][ T30] nmi_cpu_backtrace+0x49c/0x4d0 [ 342.298704][ T30] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 342.304922][ T30] ? _printk+0xd5/0x120 [ 342.309162][ T30] ? __pfx__printk+0x10/0x10 [ 342.313816][ T30] ? __wake_up_klogd+0xcc/0x110 [ 342.318812][ T30] ? __pfx__printk+0x10/0x10 [ 342.323641][ T30] ? __rcu_read_unlock+0xa1/0x110 [ 342.329005][ T30] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 342.335084][ T30] nmi_trigger_cpumask_backtrace+0x198/0x320 [ 342.341299][ T30] watchdog+0xff4/0x1040 [ 342.345979][ T30] ? watchdog+0x1ea/0x1040 [ 342.350649][ T30] ? __pfx_watchdog+0x10/0x10 [ 342.355385][ T30] kthread+0x2f0/0x390 [ 342.359496][ T30] ? __pfx_watchdog+0x10/0x10 [ 342.364234][ T30] ? __pfx_kthread+0x10/0x10 [ 342.368870][ T30] ret_from_fork+0x4b/0x80 [ 342.373436][ T30] ? __pfx_kthread+0x10/0x10 [ 342.378168][ T30] ret_from_fork_asm+0x1a/0x30 [ 342.383025][ T30] [ 342.387262][ T30] Sending NMI from CPU 1 to CPUs 0: [ 342.393074][ C0] NMI backtrace for cpu 0 [ 342.393091][ C0] CPU: 0 UID: 0 PID: 5292 Comm: kworker/0:7 Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0 [ 342.393114][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 342.393127][ C0] Workqueue: events nsim_dev_trap_report_work [ 342.393157][ C0] RIP: 0010:validate_chain+0x11e/0x5920 [ 342.393182][ C0] Code: 3d 00 00 04 00 0f 85 80 04 00 00 81 e3 ff 1f 00 00 48 89 d8 48 c1 e8 06 48 8d 3c c5 00 58 2c 94 be 08 00 00 00 e8 42 92 8d 00 <48> 0f a3 1d da 5a bb 12 72 66 48 c7 c0 40 c9 3c 9a 48 c1 e8 03 42 [ 342.393207][ C0] RSP: 0018:ffffc90000006240 EFLAGS: 00000056 [ 342.393222][ C0] RAX: 0000000000000001 RBX: 0000000000000686 RCX: ffffffff8170fd1e [ 342.393237][ C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff942c58d0 [ 342.393249][ C0] RBP: ffffc90000006540 R08: ffffffff942c58d7 R09: 1ffffffff2858b1a [ 342.393264][ C0] R10: dffffc0000000000 R11: fffffbfff2858b1b R12: dffffc0000000000 [ 342.393279][ C0] R13: ffff88802f584840 R14: d2e8c143d8437a4c R15: ffff88802f584840 [ 342.393294][ C0] FS: 0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000 [ 342.393311][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 342.393325][ C0] CR2: 0000000000000000 CR3: 000000000e734000 CR4: 00000000003526f0 [ 342.393341][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 342.393353][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 342.393365][ C0] Call Trace: [ 342.393372][ C0] [ 342.393380][ C0] ? nmi_cpu_backtrace+0x3c2/0x4d0 [ 342.393404][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 342.393433][ C0] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 342.393463][ C0] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 342.393488][ C0] ? nmi_handle+0x14f/0x5a0 [ 342.393508][ C0] ? nmi_handle+0x2a/0x5a0 [ 342.393528][ C0] ? validate_chain+0x11e/0x5920 [ 342.393548][ C0] ? default_do_nmi+0x63/0x160 [ 342.393572][ C0] ? exc_nmi+0x123/0x1f0 [ 342.393594][ C0] ? end_repeat_nmi+0xf/0x53 [ 342.393614][ C0] ? validate_chain+0x11e/0x5920 [ 342.393635][ C0] ? validate_chain+0x11e/0x5920 [ 342.393656][ C0] ? validate_chain+0x11e/0x5920 [ 342.393685][ C0] ? validate_chain+0x11e/0x5920 [ 342.393706][ C0] [ 342.393713][ C0] [ 342.393724][ C0] ? validate_chain+0x11e/0x5920 [ 342.393746][ C0] ? __pfx_validate_chain+0x10/0x10 [ 342.393781][ C0] ? __pfx_validate_chain+0x10/0x10 [ 342.393803][ C0] ? __pfx_validate_chain+0x10/0x10 [ 342.393823][ C0] ? mark_lock+0x9a/0x360 [ 342.393840][ C0] ? __pfx_validate_chain+0x10/0x10 [ 342.393861][ C0] ? __lock_acquire+0x1384/0x2050 [ 342.393894][ C0] ? mark_lock+0x9a/0x360 [ 342.393913][ C0] __lock_acquire+0x1384/0x2050 [ 342.393947][ C0] lock_acquire+0x1ed/0x550 [ 342.393973][ C0] ? enqueue_to_backlog+0x17c/0xc80 [ 342.393999][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 342.394027][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 342.394056][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 342.394087][ C0] _raw_spin_lock_irqsave+0xd5/0x120 [ 342.394112][ C0] ? enqueue_to_backlog+0x17c/0xc80 [ 342.394134][ C0] ? __pfx__raw_spin_lock_irqsave+0x10/0x10 [ 342.394159][ C0] ? ktime_get_with_offset+0x83/0x150 [ 342.394181][ C0] ? lockdep_hardirqs_on+0x99/0x150 [ 342.394208][ C0] ? seqcount_lockdep_reader_access+0x1d7/0x220 [ 342.394231][ C0] ? __pfx_seqcount_lockdep_reader_access+0x10/0x10 [ 342.394255][ C0] enqueue_to_backlog+0x17c/0xc80 [ 342.394276][ C0] ? timekeeping_get_ns+0x2c0/0x420 [ 342.394302][ C0] netif_rx_internal+0x17a/0x630 [ 342.394330][ C0] ? __pfx_netif_rx_internal+0x10/0x10 [ 342.394361][ C0] ? rcu_is_watching+0x15/0xb0 [ 342.394382][ C0] __netif_rx+0x78/0xc0 [ 342.394402][ C0] loopback_xmit+0x454/0x6b0 [ 342.394427][ C0] dev_hard_start_xmit+0x27a/0x7e0 [ 342.394452][ C0] sch_direct_xmit+0x29c/0x5d0 [ 342.394481][ C0] ? __pfx_sch_direct_xmit+0x10/0x10 [ 342.394511][ C0] __dev_queue_xmit+0x1d32/0x3e80 [ 342.394537][ C0] ? __dev_queue_xmit+0x2da/0x3e80 [ 342.394558][ C0] ? __pfx___dev_queue_xmit+0x10/0x10 [ 342.394593][ C0] ? ip_finish_output2+0xa14/0x1390 [ 342.394622][ C0] ? ip_finish_output2+0x45f/0x1390 [ 342.394649][ C0] ip_finish_output2+0xd41/0x1390 [ 342.394682][ C0] ? ip_finish_output2+0x45f/0x1390 [ 342.394714][ C0] ? __pfx_ip_finish_output2+0x10/0x10 [ 342.394742][ C0] ? ip_skb_dst_mtu+0x6ba/0x9b0 [ 342.394769][ C0] ? __ip_finish_output+0x349/0x400 [ 342.394798][ C0] synproxy_send_client_synack+0x8b8/0xf30 [ 342.394830][ C0] ? __pfx_synproxy_send_client_synack+0x10/0x10 [ 342.394857][ C0] ? synproxy_pernet+0x45/0x270 [ 342.394885][ C0] nft_synproxy_eval_v4+0x3ca/0x610 [ 342.394915][ C0] ? __pfx_nft_synproxy_eval_v4+0x10/0x10 [ 342.394942][ C0] ? validate_chain+0x11e/0x5920 [ 342.394962][ C0] ? nf_ip_checksum+0x13a/0x500 [ 342.394991][ C0] nft_synproxy_do_eval+0x362/0xa60 [ 342.395020][ C0] ? __pfx_nft_synproxy_do_eval+0x10/0x10 [ 342.395050][ C0] ? __pfx_validate_chain+0x10/0x10 [ 342.395074][ C0] nft_do_chain+0x4ad/0x1da0 [ 342.395096][ C0] ? __pfx_nft_do_chain+0x10/0x10 [ 342.395122][ C0] ? __local_bh_enable_ip+0x168/0x200 [ 342.395156][ C0] ? __pfx_nf_nat_inet_fn+0x10/0x10 [ 342.395177][ C0] nft_do_chain_inet+0x418/0x6b0 [ 342.395205][ C0] ? __pfx_nft_do_chain_inet+0x10/0x10 [ 342.395230][ C0] ? ipt_do_table+0x312/0x1860 [ 342.395263][ C0] ? __pfx_nft_do_chain_inet+0x10/0x10 [ 342.395288][ C0] nf_hook_slow+0xc3/0x220 [ 342.395312][ C0] ? __pfx_ip_local_deliver_finish+0x10/0x10 [ 342.395333][ C0] ? __pfx_ip_local_deliver_finish+0x10/0x10 [ 342.395354][ C0] NF_HOOK+0x29e/0x450 [ 342.395375][ C0] ? NF_HOOK+0x9a/0x450 [ 342.395394][ C0] ? __pfx_NF_HOOK+0x10/0x10 [ 342.395414][ C0] ? __pfx_ip_local_deliver_finish+0x10/0x10 [ 342.395438][ C0] ? ip_rcv_finish+0x406/0x560 [ 342.395459][ C0] ? __pfx_ip_rcv_finish+0x10/0x10 [ 342.395479][ C0] NF_HOOK+0x3a4/0x450 [ 342.395499][ C0] ? NF_HOOK+0x9a/0x450 [ 342.395519][ C0] ? __pfx_NF_HOOK+0x10/0x10 [ 342.395538][ C0] ? ip_rcv_core+0x801/0xd10 [ 342.395558][ C0] ? __pfx_ip_rcv_finish+0x10/0x10 [ 342.395582][ C0] ? __pfx_ip_rcv+0x10/0x10 [ 342.395602][ C0] __netif_receive_skb+0x2bf/0x650 [ 342.395625][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 342.395652][ C0] ? __pfx___netif_receive_skb+0x10/0x10 [ 342.395680][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 342.395707][ C0] ? __pfx_lock_release+0x10/0x10 [ 342.395734][ C0] ? _raw_spin_lock_irq+0xdf/0x120 [ 342.395764][ C0] process_backlog+0x662/0x15b0 [ 342.395789][ C0] ? process_backlog+0x33b/0x15b0 [ 342.395816][ C0] ? __pfx_process_backlog+0x10/0x10 [ 342.395840][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 342.395867][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 342.395896][ C0] __napi_poll+0xcb/0x490 [ 342.395920][ C0] net_rx_action+0x89b/0x1240 [ 342.395952][ C0] ? __pfx_net_rx_action+0x10/0x10 [ 342.395985][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 342.396016][ C0] handle_softirqs+0x2c5/0x980 [ 342.396042][ C0] ? do_softirq+0x11b/0x1e0 [ 342.396066][ C0] ? __pfx_handle_softirqs+0x10/0x10 [ 342.396093][ C0] do_softirq+0x11b/0x1e0 [ 342.396115][ C0] [ 342.396121][ C0] [ 342.396128][ C0] ? __pfx_do_softirq+0x10/0x10 [ 342.396151][ C0] ? __pfx_lockdep_softirqs_on+0x10/0x10 [ 342.396179][ C0] ? rcu_is_watching+0x15/0xb0 [ 342.396200][ C0] __local_bh_enable_ip+0x1bb/0x200 [ 342.396224][ C0] ? nsim_dev_trap_report_work+0x75d/0xaa0 [ 342.396245][ C0] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 342.396269][ C0] ? do_raw_spin_unlock+0x13c/0x8b0 [ 342.396293][ C0] ? nsim_dev_trap_report_work+0x6a7/0xaa0 [ 342.396315][ C0] nsim_dev_trap_report_work+0x75d/0xaa0 [ 342.396342][ C0] ? process_scheduled_works+0x976/0x1850 [ 342.396367][ C0] process_scheduled_works+0xa63/0x1850 [ 342.396402][ C0] ? __pfx_process_scheduled_works+0x10/0x10 [ 342.396430][ C0] ? assign_work+0x364/0x3d0 [ 342.396456][ C0] worker_thread+0x870/0xd30 [ 342.396485][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 342.396512][ C0] ? __kthread_parkme+0x169/0x1d0 [ 342.396540][ C0] ? __pfx_worker_thread+0x10/0x10 [ 342.396570][ C0] kthread+0x2f0/0x390 [ 342.396587][ C0] ? __pfx_worker_thread+0x10/0x10 [ 342.396613][ C0] ? __pfx_kthread+0x10/0x10 [ 342.396630][ C0] ret_from_fork+0x4b/0x80 [ 342.396656][ C0] ? __pfx_kthread+0x10/0x10 [ 342.396678][ C0] ret_from_fork_asm+0x1a/0x30 [ 342.396709][ C0] [ 343.326883][ T30] Kernel panic - not syncing: hung_task: blocked tasks [ 343.333961][ T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.12.0-rc1-syzkaller-00031-ge32cde8d2bd7 #0 [ 343.344530][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 343.354639][ T30] Call Trace: [ 343.357957][ T30] [ 343.360922][ T30] dump_stack_lvl+0x241/0x360 [ 343.365659][ T30] ? __pfx_dump_stack_lvl+0x10/0x10 [ 343.371185][ T30] ? __pfx__printk+0x10/0x10 [ 343.376087][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 343.382934][ T30] ? vscnprintf+0x5d/0x90 [ 343.387413][ T30] panic+0x349/0x880 [ 343.391390][ T30] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 343.397880][ T30] ? __pfx_panic+0x10/0x10 [ 343.402369][ T30] ? tick_nohz_tick_stopped+0x82/0xb0 [ 343.407803][ T30] ? __irq_work_queue_local+0x137/0x410 [ 343.413433][ T30] ? preempt_schedule_thunk+0x1a/0x30 [ 343.418861][ T30] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 343.425074][ T30] ? nmi_trigger_cpumask_backtrace+0x2d4/0x320 [ 343.431513][ T30] ? nmi_trigger_cpumask_backtrace+0x2d9/0x320 [ 343.437839][ T30] watchdog+0x1033/0x1040 [ 343.442241][ T30] ? watchdog+0x1ea/0x1040 [ 343.446730][ T30] ? __pfx_watchdog+0x10/0x10 [ 343.451564][ T30] kthread+0x2f0/0x390 [ 343.455698][ T30] ? __pfx_watchdog+0x10/0x10 [ 343.460431][ T30] ? __pfx_kthread+0x10/0x10 [ 343.465075][ T30] ret_from_fork+0x4b/0x80 [ 343.469557][ T30] ? __pfx_kthread+0x10/0x10 [ 343.474252][ T30] ret_from_fork_asm+0x1a/0x30 [ 343.479182][ T30] [ 343.482733][ T30] Kernel Offset: disabled [ 343.487197][ T30] Rebooting in 86400 seconds..