last executing test programs: 9.852841783s ago: executing program 2 (id=217): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x8, &(0x7f0000000e40)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10) socket$netlink(0x10, 0x3, 0x0) r1 = socket$inet(0x2, 0x3, 0x0) setsockopt$inet_msfilter(r1, 0x0, 0x8, &(0x7f0000000240)=ANY=[@ANYBLOB='|'], 0x1) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r2}, &(0x7f00000004c0), &(0x7f00000005c0)}, 0x20) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001280)=ANY=[@ANYBLOB="b702000023000000bfa30000000000000703000000feffff7a0af0ff0000000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010001010404000001007d60b7030000010000006a0a00fe00000000850000000d000000b700000001000000950000000000000075cdc4b57b0c65752a3ad50000007ddd0000000000639100000000000000000000ff7f00000000cb04fcbb0ba9918d37b056b9bbd11b6b9f6cf7db6d574620260000000000008062d77e84cef4a2ab938f65aac33c4d620de2c9b7dc10d7d313f9f57606b839994fb484510bef2e488fbac2fe6faaf75e5cc4815bd2051ade12f41deff6df6a936b4ec3827c739bb39aad16cc75fe369258673b5d053bdec75dcab772be2c9d2d29db3d36dd01797bd3f15aa6aadbeab2a01685108e61aa000000000000000000000000008b798b4f7458d1863cc67d4c6a06e828e5216f601b19db1af1b5d356d0f015d885b4b8ffc0fa3f880287c862137d866d11be4ba3f0151fdbbd4e97d62ecc645e143a60f1b1b71b5f7fc6edc76600000000826151e2b42bf0ed0c8cef3ba2a730a00c87c493db845b10e9468bda6f82881eb8c9cfa72b08eecc972a3fd2c46f3c1cde71a19d1a2982492abaa96665372831210e00d2bfea3bf97ff8836d000000000000000000000000000000000000000000250d623b48a29e330900b8c552202407804f1ba1817256caf1090b71f2928ed030f3c8194cc3cbf48e2f4c9248c4c00a32d4873da3b7d66b1ce6f72aab16c923b16c4bfdbb24fb17bd198139c21c46065c6922fd705e670d0b5d6d495a773b872e8f88"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000100), 0x237}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r3, 0x1f00, 0x15, 0x0, &(0x7f0000000480)="fb97899f4494872191958068401099960ff88e77a8", 0x0, 0x7ff, 0x0, 0xb1, 0xe, &(0x7f00000003c0)="389ceff69d08b0af1cc71b6262d50660bbaf31a7f8cd6a6f911beb65d5fe6b54bf21a66489121f24fefd198059288c9b735e1898e77a7469489a249292c02a72bc193a3008ebdbf4e9dd4ee8fcceef55402c913c8dd0ebece1330aaa93ece835c5044a246a5967e3acd7c950b3b19f351830e545eb9bc3a9c6dd22ce97f1f857cfe8b68a2370b69ea336006b589368f92deb68f3dfc6f2bfee09f8342da437fce5dcdf658e453e3132bb42067575318c39", &(0x7f0000000380)="8c5911c525f5cf4c4ecf207ad2ec", 0x3, 0x0, 0xfffffffb}, 0x13) 9.83988125s ago: executing program 2 (id=218): socket$kcm(0x10, 0x2, 0x0) socket$kcm(0x10, 0x0, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) r1 = syz_genetlink_get_family_id$netlbl_cipso(0x0, 0xffffffffffffffff) sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x20, r1, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MLSLVLLST={0x4}]}, 0x20}}, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prlimit64(0x0, 0x0, 0x0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) ioprio_set$pid(0x0, r0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000062c0), &(0x7f0000006300)=0xc) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0) getdents64(r4, &(0x7f0000000240)=""/164, 0xa4) 8.72687024s ago: executing program 2 (id=220): prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000100), 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0xc0505405, &(0x7f0000000140)={{0x1}}) 8.487466348s ago: executing program 2 (id=222): dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockname$packet(0xffffffffffffffff, 0x0, 0x0) chdir(0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x0, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$TIOCL_SETSEL(0xffffffffffffffff, 0x5428, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x7, 0x4, 0x8, 0x7ff, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1}, 0x48) 8.430818209s ago: executing program 3 (id=223): bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0) mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0) getdents(0xffffffffffffffff, 0x0, 0x0) open(0x0, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, 0x0) r0 = socket$inet6_sctp(0xa, 0x5, 0x84) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) write$apparmor_current(0xffffffffffffffff, &(0x7f0000000040)=@profile={'stack ', '::\n\xe1\f\xca|+\b\xc9\xdf\xf7\x89w\xf3\x06\xb4W\xca\x93\x03\x1d7\x1d\x06\xd2\xe5\x9e\x86>/\xe5A\x18\xa4\xeeC\x06\x8d\xf6\xba\x88\xe1\xb6\xdc:U,\x91\xae\x1c\x81}k`\x14\'\v\x8b\xc5\x1fs68R\xf4\xf1.\xe9U\xf4dY\x9f\fH]\x00`\x93sh\xedX\xf2\xcb\xb0\x1c\x83\xe4f\xe9\xaao\x13\xf3\x81\xf0>(AKf\x83\x92\xb5\xa0Z\xaa\xa5N\xa9\xf0q.\xd5*&c\x1a\x8e\x02\xe6\xd29\xf1!\a&\xe7k\xda\x93w\xb2\xa2\xefm\xdf$\"\xee\xc7\xe3.\x1f\xe6\xba\xae\x83s\xc8\xaco\x17\x14!N\xfd\xca\xac^L\xd4\xe1N\xc7\xf6\x98\xa7}\xaeH\xed\\Q\xf5\xf4\xcf\xf8\xa3Yv n\xf5\xfc/\xa7\xc6\x93\';\x04\xd6Y=Hf\x82h\xdfe\xb0j\x8a~6\xee>\xbf\xc5\'$\x1f;\f+\xa8[x\xd4\x95N\xb3\x1a\xbb$0\x8c\xb4x\xd5\xbf\x17\xdch#'}, 0xf4) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) setsockopt$inet6_int(r0, 0x29, 0x48, 0x0, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="9feb0100180000000000000024000000240000000a000000080000000200000f030000100e000000000000000300001007000000030000ca"], 0x0, 0x46}, 0x20) 6.350838408s ago: executing program 0 (id=229): r0 = open(&(0x7f0000000000)='./bus\x00', 0x60142, 0x0) r1 = open(&(0x7f0000007f80)='./bus\x00', 0x145142, 0x0) ftruncate(r1, 0x96ef) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpu.stat\x00', 0x275a, 0x0) write$UHID_INPUT(r2, &(0x7f0000000940)={0x8, {"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", 0x1000}}, 0x1006) read$FUSE(r0, &(0x7f0000004a40)={0x2020}, 0x2020) sendfile(r0, r1, 0x0, 0x1000000201005) 6.225899499s ago: executing program 3 (id=230): socket$kcm(0x10, 0x2, 0x0) socket$kcm(0x10, 0x0, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) r1 = syz_genetlink_get_family_id$netlbl_cipso(0x0, 0xffffffffffffffff) sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x20, r1, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MLSLVLLST={0x4}]}, 0x20}}, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prlimit64(0x0, 0x0, 0x0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) ioprio_set$pid(0x0, r0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000062c0), &(0x7f0000006300)=0xc) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0) getdents64(r4, &(0x7f0000000240)=""/164, 0xa4) 5.095931293s ago: executing program 1 (id=232): ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000180)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) ioctl$KVM_CAP_EXIT_ON_EMULATION_FAILURE(0xffffffffffffffff, 0x8040ae9f, 0x0) r2 = socket$inet_dccp(0x2, 0x6, 0x0) getsockopt$inet_int(r2, 0x10d, 0x80, &(0x7f0000000000), &(0x7f0000000080)=0x4) 5.071520824s ago: executing program 0 (id=233): prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000100), 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0xc0505405, &(0x7f0000000140)={{0x1}}) 5.047388525s ago: executing program 3 (id=234): bind$inet6(0xffffffffffffffff, &(0x7f0000000000), 0x1c) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121301, 0x0) write$binfmt_aout(r0, &(0x7f0000000000)=ANY=[], 0xff2e) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "0000fa00ea8000"}) r1 = syz_open_pts(r0, 0x0) r2 = dup3(r1, r0, 0x0) ioctl$TIOCSETD(r2, 0x541b, &(0x7f0000000ec0)) 4.863921509s ago: executing program 4 (id=235): bpf$OBJ_GET_PROG(0x7, &(0x7f0000000100)=@generic={0x0, 0x0, 0x10}, 0x18) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0, 0x0) openat$ppp(0xffffffffffffff9c, 0x0, 0x0, 0x0) mknod$loop(&(0x7f0000000140)='./file0\x00', 0x0, 0x1) r0 = getpid() prlimit64(r0, 0xe, &(0x7f0000000140)={0xffffffff, 0xfffffffffffff800}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = landlock_create_ruleset(&(0x7f0000000140), 0x10, 0x0) landlock_restrict_self(r1, 0x0) landlock_restrict_self(r1, 0x0) landlock_restrict_self(r1, 0x0) landlock_restrict_self(r1, 0x0) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x200000005c832, 0xffffffffffffffff, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) mount(&(0x7f0000000040)=@nullb, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='hpfs\x00', 0x1c443, 0x0) socket$rds(0x15, 0x5, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00'}, 0x48) 4.551191689s ago: executing program 0 (id=236): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r0) sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)={0x48, r1, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_TAGLST={0x24, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x1}, {0x5}, {0x5, 0x3, 0x80}, {0x5, 0x3, 0x7}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x3}]}, 0x48}}, 0x0) 3.701647567s ago: executing program 1 (id=237): openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/input/handlers\x00', 0x0, 0x0) r0 = socket$inet6(0xa, 0x80002, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f0000000040)=0xffffffff, 0x4) 3.7001473s ago: executing program 4 (id=238): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x5, 0x100, 0x100, 0x9}, 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0x8, r0}, 0x38) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x2, &(0x7f0000000040)=[{0x44}, {0x6}]}) setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x21, &(0x7f0000000080)=0x200, 0x4) syz_emit_ethernet(0x66, &(0x7f0000000200)={@local, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "cb653e", 0x30, 0x3a, 0x0, @ipv4={'\x00', '\xff\xff', @remote}, @mcast2, {[], @time_exceed={0xa1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, '%kT', 0x0, 0x0, 0x0, @mcast1, @dev}}}}}}}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r4 = socket$inet6_sctp(0xa, 0x5, 0x84) r5 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) bind$802154_dgram(r5, 0x0, 0x0) getsockopt$SO_TIMESTAMP(0xffffffffffffffff, 0x1, 0x8, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r4, 0x84, 0x1f, &(0x7f0000000300)={0x0, @in={{0x2, 0x0, @empty}}, 0xb5f3}, 0x90) r6 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000ac0), 0x0, 0x0) ioctl$SW_SYNC_IOC_CREATE_FENCE(r6, 0xc0285700, &(0x7f0000000b00)={0x0, "abacd211119ca94c63377526aeb5ab2c7b9ca5fa07558139ede6dc06270ee042", 0xffffffffffffffff}) ioctl$SYNC_IOC_FILE_INFO(r7, 0xc0383e04, &(0x7f0000000180)={""/32, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000480)=[{}]}) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f0000000080)='gre0\x00', 0x10) sendto$inet(0xffffffffffffffff, &(0x7f00000000c0)="929c", 0xfdef, 0x4, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10) bpf$MAP_LOOKUP_BATCH(0x1b, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000100), 0x0, 0x2, r0}, 0x38) 3.515955267s ago: executing program 3 (id=239): mkdir(&(0x7f0000000080)='./file1\x00', 0x0) mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0]) mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400)) syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) chdir(&(0x7f0000000080)='./file1\x00') mkdir(&(0x7f0000000440)='./file0\x00', 0x0) r1 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0) socket$netlink(0x10, 0x3, 0x9) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x29, r1}, './file0\x00'}) 3.51527477s ago: executing program 0 (id=240): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0) write$cgroup_int(r0, &(0x7f0000000000), 0xffd2) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev}, 0x10) setsockopt$sock_int(r2, 0x1, 0x6, &(0x7f0000000140)=0x32, 0x4) connect$inet(r2, &(0x7f0000000280)={0x2, 0x0, @broadcast}, 0x10) r3 = socket$kcm(0x10, 0x2, 0x0) sendmsg$inet(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000100)="5c00000014006b05c84e21000af32c6e021875f802000000400002007a17d30360bc24eab556a705251e6182949a36c23d3b48dfd8cdbf9367b498fa51f60a64c9f4d4938037e786a6d0bdd7004cb6c0504bb9189d9193e9bd1c1b78", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0) sendfile(r2, r1, 0x0, 0x100000002) 3.435267582s ago: executing program 1 (id=241): bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x0, 0xff}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x8, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000010000000000000000000018110000", @ANYRES32, @ANYRES16], &(0x7f0000000280)='syzkaller\x00'}, 0x90) mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0xb, 0x8c4b815a5465c2b1, 0xffffffffffffffff, 0x0) r0 = openat$cgroup(0xffffffffffffffff, &(0x7f00000000c0)='syz0\x00', 0x200002, 0x0) r1 = openat$cgroup_ro(r0, &(0x7f0000000100)='memory.stat\x00', 0x275a, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000400)={'wlan0\x00', 0x0}) r4 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r4, &(0x7f0000000040)={0xa, 0x0, &(0x7f0000000340)={&(0x7f0000000580)=ANY=[@ANYBLOB="020300020f000000000000000000000003000600000000000200000000000000000000000000000002000100000000000040000000000000030005a08f000000000002000000ac1414aa0000000000000000010008000000000004000300000000000000000000000000000000000000002797584426c321c3d20a017f7f1793a9d0c7293bcc9e8852da53657447c2c10889ecac847ea5a2620992af679d8c79"], 0x78}, 0x1, 0x7}, 0x0) sendmsg$NL80211_CMD_CONTROL_PORT_FRAME(r2, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000440)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16, @ANYBLOB="010000000080000000008100000008000300", @ANYRES32=r3, @ANYBLOB="0a000600ffffffffffff0000060066008e8800002200330008030000080211000001080211000000ffffffffffff00000802110000010000040067"], 0x58}}, 0x0) r5 = socket$xdp(0x2c, 0x3, 0x0) r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8}, 0x48) r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000850000002a00000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r7}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r6}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20) r8 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newtaction={0x5c, 0x30, 0xb, 0x0, 0x0, {}, [{0x48, 0x1, [@m_ct={0x44, 0x1, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x2}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x5c}}, 0x0) write$tun(r1, &(0x7f0000000140)=ANY=[@ANYBLOB="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"], 0x1f9) syz_emit_ethernet(0xc6, &(0x7f0000000b00)=ANY=[@ANYBLOB="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"], 0x0) bind$bt_hci(0xffffffffffffffff, &(0x7f0000000140)={0x1f, 0xffff}, 0x6) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000006c0)=@deltaction={0x48, 0x31, 0x0, 0x0, 0x0, {}, [@TCA_ACT_TAB={0x14, 0x1, [{0x10, 0x0, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'vlan\x00'}}]}, @TCA_ACT_TAB={0x20, 0x1, [{0x10, 0x0, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'csum\x00'}}, {0xc, 0x0, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'ife\x00'}}]}]}, 0x48}}, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x10, 0x4, &(0x7f0000001300)=ANY=[@ANYBLOB="18000000000000000000000000000000711042000000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xe}, 0x90) setsockopt$XDP_UMEM_REG(r5, 0x11b, 0x4, &(0x7f00000033c0)={&(0x7f0000000000)=""/5, 0xa00000, 0x1000, 0x5}, 0x20) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'team_slave_0\x00'}) r9 = socket$netlink(0x10, 0x3, 0x10) bind$netlink(r9, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) 2.618882632s ago: executing program 0 (id=242): syz_emit_vhci(&(0x7f0000000340)=@HCI_SCODATA_PKT={0x3, {0xc9, 0xa}, "4a551019c11fcb24c25e"}, 0xe) syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="0408020034636d"], 0x7) syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB="04025506000000000000070703b165300e00ffffffffffff090607360a8e0800aaaaaaaaaa1007700a00691e0300ffffffffffff05cf05e77707000000000000fc27f25e1308ff07ffffffffffff00fc0d699cf70200"], 0x58) syz_emit_vhci(&(0x7f0000000100)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) r0 = syz_open_dev$usbmon(&(0x7f0000000280), 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) openat$pidfd(0xffffffffffffff9c, 0x0, 0x0, 0x0) pidfd_send_signal(0xffffffffffffffff, 0x30, 0x0, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) arch_prctl$ARCH_SHSTK_ENABLE(0x1011, 0x0) timerfd_create(0x9, 0x800) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) ioctl$sock_ifreq(r4, 0x89f0, &(0x7f0000000040)={'bond0\x00', @ifru_names='erspan0\x00'}) socket$inet(0x2, 0x0, 0x0) mmap$usbmon(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0xe, 0x10, r0, 0x0) syz_emit_vhci(&(0x7f00000001c0)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x1, 0x2, 0x10}, @l2cap_cid_le_signaling={{0xc}, @l2cap_conn_param_update_req={{0x12, 0x6e, 0x8}, {0x5, 0x7, 0x7, 0x400}}}}, 0x15) syz_emit_vhci(&(0x7f0000000300)=@HCI_EVENT_PKT={0x4, @hci_ev_disconn_complete={{0x5, 0x4}, {0x96, 0xc8, 0x3}}}, 0x7) ioprio_set$pid(0x1, 0x0, 0x0) syz_mount_image$nilfs2(&(0x7f0000000080), &(0x7f0000000040)='./file2\x00', 0x3200400, &(0x7f0000000c00)=ANY=[], 0x1, 0xa56, &(0x7f0000001c80)="$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") 2.403151716s ago: executing program 3 (id=243): syz_mount_image$exfat(&(0x7f0000001500), &(0x7f0000000180)='./file1\x00', 0x8000, &(0x7f0000000400)=ANY=[@ANYRES64=0x0], 0x1, 0x14fe, &(0x7f0000001580)="$eJzs3QuYjtX6MPB1r7UexjTxNslhWPe6H940WCZJckiSQ5IkSZJTQtIkSUJiyCkJSchxkhyGkBwmJo3z+ZBz0mRLkiSnnML6rqndtve//b/s/e39//y/Pffvutb1rvtaz72etd6beZ/nuebwQ9fhtZrUrt6IiMS/BH57SRFCxAghBgkh8gkhAiFE+fjy8dnjeRSk/GsnYf9ej6Zd6xWwa4nrn7Nx/XM2rn/OxvXP2bj+ORvXP2fj+udsXH/GcrKtMwvfwC3ntn/9+X/Mby/8/P//Q/z5n7Nx/f/TnM7zzxzN9f9Pctl7/89lcP1zNq5/zsb1z9m4/jkb1z9n4/ozlpNd6+fP3K5tu9b//hhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOM5Qzn/BVaCPF7/1qvizHGGGOMMcYYY/8+Pve1XgFjjDHGGGOMMcb+54GQQgktApFL5BYxIo+IFdeJOHG9yCvyiYi4QcSLG0V+cZMoIAqKQqKwSBBFRFFhBAorSISimCguouJmUULcIhJFSVFKlBZOlBFJ4lZRVtwmyonbRXlxh6gg7hQVRSVRWVQRd4mq4m5RTdwjqot7RQ1RU9QStcV9oo64X9QVD4h64kFRXzwkGoiHRUPxiGgkHhWNxWOiiXhcNBVPiGaiuWghWopW/1f5r4ie4lXRS/QWKaKP6CteE/1EfzFADBSDxOtisHhDDBFviqFimBgu3hIjxNtipHhHjBKjxRjxrhgrxonxYoKYKCaJVPGemCzeF1PEB2KqmCamixkiTcwUs8SHYraYI+aKj8Q88bGYLxaIhWKRSBefiMViicgQn4ql4jORKZaJ5WKFWClWidVijVgr1on1YoPYKDaJzWKL2Co+F9vEdrFD7BS7xG6xR3wh9oovxT7xlcgSX/+T+Wf/S343ECBAggQNGnJBLoiBGIiFWIiDOMgLeSECEYiHeMgP+aEAFIBCUAgSIAGKQlFAQCAgKAbFIApRKAElIBESoRSUAgcOkiAJysJtUA7KQXkoDxWgAlSESlAJqkAVqApVoRpUg+pQHWpADagFteA+uA/uh7pQF+pBPagP9aEBNICG0BAaQSNoDI2hCTSBptAUmkEzaAEtoBW0gtbQGtpAG2gH7aA9tIcO0AGSIRk6QkfoBJ2gM3SGLtAFukJX6AbdoTu8Aq/Aq/Aq9IYasg/0hb7QD/rBABgIA+F1GAxvwBvwJgyFYTAc3oK34G0YCWdgFIyGMTAGqspxMB4mAMlJkAqpMBkmwxSYAlNhGkyDGZAGM2EWzILZMAfmwEcwDz6Gj2EBLIBFkA7psBiWQAZkwFI4C5mwDJbDClgJq2AlrIG1sAbWwwZYD5tgE2yBLfA5fA7bYTvshJ2wG3bDF/AFfAlfwlDIgizYD/vhAByAg3AQDsEhOAyH4QgcgaNwFI7BMTgOJ+AknIDTcBrOwFk4B+fgAlyAi3ARLsPl7P/8MpuWWuaSuWSMjJGxMlbGyTiZV+aVERmR8TJe5pf5ZQFZQBaShWSCTJBFZVGJEiXJUBaTxWRURmUJWUImykRZSpaSTjqZJJNkWVlWlpPlZHl5h6wg75QVZSXZ1lWRVWRV2c5Vk/fI6rK6rCFrylqytqwt68g6sq6sK+vJerK+rC8byIdlQ9kHBsCjMrsyTeQwaCqHQzPZXLaQLeXb8KRsLUdCG9lWtpNPy9EwCjrI1i5ZPic7yvHQSb4gJ8CLsoucBF3ly7Kb7C57yFdkT9nG9ZK95VToI/vKGdBP9pcD5EA5G2rK7IrVkm/KoXKYHC7fkovgbTlSviNHydFyjHxXjpXj5Hg5QU6Uk2SqfE9Olu/LKfIDOVVOk9PlDJkmZ8pZ8kM5W86Rc+VHcp78WM6XC+RCuUimy0/kYrlEZshP5VL5mcyUy+RyuUKulKvkarlGrpXr5Hq5QW6Um+RmuUVulZ/LbXK73CF3yl1yt9wjv5B75Zdyn/xKZsmv5X75J3lAfiMPym/lIfmdPCy/l0fkD/Ko/FEekz/J4/KEPClPydPyZ3lGnpXn5Hl5Qf4iL8pL8rL0UihQUimlVaByqdwqRuVRseo6FaeuV3lVPhVRN6h4daPKr25SBVRBVUgVVgmqiCqqjEJlFalQFVPFVVTdrEqoW1SiKqlKqdLKqTIqSd2qyqrbVDl1uyqv7lAV1J2qoqqkKqsq6i5VVd2tqql7VHV1r6qhaqpaqra6T9VR96u66gFVTz2o6quHVAP1sGqoHlGN1KOqsXpMNVGPq6bqCdVMNVctVEvVSj2pWqunVBvVVrVTT6v26hnVQT2rktVzqqN6XnVSL6jO6kXVRb2kuqqXVTfVXfVQl9Rl5VUv1VulqD6qr3pN9VP91QA1UA1Sr6vB6g01RL2phqpharh6S41Qb6uR6h01So1WY9S7aqwap8arCWqimqRS1XtqsnpfTVEfqKlqmpquZqg0NVMN+PNMc/+B/Pf/Tv6QX8++RW1Vn6ttarvaoXaqXWq32qP2qL1qr9qn9qkslaX2q/3qgDqgDqqD6pA6pA6rw+qIOqKOqqPqmDqmjqsT6rw6pU6rn9UZdVadVefVBXVBXfzzeyA0aKmV1jrQuXRuHaPz6Fh9nY7T1+u8Op+O6Bt0vL5R59c36QK6oC6kC+sEXUQX1Uajtpp0qIvp4jqqb9Yl9C06UZfUpXRp7XQZnaRv/Zfzr7a+VrqVbq1b6za6jW6n2+n2ur3uoDvoZJ2sO+qOupPupDvrzrqL7qK76q66m+6me+geuqfuqb0QIkWn6L76Nd1P99cD9EA9SL+uB+vBeogeoofqoXq4Hq5H6BF6pB6pR+lReoweo8fqsXq8Hq8n6ok6VafqyXqynqKn6Kl6qp6up+s0naZn6Vl6tp6t5+q5ep6ep+fr+XqhXqjTdbperBfrDJ2hl+qlOlMv08v0Cr1Cr9Kr9Bq9Rq/T6/QGvUFv0pt0pv79GzR36B16l96l9+g9eq/eq/fpfTpLZ+n9er8+oA/og/qgPqQP6cP6sD6ij+ij+qg+po/p4/q4PqlP6tP6tD6jz+hz+py+oC/oi/qivqwvZ1/2BTKQgQ50kCvIFcQEMUFsEBvEBXFB3iBvEAkiQXwQH+QPbgoKBAWDQkHhICEoEhQNTICBDSgIg2JB8SAa3ByUCG4JEoOSQamgdOCCMkFScGtQNrgtKBfcHpQP7ggqBHcGFYNKQeWgSnBXUDW4O6gW3BNUD+4NagQ1g1pB7eC+oE5wf1A3eCCoFzwY1A8eChoEDwcNg0eCRsGjQePgsaBJ8HjQNHgiaBY0D1oELYNW/9b5vT9T8CnXy/Q2KaaP6WteM/1MfzPADDSDzOtmsHnDDDFvmqFmmBlu3jIjzNtmpHnHjDKjzRjzrhlrxpnxZoKZaCaZVPOemWzeN1PMB2aqmWammxkmzcw0s8yHZraZY+aaj8w887GZbxaYhWaRSTefmMVmickwn5ql5jOTaZaZ5WaFWWlWmdVmjVlr1pn1ZoPZaDaZzWaL2Wo+N9vMdrPD7DS7zG6zx3xh9povzT7zlckyX5v95k/mgPnGHDTfmkPmO3PYfG+OmB/MUfOjOWZ+MsfNCXPSnDKnzc/mjDlrzpnz5oL5xVw0l8xl47Mv7rM/3lGjxlyYC2MwBmMxFuMwDvNiXoxgBOMxHvNjfiyABbAQFsIETMCiWBSzERIWw2IYxSiWwBKYiIlYCkuhQ4dJmIRlsSyWw3JYHstjBayAFbEiVsbs+5G78G68G+/Be/BevBdrYk2sjbWxDtbBulgX62E9rI/1sQE2wIbYEBthI2yMjbEJNsGm2BSbYTNsgS2wFbbC1tga22AbbIftsD22xw7YAZMxGTtiR+yEnbAzdsYu2AW7Ylfsht2wB/bAntgTe2EvTMEU7It9sR/2wwE4AAfhIByMg3EIDsGhOBSH43AcgSNwJI7EUTgax+C7OBbH4XicgBNxEqZiKk7GyTgFp+BUnIrTcTqmYRrOwlk4G2fjXJyL83Aezsf5uBAXYjqm42JcjBmYgUtxKWZiJi7H5bgSV+JqXI1rcS2ux/W4ETfiZtyMW3ErbsNtuAN34C7chXtwD+7FvbgP92EWZuF+3I8H8AAexIN4CA/hYTyMR/AIHsWjeAyP4XE8DifxJJ7G03gGz+A5PIcX8Be8iJfwMnqMsXlsrL3OxtnrbV6bz8bYPL2FEH+JC9nCNsEWsUWtsQVswb+J0VqbaEvaUra0dbaMTbK3/iGuaCvZyraKvctWtXfban+I69j7bV37gK1nH7S17X1/E9e3D9kG9nHb0D5hG9nmtrFtaZvYx21T+4RtZpvbFralbW+fsR3sszbZPmc72uf/EC+2S+xau86utxvsXvulPWfP2yP2B3vB/mJ72d52kH3dDrZv2CH2TTvUDvtDPMa+a8facXa8nWAn2kl/iKfbGTbNzrSz7Id2tp3zhzjdfmLn2Qw73y6wC+2iX+PsNWXYT+1S+5nNtMvscrvCrrSr7Gq75i9rXWE32c12i91jv7Db7Ha7w+60u+zuX+PsfeyzX9ks+7U9bL+3B+w39qA9ag/Z736Ns/d31P5oj9mf7HF7wp60p+xp+7M9Y8/+uv/svZ+yl+xl660gIEmKNAWUi3JTDOWhWLqO4uh6ykv5KEI3UDzdSPnpJipABakQFaYEKkJFyRCSJaKQilFxitLNVIJuoUQqSaWoNDkqQ0l0K5Wl26gc3U7l6Q6qQHdSRapElakK3UVV6W6qRvdQdbqXalBNqkW16T6qQ/dTXXqA6tGDVJ8eogb0MDWkR6gRPUqN6TFqQo9TU3qCmlFzakEtqRU9Sa3pKWpDbakdPU3t6RnqQM9SMj1HHel56kQvUGd6kbrQS9SVXqZu1J160CvUk16lXtSbUqgP9aXXqB/1pwE0kAbR6zSY3qAh9CYNpWE0nN6iEfQ2jaR3aBSNpjH0Lo2lcTSeJtBEmkSp9B5NpvdpCn1AU2kaTacZlEYzaRZ9SLNpDs2lj2gefUzzaQEtpEWUTp/QYlpCGfQpLaXPKJOW0XJaQStpFa2mNbSW1tF62kAbaRNtpi20lT6nbbSddtBO2kW7aQ99QXvpS9pHX1EWfU376U90gL6hg/QtHaLv6DB9T0foBzpKP9Ix+omO0wk6SafoNP1MZ+gsnaPzdIF+oYt0iS6TJxFCKEMV6jAIc4W5w5gwTxgbXhfGhdeHecN8YSS8IYwPbwzzhzeFBcKCYaGwcJgQFgmLhibE0IYUhmGxsHgYDW8OS4S3hIlhybBUWDp0YZkwKbw1LBveFpYLbw/Lh3eEFcI7w4phpbByWCW8K6wa3h1WC+8Jq4f3hjXCmmGtsHZ4X1gnvD+sGz4Q1gsfDMuFD4UNwofDhuEjYaPw0bBx+FjYJHw8bBo+ETYLm4ctwpZhq/DJsHX4VNgmbBu2C58O24fPhB3CZ8Pk8LmwY/j8VcdTwj5h3/C18LXQ+wfUwuiiaHr0k+ji6JJoRvTT6NLoZ9HM6LLo8uiK6Mroqujq6Jro2ui66ProhujG6Kbo5uiWqPe1cwsHTjrltAtcLpfbxbg8LtZd5+Lc9S6vy+ci7gYX7250+d1NroAr6Aq5wi7BFXFFnXHorCMXumKuuIu6m10Jd4tLdCVdKVfaOVfGJbmWrpVr5Vq7p1wb19a1c0+7p90z7hn3rHvWPec6uuddJ/eC6+xedF3cS+4l97Lr5rq7Hu4V19O96nq53i7Fpbi+rq/r5/q5AW6AG+QGucFusBvihrihbqgb7oa7EW6EG+lGulFulBvjxrixbqwb78a7iW6iS3WpbrKb7Ka4KW6qm+qmu+kuzaW5WW6Wm+1mu7lurpvn5rn5br5b6Ba6dJfuFrvFLsNluKVuqct0mW65W+5WupVutVvt1rq1br1b7za6jW6z2+y2uq1um9vmdrgdbpfb5fa4PW6v2+v2uX0uy2W5/W6/O+AOuIPuW3fIfecOu+/dEfeDO+p+dMfcT+64O+FOulPutPvZnXFn3Tl33l1wv7iL7pK77LxLjbwXmRx5PzIl8kFkamRaZHpkRiQtMjMyK/JhZHZkTmRu5KPIvMjHkfmRBZGFkUWR9MgnkcWRJZGMyKeRpZHPIpmRZZHlkRWRlZFVEe+LbAt9MV/cR/3NvoS/xSf6kr6UL+2dL+OT/K2+rL/Nl/O3+/L+Dl/B3+kr+kq+sn/CN/PNfQvf0rfyT/rW/infxrf17fzTvr1/xnfwz/pk/5zv6J/3nfwLvrN/0XfxL/mu/mXfzXf3Pfwrvqd/1ffyvX2K7+P7+td8P9/fD/AD/SD/uh/s3/BD/Jt+qB/mh/u3/Aj/th/p3/Gj/Gg/xr/rx/pxfryf4Cf6ST7Vv+cn+/f9FP+Bn+qn+el+hk/zM/0s/6Gf7ef4uf4jP89/7Of7BX6hX+TT/Sd+sV/iM/ynfqn/zGf6ZX65X+FX+lV+tV/j1/p1fr3f4Df6TX6z3+K3+s/9Nr/d7/A7/S6/2+/xX/i9/ku/z3/ls/zXfr//kz/gv/EH/bf+kP/OH/bf+yP+B3/U/+iP+Z/8cX/Cn/Sn/Gn/sz/jz/pz/ry/4H/xF/0lf5l/Zo0xxhhj7B+irjLe57/JkX/u9xVCXL+98KH/Or6xwG/9/rkT2keEEM/17vro761GjZSUlD8fm6lEUHyBECJyJT+XuBIvE+3EMyJZtBVl/zIe81fn6i+7X6CrzB+9Q4jYv8rJzv89vjL/bX93//3luHlXnX+BEInFr+TkEVfiK/OX+2/mL9j6KvPn+SZViDZ/lRMnrsRX5k8ST4nnRfLfHMkYY4wxxhhjjP2mv6zc+Wr3t9n35wn6Sk5ucSX+e/fnjDHGGGOMMcYY+9/lxe49nn0yObltZ+78T3V8vt/e6v8t6+EOd/6BzrX+ysQYY4wxxhj7d7ty0X+tV8IYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjOVc/y9+ndjv57ra3xpkjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHG/lP9nwAAAP//sjE7Eg==") r0 = open(0x0, 0x60142, 0x0) r1 = open(&(0x7f0000007f80)='./bus\x00', 0x145142, 0x0) ftruncate(r1, 0x96ef) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpu.stat\x00', 0x275a, 0x0) write$UHID_INPUT(r2, &(0x7f0000000940)={0x8, {"85f080a4933d55266e07e799aa0cc421388242df2a3c6b631b65b1c061edd2aa108c3528fe9b0bb3a53ab1200f5d01a68a4acdec8fee09648222f908c1fedc3000342e6139de28366c13509306d00ebcc67497181ac916db98af9d366b76e427d9ab5bb68095f0fb246df32b8af0783653136f8a04c03690312125c7ded6a24fda8685340c575ead69519e3583f89d467ec232d6a1ffd0463ba4ea3cbae5dae6654b5547b5458f02ac307729e57b09e134f68be44f88d72517b230b066f6315b5fb80206397bbff8cbc2a36e01c2e7b3aadb32bd3dd5288a69a991d9c674717e3abba7167280b2db3b1b8502afa4f3f296c532510c9d2dd79bb5eeb25adb5edddbdd069c09d14d15c2e7e1e2bd6c108fab3591bb22e97d6992236d2273c8bb95536f7118d007965008b125c7daac2814e6bbe1adbfa3572ad0b7ad5c26c8014118d8374ca9f285779dfee7715a403908146a74de61b3853914c89f444c12e7a38bdd46c4ed36eb806ea598f44d1dec9eff9e2476f43802211f0762b66673b45d236b2391ce322e30fb9c69fe0d514dc1f8b6e3979c1205fd5224b07d18a44fec4f6f1a6f65158bb6adcc295bf2dd7dea107f59d7e03c61fe5822292e45968956b931bdc4d6445ff1631e0b98e4b4448774dd4b9cd53a45896fdb3f03702778741ae2b45a25bf9a23fc02fb97a630f132bf9def6c6d4a7baeb62972f1a814f6f2377bcfc78e2e86368c138510a04cedf7175af8c2034fae7413e3ace8c71ab9a0af1ca7042011a6ed028e205648535dabf3b2f85196ae18d36b839e3cd54ae4933ad529888fdac7bb8a70c72bc0fc81ba06506f2d5bc7686e219bbe5283959cbef9950e071cb6d9f341fc624a5110341f26cebd7100599a06e61f66fae120c7fc2b34c6221200eba75bd1277114671a3fa8f058b27fd897b052f4a52afcea814df526181c75c4497210a2b8b74e26601561e78735387cf123654b0295d1d60556956b36d96dd038866c4b4db31ebdcddd4829bbc2850cd4901389e6ea6e86041e0efa1158f334e7afda0e11c2fb0e6df6364cb95659f506d5c7e63fb67c8116577d15e4a4b1fc4c27de2e52586cb1f52be9c3601f5066549de8bdc3ec07d1a84caf1961323ec2487a37b751aeabafcd647ce2dae5d9499c0f969467e6cabad198669ac96bd1488954eff0854ee0c83d7b596d273625bdb16270782321071fda5d980ded78ffa9dc2b56037d7cbf942547f48a5131f1991f6c17ae1ed5120ca6878f98e68e7997a9a2b70be640a70a34adb80de286c6692abb5f092e4e3a15a83217e03d02a4054f34af3a65ff6b36f395b76a0579cffafd5d3bb0e704c935caecf3a7ab756c23fd60c9fe3f4fb2be7504f5bae22b116ff1588dcf02b327d31bf0488dba8af5b33ccf2d7d87f43bbc48fcd4f191ad6af9313ad38b8b29674bfabd6651bc1f6ce5abb4a2f1413194f96b26d7d6edc4e013fba549075c97eef508af5ca7873664b058b7bcf455a8a04b591d29fab6366c844bb75576bac2d52323e747303d00a5736c9812922b0e17bcec9135550736b54cf6407d61e22e62d7bb75f62935b665acf33e75f688c36ef416f1b890d0f0c8ad1df00e02ec45967834d5649c8e7143978622fa3704672970b7993a87e97d3d926a14265647bc8b8c9e6f83e29572608d24b42c2635ef4abbd0af83860e99c90d7471cf6e8ce99507f5ec2bc572212fa9ee3f5a9dfa3815fe55f0bbb119acce062ae37f2ff921707abba139bccdf42bfd174d29b540161b4113c4e1a13f3a628c638ec4d3a884dfbc093e23ec0d0671b46b41dc8b42d950c8615ba5ee87f49b5d0910ffa4871207995001920db05a95199967f097ba7b55bbd271d818690c4238406b40a3dfc42fa56a67173b53a96b543326c56738b6d043195934018696f5ab49347e5148a78f2d1369a71afab8330273d46ecfba4ee05802a5385649851db949dbfb39e290941641c50b1ac20fb3102754a760b097f464ddb0b83f8168badfa71db6621dcf22fb081e3403f3bac5c7e65905aca52885c807f8ddab18bb2f12ef952c50483c0e251968bc70ff0d42a638ca744dea4c7ebb4fea777cf663bb4f1505ed79730c45bc86e488a13f924377a8e2ee6670a02ca52874ae1c42a35d55b9765757047b2cc3742aa51fa3e43fb2c113c92ad213bad252c1a82966dd016f12a7f1c3900c0f1ab455035163f31899bdd30f3ff43ad17d9e45bb7438c1c986712736f24be14f71ab1bfe92a25ec07f086ee8c7971b8077a13e58a8e8bea39c8e06b251909f02cb0080abf020f27ca160eb26c082dda1fa54ea4094dfdbcb2fa7bddccb67a844e8075f4cc08dad35757006d051e183dced336bc0c2502f93ffc87dca622286ba174c24e1f53f27dc2777baafe170348b0e8d3e743b3aa906bc0764bbe7da08ff403efe2212627d672250658bb513b7312517d1f88c61c7ba5f9647cd619281c5b390b48606ee39fb4171103df2e09d7cfd56c06c721f7c24ad8cce383623fc2dcb15ac56438ea331820ae59c8c474e36fc73f7b1b3b86df1b42490815513681aafbf7e871b4b9686efae6c45ecfca60a640a6f071dfd31f9437c3d03086164b48c1ed802986864bfe0d49bdd7709662262368dbc3ecc05eb240ecc41904c76d78ab5c52b66af5a720fdd6a92f52be0676427a56e32e5bc5085b25f90add28a76f2fce6f8f0ef74f4659698549646bd63175adf77b5cdcfe676e1b1a9af15102946554ba6136cbc83c6268ee40318f3c9d4718025688b35d2265bf60bf889ff629f7834586ef46eab7a9176337536bb6001e676546b987f36b1fe4b9f6e46a8ce73eb22ebbb9c14d8e2b43ea77ef887e5a26448f4086fa819a25e27725ac10298851c8bc45f2ce4430b07917ade5ea8c434c3f2576effbeb521173736e5c9557450643068b0c0fb132a7e99de6ca292246a9937fa7d7e06e59cf59ce5b9f842629049931146af40a8a1256ba373a88d09dc00cdf4453cc6ba78572bf3e1f2352a978cdbad60220cb8ac37d7f614a306492a4b5eee9244b0ca84b6cf2e23013bfb1cb92bf6d126fe550e58c19f84e7a4081437b75b31b2b9fb658dcd8ba077962e0f3359721a148d4fefe5c97941ca9688cb85adf38fd10f5811cdd8e074a21bbfc9541c71465b08d7321281b68ed52bfab789b9c83849c09d52376d419b1e7ba367603236e119cdf4a7b7cf9d81f2229601deace53cea2f14a05f7fa0ca04b39e31c6453e332f4bd0915c0e09e28f4d1125c390c6ff0833a04b6fc37855e65de90333e505b9eb66e00686a3ed499cfb7b8b215dbdc9787b5baa724cfa71ee6745b41e203de8b7794757ac328ec5567540b951b50530c3d4ee34705ea1c66fd6591e88561083e86d48c45ef3b83a3029319d8f3d8e65ce14c1dc3cb92d0a7dbeb609a8d2793928caa079f0fbbb2bc90b9f058cc048f4032041d14c5bca00e99b3027ec3a50c4957199cf016a4594069af8659df0973f20ffb15dbc265ac5b8a2203e90b114a3e9441e357c60ce0b550a7fe66fc34f5702ac8e8992a22e89194c1df69e81a9b7ad3d2634ea8c0388588192fd47d8e803b10044d558617fb2921b69eb4d85c051f86ef63a2f4382b9becd870fb2ecadca6902712b88680792e2f2ec89591cfebb6db3ad31c2a339af10465fcf7988519d382218df52261234f26a6f66ad0d1859de505d0fe819caf2f8d30aa9fd1228ac91d11ca67f1f8d50c8eefa5c441514321507dff6c6ea3cff6f340a1c11e0c40f419e8e60fc94d8828fa47a96cdf7ee4f61e23f40751b25cf9ca1295041a350f83f0e679515d6b4b46e2c9ce8999e07f835abc1663cefcf728df37831f4e17f8c8a4feaf1fbf44c38c9313284404a50ba4cd8abe835b33bfecb02cd6c9d7f435853b4c8d505ab83cf46512739116694765658bae64b3127152d216055aef9b25c70a8a3b302752d7b1e8791c657b9f3fc9001ef299fd1a349491ae6ee9940149160507fc4130fb825d47d97dc2c243209d2403583ac3ef6ddbedcaa76432255487c0a06e59e043e572ab3aec002af6a6b6a2dc9cfaeefa70557886c4d12924a0388f2f1bc8e89e4cfa69705d1ef3c4658f8616278b588011d9dd914beec0b151d65b6524fba3e3f235d58373e021699b07622a51504eade747e0b2f9cf38bc167cabc8cb18c708d1337e25648707e8c0872876514c7a49c0b2aaee5ed9e9ecfcbcc23e032c4deb63e48e7120188056468fad31448e4b42e7d62fbcfc1c2cfb01fcf0db5e8a162bdb9bd820c763f17b96c23f32db9d1c1d74ddbe657b4f9595a9796982a0742153111b15e484d8ffebe47ce0a78a41e470a341616ec2eb6eef813fb415fab50fa965bec6a5977a0ade4fed67f86fc24e11b0e2f5364079f7c7c35b560cac726dbc80f29dbd248f7ecda0286a23ef172a28c96d9bdb1f598eab31c6baf0321312da23920c074b9d2d2e442717f2c21001142a39c2da6b8bd9d06b05a6a8deae1bd1be4108a636ddbebc682d113e715f2f3ee506abc28b1c654b3d2d28e02f73b171ed0deed71dda90ce4a0b728cc75cb576385e7418b545b992b1dd98e2ee53355f464f9250a2a03b3d1e4d2ac1aa71d01de2573530324e14d15a507883411ddbd37be21dc929db9b11f11010e4d2a04c7325a5ae6d24d19900ff97a8a89438f8676457a78cff05201528f4358fe67f61288bf042a8f3c2e0f8b4997b8fb74996b80d465489b2d7807a945eba72a945e8cf8625dbad6f6f6e30537b29e558ca8a8b0625f578c766d34f2d28d704715f94df1f6318a308042aa494baa295640679f1eab1e6a8308af8ce6441d5ad8a2f3d477eb5307af0dfae6644493f1434030b8361621340ad3dcefa6d8f090ed3929d89ad9c0ba01a6903033428dd8f98619304b1803187d2a6130bf1e009b5eb0e7e21c75594b3b8470f3106c92a9e55bfeb026091ced127a90a1f1247f3c07e36d3572923e0de3f73518d0369a25fcd4e65d243b7eab91063a7bfd8bc8ac9e39fbbb32b5c9517886287a18eacd8dbfda9b91db693cb12e42cba5988280e09e51e72b91a0f360656d8f21cc1eb3248ac345ad51d1a6172b18419277851dab01e028c7e8e2cf34095efd28267852a08fccf61c45b5e46930160daf50282be058274e7ff58c48b60b86d0c8cc886ab8778a2a2b5fa2557ad7bf7f01f2175523ce758871d334c20a9839f7a89fe2867c06289c8a2f6456ac7e4fbadee53ac41aee68214bc76669853baa4f58255b39ba581414f2e8c4b49303f8936a33bae5cbc96b29a5c724d5b50e1614144c2acd03bd90de891c3d36ce040d57543682ecbfcae66c4153c337c3a5d01896524c8e0c27e9a08919821ca27bbfe3fc9ba24a823aeec8d4ad8ef8a65c585bee4dcf1acaa3da501a8c11a23b2e22920c1ad0129a038b31fe16c2abc80589dbf7c37211afc5d1a6db908bc5fe8a692060069fcbcdcba7c523d3c424aa3b0c6556387e0e51bcde9e5f850abf62d2c2101c3a2786a0cb94932877a09cb6b64aa61da8cab3b423e7adc4c4700418a65e87225710e1691f6d9cb2eb63cce5b605ce0a4a89cf519767e00845397c5e381141a0ed8a89b01064b495ec8d1e2da37433bf1597d919a69610d2ad26bdf6fca8de422bb2cb80d0516206e8194ee51445a3dcb5dee33c0c310b4751e68e58bebda2fb586985a5a5b06456756f44e6dbfef4bb99ca732f00fb9ea35775f7419681bfbe6f43dc7c4650c13b63d93c1d490bf0173f287a4309531f13ecb1a775d0bd881a", 0x1000}}, 0x1006) read$FUSE(r0, &(0x7f0000004a40)={0x2020}, 0x2020) sendfile(r0, r1, 0x0, 0x1000000201005) 2.402641099s ago: executing program 4 (id=244): arch_prctl$ARCH_SHSTK_STATUS(0x1004, 0xffffffffffffffff) 2.233260885s ago: executing program 1 (id=245): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000740)=@newlink={0x40, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @sit={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_IPTUN_REMOTE={0x8, 0x3, @remote}, @IFLA_IPTUN_6RD_RELAY_PREFIX={0x8}]}}}]}, 0x40}}, 0x0) 2.019997093s ago: executing program 4 (id=246): prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000100), 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0xc0505405, &(0x7f0000000140)={{0x1}}) 1.337070196s ago: executing program 0 (id=247): openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) socket$nl_route(0x10, 0x3, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'syz_tun\x00', 0x0}) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8}, 0x48) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) close_range(r0, r3, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r4}, &(0x7f0000000240), &(0x7f00000003c0)=r6}, 0x20) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r5, r2, 0x25, 0x2, @val=@tcx}, 0x40) syz_emit_ethernet(0x22, &(0x7f00000005c0)=ANY=[], 0x0) 1.325614483s ago: executing program 3 (id=248): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) preadv(0xffffffffffffffff, &(0x7f00000031c0)=[{&(0x7f0000005e40)=""/4102, 0x1006}], 0x1, 0x0, 0x0) add_key(0x0, &(0x7f0000000140)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff) r3 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETMODE(r3, 0x4b3a, 0x1) ioctl$TCXONC(r3, 0x4b3a, 0x0) 1.308198863s ago: executing program 1 (id=249): r0 = socket$inet6(0xa, 0x6, 0x0) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vlan1\x00', 0x0}) setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000040)={r2, 0x2, 0x6, @dev}, 0x10) close_range(r0, 0xffffffffffffffff, 0x0) 1.307349488s ago: executing program 2 (id=250): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) socket$packet(0x11, 0x0, 0x300) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x5) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={0xffffffffffffffff}) recvmmsg(r3, 0x0, 0x0, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r4 = syz_open_dev$vcsa(&(0x7f0000000040), 0x1, 0x42) writev(r4, &(0x7f0000000580)=[{&(0x7f0000000100)="5b6f1998", 0x3}, {&(0x7f00000001c0)='d', 0x3000}], 0x2) 1.252132812s ago: executing program 4 (id=251): r0 = socket$inet6(0xa, 0x80002, 0x0) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f0000000040)=0xffffffff, 0x4) 1.186209031s ago: executing program 1 (id=252): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0) write$cgroup_int(r0, &(0x7f0000000000), 0xffd2) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev}, 0x10) setsockopt$sock_int(r2, 0x1, 0x6, &(0x7f0000000140)=0x32, 0x4) connect$inet(r2, &(0x7f0000000280)={0x2, 0x0, @broadcast}, 0x10) r3 = socket$kcm(0x10, 0x2, 0x0) sendmsg$inet(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000100)="5c00000014006b05c84e21000af32c6e021875f802000000400002007a17d30360bc24eab556a705251e6182949a36c23d3b48dfd8cdbf9367b498fa51f60a64c9f4d4938037e786a6d0bdd7004cb6c0504bb9189d9193e9bd1c1b78", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0) sendfile(r2, r1, 0x0, 0x100000002) 1.051064027s ago: executing program 4 (id=253): mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0) r1 = openat$cgroup_devices(r0, &(0x7f0000000000)='devices.deny\x00', 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) write$cgroup_devices(r1, &(0x7f0000000140)=ANY=[@ANYBLOB="63a02a3a34097772"], 0xa) 0s ago: executing program 2 (id=254): mkdir(&(0x7f0000000080)='./file1\x00', 0x0) mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0]) mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400)) syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) chdir(&(0x7f0000000080)='./file1\x00') mkdir(&(0x7f0000000440)='./file0\x00', 0x0) r1 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0) socket$netlink(0x10, 0x3, 0x9) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x29, r1}, './file0\x00'}) kernel console output (not intermixed with test programs): 0x0405 tx timeout [ 126.695671][ T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 126.695699][ T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 126.951212][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 126.951244][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 127.107642][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 127.107670][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 128.597645][ T5719] cgroup: noprefix used incorrectly [ 129.828157][ T5737] netlink: 8 bytes leftover after parsing attributes in process `syz.1.95'. [ 129.913222][ T5742] loop2: detected capacity change from 0 to 64 [ 130.187660][ T5102] Bluetooth: hci4: ACL packet for unknown connection handle 0 [ 133.231789][ T1246] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.238673][ T1246] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.422149][ T5147] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 133.514548][ T5795] netlink: 4 bytes leftover after parsing attributes in process `syz.2.108'. [ 133.623251][ T5147] usb 2-1: Using ep0 maxpacket: 16 [ 133.671858][ T5147] usb 2-1: New USB device found, idVendor=09c0, idProduct=0201, bcdDevice= a.a4 [ 133.726149][ T5147] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 133.790945][ T5147] usb 2-1: Product: syz [ 133.821965][ T5147] usb 2-1: Manufacturer: syz [ 133.842611][ T5147] usb 2-1: SerialNumber: syz [ 134.380341][ T5147] usb 2-1: config 0 descriptor?? [ 134.422555][ T5147] dvb-usb: found a 'Genpix 8PSK-to-USB2 Rev.1 DVB-S receiver' in warm state. [ 134.771640][ T5814] input: syz0 as /devices/virtual/input/input11 [ 134.818189][ T5815] loop2: detected capacity change from 0 to 256 [ 134.868797][ T5817] cgroup: noprefix used incorrectly [ 135.098428][ T5815] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 135.164342][ T5821] netlink: 12 bytes leftover after parsing attributes in process `syz.1.104'. [ 135.918885][ T5829] openvswitch: netlink: IP tunnel dst address not specified [ 136.591592][ T5147] gp8psk: usb in 128 operation failed. [ 136.620409][ T5147] gp8psk: usb in 137 operation failed. [ 136.650411][ T5147] dvb-usb: Genpix 8PSK-to-USB2 Rev.1 DVB-S receiver error while loading driver (-22) [ 136.688608][ T5147] dvb_usb_gp8psk 2-1:0.0: probe with driver dvb_usb_gp8psk failed with error -22 [ 136.743817][ T5842] loop2: detected capacity change from 0 to 1024 [ 136.799533][ T5842] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 136.938737][ T5842] EXT4-fs (loop2): stripe (10) is not aligned with cluster size (16), stripe is disabled [ 137.796446][ T5104] usb 2-1: USB disconnect, device number 2 [ 137.880326][ T5842] EXT4-fs (loop2): can't mount with data=, fs mounted w/o journal [ 139.723846][ T5856] netlink: 4 bytes leftover after parsing attributes in process `syz.1.120'. [ 141.318587][ T5885] openvswitch: netlink: IP tunnel dst address not specified [ 141.690145][ T5890] cgroup: noprefix used incorrectly [ 142.310307][ T5215] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 142.318226][ T5149] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 142.375476][ T1041] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 142.620575][ T5149] usb 4-1: Using ep0 maxpacket: 8 [ 142.730683][ T5149] usb 4-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0 [ 142.908291][ T5149] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 142.955549][ T5149] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 143.013034][ T5149] usb 4-1: Product: syz [ 143.043547][ T5149] usb 4-1: SerialNumber: syz [ 143.125163][ T5149] cdc_ether 4-1:1.0: probe with driver cdc_ether failed with error -22 [ 143.136797][ T1041] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 143.244623][ T5215] usb 2-1: Using ep0 maxpacket: 16 [ 143.254998][ T5215] usb 2-1: New USB device found, idVendor=09c0, idProduct=0201, bcdDevice= a.a4 [ 143.279193][ T5215] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 143.299894][ T5215] usb 2-1: Product: syz [ 143.352284][ T5215] usb 2-1: Manufacturer: syz [ 143.356977][ T5215] usb 2-1: SerialNumber: syz [ 143.423981][ T1041] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 143.474244][ T5215] usb 2-1: config 0 descriptor?? [ 143.511602][ T5215] dvb-usb: found a 'Genpix 8PSK-to-USB2 Rev.1 DVB-S receiver' in warm state. [ 144.117994][ T25] usb 4-1: USB disconnect, device number 5 [ 144.327205][ T1041] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 144.371834][ T5924] input: syz0 as /devices/virtual/input/input13 [ 144.866743][ T5928] loop4: detected capacity change from 0 to 40427 [ 144.896057][ T5928] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 144.904169][ T5928] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 145.017894][ T5928] F2FS-fs (loop4): Found nat_bits in checkpoint [ 145.391836][ T5928] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 145.398992][ T5928] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 146.083142][ T5947] netlink: 'syz.0.139': attribute type 10 has an invalid length. [ 146.339317][ T5215] gp8psk: usb in 128 operation failed. [ 146.405575][ T5215] gp8psk: usb in 137 operation failed. [ 151.060230][ C1] DEBUG: waiting rtnl_mutex for 549 jiffies. [ 151.066765][ C1] task:syz.1.130 state:D stack:26800 pid:5924 tgid:5897 ppid:5363 flags:0x00004004 [ 151.077102][ C1] Call Trace: [ 151.080490][ C1] [ 151.083525][ C1] __schedule+0x1800/0x4a60 [ 151.088210][ C1] ? __pfx___schedule+0x10/0x10 [ 151.093208][ C1] ? __pfx_lock_release+0x10/0x10 [ 151.098351][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 151.103980][ C1] ? schedule+0x90/0x320 [ 151.108343][ C1] schedule+0x14b/0x320 [ 151.112603][ C1] schedule_preempt_disabled+0x13/0x30 [ 151.118077][ C1] __mutex_lock+0x6a4/0xd70 [ 151.125248][ C1] ? __mutex_lock+0x527/0xd70 [ 151.129945][ C1] ? rtnetlink_rcv_msg+0x847/0x1180 [ 151.135210][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 151.140292][ C1] ? get_rtnl_holder+0x144/0x190 [ 151.145365][ C1] rtnetlink_rcv_msg+0x847/0x1180 [ 151.150450][ C1] ? rtnetlink_rcv_msg+0x208/0x1180 [ 151.155695][ C1] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 151.161215][ C1] ? __local_bh_enable_ip+0x168/0x200 [ 151.166624][ C1] ? lockdep_hardirqs_on+0x99/0x150 [ 151.171868][ C1] ? __local_bh_enable_ip+0x168/0x200 [ 151.177251][ C1] ? dev_hard_start_xmit+0x773/0x7e0 [ 151.182667][ C1] ? __dev_queue_xmit+0x2da/0x3e90 [ 151.187820][ C1] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 151.193616][ C1] ? __dev_queue_xmit+0x2da/0x3e90 [ 151.198757][ C1] ? __dev_queue_xmit+0x1763/0x3e90 [ 151.204118][ C1] ? kasan_save_track+0x51/0x80 [ 151.209014][ C1] ? do_syscall_64+0xf3/0x230 [ 151.213786][ C1] ? __dev_queue_xmit+0x2da/0x3e90 [ 151.218929][ C1] ? __pfx___dev_queue_xmit+0x10/0x10 [ 151.224386][ C1] ? ref_tracker_free+0x643/0x7e0 [ 151.229442][ C1] netlink_rcv_skb+0x1e3/0x430 [ 151.234267][ C1] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 151.239789][ C1] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 151.245225][ C1] ? netlink_deliver_tap+0x2e/0x1b0 [ 151.250445][ C1] netlink_unicast+0x7f0/0x990 [ 151.255228][ C1] ? __pfx_netlink_unicast+0x10/0x10 [ 151.260559][ C1] ? __virt_addr_valid+0x183/0x530 [ 151.265680][ C1] ? __check_object_size+0x49c/0x900 [ 151.270987][ C1] ? bpf_lsm_netlink_send+0x9/0x10 [ 151.276114][ C1] netlink_sendmsg+0x8e4/0xcb0 [ 151.280908][ C1] ? __pfx_netlink_sendmsg+0x10/0x10 [ 151.286215][ C1] ? __import_iovec+0x536/0x820 [ 151.291092][ C1] ? aa_sock_msg_perm+0x91/0x160 [ 151.296066][ C1] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 151.301399][ C1] ? security_socket_sendmsg+0x87/0xb0 [ 151.306956][ C1] ? __pfx_netlink_sendmsg+0x10/0x10 [ 151.312278][ C1] __sock_sendmsg+0x221/0x270 [ 151.316993][ C1] ____sys_sendmsg+0x525/0x7d0 [ 151.321792][ C1] ? __pfx_____sys_sendmsg+0x10/0x10 [ 151.327107][ C1] __sys_sendmsg+0x2b0/0x3a0 [ 151.331747][ C1] ? __pfx___sys_sendmsg+0x10/0x10 [ 151.336891][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 151.343242][ C1] ? do_syscall_64+0x100/0x230 [ 151.348009][ C1] ? do_syscall_64+0xb6/0x230 [ 151.352795][ C1] do_syscall_64+0xf3/0x230 [ 151.357298][ C1] ? clear_bhb_loop+0x35/0x90 [ 151.362001][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 151.368019][ C1] RIP: 0033:0x7fb734d75bd9 [ 151.372452][ C1] RSP: 002b:00007fb735bbc048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 151.380896][ C1] RAX: ffffffffffffffda RBX: 00007fb734f04038 RCX: 00007fb734d75bd9 [ 151.388955][ C1] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 000000000000000c [ 151.396953][ C1] RBP: 00007fb734de4a98 R08: 0000000000000000 R09: 0000000000000000 [ 151.404946][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 151.412966][ C1] R13: 000000000000006e R14: 00007fb734f04038 R15: 00007ffddb74df68 [ 151.420991][ C1] [ 151.424014][ C1] DEBUG: waiting rtnl_mutex for 580 jiffies. [ 151.429987][ C1] task:syz.1.130 state:D stack:24400 pid:5933 tgid:5897 ppid:5363 flags:0x00004004 [ 151.440192][ C1] Call Trace: [ 151.443485][ C1] [ 151.446416][ C1] __schedule+0x1800/0x4a60 [ 151.450963][ C1] ? __pfx___schedule+0x10/0x10 [ 151.455840][ C1] ? __pfx_lock_release+0x10/0x10 [ 151.460908][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 151.466402][ C1] ? schedule+0x90/0x320 [ 151.470667][ C1] schedule+0x14b/0x320 [ 151.474830][ C1] schedule_preempt_disabled+0x13/0x30 [ 151.480335][ C1] __mutex_lock+0x6a4/0xd70 [ 151.484867][ C1] ? __mutex_lock+0x527/0xd70 [ 151.489546][ C1] ? nl80211_dump_interface+0x103/0x760 [ 151.495115][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 151.500142][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 151.506181][ C1] ? get_rtnl_holder+0x144/0x190 [ 151.511139][ C1] nl80211_dump_interface+0x103/0x760 [ 151.516541][ C1] ? irqentry_exit+0x63/0x90 [ 151.521182][ C1] ? lockdep_hardirqs_on+0x99/0x150 [ 151.526388][ C1] ? __pfx_nl80211_dump_interface+0x10/0x10 [ 151.532307][ C1] ? __pfx_nl80211_dump_interface+0x10/0x10 [ 151.538225][ C1] ? genl_dumpit+0xbe/0x1a0 [ 151.542775][ C1] genl_dumpit+0x107/0x1a0 [ 151.547201][ C1] netlink_dump+0x647/0xd80 [ 151.551742][ C1] ? __pfx_netlink_dump+0x10/0x10 [ 151.556783][ C1] ? __asan_memset+0x23/0x50 [ 151.561394][ C1] ? genl_start+0x4a8/0x6d0 [ 151.565905][ C1] __netlink_dump_start+0x59f/0x780 [ 151.571139][ C1] genl_rcv_msg+0x88c/0xec0 [ 151.575648][ C1] ? mark_lock+0x9a/0x360 [ 151.579993][ C1] ? __pfx_genl_rcv_msg+0x10/0x10 [ 151.585056][ C1] ? _raw_spin_unlock_irqrestore+0x8f/0x140 [ 151.590997][ C1] ? __pfx_genl_start+0x10/0x10 [ 151.595852][ C1] ? __pfx_genl_dumpit+0x10/0x10 [ 151.600811][ C1] ? __pfx_genl_done+0x10/0x10 [ 151.605590][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 151.610655][ C1] ? __pfx_nl80211_dump_interface+0x10/0x10 [ 151.616556][ C1] ? __pfx___might_resched+0x10/0x10 [ 151.621915][ C1] netlink_rcv_skb+0x1e3/0x430 [ 151.626712][ C1] ? __pfx_genl_rcv_msg+0x10/0x10 [ 151.631860][ C1] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 151.637193][ C1] ? __netlink_deliver_tap+0x77e/0x7c0 [ 151.642685][ C1] genl_rcv+0x28/0x40 [ 151.646699][ C1] netlink_unicast+0x7f0/0x990 [ 151.651555][ C1] ? __pfx_netlink_unicast+0x10/0x10 [ 151.656871][ C1] ? __virt_addr_valid+0x183/0x530 [ 151.662333][ C1] ? __check_object_size+0x49c/0x900 [ 151.667704][ C1] ? bpf_lsm_netlink_send+0x9/0x10 [ 151.673016][ C1] netlink_sendmsg+0x8e4/0xcb0 [ 151.677854][ C1] ? __pfx_netlink_sendmsg+0x10/0x10 [ 151.683193][ C1] ? __import_iovec+0x536/0x820 [ 151.688086][ C1] ? aa_sock_msg_perm+0x91/0x160 [ 151.693086][ C1] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 151.698408][ C1] ? security_socket_sendmsg+0x87/0xb0 [ 151.704023][ C1] ? __pfx_netlink_sendmsg+0x10/0x10 [ 151.709316][ C1] __sock_sendmsg+0x221/0x270 [ 151.714054][ C1] ____sys_sendmsg+0x525/0x7d0 [ 151.718835][ C1] ? __pfx_____sys_sendmsg+0x10/0x10 [ 151.724170][ C1] __sys_sendmsg+0x2b0/0x3a0 [ 151.728860][ C1] ? __pfx___sys_sendmsg+0x10/0x10 [ 151.734044][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 151.740396][ C1] ? do_syscall_64+0x100/0x230 [ 151.745165][ C1] ? do_syscall_64+0xb6/0x230 [ 151.749841][ C1] do_syscall_64+0xf3/0x230 [ 151.754394][ C1] ? clear_bhb_loop+0x35/0x90 [ 151.759180][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 151.765136][ C1] RIP: 0033:0x7fb734d75bd9 [ 151.769660][ C1] RSP: 002b:00007fb735b7a048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 151.778148][ C1] RAX: ffffffffffffffda RBX: 00007fb734f041e8 RCX: 00007fb734d75bd9 [ 151.786163][ C1] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000006 [ 151.794170][ C1] RBP: 00007fb734de4a98 R08: 0000000000000000 R09: 0000000000000000 [ 151.802179][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 151.810184][ C1] R13: 000000000000006e R14: 00007fb734f041e8 R15: 00007ffddb74df68 [ 151.818193][ C1] [ 151.821236][ C1] [ 151.821236][ C1] Showing all locks held in the system: [ 151.828952][ C1] 6 locks held by kworker/u8:0/11: [ 151.834350][ C1] 3 locks held by kworker/u8:1/12: [ 151.839459][ C1] 3 locks held by kworker/1:0/25: [ 151.844509][ C1] 3 locks held by kworker/1:1/46: [ 151.849526][ C1] 3 locks held by kworker/u8:3/52: [ 151.854694][ C1] 3 locks held by kworker/u8:4/62: [ 151.859807][ C1] 6 locks held by kworker/u8:5/1041: [ 151.865106][ C1] #0: ffff888015edd948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 151.876020][ C1] #1: ffffc90003f07d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 151.886608][ C1] #2: ffffffff8f5f2c10 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0 [ 151.896060][ C1] #3: ffff88823bd6a0e8 (&dev->mutex){....}-{3:3}, at: devlink_pernet_pre_exit+0x13b/0x440 [ 151.906103][ C1] #4: ffff88802efef250 (&devlink->lock_key#6){+.+.}-{3:3}, at: devlink_pernet_pre_exit+0x14d/0x440 [ 151.917022][ C1] #5: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: nsim_create+0x408/0x890 [ 151.925974][ C1] 3 locks held by kworker/u8:8/2871: [ 151.931306][ C1] 2 locks held by kworker/u8:9/2876: [ 151.936611][ C1] #0: ffff888015089148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 151.948364][ C1] #1: ffffc900097e7d00 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 151.960525][ C1] 2 locks held by getty/4850: [ 151.965195][ C1] #0: ffff88802a2340a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 151.975015][ C1] #1: ffffc90002f162f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10 [ 151.985147][ C1] 4 locks held by udevd/5115: [ 151.989812][ C1] #0: ffff88806cfe09e0 (&p->lock){+.+.}-{3:3}, at: seq_read_iter+0xb7/0xd60 [ 151.998640][ C1] #1: ffff88802c440c88 (&of->mutex#2){+.+.}-{3:3}, at: kernfs_seq_start+0x53/0x3b0 [ 152.008088][ C1] #2: ffff88807dc084b8 (kn->active#5){.+.+}-{0:0}, at: kernfs_seq_start+0x72/0x3b0 [ 152.017541][ C1] #3: ffff8880645ee190 (&dev->mutex){....}-{3:3}, at: uevent_show+0x17d/0x340 [ 152.026562][ C1] 6 locks held by kworker/1:7/5215: [ 152.031782][ C1] 1 lock held by syz.1.130/5897: [ 152.036711][ C1] 1 lock held by syz.1.130/5924: [ 152.041658][ C1] #0: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x847/0x1180 [ 152.051196][ C1] 3 locks held by syz.1.130/5933: [ 152.056215][ C1] #0: ffffffff8f668fb0 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40 [ 152.064434][ C1] #1: ffff88802ed2a678 (nlk_cb_mutex-GENERIC){+.+.}-{3:3}, at: __netlink_dump_start+0x119/0x780 [ 152.075005][ C1] #2: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: nl80211_dump_interface+0x103/0x760 [ 152.084894][ C1] 4 locks held by syz.4.138/5927: [ 152.089925][ C1] #0: ffff8880619ea008 (&sb->s_type->i_mutex_key#10){+.+.}-{3:3}, at: sock_close+0x90/0x240 [ 152.100254][ C1] #1: ffffffff8f667110 ((netlink_chain).rwsem){++++}-{3:3}, at: blocking_notifier_call_chain+0x53/0x90 [ 152.111478][ C1] #2: ffff88802b0ad2b8 (&nft_net->commit_mutex){+.+.}-{3:3}, at: nft_rcv_nl_event+0x123/0x6d0 [ 152.121964][ C1] #3: ffffffff8e33ac38 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x451/0x830 [ 152.132895][ C1] 2 locks held by syz.0.139/5947: [ 152.137914][ C1] #0: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x847/0x1180 [ 152.147481][ C1] #1: ffffffff8e33ac38 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x451/0x830 [ 152.158461][ C1] 1 lock held by modprobe/5942: [ 152.163334][ C1] [ 152.165656][ C1] ============================================= [ 152.165656][ C1] [ 152.213871][ T5215] dvb-usb: Genpix 8PSK-to-USB2 Rev.1 DVB-S receiver error while loading driver (-22) [ 152.252105][ T5215] dvb_usb_gp8psk 2-1:0.0: probe with driver dvb_usb_gp8psk failed with error -22 [ 152.348625][ T5947] macvlan0: entered promiscuous mode [ 152.354248][ T5947] macvlan0: entered allmulticast mode [ 152.368113][ T5947] veth1_vlan: entered allmulticast mode [ 152.377837][ T5947] bond0: (slave macvlan0): Enslaving as an active interface with an up link [ 152.520434][ T5924] netlink: 12 bytes leftover after parsing attributes in process `syz.1.130'. [ 152.531239][ T54] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 152.543954][ T54] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 152.560722][ T54] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 152.583574][ T54] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 152.601444][ T54] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 152.612378][ T54] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 152.708096][ T1041] bridge_slave_1: left allmulticast mode [ 152.754684][ T1041] bridge_slave_1: left promiscuous mode [ 152.781092][ T1041] bridge0: port 2(bridge_slave_1) entered disabled state [ 152.873899][ T5956] cgroup: noprefix used incorrectly [ 153.031204][ T1041] bridge_slave_0: left allmulticast mode [ 153.036998][ T1041] bridge_slave_0: left promiscuous mode [ 153.104408][ T1041] bridge0: port 1(bridge_slave_0) entered disabled state [ 153.632428][ T5102] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 153.645448][ T5102] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 153.655158][ T5102] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 153.669881][ T5102] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 153.692934][ T5102] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 153.712379][ T5102] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 154.255650][ T5954] loop0: detected capacity change from 0 to 32768 [ 154.382646][ T5954] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 154.557140][ T5960] loop3: detected capacity change from 0 to 32768 [ 154.570677][ T5954] XFS (loop0): Ending clean mount [ 154.642527][ T5954] XFS (loop0): Quotacheck needed: Please wait. [ 154.645287][ T5960] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 154.671727][ T5960] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 154.683784][ T1041] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 154.735590][ T1041] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 154.752971][ T54] Bluetooth: hci3: command tx timeout [ 154.784432][ T1041] bond0 (unregistering): Released all slaves [ 154.852017][ T5954] XFS (loop0): Quotacheck: Done. [ 154.858819][ T5960] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms [ 154.909022][ T5149] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 154.957138][ T5149] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 155.780834][ T54] Bluetooth: hci4: command tx timeout [ 155.804291][ T5149] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 847ms [ 155.814127][ T5149] gfs2: fsid=syz:syz.0: jid=0: Done [ 155.821834][ T5960] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 156.099119][ T5149] usb 2-1: USB disconnect, device number 3 [ 156.157073][ T5330] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 156.571595][ T1041] hsr_slave_0: left promiscuous mode [ 156.593276][ T1041] hsr_slave_1: left promiscuous mode [ 156.615665][ T1041] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 156.643117][ T1041] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 156.664851][ T1041] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 156.704237][ T1041] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 156.765654][ T1041] veth1_macvtap: left promiscuous mode [ 156.796878][ T1041] veth0_macvtap: left promiscuous mode [ 156.803212][ T1041] veth1_vlan: left promiscuous mode [ 156.808623][ T1041] veth0_vlan: left promiscuous mode [ 156.820996][ T54] Bluetooth: hci3: command tx timeout [ 157.812019][ T6006] openvswitch: netlink: Missing key (keys=40, expected=80) [ 157.861592][ T54] Bluetooth: hci4: command tx timeout [ 158.893034][ T6012] loop3: detected capacity change from 0 to 40427 [ 158.916725][ T54] Bluetooth: hci3: command tx timeout [ 158.925568][ T6012] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 158.933485][ T6012] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 158.956497][ T6014] cgroup: noprefix used incorrectly [ 158.985155][ T6012] F2FS-fs (loop3): Found nat_bits in checkpoint [ 159.069424][ T6012] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 159.076603][ T6012] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 160.631019][ T54] Bluetooth: hci4: command tx timeout [ 161.540249][ C1] DEBUG: waiting rtnl_mutex for 502 jiffies. [ 161.546359][ C1] task:syz-executor state:D stack:24608 pid:5948 tgid:5948 ppid:5913 flags:0x00004000 [ 161.556671][ C1] Call Trace: [ 161.559999][ C1] [ 161.563046][ C1] __schedule+0x1800/0x4a60 [ 161.567658][ C1] ? __pfx___schedule+0x10/0x10 [ 161.572601][ C1] ? __pfx_lock_release+0x10/0x10 [ 161.577722][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 161.583316][ C1] ? schedule+0x90/0x320 [ 161.587636][ C1] schedule+0x14b/0x320 [ 161.591880][ C1] schedule_preempt_disabled+0x13/0x30 [ 161.597423][ C1] __mutex_lock+0x6a4/0xd70 [ 161.600449][ T5102] Bluetooth: hci3: command tx timeout [ 161.602036][ C1] ? __mutex_lock+0x527/0xd70 [ 161.612129][ C1] ? rtnetlink_rcv_msg+0x847/0x1180 [ 161.617457][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 161.622620][ C1] ? get_rtnl_holder+0x144/0x190 [ 161.627655][ C1] rtnetlink_rcv_msg+0x847/0x1180 [ 161.632922][ C1] ? rtnetlink_rcv_msg+0x208/0x1180 [ 161.638228][ C1] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 161.643788][ C1] ? is_bpf_text_address+0x285/0x2a0 [ 161.649181][ C1] ? __pfx_validate_chain+0x10/0x10 [ 161.654524][ C1] ? __pfx_validate_chain+0x10/0x10 [ 161.659799][ C1] ? arch_stack_walk+0x16d/0x1b0 [ 161.664976][ C1] ? mark_lock+0x9a/0x360 [ 161.669384][ C1] ? __pfx_validate_chain+0x10/0x10 [ 161.674690][ C1] ? __lock_acquire+0x1359/0x2000 [ 161.679925][ C1] ? mark_lock+0x9a/0x360 [ 161.684564][ C1] ? __lock_acquire+0x1359/0x2000 [ 161.689699][ C1] netlink_rcv_skb+0x1e3/0x430 [ 161.694578][ C1] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 161.700123][ C1] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 161.705564][ C1] ? netlink_deliver_tap+0x2e/0x1b0 [ 161.710856][ C1] netlink_unicast+0x7f0/0x990 [ 161.715738][ C1] ? __pfx_netlink_unicast+0x10/0x10 [ 161.721167][ C1] ? __virt_addr_valid+0x183/0x530 [ 161.726359][ C1] ? __check_object_size+0x49c/0x900 [ 161.731762][ C1] ? bpf_lsm_netlink_send+0x9/0x10 [ 161.736978][ C1] netlink_sendmsg+0x8e4/0xcb0 [ 161.741847][ C1] ? __pfx_netlink_sendmsg+0x10/0x10 [ 161.747216][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 161.753314][ C1] ? aa_sock_msg_perm+0x91/0x160 [ 161.758343][ C1] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 161.763794][ C1] ? security_socket_sendmsg+0x87/0xb0 [ 161.769330][ C1] ? __pfx_netlink_sendmsg+0x10/0x10 [ 161.774734][ C1] __sock_sendmsg+0x221/0x270 [ 161.779520][ C1] __sys_sendto+0x3a4/0x4f0 [ 161.784133][ C1] ? __pfx___sys_sendto+0x10/0x10 [ 161.789287][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 161.795476][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 161.801917][ C1] __x64_sys_sendto+0xde/0x100 [ 161.806771][ C1] do_syscall_64+0xf3/0x230 [ 161.811376][ C1] ? clear_bhb_loop+0x35/0x90 [ 161.816132][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 161.822158][ C1] RIP: 0033:0x7faf2d57796c [ 161.826664][ C1] RSP: 002b:00007ffcbea19f90 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 161.835207][ C1] RAX: ffffffffffffffda RBX: 00007faf2e234620 RCX: 00007faf2d57796c [ 161.843249][ C1] RDX: 0000000000000028 RSI: 00007faf2e234670 RDI: 0000000000000003 [ 161.851327][ C1] RBP: 0000000000000000 R08: 00007ffcbea19fe4 R09: 000000000000000c [ 161.859379][ C1] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 161.867428][ C1] R13: 0000000000000000 R14: 00007faf2e234670 R15: 0000000000000000 [ 161.875502][ C1] [ 161.878568][ C1] DEBUG: waiting rtnl_mutex for 533 jiffies. [ 161.884619][ C1] task:syz-executor state:D stack:24608 pid:5961 tgid:5961 ppid:5951 flags:0x00004002 [ 161.894891][ C1] Call Trace: [ 161.898208][ C1] [ 161.901217][ C1] __schedule+0x1800/0x4a60 [ 161.905820][ C1] ? __pfx___schedule+0x10/0x10 [ 161.910801][ C1] ? __pfx_lock_release+0x10/0x10 [ 161.915936][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 161.921546][ C1] ? schedule+0x90/0x320 [ 161.925880][ C1] schedule+0x14b/0x320 [ 161.930114][ C1] schedule_preempt_disabled+0x13/0x30 [ 161.935683][ C1] __mutex_lock+0x6a4/0xd70 [ 161.940300][ C1] ? __mutex_lock+0x527/0xd70 [ 161.945058][ C1] ? rtnl_lock_killable+0x26/0x150 [ 161.950281][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 161.955388][ C1] ? __kasan_kmalloc+0x98/0xb0 [ 161.960259][ C1] ? alloc_netdev_mqs+0xb6f/0xff0 [ 161.965373][ C1] ? get_rtnl_holder+0x144/0x190 [ 161.970425][ C1] rtnl_lock_killable+0x26/0x150 [ 161.975463][ C1] register_netdev+0x13/0x50 [ 161.980189][ C1] sit_init_net+0x1fb/0x4e0 [ 161.984946][ C1] ops_init+0x359/0x610 [ 161.989196][ C1] ? setup_net+0x520/0xca0 [ 161.993732][ C1] setup_net+0x515/0xca0 [ 161.998055][ C1] ? __pfx_down_read_killable+0x10/0x10 [ 162.003759][ C1] ? __pfx_setup_net+0x10/0x10 [ 162.008716][ C1] copy_net_ns+0x4e2/0x7b0 [ 162.013287][ C1] create_new_namespaces+0x425/0x7b0 [ 162.018699][ C1] ? bpf_lsm_capable+0x9/0x10 [ 162.023526][ C1] unshare_nsproxy_namespaces+0x124/0x180 [ 162.029326][ C1] ksys_unshare+0x619/0xc10 [ 162.033958][ C1] ? __pfx_ksys_unshare+0x10/0x10 [ 162.039316][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 162.045511][ C1] ? do_syscall_64+0x100/0x230 [ 162.050387][ C1] __x64_sys_unshare+0x38/0x40 [ 162.055262][ C1] do_syscall_64+0xf3/0x230 [ 162.059861][ C1] ? clear_bhb_loop+0x35/0x90 [ 162.064664][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 162.070849][ C1] RIP: 0033:0x7f986a577337 [ 162.075383][ C1] RSP: 002b:00007fffa6175ef8 EFLAGS: 00000202 ORIG_RAX: 0000000000000110 [ 162.083923][ C1] RAX: ffffffffffffffda RBX: 00007f986a703f20 RCX: 00007f986a577337 [ 162.092009][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000000 [ 162.100078][ C1] RBP: 00007f986a704a18 R08: 0000000000000000 R09: 0000000000000000 [ 162.108173][ C1] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000000000c [ 162.116236][ C1] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000009 [ 162.124404][ C1] [ 162.127562][ C1] DEBUG: holding rtnl_mutex for 557 jiffies. [ 162.133612][ C1] task:kworker/u8:5 state:D stack:22624 pid:1041 tgid:1041 ppid:2 flags:0x00004000 [ 162.144003][ C1] Workqueue: netns cleanup_net [ 162.148852][ C1] Call Trace: [ 162.152222][ C1] [ 162.155202][ C1] __schedule+0x1800/0x4a60 [ 162.159821][ C1] ? __pfx___schedule+0x10/0x10 [ 162.164803][ C1] ? __pfx_lock_release+0x10/0x10 [ 162.169929][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 162.175933][ C1] ? kthread_data+0x52/0xd0 [ 162.180552][ C1] ? wq_worker_sleeping+0x66/0x240 [ 162.185742][ C1] ? schedule+0x90/0x320 [ 162.190057][ C1] schedule+0x14b/0x320 [ 162.194939][ C1] synchronize_rcu_expedited+0x684/0x830 [ 162.200689][ C1] ? __pfx_synchronize_rcu_expedited+0x10/0x10 [ 162.206940][ C1] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 162.212355][ C1] ? __pfx___might_resched+0x10/0x10 [ 162.217738][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 162.223828][ C1] ? __pfx_autoremove_wake_function+0x10/0x10 [ 162.229978][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 162.236436][ C1] synchronize_rcu+0x11b/0x360 [ 162.241309][ C1] ? __pfx_synchronize_rcu+0x10/0x10 [ 162.246687][ C1] lockdep_unregister_key+0x556/0x610 [ 162.252170][ C1] ? __pfx_lockdep_unregister_key+0x10/0x10 [ 162.258140][ C1] ? rcu_is_watching+0x15/0xb0 [ 162.263025][ C1] ? qdisc_reset+0x3bf/0x5b0 [ 162.267762][ C1] __qdisc_destroy+0x165/0x410 [ 162.272653][ C1] dev_shutdown+0x9b/0x440 [ 162.277156][ C1] unregister_netdevice_many_notify+0x9c7/0x1d20 [ 162.283739][ C1] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 162.290653][ C1] ? unregister_netdevice_queue+0x26b/0x370 [ 162.296631][ C1] ? batadv_softif_destroy_netlink+0x1e0/0x270 [ 162.302906][ C1] default_device_exit_batch+0xa0f/0xa90 [ 162.308630][ C1] ? __pfx___might_resched+0x10/0x10 [ 162.314017][ C1] ? __pfx_default_device_exit_batch+0x10/0x10 [ 162.320301][ C1] ? cfg802154_pernet_exit+0xc3/0xe0 [ 162.325698][ C1] ? __pfx_default_device_exit_batch+0x10/0x10 [ 162.331971][ C1] cleanup_net+0x89d/0xcc0 [ 162.336474][ C1] ? __pfx_cleanup_net+0x10/0x10 [ 162.341522][ C1] ? process_scheduled_works+0x945/0x1830 [ 162.347315][ C1] process_scheduled_works+0xa2c/0x1830 [ 162.353004][ C1] ? __pfx_process_scheduled_works+0x10/0x10 [ 162.359061][ C1] ? assign_work+0x364/0x3d0 [ 162.363764][ C1] worker_thread+0x86d/0xd40 [ 162.368461][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 162.374473][ C1] ? __kthread_parkme+0x169/0x1d0 [ 162.379568][ C1] ? __pfx_worker_thread+0x10/0x10 [ 162.384800][ C1] kthread+0x2f0/0x390 [ 162.388962][ C1] ? __pfx_worker_thread+0x10/0x10 [ 162.394277][ C1] ? __pfx_kthread+0x10/0x10 [ 162.398940][ C1] ret_from_fork+0x4b/0x80 [ 162.403464][ C1] ? __pfx_kthread+0x10/0x10 [ 162.408126][ C1] ret_from_fork_asm+0x1a/0x30 [ 162.413018][ C1] [ 162.416196][ C1] DEBUG: waiting rtnl_mutex for 553 jiffies. [ 162.422337][ C1] task:dhcpcd state:D stack:20672 pid:4761 tgid:4761 ppid:4760 flags:0x00000002 [ 162.432707][ C1] Call Trace: [ 162.436031][ C1] [ 162.439118][ C1] __schedule+0x1800/0x4a60 [ 162.443763][ C1] ? __pfx___schedule+0x10/0x10 [ 162.448693][ C1] ? __pfx_lock_release+0x10/0x10 [ 162.453830][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 162.459394][ C1] ? schedule+0x90/0x320 [ 162.463828][ C1] schedule+0x14b/0x320 [ 162.468276][ C1] schedule_preempt_disabled+0x13/0x30 [ 162.473868][ C1] __mutex_lock+0x6a4/0xd70 [ 162.478444][ C1] ? __mutex_lock+0x527/0xd70 [ 162.483322][ C1] ? devinet_ioctl+0x2ce/0x1bc0 [ 162.488274][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 162.493417][ C1] ? bpf_lsm_capable+0x9/0x10 [ 162.498169][ C1] ? security_capable+0x90/0xb0 [ 162.503131][ C1] ? get_rtnl_holder+0x144/0x190 [ 162.508190][ C1] devinet_ioctl+0x2ce/0x1bc0 [ 162.512984][ C1] ? get_user_ifreq+0x1bb/0x200 [ 162.518065][ C1] inet_ioctl+0x3d7/0x4f0 [ 162.522529][ C1] ? __pfx_inet_ioctl+0x10/0x10 [ 162.527534][ C1] sock_do_ioctl+0x158/0x460 [ 162.532285][ C1] ? __pfx_sock_do_ioctl+0x10/0x10 [ 162.537481][ C1] ? __pfx_lock_release+0x10/0x10 [ 162.542647][ C1] sock_ioctl+0x629/0x8e0 [ 162.547072][ C1] ? __pfx_sock_ioctl+0x10/0x10 [ 162.552045][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 162.558115][ C1] ? bpf_lsm_file_ioctl+0x9/0x10 [ 162.563231][ C1] ? security_file_ioctl+0x87/0xb0 [ 162.568399][ C1] ? __pfx_sock_ioctl+0x10/0x10 [ 162.573365][ C1] __se_sys_ioctl+0xfc/0x170 [ 162.578064][ C1] do_syscall_64+0xf3/0x230 [ 162.582665][ C1] ? clear_bhb_loop+0x35/0x90 [ 162.587457][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 162.593496][ C1] RIP: 0033:0x7f0c0b772d49 [ 162.598079][ C1] RSP: 002b:00007ffcce133058 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 162.606615][ C1] RAX: ffffffffffffffda RBX: 00007f0c0b6a46c0 RCX: 00007f0c0b772d49 [ 162.614769][ C1] RDX: 00007ffcce143248 RSI: 0000000000008914 RDI: 000000000000000c [ 162.622839][ C1] RBP: 00007ffcce153408 R08: 00007ffcce143208 R09: 00007ffcce1431b8 [ 162.630902][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 162.638959][ C1] R13: 00007ffcce143248 R14: 0000000000000028 R15: 0000000000008914 [ 162.647068][ C1] [ 162.650194][ C1] DEBUG: waiting rtnl_mutex for 551 jiffies. [ 162.656227][ C1] task:kworker/0:6 state:D stack:23680 pid:5149 tgid:5149 ppid:2 flags:0x00004000 [ 162.666530][ C1] Workqueue: events linkwatch_event [ 162.671868][ C1] Call Trace: [ 162.675220][ C1] [ 162.678219][ C1] __schedule+0x1800/0x4a60 [ 162.682859][ C1] ? __pfx___schedule+0x10/0x10 [ 162.687853][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 162.693984][ C1] ? __pfx_lock_release+0x10/0x10 [ 162.699095][ C1] ? kick_pool+0x1bd/0x620 [ 162.703650][ C1] ? _raw_spin_unlock_irq+0x23/0x50 [ 162.708937][ C1] ? lockdep_hardirqs_on+0x99/0x150 [ 162.714296][ C1] ? schedule+0x90/0x320 [ 162.718639][ C1] schedule+0x14b/0x320 [ 162.722926][ C1] schedule_preempt_disabled+0x13/0x30 [ 162.728487][ C1] __mutex_lock+0x6a4/0xd70 [ 162.733150][ C1] ? __mutex_lock+0x527/0xd70 [ 162.737909][ C1] ? linkwatch_event+0xe/0x60 [ 162.742692][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 162.747816][ C1] ? get_rtnl_holder+0x144/0x190 [ 162.752873][ C1] ? process_scheduled_works+0x945/0x1830 [ 162.758680][ C1] linkwatch_event+0xe/0x60 [ 162.763272][ C1] process_scheduled_works+0xa2c/0x1830 [ 162.768923][ C1] ? __pfx_process_scheduled_works+0x10/0x10 [ 162.775027][ C1] ? assign_work+0x364/0x3d0 [ 162.779724][ C1] worker_thread+0x86d/0xd40 [ 162.784441][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 162.790456][ C1] ? __kthread_parkme+0x169/0x1d0 [ 162.795579][ C1] ? __pfx_worker_thread+0x10/0x10 [ 162.800801][ C1] kthread+0x2f0/0x390 [ 162.805033][ C1] ? __pfx_worker_thread+0x10/0x10 [ 162.810261][ C1] ? __pfx_kthread+0x10/0x10 [ 162.814924][ C1] ret_from_fork+0x4b/0x80 [ 162.819428][ C1] ? __pfx_kthread+0x10/0x10 [ 162.824163][ C1] ret_from_fork_asm+0x1a/0x30 [ 162.829115][ C1] [ 162.832233][ C1] [ 162.832233][ C1] Showing all locks held in the system: [ 162.839995][ C1] 2 locks held by kworker/u8:3/52: [ 162.845279][ C1] 2 locks held by kworker/u9:0/54: [ 162.850477][ C1] 4 locks held by kworker/u8:4/62: [ 162.855656][ C1] 5 locks held by kworker/u8:5/1041: [ 162.861018][ C1] #0: ffff888015edd948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 162.872087][ C1] #1: ffffc90003f07d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 162.882795][ C1] #2: ffffffff8f5f2c10 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0 [ 162.892342][ C1] #3: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: default_device_exit_batch+0xe9/0xa90 [ 162.902631][ C1] #4: ffffffff8e33ac38 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x381/0x830 [ 162.913727][ C1] 3 locks held by kworker/u8:6/1087: [ 162.919085][ C1] 3 locks held by kworker/u8:8/2871: [ 162.924474][ C1] 3 locks held by kworker/u8:9/2876: [ 162.929854][ C1] 1 lock held by dhcpcd/4761: [ 162.934641][ C1] #0: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: devinet_ioctl+0x2ce/0x1bc0 [ 162.943997][ C1] 2 locks held by getty/4850: [ 162.948748][ C1] #0: ffff88802a2340a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 162.958688][ C1] #1: ffffc90002f162f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10 [ 162.969045][ C1] 3 locks held by kworker/0:5/5148: [ 162.974332][ C1] 3 locks held by kworker/0:6/5149: [ 162.979578][ C1] #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 162.990763][ C1] #1: ffffc90004017d00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 163.001996][ C1] #2: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60 [ 163.011138][ C1] 1 lock held by syz-executor/5948: [ 163.016387][ C1] #0: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x847/0x1180 [ 163.026100][ C1] 2 locks held by syz-executor/5961: [ 163.031551][ C1] #0: ffffffff8f5f2c10 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c6/0x7b0 [ 163.041131][ C1] #1: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock_killable+0x26/0x150 [ 163.050667][ C1] 3 locks held by syz.0.149/6018: [ 163.055748][ C1] 4 locks held by syz.3.152/6011: [ 163.060841][ C1] #0: ffff888079a6d608 (&sb->s_type->i_mutex_key#10){+.+.}-{3:3}, at: sock_close+0x90/0x240 [ 163.071243][ C1] #1: ffffffff8f667110 ((netlink_chain).rwsem){++++}-{3:3}, at: blocking_notifier_call_chain+0x53/0x90 [ 163.082567][ C1] #2: ffff88802b67d6b8 (&nft_net->commit_mutex){+.+.}-{3:3}, at: nft_rcv_nl_event+0x123/0x6d0 [ 163.093103][ C1] #3: ffffffff8e33ac38 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x451/0x830 [ 163.104205][ C1] 1 lock held by syz.3.152/6012: [ 163.109196][ C1] 1 lock held by syz.4.153/6013: [ 163.114340][ C1] [ 163.116730][ C1] ============================================= [ 163.116730][ C1] [ 164.180851][ C1] DEBUG: waiting rtnl_mutex for 766 jiffies. [ 164.186964][ C1] task:syz-executor state:D stack:24608 pid:5948 tgid:5948 ppid:5913 flags:0x00004000 [ 164.197459][ C1] Call Trace: [ 164.200833][ C1] [ 164.203823][ C1] __schedule+0x1800/0x4a60 [ 164.208532][ C1] ? __pfx___schedule+0x10/0x10 [ 164.213580][ C1] ? __pfx_lock_release+0x10/0x10 [ 164.218683][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 164.224280][ C1] ? schedule+0x90/0x320 [ 164.228573][ C1] schedule+0x14b/0x320 [ 164.233014][ C1] schedule_preempt_disabled+0x13/0x30 [ 164.238542][ C1] __mutex_lock+0x6a4/0xd70 [ 164.243243][ C1] ? __mutex_lock+0x527/0xd70 [ 164.247974][ C1] ? rtnetlink_rcv_msg+0x847/0x1180 [ 164.253246][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 164.258291][ C1] ? get_rtnl_holder+0x144/0x190 [ 164.263370][ C1] rtnetlink_rcv_msg+0x847/0x1180 [ 164.268420][ C1] ? rtnetlink_rcv_msg+0x208/0x1180 [ 164.273695][ C1] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 164.279169][ C1] ? is_bpf_text_address+0x285/0x2a0 [ 164.284590][ C1] ? __pfx_validate_chain+0x10/0x10 [ 164.289824][ C1] ? __pfx_validate_chain+0x10/0x10 [ 164.295081][ C1] ? arch_stack_walk+0x16d/0x1b0 [ 164.300035][ C1] ? mark_lock+0x9a/0x360 [ 164.304416][ C1] ? __pfx_validate_chain+0x10/0x10 [ 164.309654][ C1] ? __lock_acquire+0x1359/0x2000 [ 164.314792][ C1] ? mark_lock+0x9a/0x360 [ 164.319150][ C1] ? __lock_acquire+0x1359/0x2000 [ 164.324251][ C1] netlink_rcv_skb+0x1e3/0x430 [ 164.329036][ C1] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 164.334543][ C1] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 164.339859][ C1] ? netlink_deliver_tap+0x2e/0x1b0 [ 164.345105][ C1] netlink_unicast+0x7f0/0x990 [ 164.349937][ C1] ? __pfx_netlink_unicast+0x10/0x10 [ 164.355296][ C1] ? __virt_addr_valid+0x183/0x530 [ 164.360537][ C1] ? __check_object_size+0x49c/0x900 [ 164.365919][ C1] ? bpf_lsm_netlink_send+0x9/0x10 [ 164.371072][ C1] netlink_sendmsg+0x8e4/0xcb0 [ 164.375873][ C1] ? __pfx_netlink_sendmsg+0x10/0x10 [ 164.381183][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 164.387195][ C1] ? aa_sock_msg_perm+0x91/0x160 [ 164.392163][ C1] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 164.397456][ C1] ? security_socket_sendmsg+0x87/0xb0 [ 164.402946][ C1] ? __pfx_netlink_sendmsg+0x10/0x10 [ 164.408230][ C1] __sock_sendmsg+0x221/0x270 [ 164.412964][ C1] __sys_sendto+0x3a4/0x4f0 [ 164.417475][ C1] ? __pfx___sys_sendto+0x10/0x10 [ 164.422564][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 164.428576][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 164.434956][ C1] __x64_sys_sendto+0xde/0x100 [ 164.439728][ C1] do_syscall_64+0xf3/0x230 [ 164.444264][ C1] ? clear_bhb_loop+0x35/0x90 [ 164.448958][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 164.454879][ C1] RIP: 0033:0x7faf2d57796c [ 164.459293][ C1] RSP: 002b:00007ffcbea19f90 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 164.467732][ C1] RAX: ffffffffffffffda RBX: 00007faf2e234620 RCX: 00007faf2d57796c [ 164.475730][ C1] RDX: 0000000000000028 RSI: 00007faf2e234670 RDI: 0000000000000003 [ 164.483726][ C1] RBP: 0000000000000000 R08: 00007ffcbea19fe4 R09: 000000000000000c [ 164.491743][ C1] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 164.499713][ C1] R13: 0000000000000000 R14: 00007faf2e234670 R15: 0000000000000000 [ 164.507718][ C1] [ 164.510779][ C1] DEBUG: waiting rtnl_mutex for 797 jiffies. [ 164.516837][ C1] task:syz-executor state:D stack:24608 pid:5961 tgid:5961 ppid:5951 flags:0x00004002 [ 164.527125][ C1] Call Trace: [ 164.530458][ C1] [ 164.533397][ C1] __schedule+0x1800/0x4a60 [ 164.537926][ C1] ? __pfx___schedule+0x10/0x10 [ 164.542823][ C1] ? __pfx_lock_release+0x10/0x10 [ 164.547872][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 164.553374][ C1] ? schedule+0x90/0x320 [ 164.557626][ C1] schedule+0x14b/0x320 [ 164.561810][ C1] schedule_preempt_disabled+0x13/0x30 [ 164.567272][ C1] __mutex_lock+0x6a4/0xd70 [ 164.571807][ C1] ? __mutex_lock+0x527/0xd70 [ 164.576490][ C1] ? rtnl_lock_killable+0x26/0x150 [ 164.581626][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 164.586676][ C1] ? __kasan_kmalloc+0x98/0xb0 [ 164.591468][ C1] ? alloc_netdev_mqs+0xb6f/0xff0 [ 164.596497][ C1] ? get_rtnl_holder+0x144/0x190 [ 164.601468][ C1] rtnl_lock_killable+0x26/0x150 [ 164.606439][ C1] register_netdev+0x13/0x50 [ 164.611060][ C1] sit_init_net+0x1fb/0x4e0 [ 164.615601][ C1] ops_init+0x359/0x610 [ 164.619763][ C1] ? setup_net+0x520/0xca0 [ 164.624237][ C1] setup_net+0x515/0xca0 [ 164.628506][ C1] ? __pfx_down_read_killable+0x10/0x10 [ 164.634095][ C1] ? __pfx_setup_net+0x10/0x10 [ 164.638870][ C1] copy_net_ns+0x4e2/0x7b0 [ 164.643770][ C1] create_new_namespaces+0x425/0x7b0 [ 164.649081][ C1] ? bpf_lsm_capable+0x9/0x10 [ 164.653953][ C1] unshare_nsproxy_namespaces+0x124/0x180 [ 164.659709][ C1] ksys_unshare+0x619/0xc10 [ 164.664331][ C1] ? __pfx_ksys_unshare+0x10/0x10 [ 164.669413][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 164.675448][ C1] ? do_syscall_64+0x100/0x230 [ 164.680256][ C1] __x64_sys_unshare+0x38/0x40 [ 164.685080][ C1] do_syscall_64+0xf3/0x230 [ 164.689583][ C1] ? clear_bhb_loop+0x35/0x90 [ 164.694299][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 164.700233][ C1] RIP: 0033:0x7f986a577337 [ 164.704668][ C1] RSP: 002b:00007fffa6175ef8 EFLAGS: 00000202 ORIG_RAX: 0000000000000110 [ 164.713113][ C1] RAX: ffffffffffffffda RBX: 00007f986a703f20 RCX: 00007f986a577337 [ 164.721138][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000000 [ 164.729125][ C1] RBP: 00007f986a704a18 R08: 0000000000000000 R09: 0000000000000000 [ 164.737250][ C1] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000000000c [ 164.745303][ C1] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000009 [ 164.753320][ C1] [ 164.756344][ C1] DEBUG: holding rtnl_mutex for 820 jiffies. [ 164.762348][ C1] task:kworker/u8:5 state:D stack:22624 pid:1041 tgid:1041 ppid:2 flags:0x00004000 [ 164.772659][ C1] Workqueue: netns cleanup_net [ 164.777436][ C1] Call Trace: [ 164.780767][ C1] [ 164.783726][ C1] __schedule+0x1800/0x4a60 [ 164.788256][ C1] ? __pfx___schedule+0x10/0x10 [ 164.793486][ C1] ? __pfx_lock_release+0x10/0x10 [ 164.798516][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 164.804708][ C1] ? kthread_data+0x52/0xd0 [ 164.809263][ C1] ? wq_worker_sleeping+0x66/0x240 [ 164.814450][ C1] ? schedule+0x90/0x320 [ 164.818737][ C1] schedule+0x14b/0x320 [ 164.822944][ C1] synchronize_rcu_expedited+0x684/0x830 [ 164.828618][ C1] ? __pfx_synchronize_rcu_expedited+0x10/0x10 [ 164.834879][ C1] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 164.840261][ C1] ? __pfx___might_resched+0x10/0x10 [ 164.845559][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 164.851598][ C1] ? __pfx_autoremove_wake_function+0x10/0x10 [ 164.857712][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 164.864142][ C1] synchronize_rcu+0x11b/0x360 [ 164.868937][ C1] ? __pfx_synchronize_rcu+0x10/0x10 [ 164.874310][ C1] lockdep_unregister_key+0x556/0x610 [ 164.879821][ C1] ? __pfx_lockdep_unregister_key+0x10/0x10 [ 164.885766][ C1] ? rcu_is_watching+0x15/0xb0 [ 164.890568][ C1] ? qdisc_reset+0x3bf/0x5b0 [ 164.895192][ C1] __qdisc_destroy+0x165/0x410 [ 164.899960][ C1] dev_shutdown+0x9b/0x440 [ 164.904607][ C1] unregister_netdevice_many_notify+0x9c7/0x1d20 [ 164.911005][ C1] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 164.917785][ C1] ? unregister_netdevice_queue+0x26b/0x370 [ 164.923710][ C1] ? batadv_softif_destroy_netlink+0x1e0/0x270 [ 164.929874][ C1] default_device_exit_batch+0xa0f/0xa90 [ 164.935578][ C1] ? __pfx___might_resched+0x10/0x10 [ 164.940912][ C1] ? __pfx_default_device_exit_batch+0x10/0x10 [ 164.947084][ C1] ? cfg802154_pernet_exit+0xc3/0xe0 [ 164.952402][ C1] ? __pfx_default_device_exit_batch+0x10/0x10 [ 164.958565][ C1] cleanup_net+0x89d/0xcc0 [ 164.963026][ C1] ? __pfx_cleanup_net+0x10/0x10 [ 164.967972][ C1] ? process_scheduled_works+0x945/0x1830 [ 164.973741][ C1] process_scheduled_works+0xa2c/0x1830 [ 164.979315][ C1] ? __pfx_process_scheduled_works+0x10/0x10 [ 164.985338][ C1] ? assign_work+0x364/0x3d0 [ 164.989933][ C1] worker_thread+0x86d/0xd40 [ 164.994560][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 165.000506][ C1] ? __kthread_parkme+0x169/0x1d0 [ 165.005564][ C1] ? __pfx_worker_thread+0x10/0x10 [ 165.010704][ C1] kthread+0x2f0/0x390 [ 165.014784][ C1] ? __pfx_worker_thread+0x10/0x10 [ 165.019914][ C1] ? __pfx_kthread+0x10/0x10 [ 165.024540][ C1] ret_from_fork+0x4b/0x80 [ 165.028966][ C1] ? __pfx_kthread+0x10/0x10 [ 165.033608][ C1] ret_from_fork_asm+0x1a/0x30 [ 165.038417][ C1] [ 165.041572][ C1] DEBUG: waiting rtnl_mutex for 816 jiffies. [ 165.047569][ C1] task:dhcpcd state:D stack:20672 pid:4761 tgid:4761 ppid:4760 flags:0x00000002 [ 165.057759][ C1] Call Trace: [ 165.061077][ C1] [ 165.064013][ C1] __schedule+0x1800/0x4a60 [ 165.068556][ C1] ? __pfx___schedule+0x10/0x10 [ 165.073447][ C1] ? __pfx_lock_release+0x10/0x10 [ 165.078478][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 165.083976][ C1] ? schedule+0x90/0x320 [ 165.088223][ C1] schedule+0x14b/0x320 [ 165.092408][ C1] schedule_preempt_disabled+0x13/0x30 [ 165.097890][ C1] __mutex_lock+0x6a4/0xd70 [ 165.102799][ C1] ? __mutex_lock+0x527/0xd70 [ 165.107481][ C1] ? devinet_ioctl+0x2ce/0x1bc0 [ 165.112359][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 165.117394][ C1] ? bpf_lsm_capable+0x9/0x10 [ 165.122102][ C1] ? security_capable+0x90/0xb0 [ 165.126956][ C1] ? get_rtnl_holder+0x144/0x190 [ 165.131923][ C1] devinet_ioctl+0x2ce/0x1bc0 [ 165.136611][ C1] ? get_user_ifreq+0x1bb/0x200 [ 165.141559][ C1] inet_ioctl+0x3d7/0x4f0 [ 165.145917][ C1] ? __pfx_inet_ioctl+0x10/0x10 [ 165.150818][ C1] sock_do_ioctl+0x158/0x460 [ 165.155429][ C1] ? __pfx_sock_do_ioctl+0x10/0x10 [ 165.160571][ C1] ? __pfx_lock_release+0x10/0x10 [ 165.165609][ C1] sock_ioctl+0x629/0x8e0 [ 165.169959][ C1] ? __pfx_sock_ioctl+0x10/0x10 [ 165.174842][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 165.180849][ C1] ? bpf_lsm_file_ioctl+0x9/0x10 [ 165.185810][ C1] ? security_file_ioctl+0x87/0xb0 [ 165.190960][ C1] ? __pfx_sock_ioctl+0x10/0x10 [ 165.195822][ C1] __se_sys_ioctl+0xfc/0x170 [ 165.200444][ C1] do_syscall_64+0xf3/0x230 [ 165.204950][ C1] ? clear_bhb_loop+0x35/0x90 [ 165.209630][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 165.215553][ C1] RIP: 0033:0x7f0c0b772d49 [ 165.219967][ C1] RSP: 002b:00007ffcce133058 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 165.228405][ C1] RAX: ffffffffffffffda RBX: 00007f0c0b6a46c0 RCX: 00007f0c0b772d49 [ 165.236432][ C1] RDX: 00007ffcce143248 RSI: 0000000000008914 RDI: 000000000000000c [ 165.244455][ C1] RBP: 00007ffcce153408 R08: 00007ffcce143208 R09: 00007ffcce1431b8 [ 165.252477][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 165.260488][ C1] R13: 00007ffcce143248 R14: 0000000000000028 R15: 0000000000008914 [ 165.268491][ C1] [ 165.271548][ C1] DEBUG: waiting rtnl_mutex for 813 jiffies. [ 165.277606][ C1] task:kworker/0:6 state:D stack:23680 pid:5149 tgid:5149 ppid:2 flags:0x00004000 [ 165.287798][ C1] Workqueue: events linkwatch_event [ 165.293032][ C1] Call Trace: [ 165.296315][ C1] [ 165.299245][ C1] __schedule+0x1800/0x4a60 [ 165.303813][ C1] ? __pfx___schedule+0x10/0x10 [ 165.308670][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 165.314697][ C1] ? __pfx_lock_release+0x10/0x10 [ 165.319727][ C1] ? kick_pool+0x1bd/0x620 [ 165.324187][ C1] ? _raw_spin_unlock_irq+0x23/0x50 [ 165.329384][ C1] ? lockdep_hardirqs_on+0x99/0x150 [ 165.334609][ C1] ? schedule+0x90/0x320 [ 165.338851][ C1] schedule+0x14b/0x320 [ 165.343053][ C1] schedule_preempt_disabled+0x13/0x30 [ 165.348519][ C1] __mutex_lock+0x6a4/0xd70 [ 165.353058][ C1] ? __mutex_lock+0x527/0xd70 [ 165.357745][ C1] ? linkwatch_event+0xe/0x60 [ 165.362536][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 165.367575][ C1] ? get_rtnl_holder+0x144/0x190 [ 165.372539][ C1] ? process_scheduled_works+0x945/0x1830 [ 165.378288][ C1] linkwatch_event+0xe/0x60 [ 165.382828][ C1] process_scheduled_works+0xa2c/0x1830 [ 165.388488][ C1] ? __pfx_process_scheduled_works+0x10/0x10 [ 165.394509][ C1] ? assign_work+0x364/0x3d0 [ 165.399196][ C1] worker_thread+0x86d/0xd40 [ 165.403852][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 165.409762][ C1] ? __kthread_parkme+0x169/0x1d0 [ 165.414818][ C1] ? __pfx_worker_thread+0x10/0x10 [ 165.419946][ C1] kthread+0x2f0/0x390 [ 165.424044][ C1] ? __pfx_worker_thread+0x10/0x10 [ 165.429156][ C1] ? __pfx_kthread+0x10/0x10 [ 165.433785][ C1] ret_from_fork+0x4b/0x80 [ 165.438205][ C1] ? __pfx_kthread+0x10/0x10 [ 165.442939][ C1] ret_from_fork_asm+0x1a/0x30 [ 165.447917][ C1] [ 165.450980][ C1] [ 165.450980][ C1] Showing all locks held in the system: [ 165.458703][ C1] 3 locks held by kworker/u8:0/11: [ 165.463923][ C1] 3 locks held by kworker/u8:1/12: [ 165.469036][ C1] 2 locks held by kworker/u8:3/52: [ 165.474184][ C1] 2 locks held by kworker/u9:0/54: [ 165.479289][ C1] 4 locks held by kworker/u8:4/62: [ 165.484424][ C1] 5 locks held by kworker/u8:5/1041: [ 165.489704][ C1] #0: ffff888015edd948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 165.500626][ C1] #1: ffffc90003f07d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 165.511209][ C1] #2: ffffffff8f5f2c10 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0 [ 165.520667][ C1] #3: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: default_device_exit_batch+0xe9/0xa90 [ 165.530716][ C1] #4: ffffffff8e33ac38 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x381/0x830 [ 165.541648][ C1] 3 locks held by kworker/u8:6/1087: [ 165.546944][ C1] 3 locks held by kworker/u8:8/2871: [ 165.552262][ C1] 3 locks held by kworker/u8:9/2876: [ 165.557566][ C1] 1 lock held by dhcpcd/4761: [ 165.562257][ C1] #0: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: devinet_ioctl+0x2ce/0x1bc0 [ 165.571438][ C1] 2 locks held by getty/4850: [ 165.576108][ C1] #0: ffff88802a2340a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 165.585897][ C1] #1: ffffc90002f162f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10 [ 165.596034][ C1] 3 locks held by kworker/0:5/5148: [ 165.601247][ C1] 3 locks held by kworker/0:6/5149: [ 165.606442][ C1] #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 165.617456][ C1] #1: ffffc90004017d00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 165.628464][ C1] #2: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60 [ 165.637485][ C1] 2 locks held by udevd/5854: [ 165.642181][ C1] 1 lock held by syz-executor/5948: [ 165.647382][ C1] #0: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x847/0x1180 [ 165.657059][ C1] 2 locks held by syz-executor/5961: [ 165.662366][ C1] #0: ffffffff8f5f2c10 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c6/0x7b0 [ 165.671809][ C1] #1: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock_killable+0x26/0x150 [ 165.681292][ C1] 3 locks held by syz.0.149/6018: [ 165.686354][ C1] 4 locks held by syz.3.152/6011: [ 165.691409][ C1] #0: ffff888079a6d608 (&sb->s_type->i_mutex_key#10){+.+.}-{3:3}, at: sock_close+0x90/0x240 [ 165.701754][ C1] #1: ffffffff8f667110 ((netlink_chain).rwsem){++++}-{3:3}, at: blocking_notifier_call_chain+0x53/0x90 [ 165.712946][ C1] #2: ffff88802b67d6b8 (&nft_net->commit_mutex){+.+.}-{3:3}, at: nft_rcv_nl_event+0x123/0x6d0 [ 165.723347][ C1] #3: ffffffff8e33ac38 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x451/0x830 [ 165.734299][ C1] 1 lock held by syz.4.153/6013: [ 165.739242][ C1] [ 165.741587][ C1] ============================================= [ 165.741587][ C1] [ 166.435416][ T1041] team0 (unregistering): Port device team_slave_1 removed [ 166.582570][ T1041] team0 (unregistering): Port device team_slave_0 removed [ 166.820715][ C1] DEBUG: waiting rtnl_mutex for 1030 jiffies. [ 166.826850][ C1] task:syz-executor state:D stack:24608 pid:5948 tgid:5948 ppid:5913 flags:0x00004000 [ 166.837135][ C1] Call Trace: [ 166.840564][ C1] [ 166.843531][ C1] __schedule+0x1800/0x4a60 [ 166.848223][ C1] ? __pfx___schedule+0x10/0x10 [ 166.853175][ C1] ? __pfx_lock_release+0x10/0x10 [ 166.858249][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 166.863826][ C1] ? schedule+0x90/0x320 [ 166.868373][ C1] schedule+0x14b/0x320 [ 166.872642][ C1] schedule_preempt_disabled+0x13/0x30 [ 166.878161][ C1] __mutex_lock+0x6a4/0xd70 [ 166.882769][ C1] ? __mutex_lock+0x527/0xd70 [ 166.887493][ C1] ? rtnetlink_rcv_msg+0x847/0x1180 [ 166.892808][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 166.897892][ C1] ? get_rtnl_holder+0x144/0x190 [ 166.902918][ C1] rtnetlink_rcv_msg+0x847/0x1180 [ 166.908005][ C1] ? rtnetlink_rcv_msg+0x208/0x1180 [ 166.913329][ C1] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 166.918840][ C1] ? is_bpf_text_address+0x285/0x2a0 [ 166.924259][ C1] ? __pfx_validate_chain+0x10/0x10 [ 166.929516][ C1] ? __pfx_validate_chain+0x10/0x10 [ 166.934848][ C1] ? arch_stack_walk+0x16d/0x1b0 [ 166.939927][ C1] ? mark_lock+0x9a/0x360 [ 166.944360][ C1] ? __pfx_validate_chain+0x10/0x10 [ 166.949610][ C1] ? __lock_acquire+0x1359/0x2000 [ 166.954767][ C1] ? mark_lock+0x9a/0x360 [ 166.959276][ C1] ? __lock_acquire+0x1359/0x2000 [ 166.964534][ C1] netlink_rcv_skb+0x1e3/0x430 [ 166.969388][ C1] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 166.974965][ C1] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 166.980402][ C1] ? netlink_deliver_tap+0x2e/0x1b0 [ 166.985646][ C1] netlink_unicast+0x7f0/0x990 [ 166.990508][ C1] ? __pfx_netlink_unicast+0x10/0x10 [ 166.995844][ C1] ? __virt_addr_valid+0x183/0x530 [ 167.001082][ C1] ? __check_object_size+0x49c/0x900 [ 167.006413][ C1] ? bpf_lsm_netlink_send+0x9/0x10 [ 167.011646][ C1] netlink_sendmsg+0x8e4/0xcb0 [ 167.016467][ C1] ? __pfx_netlink_sendmsg+0x10/0x10 [ 167.021839][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 167.027872][ C1] ? aa_sock_msg_perm+0x91/0x160 [ 167.032922][ C1] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 167.038266][ C1] ? security_socket_sendmsg+0x87/0xb0 [ 167.043855][ C1] ? __pfx_netlink_sendmsg+0x10/0x10 [ 167.049176][ C1] __sock_sendmsg+0x221/0x270 [ 167.053963][ C1] __sys_sendto+0x3a4/0x4f0 [ 167.058517][ C1] ? __pfx___sys_sendto+0x10/0x10 [ 167.063662][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 167.069692][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 167.076136][ C1] __x64_sys_sendto+0xde/0x100 [ 167.081012][ C1] do_syscall_64+0xf3/0x230 [ 167.085738][ C1] ? clear_bhb_loop+0x35/0x90 [ 167.090607][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 167.096558][ C1] RIP: 0033:0x7faf2d57796c [ 167.101113][ C1] RSP: 002b:00007ffcbea19f90 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 167.109580][ C1] RAX: ffffffffffffffda RBX: 00007faf2e234620 RCX: 00007faf2d57796c [ 167.117657][ C1] RDX: 0000000000000028 RSI: 00007faf2e234670 RDI: 0000000000000003 [ 167.125785][ C1] RBP: 0000000000000000 R08: 00007ffcbea19fe4 R09: 000000000000000c [ 167.133850][ C1] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 167.141931][ C1] R13: 0000000000000000 R14: 00007faf2e234670 R15: 0000000000000000 [ 167.150214][ C1] [ 167.153280][ C1] DEBUG: waiting rtnl_mutex for 1061 jiffies. [ 167.159398][ C1] task:syz-executor state:D stack:24608 pid:5961 tgid:5961 ppid:5951 flags:0x00004002 [ 167.169722][ C1] Call Trace: [ 167.173067][ C1] [ 167.176047][ C1] __schedule+0x1800/0x4a60 [ 167.180683][ C1] ? __pfx___schedule+0x10/0x10 [ 167.185691][ C1] ? __pfx_lock_release+0x10/0x10 [ 167.190820][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 167.196339][ C1] ? schedule+0x90/0x320 [ 167.200665][ C1] schedule+0x14b/0x320 [ 167.204882][ C1] schedule_preempt_disabled+0x13/0x30 [ 167.210468][ C1] __mutex_lock+0x6a4/0xd70 [ 167.215030][ C1] ? __mutex_lock+0x527/0xd70 [ 167.219773][ C1] ? rtnl_lock_killable+0x26/0x150 [ 167.225027][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 167.230132][ C1] ? __kasan_kmalloc+0x98/0xb0 [ 167.235015][ C1] ? alloc_netdev_mqs+0xb6f/0xff0 [ 167.240088][ C1] ? get_rtnl_holder+0x144/0x190 [ 167.245155][ C1] rtnl_lock_killable+0x26/0x150 [ 167.250283][ C1] register_netdev+0x13/0x50 [ 167.254919][ C1] sit_init_net+0x1fb/0x4e0 [ 167.259487][ C1] ops_init+0x359/0x610 [ 167.263774][ C1] ? setup_net+0x520/0xca0 [ 167.268332][ C1] setup_net+0x515/0xca0 [ 167.272686][ C1] ? __pfx_down_read_killable+0x10/0x10 [ 167.278322][ C1] ? __pfx_setup_net+0x10/0x10 [ 167.283215][ C1] copy_net_ns+0x4e2/0x7b0 [ 167.287681][ C1] create_new_namespaces+0x425/0x7b0 [ 167.293074][ C1] ? bpf_lsm_capable+0x9/0x10 [ 167.297811][ C1] unshare_nsproxy_namespaces+0x124/0x180 [ 167.303661][ C1] ksys_unshare+0x619/0xc10 [ 167.308267][ C1] ? __pfx_ksys_unshare+0x10/0x10 [ 167.313552][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 167.319609][ C1] ? do_syscall_64+0x100/0x230 [ 167.324510][ C1] __x64_sys_unshare+0x38/0x40 [ 167.329333][ C1] do_syscall_64+0xf3/0x230 [ 167.333956][ C1] ? clear_bhb_loop+0x35/0x90 [ 167.338691][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 167.344737][ C1] RIP: 0033:0x7f986a577337 [ 167.349277][ C1] RSP: 002b:00007fffa6175ef8 EFLAGS: 00000202 ORIG_RAX: 0000000000000110 [ 167.357835][ C1] RAX: ffffffffffffffda RBX: 00007f986a703f20 RCX: 00007f986a577337 [ 167.365906][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000000 [ 167.373988][ C1] RBP: 00007f986a704a18 R08: 0000000000000000 R09: 0000000000000000 [ 167.382048][ C1] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000000000c [ 167.390068][ C1] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000009 [ 167.398189][ C1] [ 167.401282][ C1] DEBUG: holding rtnl_mutex for 1085 jiffies. [ 167.407374][ C1] task:kworker/u8:5 state:D stack:22624 pid:1041 tgid:1041 ppid:2 flags:0x00004000 [ 167.417665][ C1] Workqueue: netns cleanup_net [ 167.422704][ C1] Call Trace: [ 167.426027][ C1] [ 167.429001][ C1] __schedule+0x1800/0x4a60 [ 167.433643][ C1] ? __pfx___schedule+0x10/0x10 [ 167.438536][ C1] ? __pfx_lock_release+0x10/0x10 [ 167.443685][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 167.449640][ C1] ? kthread_data+0x52/0xd0 [ 167.454266][ C1] ? wq_worker_sleeping+0x66/0x240 [ 167.459430][ C1] ? schedule+0x90/0x320 [ 167.463761][ C1] schedule+0x14b/0x320 [ 167.467970][ C1] synchronize_rcu_expedited+0x684/0x830 [ 167.473735][ C1] ? __pfx_synchronize_rcu_expedited+0x10/0x10 [ 167.480047][ C1] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 167.485465][ C1] ? __pfx___might_resched+0x10/0x10 [ 167.490829][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 167.496860][ C1] ? __pfx_autoremove_wake_function+0x10/0x10 [ 167.503141][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 167.509530][ C1] synchronize_rcu+0x11b/0x360 [ 167.514427][ C1] ? __pfx_synchronize_rcu+0x10/0x10 [ 167.519787][ C1] lockdep_unregister_key+0x556/0x610 [ 167.525294][ C1] ? __pfx_lockdep_unregister_key+0x10/0x10 [ 167.531283][ C1] ? rcu_is_watching+0x15/0xb0 [ 167.536103][ C1] ? qdisc_reset+0x3bf/0x5b0 [ 167.540803][ C1] __qdisc_destroy+0x165/0x410 [ 167.545612][ C1] dev_shutdown+0x9b/0x440 [ 167.550080][ C1] unregister_netdevice_many_notify+0x9c7/0x1d20 [ 167.556604][ C1] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 167.563485][ C1] ? unregister_netdevice_queue+0x26b/0x370 [ 167.569530][ C1] ? batadv_softif_destroy_netlink+0x1e0/0x270 [ 167.575823][ C1] default_device_exit_batch+0xa0f/0xa90 [ 167.581575][ C1] ? __pfx___might_resched+0x10/0x10 [ 167.586924][ C1] ? __pfx_default_device_exit_batch+0x10/0x10 [ 167.593313][ C1] ? cfg802154_pernet_exit+0xc3/0xe0 [ 167.598706][ C1] ? __pfx_default_device_exit_batch+0x10/0x10 [ 167.605001][ C1] cleanup_net+0x89d/0xcc0 [ 167.609473][ C1] ? __pfx_cleanup_net+0x10/0x10 [ 167.614534][ C1] ? process_scheduled_works+0x945/0x1830 [ 167.620363][ C1] process_scheduled_works+0xa2c/0x1830 [ 167.626015][ C1] ? __pfx_process_scheduled_works+0x10/0x10 [ 167.632149][ C1] ? assign_work+0x364/0x3d0 [ 167.636812][ C1] worker_thread+0x86d/0xd40 [ 167.641566][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 167.647518][ C1] ? __kthread_parkme+0x169/0x1d0 [ 167.652675][ C1] ? __pfx_worker_thread+0x10/0x10 [ 167.657853][ C1] kthread+0x2f0/0x390 [ 167.662100][ C1] ? __pfx_worker_thread+0x10/0x10 [ 167.667271][ C1] ? __pfx_kthread+0x10/0x10 [ 167.671968][ C1] ret_from_fork+0x4b/0x80 [ 167.676444][ C1] ? __pfx_kthread+0x10/0x10 [ 167.681180][ C1] ret_from_fork_asm+0x1a/0x30 [ 167.686203][ C1] [ 167.689255][ C1] DEBUG: waiting rtnl_mutex for 1080 jiffies. [ 167.695399][ C1] task:dhcpcd state:D stack:20672 pid:4761 tgid:4761 ppid:4760 flags:0x00000002 [ 167.705796][ C1] Call Trace: [ 167.709122][ C1] [ 167.712160][ C1] __schedule+0x1800/0x4a60 [ 167.716746][ C1] ? __pfx___schedule+0x10/0x10 [ 167.721723][ C1] ? __pfx_lock_release+0x10/0x10 [ 167.726810][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 167.732462][ C1] ? schedule+0x90/0x320 [ 167.736772][ C1] schedule+0x14b/0x320 [ 167.741168][ C1] schedule_preempt_disabled+0x13/0x30 [ 167.746696][ C1] __mutex_lock+0x6a4/0xd70 [ 167.751374][ C1] ? __mutex_lock+0x527/0xd70 [ 167.756191][ C1] ? devinet_ioctl+0x2ce/0x1bc0 [ 167.761188][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 167.766282][ C1] ? bpf_lsm_capable+0x9/0x10 [ 167.771089][ C1] ? security_capable+0x90/0xb0 [ 167.776073][ C1] ? get_rtnl_holder+0x144/0x190 [ 167.781128][ C1] devinet_ioctl+0x2ce/0x1bc0 [ 167.785865][ C1] ? get_user_ifreq+0x1bb/0x200 [ 167.790848][ C1] inet_ioctl+0x3d7/0x4f0 [ 167.795240][ C1] ? __pfx_inet_ioctl+0x10/0x10 [ 167.800245][ C1] sock_do_ioctl+0x158/0x460 [ 167.804903][ C1] ? __pfx_sock_do_ioctl+0x10/0x10 [ 167.810078][ C1] ? __pfx_lock_release+0x10/0x10 [ 167.815342][ C1] sock_ioctl+0x629/0x8e0 [ 167.819744][ C1] ? __pfx_sock_ioctl+0x10/0x10 [ 167.824724][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 167.830907][ C1] ? bpf_lsm_file_ioctl+0x9/0x10 [ 167.835906][ C1] ? security_file_ioctl+0x87/0xb0 [ 167.841147][ C1] ? __pfx_sock_ioctl+0x10/0x10 [ 167.846064][ C1] __se_sys_ioctl+0xfc/0x170 [ 167.850796][ C1] do_syscall_64+0xf3/0x230 [ 167.855351][ C1] ? clear_bhb_loop+0x35/0x90 [ 167.860093][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 167.866217][ C1] RIP: 0033:0x7f0c0b772d49 [ 167.870515][ T54] Bluetooth: hci4: command tx timeout [ 167.870690][ C1] RSP: 002b:00007ffcce133058 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 167.884573][ C1] RAX: ffffffffffffffda RBX: 00007f0c0b6a46c0 RCX: 00007f0c0b772d49 [ 167.892645][ C1] RDX: 00007ffcce143248 RSI: 0000000000008914 RDI: 000000000000000c [ 167.900724][ C1] RBP: 00007ffcce153408 R08: 00007ffcce143208 R09: 00007ffcce1431b8 [ 167.908763][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 167.916930][ C1] R13: 00007ffcce143248 R14: 0000000000000028 R15: 0000000000008914 [ 167.925144][ C1] [ 167.928202][ C1] DEBUG: waiting rtnl_mutex for 1078 jiffies. [ 167.934345][ C1] task:kworker/0:6 state:D stack:23680 pid:5149 tgid:5149 ppid:2 flags:0x00004000 [ 167.944616][ C1] Workqueue: events linkwatch_event [ 167.949880][ C1] Call Trace: [ 167.953231][ C1] [ 167.956208][ C1] __schedule+0x1800/0x4a60 [ 167.960924][ C1] ? __pfx___schedule+0x10/0x10 [ 167.965835][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 167.971906][ C1] ? __pfx_lock_release+0x10/0x10 [ 167.976995][ C1] ? kick_pool+0x1bd/0x620 [ 167.981534][ C1] ? _raw_spin_unlock_irq+0x23/0x50 [ 167.986788][ C1] ? lockdep_hardirqs_on+0x99/0x150 [ 167.992122][ C1] ? schedule+0x90/0x320 [ 167.996422][ C1] schedule+0x14b/0x320 [ 168.000696][ C1] schedule_preempt_disabled+0x13/0x30 [ 168.006221][ C1] __mutex_lock+0x6a4/0xd70 [ 168.010887][ C1] ? __mutex_lock+0x527/0xd70 [ 168.015630][ C1] ? linkwatch_event+0xe/0x60 [ 168.020435][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 168.025519][ C1] ? get_rtnl_holder+0x144/0x190 [ 168.030571][ C1] ? process_scheduled_works+0x945/0x1830 [ 168.036326][ C1] linkwatch_event+0xe/0x60 [ 168.040911][ C1] process_scheduled_works+0xa2c/0x1830 [ 168.046547][ C1] ? __pfx_process_scheduled_works+0x10/0x10 [ 168.052671][ C1] ? assign_work+0x364/0x3d0 [ 168.057318][ C1] worker_thread+0x86d/0xd40 [ 168.062055][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 168.068016][ C1] ? __kthread_parkme+0x169/0x1d0 [ 168.073181][ C1] ? __pfx_worker_thread+0x10/0x10 [ 168.078348][ C1] kthread+0x2f0/0x390 [ 168.082557][ C1] ? __pfx_worker_thread+0x10/0x10 [ 168.087732][ C1] ? __pfx_kthread+0x10/0x10 [ 168.092444][ C1] ret_from_fork+0x4b/0x80 [ 168.097139][ C1] ? __pfx_kthread+0x10/0x10 [ 168.101847][ C1] ret_from_fork_asm+0x1a/0x30 [ 168.106779][ C1] [ 168.109866][ C1] [ 168.109866][ C1] Showing all locks held in the system: [ 168.117695][ C1] 2 locks held by kworker/u8:0/11: [ 168.122899][ C1] #0: ffff888015089148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 168.134738][ C1] #1: ffffc90000107d00 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 168.147019][ C1] 5 locks held by kworker/u8:5/1041: [ 168.152399][ C1] #0: ffff888015edd948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 168.163514][ C1] #1: ffffc90003f07d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 168.174304][ C1] #2: ffffffff8f5f2c10 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0 [ 168.183886][ C1] #3: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: default_device_exit_batch+0xe9/0xa90 [ 168.194256][ C1] #4: ffffffff8e33ac38 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x381/0x830 [ 168.205299][ C1] 3 locks held by udevd/4547: [ 168.210101][ C1] #0: ffffffff8e9c8b90 (tomoyo_ss){.+.+}-{0:0}, at: tomoyo_check_open_permission+0x204/0x500 [ 168.220647][ C1] #1: ffffc90000a18c00 (net/core/rtnetlink.c:83){+.-.}-{0:0}, at: call_timer_fn+0xc0/0x650 [ 168.230922][ C1] #2: ffffffff8e335860 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0 [ 168.240913][ C1] 1 lock held by dhcpcd/4761: [ 168.245634][ C1] #0: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: devinet_ioctl+0x2ce/0x1bc0 [ 168.254955][ C1] 2 locks held by getty/4850: [ 168.259703][ C1] #0: ffff88802a2340a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 168.269626][ C1] #1: ffffc90002f162f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10 [ 168.279880][ C1] 3 locks held by kworker/0:6/5149: [ 168.285178][ C1] #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 168.296288][ C1] #1: ffffc90004017d00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 168.307416][ C1] #2: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60 [ 168.316542][ C1] 1 lock held by syz-executor/5948: [ 168.321930][ C1] #0: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x847/0x1180 [ 168.331572][ C1] 2 locks held by syz-executor/5961: [ 168.336891][ C1] #0: ffffffff8f5f2c10 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c6/0x7b0 [ 168.346473][ C1] #1: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock_killable+0x26/0x150 [ 168.356100][ C1] 2 locks held by syz.0.149/6018: [ 168.361227][ C1] #0: ffff88806ade8258 (sk_lock-AF_SMC){+.+.}-{0:0}, at: smc_connect+0xb7/0xde0 [ 168.370500][ C1] #1: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: smc_vlan_by_tcpsk+0x399/0x4e0 [ 168.380018][ C1] 1 lock held by syz.3.156/6030: [ 168.385064][ C1] 2 locks held by syz.4.158/6042: [ 168.390136][ C1] [ 168.392543][ C1] ============================================= [ 168.392543][ C1] [ 168.432734][ T5102] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 168.450485][ T5102] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 168.461240][ T5102] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 168.485641][ T5102] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 168.508435][ T5102] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 168.518926][ T5102] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 169.272654][ T6049] futex_wake_op: syz.3.159 tries to shift op by -257; fix this program [ 169.461398][ C1] DEBUG: waiting rtnl_mutex for 1294 jiffies. [ 169.467542][ C1] task:syz-executor state:D stack:24608 pid:5948 tgid:5948 ppid:5913 flags:0x00004000 [ 169.477934][ C1] Call Trace: [ 169.481300][ C1] [ 169.484283][ C1] __schedule+0x1800/0x4a60 [ 169.488861][ C1] ? __pfx___schedule+0x10/0x10 [ 169.493847][ C1] ? __pfx_lock_release+0x10/0x10 [ 169.498924][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 169.504521][ C1] ? schedule+0x90/0x320 [ 169.508833][ C1] schedule+0x14b/0x320 [ 169.513214][ C1] schedule_preempt_disabled+0x13/0x30 [ 169.515684][ T6042] loop4: detected capacity change from 0 to 32768 [ 169.518701][ C1] __mutex_lock+0x6a4/0xd70 [ 169.529750][ C1] ? __mutex_lock+0x527/0xd70 [ 169.534628][ C1] ? rtnetlink_rcv_msg+0x847/0x1180 [ 169.539904][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 169.545071][ C1] ? get_rtnl_holder+0x144/0x190 [ 169.550078][ C1] rtnetlink_rcv_msg+0x847/0x1180 [ 169.555254][ C1] ? rtnetlink_rcv_msg+0x208/0x1180 [ 169.560564][ C1] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 169.566097][ C1] ? is_bpf_text_address+0x285/0x2a0 [ 169.571525][ C1] ? __pfx_validate_chain+0x10/0x10 [ 169.576783][ C1] ? __pfx_validate_chain+0x10/0x10 [ 169.582104][ C1] ? arch_stack_walk+0x16d/0x1b0 [ 169.587117][ C1] ? mark_lock+0x9a/0x360 [ 169.591564][ C1] ? __pfx_validate_chain+0x10/0x10 [ 169.596841][ C1] ? __lock_acquire+0x1359/0x2000 [ 169.601994][ C1] ? mark_lock+0x9a/0x360 [ 169.606381][ C1] ? __lock_acquire+0x1359/0x2000 [ 169.611528][ C1] netlink_rcv_skb+0x1e3/0x430 [ 169.616346][ C1] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 169.621905][ C1] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 169.627278][ C1] ? netlink_deliver_tap+0x2e/0x1b0 [ 169.632554][ C1] netlink_unicast+0x7f0/0x990 [ 169.637400][ C1] ? __pfx_netlink_unicast+0x10/0x10 [ 169.642814][ C1] ? __virt_addr_valid+0x183/0x530 [ 169.647847][ T6042] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 169.647989][ C1] ? __check_object_size+0x49c/0x900 [ 169.662006][ C1] ? bpf_lsm_netlink_send+0x9/0x10 [ 169.667169][ C1] netlink_sendmsg+0x8e4/0xcb0 [ 169.672035][ C1] ? __pfx_netlink_sendmsg+0x10/0x10 [ 169.677359][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 169.683447][ C1] ? aa_sock_msg_perm+0x91/0x160 [ 169.688561][ C1] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 169.693954][ C1] ? security_socket_sendmsg+0x87/0xb0 [ 169.699571][ C1] ? __pfx_netlink_sendmsg+0x10/0x10 [ 169.704960][ C1] __sock_sendmsg+0x221/0x270 [ 169.709727][ C1] __sys_sendto+0x3a4/0x4f0 [ 169.714433][ C1] ? __pfx___sys_sendto+0x10/0x10 [ 169.719543][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 169.725635][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 169.732068][ C1] __x64_sys_sendto+0xde/0x100 [ 169.736893][ C1] do_syscall_64+0xf3/0x230 [ 169.741490][ C1] ? clear_bhb_loop+0x35/0x90 [ 169.746223][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 169.752218][ C1] RIP: 0033:0x7faf2d57796c [ 169.756753][ C1] RSP: 002b:00007ffcbea19f90 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 169.765285][ C1] RAX: ffffffffffffffda RBX: 00007faf2e234620 RCX: 00007faf2d57796c [ 169.770350][ T6042] XFS (loop4): Ending clean mount [ 169.773324][ C1] RDX: 0000000000000028 RSI: 00007faf2e234670 RDI: 0000000000000003 [ 169.786421][ C1] RBP: 0000000000000000 R08: 00007ffcbea19fe4 R09: 000000000000000c [ 169.790003][ T6042] XFS (loop4): Quotacheck needed: Please wait. [ 169.794553][ C1] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 169.794578][ C1] R13: 0000000000000000 R14: 00007faf2e234670 R15: 0000000000000000 [ 169.794612][ C1] [ 169.794623][ C1] DEBUG: waiting rtnl_mutex for 1325 jiffies. [ 169.794636][ C1] task:syz-executor state:D stack:24608 pid:5961 tgid:5961 ppid:5951 flags:0x00004002 [ 169.794679][ C1] Call Trace: [ 169.794689][ C1] [ 169.794722][ C1] __schedule+0x1800/0x4a60 [ 169.794780][ C1] ? __pfx___schedule+0x10/0x10 [ 169.794814][ C1] ? __pfx_lock_release+0x10/0x10 [ 169.794847][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 169.794895][ C1] ? schedule+0x90/0x320 [ 169.867062][ C1] schedule+0x14b/0x320 [ 169.871344][ C1] schedule_preempt_disabled+0x13/0x30 [ 169.876858][ C1] __mutex_lock+0x6a4/0xd70 [ 169.881499][ C1] ? __mutex_lock+0x527/0xd70 [ 169.886234][ C1] ? rtnl_lock_killable+0x26/0x150 [ 169.891878][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 169.893393][ T6042] XFS (loop4): Quotacheck: Done. [ 169.896948][ C1] ? __kasan_kmalloc+0x98/0xb0 [ 169.896984][ C1] ? alloc_netdev_mqs+0xb6f/0xff0 [ 169.912004][ C1] ? get_rtnl_holder+0x144/0x190 [ 169.917014][ C1] rtnl_lock_killable+0x26/0x150 [ 169.922088][ C1] register_netdev+0x13/0x50 [ 169.926795][ C1] sit_init_net+0x1fb/0x4e0 [ 169.931416][ C1] ops_init+0x359/0x610 [ 169.935612][ C1] ? setup_net+0x520/0xca0 [ 169.940080][ C1] setup_net+0x515/0xca0 [ 169.944452][ C1] ? __pfx_down_read_killable+0x10/0x10 [ 169.950074][ C1] ? __pfx_setup_net+0x10/0x10 [ 169.954986][ C1] copy_net_ns+0x4e2/0x7b0 [ 169.959468][ C1] create_new_namespaces+0x425/0x7b0 [ 169.964892][ C1] ? bpf_lsm_capable+0x9/0x10 [ 169.969518][ T29] audit: type=1804 audit(1720026119.748:2): pid=6042 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.158" name="/newroot/20/file0/bus" dev="loop4" ino=9291 res=1 errno=0 [ 169.969619][ C1] unshare_nsproxy_namespaces+0x124/0x180 [ 169.997192][ C1] ksys_unshare+0x619/0xc10 [ 170.000256][ T29] audit: type=1800 audit(1720026119.758:3): pid=6042 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.158" name="bus" dev="loop4" ino=9291 res=0 errno=0 [ 170.001813][ C1] ? __pfx_ksys_unshare+0x10/0x10 [ 170.026970][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 170.033060][ C1] ? do_syscall_64+0x100/0x230 [ 170.037865][ C1] __x64_sys_unshare+0x38/0x40 [ 170.042710][ C1] do_syscall_64+0xf3/0x230 [ 170.047234][ C1] ? clear_bhb_loop+0x35/0x90 [ 170.052002][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 170.058026][ C1] RIP: 0033:0x7f986a577337 [ 170.062506][ C1] RSP: 002b:00007fffa6175ef8 EFLAGS: 00000202 ORIG_RAX: 0000000000000110 [ 170.070978][ C1] RAX: ffffffffffffffda RBX: 00007f986a703f20 RCX: 00007f986a577337 [ 170.079004][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000000 [ 170.087052][ C1] RBP: 00007f986a704a18 R08: 0000000000000000 R09: 0000000000000000 [ 170.095116][ C1] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000000000c [ 170.103183][ C1] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000009 [ 170.111272][ C1] [ 170.114337][ C1] DEBUG: holding rtnl_mutex for 1356 jiffies. [ 170.120489][ C1] task:kworker/u8:5 state:D stack:22624 pid:1041 tgid:1041 ppid:2 flags:0x00004000 [ 170.130770][ C1] Workqueue: netns cleanup_net [ 170.135798][ C1] Call Trace: [ 170.139075][ C1] [ 170.142067][ C1] __schedule+0x1800/0x4a60 [ 170.146726][ C1] ? __pfx___schedule+0x10/0x10 [ 170.151682][ C1] ? __pfx_lock_release+0x10/0x10 [ 170.156851][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 170.162856][ C1] ? kthread_data+0x52/0xd0 [ 170.167503][ C1] ? wq_worker_sleeping+0x66/0x240 [ 170.172741][ C1] ? schedule+0x90/0x320 [ 170.177034][ C1] schedule+0x14b/0x320 [ 170.181276][ C1] synchronize_rcu_expedited+0x684/0x830 [ 170.186960][ C1] ? __pfx_synchronize_rcu_expedited+0x10/0x10 [ 170.193337][ C1] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 170.198672][ C1] ? __pfx___might_resched+0x10/0x10 [ 170.204051][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 170.210064][ C1] ? __pfx_autoremove_wake_function+0x10/0x10 [ 170.216204][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 170.222640][ C1] synchronize_rcu+0x11b/0x360 [ 170.227464][ C1] ? __pfx_synchronize_rcu+0x10/0x10 [ 170.232866][ C1] lockdep_unregister_key+0x556/0x610 [ 170.238284][ C1] ? __pfx_lockdep_unregister_key+0x10/0x10 [ 170.244253][ C1] ? rcu_is_watching+0x15/0xb0 [ 170.249054][ C1] ? qdisc_reset+0x3bf/0x5b0 [ 170.253718][ C1] __qdisc_destroy+0x165/0x410 [ 170.258629][ C1] dev_shutdown+0x357/0x440 [ 170.263243][ C1] unregister_netdevice_many_notify+0x9c7/0x1d20 [ 170.270742][ C1] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 170.277586][ C1] ? unregister_netdevice_queue+0x26b/0x370 [ 170.283580][ C1] ? batadv_softif_destroy_netlink+0x1e0/0x270 [ 170.289878][ C1] default_device_exit_batch+0xa0f/0xa90 [ 170.295641][ C1] ? __pfx___might_resched+0x10/0x10 [ 170.301019][ C1] ? __pfx_default_device_exit_batch+0x10/0x10 [ 170.307235][ C1] ? cfg802154_pernet_exit+0xc3/0xe0 [ 170.312630][ C1] ? __pfx_default_device_exit_batch+0x10/0x10 [ 170.318870][ C1] cleanup_net+0x89d/0xcc0 [ 170.323730][ C1] ? __pfx_cleanup_net+0x10/0x10 [ 170.328724][ C1] ? process_scheduled_works+0x945/0x1830 [ 170.334674][ C1] process_scheduled_works+0xa2c/0x1830 [ 170.340370][ C1] ? __pfx_process_scheduled_works+0x10/0x10 [ 170.346514][ C1] ? assign_work+0x364/0x3d0 [ 170.351218][ C1] worker_thread+0x86d/0xd40 [ 170.355867][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 170.361851][ C1] ? __kthread_parkme+0x169/0x1d0 [ 170.366922][ C1] ? __pfx_worker_thread+0x10/0x10 [ 170.372141][ C1] kthread+0x2f0/0x390 [ 170.376265][ C1] ? __pfx_worker_thread+0x10/0x10 [ 170.381487][ C1] ? __pfx_kthread+0x10/0x10 [ 170.386213][ C1] ret_from_fork+0x4b/0x80 [ 170.390749][ C1] ? __pfx_kthread+0x10/0x10 [ 170.395402][ C1] ret_from_fork_asm+0x1a/0x30 [ 170.400266][ C1] [ 170.403319][ C1] DEBUG: waiting rtnl_mutex for 1352 jiffies. [ 170.409407][ C1] task:dhcpcd state:D stack:20672 pid:4761 tgid:4761 ppid:4760 flags:0x00000002 [ 170.419635][ C1] Call Trace: [ 170.422968][ C1] [ 170.425903][ C1] __schedule+0x1800/0x4a60 [ 170.430512][ C1] ? __pfx___schedule+0x10/0x10 [ 170.435500][ C1] ? __pfx_lock_release+0x10/0x10 [ 170.440609][ C1] ? __mutex_trylock_common+0x92/0x2e0 [ 170.446127][ C1] ? schedule+0x90/0x320 [ 170.450485][ C1] schedule+0x14b/0x320 [ 170.454842][ C1] schedule_preempt_disabled+0x13/0x30 [ 170.460417][ C1] __mutex_lock+0x6a4/0xd70 [ 170.464974][ C1] ? __mutex_lock+0x527/0xd70 [ 170.469709][ C1] ? devinet_ioctl+0x2ce/0x1bc0 [ 170.474841][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 170.479881][ C1] ? bpf_lsm_capable+0x9/0x10 [ 170.484626][ C1] ? security_capable+0x90/0xb0 [ 170.489519][ C1] ? get_rtnl_holder+0x144/0x190 [ 170.494656][ C1] devinet_ioctl+0x2ce/0x1bc0 [ 170.499382][ C1] ? get_user_ifreq+0x1bb/0x200 [ 170.504337][ C1] inet_ioctl+0x3d7/0x4f0 [ 170.508725][ C1] ? __pfx_inet_ioctl+0x10/0x10 [ 170.513711][ C1] sock_do_ioctl+0x158/0x460 [ 170.518358][ C1] ? __pfx_sock_do_ioctl+0x10/0x10 [ 170.523644][ C1] ? __pfx_lock_release+0x10/0x10 [ 170.528721][ C1] sock_ioctl+0x629/0x8e0 [ 170.533135][ C1] ? __pfx_sock_ioctl+0x10/0x10 [ 170.538034][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 170.544211][ C1] ? bpf_lsm_file_ioctl+0x9/0x10 [ 170.549175][ C1] ? security_file_ioctl+0x87/0xb0 [ 170.554364][ C1] ? __pfx_sock_ioctl+0x10/0x10 [ 170.559342][ C1] __se_sys_ioctl+0xfc/0x170 [ 170.564038][ C1] do_syscall_64+0xf3/0x230 [ 170.568579][ C1] ? clear_bhb_loop+0x35/0x90 [ 170.573376][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 170.579318][ C1] RIP: 0033:0x7f0c0b772d49 [ 170.583828][ C1] RSP: 002b:00007ffcce133058 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 170.592357][ C1] RAX: ffffffffffffffda RBX: 00007f0c0b6a46c0 RCX: 00007f0c0b772d49 [ 170.592400][ T5102] Bluetooth: hci5: command tx timeout [ 170.600376][ C1] RDX: 00007ffcce143248 RSI: 0000000000008914 RDI: 000000000000000c [ 170.600398][ C1] RBP: 00007ffcce153408 R08: 00007ffcce143208 R09: 00007ffcce1431b8 [ 170.600416][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 170.600432][ C1] R13: 00007ffcce143248 R14: 0000000000000028 R15: 0000000000008914 [ 170.600469][ C1] [ 170.600482][ C1] DEBUG: waiting rtnl_mutex for 1346 jiffies. [ 170.600498][ C1] task:kworker/0:6 state:D stack:23680 pid:5149 tgid:5149 ppid:2 flags:0x00004000 [ 170.657615][ C1] Workqueue: events linkwatch_event [ 170.662915][ C1] Call Trace: [ 170.666227][ C1] [ 170.669188][ C1] __schedule+0x1800/0x4a60 [ 170.673876][ C1] ? __pfx___schedule+0x10/0x10 [ 170.678758][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 170.684828][ C1] ? __pfx_lock_release+0x10/0x10 [ 170.689936][ C1] ? kick_pool+0x1bd/0x620 [ 170.694427][ C1] ? _raw_spin_unlock_irq+0x23/0x50 [ 170.699672][ C1] ? lockdep_hardirqs_on+0x99/0x150 [ 170.704974][ C1] ? schedule+0x90/0x320 [ 170.709253][ C1] schedule+0x14b/0x320 [ 170.713500][ C1] schedule_preempt_disabled+0x13/0x30 [ 170.718998][ C1] __mutex_lock+0x6a4/0xd70 [ 170.723695][ C1] ? __mutex_lock+0x527/0xd70 [ 170.728421][ C1] ? linkwatch_event+0xe/0x60 [ 170.733177][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 170.738257][ C1] ? get_rtnl_holder+0x144/0x190 [ 170.743370][ C1] ? process_scheduled_works+0x945/0x1830 [ 170.749132][ C1] linkwatch_event+0xe/0x60 [ 170.753713][ C1] process_scheduled_works+0xa2c/0x1830 [ 170.759333][ C1] ? __pfx_process_scheduled_works+0x10/0x10 [ 170.765419][ C1] ? assign_work+0x364/0x3d0 [ 170.770050][ C1] worker_thread+0x86d/0xd40 [ 170.774722][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 170.780900][ C1] ? __kthread_parkme+0x169/0x1d0 [ 170.785976][ C1] ? __pfx_worker_thread+0x10/0x10 [ 170.791168][ C1] kthread+0x2f0/0x390 [ 170.795282][ C1] ? __pfx_worker_thread+0x10/0x10 [ 170.800466][ C1] ? __pfx_kthread+0x10/0x10 [ 170.805182][ C1] ret_from_fork+0x4b/0x80 [ 170.809625][ C1] ? __pfx_kthread+0x10/0x10 [ 170.814327][ C1] ret_from_fork_asm+0x1a/0x30 [ 170.819166][ C1] [ 170.822284][ C1] [ 170.822284][ C1] Showing all locks held in the system: [ 170.830033][ C1] 1 lock held by pool_workqueue_/3: [ 170.835294][ C1] #0: ffffffff8e33ac38 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x451/0x830 [ 170.846372][ C1] 5 locks held by kworker/u8:5/1041: [ 170.851743][ C1] #0: ffff888015edd948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 170.862791][ C1] #1: ffffc90003f07d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 170.873453][ C1] #2: ffffffff8f5f2c10 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0 [ 170.882991][ C1] #3: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: default_device_exit_batch+0xe9/0xa90 [ 170.893178][ C1] #4: ffffffff8e33ac38 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x381/0x830 [ 170.904373][ C1] 1 lock held by dhcpcd/4761: [ 170.909056][ C1] #0: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: devinet_ioctl+0x2ce/0x1bc0 [ 170.918562][ C1] 2 locks held by getty/4850: [ 170.923334][ C1] #0: ffff88802a2340a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 170.933239][ C1] #1: ffffc90002f162f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10 [ 170.943493][ C1] 3 locks held by kworker/0:6/5149: [ 170.948707][ C1] #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830 [ 170.959784][ C1] #1: ffffc90004017d00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830 [ 170.970856][ C1] #2: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60 [ 170.979863][ C1] 1 lock held by syz-executor/5948: [ 170.985160][ C1] #0: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x847/0x1180 [ 170.994858][ C1] 2 locks held by syz-executor/5961: [ 171.000287][ C1] #0: ffffffff8f5f2c10 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c6/0x7b0 [ 171.009764][ C1] #1: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock_killable+0x26/0x150 [ 171.019306][ C1] 2 locks held by syz.0.149/6018: [ 171.024432][ C1] #0: ffff88806ade8258 (sk_lock-AF_SMC){+.+.}-{0:0}, at: smc_connect+0xb7/0xde0 [ 171.033689][ C1] #1: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: smc_vlan_by_tcpsk+0x399/0x4e0 [ 171.043244][ C1] 1 lock held by syz-executor/6039: [ 171.048488][ C1] #0: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x847/0x1180 [ 171.058069][ C1] 2 locks held by syz.3.159/6046: [ 171.063164][ C1] #0: ffff888079addc08 (&sb->s_type->i_mutex_key#10){+.+.}-{3:3}, at: sock_close+0x90/0x240 [ 171.073499][ C1] #1: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: raw_release+0x1b8/0x8a0 [ 171.082505][ C1] 3 locks held by syz.3.159/6048: [ 171.087546][ C1] #0: ffff888079095d80 (&u->iolock){+.+.}-{3:3}, at: __unix_dgram_recvmsg+0x246/0x12f0 [ 171.097405][ C1] #1: ffffc90000a18c00 (net/core/rtnetlink.c:83){+.-.}-{0:0}, at: call_timer_fn+0xc0/0x650 [ 171.107780][ C1] #2: ffffffff8e335860 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0 [ 171.117809][ C1] [ 171.120230][ C1] ============================================= [ 171.120230][ C1] [ 171.185790][ T5360] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 172.661030][ T5102] Bluetooth: hci5: command tx timeout [ 173.759260][ T5948] chnl_net:caif_netlink_parms(): no params data found [ 174.172871][ T54] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 174.205194][ T54] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 174.215955][ T54] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 174.226515][ T54] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 174.234562][ T54] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 174.242023][ T54] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 174.262582][ T5961] chnl_net:caif_netlink_parms(): no params data found [ 174.382316][ T6100] can: request_module (can-proto-0) failed. [ 174.521197][ T6039] chnl_net:caif_netlink_parms(): no params data found [ 174.667470][ T6113] cgroup: noprefix used incorrectly [ 174.736868][ T5948] bridge0: port 1(bridge_slave_0) entered blocking state [ 174.751000][ T5948] bridge0: port 1(bridge_slave_0) entered disabled state [ 174.751363][ T54] Bluetooth: hci5: command tx timeout [ 174.758474][ T5948] bridge_slave_0: entered allmulticast mode [ 174.772161][ T5948] bridge_slave_0: entered promiscuous mode [ 174.861276][ T5948] bridge0: port 2(bridge_slave_1) entered blocking state [ 174.869492][ T5948] bridge0: port 2(bridge_slave_1) entered disabled state [ 174.879161][ T5948] bridge_slave_1: entered allmulticast mode [ 174.889892][ T5948] bridge_slave_1: entered promiscuous mode [ 175.099407][ T1041] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 175.267250][ T1041] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 175.325868][ T5948] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 175.386649][ T5961] bridge0: port 1(bridge_slave_0) entered blocking state [ 175.399818][ T5961] bridge0: port 1(bridge_slave_0) entered disabled state [ 175.407846][ T5961] bridge_slave_0: entered allmulticast mode [ 175.416529][ T5961] bridge_slave_0: entered promiscuous mode [ 175.426495][ T5961] bridge0: port 2(bridge_slave_1) entered blocking state [ 175.434206][ T5961] bridge0: port 2(bridge_slave_1) entered disabled state [ 175.441646][ T5961] bridge_slave_1: entered allmulticast mode [ 175.454521][ T5961] bridge_slave_1: entered promiscuous mode [ 175.518768][ T1041] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 175.574963][ T5948] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 175.788921][ T6039] bridge0: port 1(bridge_slave_0) entered blocking state [ 175.800462][ T6039] bridge0: port 1(bridge_slave_0) entered disabled state [ 175.807739][ T6039] bridge_slave_0: entered allmulticast mode [ 175.832099][ T6039] bridge_slave_0: entered promiscuous mode [ 175.874373][ T1041] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 175.956340][ T5948] team0: Port device team_slave_0 added [ 175.983023][ T5948] team0: Port device team_slave_1 added [ 175.997383][ T5961] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 176.010725][ T6039] bridge0: port 2(bridge_slave_1) entered blocking state [ 176.030448][ T6039] bridge0: port 2(bridge_slave_1) entered disabled state [ 176.037740][ T6039] bridge_slave_1: entered allmulticast mode [ 176.052492][ T6039] bridge_slave_1: entered promiscuous mode [ 176.202329][ T5961] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 176.266801][ T5948] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 176.283942][ T5948] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 176.313487][ T5948] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 176.341359][ T54] Bluetooth: hci0: command tx timeout [ 176.411709][ T6039] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 176.440948][ T6039] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 176.482922][ T5948] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 176.490067][ T5948] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 176.519290][ T5948] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 176.705534][ T5961] team0: Port device team_slave_0 added [ 176.719648][ T6039] team0: Port device team_slave_0 added [ 176.731467][ T6039] team0: Port device team_slave_1 added [ 176.820635][ T54] Bluetooth: hci5: command tx timeout [ 176.822295][ T5961] team0: Port device team_slave_1 added [ 176.981550][ T5961] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 176.988542][ T5961] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 177.022844][ T5961] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 177.158528][ T5961] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 177.166436][ T5961] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 177.201774][ T5961] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 177.247981][ T6039] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 177.255852][ T6039] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 177.290428][ T6039] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 177.444677][ T1041] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 177.491713][ T5948] hsr_slave_0: entered promiscuous mode [ 177.518584][ T5948] hsr_slave_1: entered promiscuous mode [ 177.538599][ T6095] chnl_net:caif_netlink_parms(): no params data found [ 177.615071][ T6039] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 177.630307][ T6039] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 177.687070][ T6039] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 177.764742][ T1041] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 177.878159][ T5961] hsr_slave_0: entered promiscuous mode [ 177.906222][ T5961] hsr_slave_1: entered promiscuous mode [ 177.914669][ T5961] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 177.930592][ T5961] Cannot create hsr debugfs directory [ 178.063196][ T1041] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 178.221487][ T6039] hsr_slave_0: entered promiscuous mode [ 178.228394][ T6039] hsr_slave_1: entered promiscuous mode [ 178.238073][ T6039] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 178.249261][ T6039] Cannot create hsr debugfs directory [ 178.289484][ T1041] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 178.375146][ T6154] loop4: detected capacity change from 0 to 40427 [ 178.393448][ T6154] F2FS-fs (loop4): invalid crc value [ 178.419643][ T6154] F2FS-fs (loop4): Found nat_bits in checkpoint [ 178.430385][ T54] Bluetooth: hci0: command tx timeout [ 178.497273][ T6154] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 178.603437][ T6154] syz.4.178: attempt to access beyond end of device [ 178.603437][ T6154] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 178.647916][ T6095] bridge0: port 1(bridge_slave_0) entered blocking state [ 178.661243][ T6095] bridge0: port 1(bridge_slave_0) entered disabled state [ 178.667062][ T6154] syz.4.178: attempt to access beyond end of device [ 178.667062][ T6154] loop4: rw=2049, sector=77824, nr_sectors = 856 limit=40427 [ 178.668510][ T6095] bridge_slave_0: entered allmulticast mode [ 178.687706][ T6154] syz.4.178: attempt to access beyond end of device [ 178.687706][ T6154] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 178.693076][ T6095] bridge_slave_0: entered promiscuous mode [ 178.712656][ T6095] bridge0: port 2(bridge_slave_1) entered blocking state [ 178.719853][ T6095] bridge0: port 2(bridge_slave_1) entered disabled state [ 178.727346][ T6095] bridge_slave_1: entered allmulticast mode [ 178.735183][ T6095] bridge_slave_1: entered promiscuous mode [ 178.793765][ T5360] syz-executor: attempt to access beyond end of device [ 178.793765][ T5360] loop4: rw=2049, sector=45104, nr_sectors = 8 limit=40427 [ 178.813673][ T5360] F2FS-fs (loop4): Stopped filesystem due to reason: 3 [ 178.947697][ T6095] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 178.973267][ T6095] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 179.126918][ T5961] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 179.298258][ T5961] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 179.333470][ T6168] netlink: 40 bytes leftover after parsing attributes in process `syz.4.179'. [ 179.346168][ T6095] team0: Port device team_slave_0 added [ 179.434182][ T6095] team0: Port device team_slave_1 added [ 179.500651][ T6171] cgroup: noprefix used incorrectly [ 179.526036][ T5961] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 179.682928][ T5961] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 179.752502][ T6095] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 179.771484][ T6095] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 179.818548][ T6095] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 179.884957][ T6095] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 179.931095][ T6095] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 179.995988][ T6095] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 180.090730][ T1041] bridge_slave_1: left allmulticast mode [ 180.107567][ T1041] bridge_slave_1: left promiscuous mode [ 180.119311][ T1041] bridge0: port 2(bridge_slave_1) entered disabled state [ 180.143679][ T1041] bridge_slave_0: left allmulticast mode [ 180.155282][ T1041] bridge_slave_0: left promiscuous mode [ 180.168173][ T1041] bridge0: port 1(bridge_slave_0) entered disabled state [ 180.185116][ T1041] bridge_slave_1: left allmulticast mode [ 180.204639][ T1041] bridge_slave_1: left promiscuous mode [ 180.214077][ T1041] bridge0: port 2(bridge_slave_1) entered disabled state [ 180.229698][ T1041] bridge_slave_0: left allmulticast mode [ 180.247032][ T1041] bridge_slave_0: left promiscuous mode [ 180.278899][ T1041] bridge0: port 1(bridge_slave_0) entered disabled state [ 180.322949][ T1041] bridge_slave_1: left allmulticast mode [ 180.328685][ T1041] bridge_slave_1: left promiscuous mode [ 180.341378][ T1041] bridge0: port 2(bridge_slave_1) entered disabled state [ 180.381019][ T1041] bridge_slave_0: left allmulticast mode [ 180.386866][ T1041] bridge_slave_0: left promiscuous mode [ 180.412201][ T1041] bridge0: port 1(bridge_slave_0) entered disabled state [ 180.500664][ T54] Bluetooth: hci0: command tx timeout [ 181.885386][ T1041] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 181.897241][ T1041] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 181.910972][ T1041] bond0 (unregistering): (slave macvlan0): Releasing backup interface [ 181.920119][ T1041] veth1_vlan: left allmulticast mode [ 181.928129][ T1041] bond0 (unregistering): Released all slaves [ 182.075831][ T1041] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 182.095945][ T1041] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 182.107859][ T1041] bond0 (unregistering): Released all slaves [ 182.350423][ T1041] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 182.373598][ T1041] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 182.396979][ T1041] bond0 (unregistering): Released all slaves [ 182.611991][ T54] Bluetooth: hci0: command tx timeout [ 182.789548][ T6095] hsr_slave_0: entered promiscuous mode [ 182.847988][ T6095] hsr_slave_1: entered promiscuous mode [ 182.911145][ T6095] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 183.001291][ T6095] Cannot create hsr debugfs directory [ 183.391118][ T6202] netlink: 4 bytes leftover after parsing attributes in process `syz.4.186'. [ 183.458471][ T5961] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 183.473891][ T5961] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 183.626662][ T5961] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 183.731952][ T5961] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 184.551302][ T1041] hsr_slave_0: left promiscuous mode [ 184.562260][ T1041] hsr_slave_1: left promiscuous mode [ 184.571494][ T1041] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 184.578986][ T1041] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 184.590613][ T1041] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 184.598722][ T1041] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 184.620017][ T1041] hsr_slave_0: left promiscuous mode [ 184.626420][ T1041] hsr_slave_1: left promiscuous mode [ 184.640929][ T1041] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 184.648412][ T1041] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 184.668679][ T1041] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 184.676541][ T1041] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 184.691541][ T1041] hsr_slave_0: left promiscuous mode [ 184.697996][ T1041] hsr_slave_1: left promiscuous mode [ 184.704555][ T1041] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 184.712884][ T1041] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 184.722052][ T1041] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 184.729520][ T1041] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 184.850126][ T1041] veth1_macvtap: left promiscuous mode [ 184.855852][ T1041] veth0_macvtap: left promiscuous mode [ 184.861771][ T1041] veth1_vlan: left promiscuous mode [ 184.867182][ T1041] veth0_vlan: left promiscuous mode [ 184.881867][ T1041] veth1_macvtap: left promiscuous mode [ 184.887470][ T1041] veth0_macvtap: left promiscuous mode [ 184.902529][ T1041] veth1_vlan: left promiscuous mode [ 184.907968][ T1041] veth0_vlan: left promiscuous mode [ 184.923378][ T1041] veth1_macvtap: left promiscuous mode [ 184.928991][ T1041] veth0_macvtap: left promiscuous mode [ 184.944245][ T1041] veth1_vlan: left promiscuous mode [ 184.949712][ T1041] veth0_vlan: left promiscuous mode [ 185.989815][ T1041] team0 (unregistering): Port device team_slave_1 removed [ 186.064999][ T1041] team0 (unregistering): Port device team_slave_0 removed [ 186.658820][ T29] audit: type=1326 audit(1720026136.478:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6222 comm="syz.4.192" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1af1575bd9 code=0x0 [ 186.680318][ C0] vkms_vblank_simulate: vblank timer overrun [ 187.421223][ T1041] team0 (unregistering): Port device team_slave_1 removed [ 187.511912][ T1041] team0 (unregistering): Port device team_slave_0 removed [ 188.031999][ T6229] netlink: 4 bytes leftover after parsing attributes in process `syz.4.193'. [ 188.505330][ T1041] team0 (unregistering): Port device team_slave_1 removed [ 188.546790][ T1041] team0 (unregistering): Port device team_slave_0 removed [ 188.947916][ T5961] 8021q: adding VLAN 0 to HW filter on device bond0 [ 189.043689][ T5961] 8021q: adding VLAN 0 to HW filter on device team0 [ 189.173459][ T5147] bridge0: port 1(bridge_slave_0) entered blocking state [ 189.180772][ T5147] bridge0: port 1(bridge_slave_0) entered forwarding state [ 189.290017][ T25] bridge0: port 2(bridge_slave_1) entered blocking state [ 189.297298][ T25] bridge0: port 2(bridge_slave_1) entered forwarding state [ 189.484271][ T5961] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 189.827846][ T5948] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 189.911129][ T5948] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 190.013012][ T5948] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 190.042024][ T5948] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 190.150984][ T5961] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 190.202919][ T6039] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 190.234258][ T6039] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 190.253077][ T6039] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 190.292624][ T6039] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 190.693920][ T6095] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 190.723542][ T6095] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 190.744372][ T5961] veth0_vlan: entered promiscuous mode [ 190.791868][ T6095] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 190.821098][ T5961] veth1_vlan: entered promiscuous mode [ 190.857942][ T6095] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 190.964365][ T6039] 8021q: adding VLAN 0 to HW filter on device bond0 [ 191.019196][ T5948] 8021q: adding VLAN 0 to HW filter on device bond0 [ 191.064536][ T5961] veth0_macvtap: entered promiscuous mode [ 191.119321][ T5961] veth1_macvtap: entered promiscuous mode [ 191.158880][ T5948] 8021q: adding VLAN 0 to HW filter on device team0 [ 191.184667][ T6039] 8021q: adding VLAN 0 to HW filter on device team0 [ 191.284511][ T5215] bridge0: port 1(bridge_slave_0) entered blocking state [ 191.291762][ T5215] bridge0: port 1(bridge_slave_0) entered forwarding state [ 191.314033][ T5215] bridge0: port 1(bridge_slave_0) entered blocking state [ 191.321317][ T5215] bridge0: port 1(bridge_slave_0) entered forwarding state [ 191.379655][ T5961] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 191.414737][ T5961] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 191.453312][ T5961] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 191.470480][ T5215] bridge0: port 2(bridge_slave_1) entered blocking state [ 191.477615][ T5215] bridge0: port 2(bridge_slave_1) entered forwarding state [ 191.574961][ T5961] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 191.594784][ T5961] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 191.614145][ T5961] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 191.633199][ T5215] bridge0: port 2(bridge_slave_1) entered blocking state [ 191.640548][ T5215] bridge0: port 2(bridge_slave_1) entered forwarding state [ 191.706022][ T5961] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 191.735304][ T5961] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 191.751815][ T5961] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 191.771507][ T5961] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 192.069663][ T6095] 8021q: adding VLAN 0 to HW filter on device bond0 [ 192.226149][ T6095] 8021q: adding VLAN 0 to HW filter on device team0 [ 192.229941][ T1041] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 192.282723][ T1041] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 192.378576][ T5149] bridge0: port 1(bridge_slave_0) entered blocking state [ 192.385827][ T5149] bridge0: port 1(bridge_slave_0) entered forwarding state [ 192.462435][ T2876] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 192.487225][ T5215] bridge0: port 2(bridge_slave_1) entered blocking state [ 192.494487][ T5215] bridge0: port 2(bridge_slave_1) entered forwarding state [ 192.530302][ T2876] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 192.555876][ T6274] loop4: detected capacity change from 0 to 32768 [ 192.615130][ T6274] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.196 (6274) [ 192.756269][ T6274] BTRFS info (device loop4): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 192.787954][ T6095] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 192.815102][ T6274] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm [ 192.840323][ T6274] BTRFS info (device loop4): using free-space-tree [ 192.861303][ T6095] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 192.964115][ T1041] BTRFS warning (device loop4): checksum verify failed on logical 1052672 mirror 1 wanted 0x3226f9dadc896f8f7b9a0be7c609110345c27f6019125c38f3283b3a68e897a5 found 0xe319098c5852be6aa936b498854dcc8d93e2e528ebcb7a6e4b5988dec46fb60b level 0 [ 193.007149][ T6274] BTRFS error (device loop4): failed to read chunk root [ 193.092522][ T5948] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 193.105795][ T6039] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 193.179549][ T6274] BTRFS error (device loop4): open_ctree failed [ 193.261881][ T6317] netlink: 'syz.1.197': attribute type 12 has an invalid length. [ 193.280758][ T6317] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.197'. [ 193.587042][ T6039] veth0_vlan: entered promiscuous mode [ 193.627561][ T5948] veth0_vlan: entered promiscuous mode [ 193.785844][ T29] audit: type=1326 audit(1720026143.608:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6325 comm="syz.4.199" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1af1575bd9 code=0x0 [ 193.812423][ T6039] veth1_vlan: entered promiscuous mode [ 193.918241][ T5948] veth1_vlan: entered promiscuous mode [ 193.946943][ T6095] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 194.053416][ T6039] veth0_macvtap: entered promiscuous mode [ 194.105328][ T5948] veth0_macvtap: entered promiscuous mode [ 194.118294][ T6039] veth1_macvtap: entered promiscuous mode [ 194.203984][ T5948] veth1_macvtap: entered promiscuous mode [ 194.237145][ T6095] veth0_vlan: entered promiscuous mode [ 194.277259][ T6039] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 194.296934][ T6039] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 194.308957][ T6039] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 194.329906][ T6039] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 194.349619][ T6039] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 194.405006][ T5948] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 194.443516][ T5948] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 194.468238][ T5948] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 194.478908][ T5948] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 194.498712][ T5948] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 194.539193][ T5948] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 194.584075][ T5948] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 194.634120][ T6039] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 194.656489][ T6039] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 194.671930][ T1246] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.678427][ T1246] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.684102][ T6039] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 194.696711][ T6039] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 194.725375][ T6039] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 194.748374][ T6095] veth1_vlan: entered promiscuous mode [ 194.774822][ T5948] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 194.795379][ T5948] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 194.807731][ T5948] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 194.824991][ T5948] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 194.869393][ T5948] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 194.886953][ T5948] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 194.908223][ T5948] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 194.963359][ T6039] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 194.990368][ T6039] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 194.999141][ T6039] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 195.030283][ T6039] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 195.056142][ T5948] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 195.085634][ T5948] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 195.106253][ T5948] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 195.128407][ T5948] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 195.382907][ T6095] veth0_macvtap: entered promiscuous mode [ 195.468593][ T1109] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 195.498952][ T6095] veth1_macvtap: entered promiscuous mode [ 195.505351][ T1109] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 195.679837][ T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 195.689523][ T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 195.823871][ T6095] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 195.876909][ T6095] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 195.907333][ T6095] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 195.987487][ T6095] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 196.065426][ T6095] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 196.226313][ T6095] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 196.378660][ T6095] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 196.469075][ T6095] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 196.522841][ T6095] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 196.567725][ T6095] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 196.632270][ T6095] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 196.655777][ T6095] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 196.689076][ T6095] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 196.706937][ T6095] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 196.728683][ T6095] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 196.752754][ T6095] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 196.774509][ T6095] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 196.801864][ T6095] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 196.886381][ T6095] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 196.927387][ T6095] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 196.955302][ T6095] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 196.983443][ T6095] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 197.036430][ T1041] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 197.063180][ T1041] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 197.168924][ T2876] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 197.198794][ T2876] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 197.353111][ T1041] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 197.390303][ T1041] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 197.479436][ T6376] loop2: detected capacity change from 0 to 512 [ 197.505162][ T1041] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 197.516316][ T6376] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 197.549778][ T1041] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 197.581810][ T6376] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2856: Unable to expand inode 17. Delete some EAs or run e2fsck. [ 197.615605][ T6376] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #16: comm syz.2.135: invalid indirect mapped block 83886080 (level 1) [ 197.691358][ T6376] EXT4-fs (loop2): Remounting filesystem read-only [ 197.707460][ T6376] EXT4-fs (loop2): 1 orphan inode deleted [ 197.721883][ T6376] EXT4-fs (loop2): 1 truncate cleaned up [ 197.729036][ T6376] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 198.806629][ T5948] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 198.817472][ T6369] loop4: detected capacity change from 0 to 32768 [ 198.971499][ T6369] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 199.527918][ T6369] XFS (loop4): Ending clean mount [ 200.867582][ T6384] loop3: detected capacity change from 0 to 32768 [ 201.235052][ T5360] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 201.464086][ T46] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 201.700451][ T46] usb 2-1: Using ep0 maxpacket: 32 [ 201.712747][ T46] usb 2-1: config index 0 descriptor too short (expected 29220, got 36) [ 201.740344][ T46] usb 2-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 201.749026][ T46] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 201.820769][ T46] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 201.844678][ T46] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 201.879611][ T46] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 201.921270][ T46] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0 [ 201.940756][ T46] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 201.980296][ T46] usb 2-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 202.008726][ T46] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 202.165073][ T46] usb 2-1: config 0 descriptor?? [ 202.241983][ T6438] loop4: detected capacity change from 0 to 32768 [ 202.250756][ T6438] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.221 (6438) [ 202.303357][ T6438] BTRFS info (device loop4): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 202.315539][ T6438] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm [ 202.325177][ T6438] BTRFS info (device loop4): using free-space-tree [ 202.450237][ T46] usblp 2-1:0.0: usblp0: USB Bidirectional printer dev 4 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 202.516306][ T46] usb 2-1: USB disconnect, device number 4 [ 202.565439][ T46] usblp0: removed [ 202.689986][ T1109] BTRFS warning (device loop4): checksum verify failed on logical 1052672 mirror 1 wanted 0x3226f9dadc896f8f7b9a0be7c609110345c27f6019125c38f3283b3a68e897a5 found 0xe319098c5852be6aa936b498854dcc8d93e2e528ebcb7a6e4b5988dec46fb60b level 0 [ 202.757455][ T6438] BTRFS error (device loop4): failed to read chunk root [ 202.793970][ T6438] BTRFS error (device loop4): open_ctree failed [ 203.020342][ T46] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 203.360536][ T46] usb 2-1: Using ep0 maxpacket: 32 [ 203.382844][ T46] usb 2-1: config index 0 descriptor too short (expected 29220, got 36) [ 203.452600][ T46] usb 2-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 203.531473][ T46] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 203.595501][ T46] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 203.633439][ T46] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 203.674066][ T46] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 203.707883][ T46] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0 [ 203.735716][ T46] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 203.832775][ T46] usb 2-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 203.890220][ T46] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 203.956986][ T46] usb 2-1: config 0 descriptor?? [ 204.199531][ T6474] loop4: detected capacity change from 0 to 128 [ 204.620989][ T46] usblp 2-1:0.0: usblp0: USB Bidirectional printer dev 5 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 204.770297][ T46] usb 2-1: USB disconnect, device number 5 [ 204.835485][ T46] usblp0: removed [ 206.179969][ T29] audit: type=1326 audit(1720026155.998:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6492 comm="syz.4.238" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1af1575bd9 code=0x0 [ 206.542670][ T6501] netlink: 'syz.0.240': attribute type 2 has an invalid length. [ 206.555664][ T6501] netlink: 4 bytes leftover after parsing attributes in process `syz.0.240'. [ 207.476084][ T6512] loop3: detected capacity change from 0 to 256 [ 207.630724][ T6512] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 207.769336][ T6517] bond0: (slave erspan0): Opening slave failed [ 207.866108][ T6519] loop0: detected capacity change from 0 to 2048 [ 207.955855][ T6520] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 208.192088][ T29] audit: type=1800 audit(1720026158.018:7): pid=6512 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.243" name="bus" dev="loop3" ino=1048623 res=0 errno=0 [ 208.994275][ T6541] netlink: 'syz.1.252': attribute type 2 has an invalid length. [ 209.051390][ T6541] netlink: 4 bytes leftover after parsing attributes in process `syz.1.252'. [ 209.772359][ T6538] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000007: 0000 [#1] PREEMPT SMP KASAN PTI [ 209.772392][ T6538] KASAN: null-ptr-deref in range [0x0000000000000038-0x000000000000003f] [ 209.772418][ T6538] CPU: 1 UID: 0 PID: 6538 Comm: syz.0.247 Not tainted 6.10.0-rc6-next-20240703-syzkaller #0 [ 209.772445][ T6538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 209.772459][ T6538] RIP: 0010:dev_map_redirect+0x65/0x6a0 [ 209.772494][ T6538] Code: 48 c1 e8 03 80 3c 28 00 74 08 48 89 df e8 83 b3 3d 00 4c 8b 2b 4d 8d 7d 38 4c 89 fb 48 c1 eb 03 48 b8 00 00 00 00 00 fc ff df <0f> b6 04 03 84 c0 0f 85 6e 04 00 00 41 8b 2f 89 ee 83 e6 02 31 ff [ 209.772513][ T6538] RSP: 0018:ffffc90004157088 EFLAGS: 00010202 [ 209.772534][ T6538] RAX: dffffc0000000000 RBX: 0000000000000007 RCX: 0000000000040000 [ 209.772551][ T6538] RDX: ffffc9000f9f8000 RSI: 00000000000004b1 RDI: 00000000000004b2 [ 209.772566][ T6538] RBP: dffffc0000000000 R08: 0000000000000007 R09: ffffffff81b5ee2f [ 209.772582][ T6538] R10: 0000000000000004 R11: ffff88802171bc00 R12: 00000000041570d8 [ 209.772609][ T6538] R13: 0000000000000000 R14: 0000000000000008 R15: 0000000000000038 [ 209.772623][ T6538] FS: 00007f5a99e8a6c0(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000 [ 209.772643][ T6538] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 209.772659][ T6538] CR2: 00007faf2e2356b8 CR3: 000000007cb74000 CR4: 00000000003506f0 [ 209.772679][ T6538] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 209.772693][ T6538] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 209.772707][ T6538] Call Trace: [ 209.772715][ T6538] [ 209.772723][ T6538] ? __die_body+0x88/0xe0 [ 209.772758][ T6538] ? die_addr+0x108/0x140 [ 209.772792][ T6538] ? exc_general_protection+0x3dd/0x5d0 [ 209.772835][ T6538] ? asm_exc_general_protection+0x26/0x30 [ 209.772866][ T6538] ? bpf_ringbuf_query+0x4f/0x150 [ 209.772898][ T6538] ? dev_map_redirect+0x65/0x6a0 [ 209.772924][ T6538] ? dev_map_redirect+0x28/0x6a0 [ 209.772951][ T6538] bpf_prog_ec9efaa32d58ce69+0x56/0x5a [ 209.772979][ T6538] bpf_prog_run_generic_xdp+0x679/0x14c0 [ 209.773027][ T6538] do_xdp_generic+0x673/0xb90 [ 209.773055][ T6538] ? __pfx_validate_chain+0x10/0x10 [ 209.773093][ T6538] ? __pfx_do_xdp_generic+0x10/0x10 [ 209.773131][ T6538] __netif_receive_skb_core+0x1be6/0x4570 [ 209.773164][ T6538] ? mark_lock+0x9a/0x360 [ 209.773208][ T6538] ? __pfx___netif_receive_skb_core+0x10/0x10 [ 209.773243][ T6538] ? mark_lock+0x9a/0x360 [ 209.773275][ T6538] ? __lock_acquire+0x1359/0x2000 [ 209.773318][ T6538] __netif_receive_skb+0x12f/0x650 [ 209.773352][ T6538] ? __pfx_lock_acquire+0x10/0x10 [ 209.773379][ T6538] ? seqcount_lockdep_reader_access+0x1d7/0x220 [ 209.773408][ T6538] ? __pfx___netif_receive_skb+0x10/0x10 [ 209.773438][ T6538] ? __kasan_slab_alloc+0x66/0x80 [ 209.773465][ T6538] ? read_tsc+0x9/0x20 [ 209.773492][ T6538] ? timekeeping_get_ns+0x2c0/0x420 [ 209.773525][ T6538] ? netif_receive_skb+0x131/0x890 [ 209.773555][ T6538] ? netif_receive_skb+0x131/0x890 [ 209.773586][ T6538] netif_receive_skb+0x1e8/0x890 [ 209.773618][ T6538] ? tun_rx_batched+0x160/0x8f0 [ 209.773642][ T6538] ? __pfx_netif_receive_skb+0x10/0x10 [ 209.773679][ T6538] ? tun_rx_batched+0x160/0x8f0 [ 209.773702][ T6538] tun_rx_batched+0x1b7/0x8f0 [ 209.773724][ T6538] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 209.773757][ T6538] ? __pfx_lock_acquire+0x10/0x10 [ 209.773785][ T6538] ? __pfx_tun_rx_batched+0x10/0x10 [ 209.773820][ T6538] tun_get_user+0x2f3b/0x4560 [ 209.773845][ T6538] ? tun_get_user+0x2a35/0x4560 [ 209.773876][ T6538] ? __pfx_tun_get_user+0x10/0x10 [ 209.773903][ T6538] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 209.773926][ T6538] ? tun_get+0x1e/0x2f0 [ 209.773957][ T6538] ? tun_get+0x1e/0x2f0 [ 209.773983][ T6538] ? tun_get+0x27d/0x2f0 [ 209.774006][ T6538] tun_chr_write_iter+0x113/0x1f0 [ 209.774029][ T6538] vfs_write+0xa72/0xc90 [ 209.774053][ T6538] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 209.774076][ T6538] ? __pfx_vfs_write+0x10/0x10 [ 209.774095][ T6538] ? do_futex+0x392/0x560 [ 209.774135][ T6538] ksys_write+0x1a0/0x2c0 [ 209.774159][ T6538] ? __pfx_ksys_write+0x10/0x10 [ 209.774181][ T6538] ? do_syscall_64+0x100/0x230 [ 209.774204][ T6538] ? do_syscall_64+0xb6/0x230 [ 209.774225][ T6538] do_syscall_64+0xf3/0x230 [ 209.774246][ T6538] ? clear_bhb_loop+0x35/0x90 [ 209.774276][ T6538] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 209.774303][ T6538] RIP: 0033:0x7f5a9917475f [ 209.774322][ T6538] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 29 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 7c 8c 02 00 48 [ 209.774341][ T6538] RSP: 002b:00007f5a99e8a010 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 209.774364][ T6538] RAX: ffffffffffffffda RBX: 00007f5a99303f60 RCX: 00007f5a9917475f [ 209.774381][ T6538] RDX: 0000000000000022 RSI: 00000000200005c0 RDI: 00000000000000c8 [ 209.774395][ T6538] RBP: 00007f5a991e4a98 R08: 0000000000000000 R09: 0000000000000000 [ 209.774410][ T6538] R10: 0000000000000022 R11: 0000000000000293 R12: 0000000000000000 [ 209.774424][ T6538] R13: 000000000000000b R14: 00007f5a99303f60 R15: 00007ffc1cbe2378 [ 209.774449][ T6538] [ 209.774457][ T6538] Modules linked in: [ 209.774472][ T6538] ---[ end trace 0000000000000000 ]--- [ 210.285375][ T6538] RIP: 0010:dev_map_redirect+0x65/0x6a0 [ 210.290996][ T6538] Code: 48 c1 e8 03 80 3c 28 00 74 08 48 89 df e8 83 b3 3d 00 4c 8b 2b 4d 8d 7d 38 4c 89 fb 48 c1 eb 03 48 b8 00 00 00 00 00 fc ff df <0f> b6 04 03 84 c0 0f 85 6e 04 00 00 41 8b 2f 89 ee 83 e6 02 31 ff [ 210.310763][ T6538] RSP: 0018:ffffc90004157088 EFLAGS: 00010202 [ 210.316892][ T6538] RAX: dffffc0000000000 RBX: 0000000000000007 RCX: 0000000000040000 [ 210.325008][ T6538] RDX: ffffc9000f9f8000 RSI: 00000000000004b1 RDI: 00000000000004b2 [ 210.333039][ T6538] RBP: dffffc0000000000 R08: 0000000000000007 R09: ffffffff81b5ee2f [ 210.341068][ T6538] R10: 0000000000000004 R11: ffff88802171bc00 R12: 00000000041570d8 [ 210.349078][ T6538] R13: 0000000000000000 R14: 0000000000000008 R15: 0000000000000038 [ 210.357198][ T6538] FS: 00007f5a99e8a6c0(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000 [ 210.366239][ T6538] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 210.372878][ T6538] CR2: 00007faf2e2356b8 CR3: 000000007cb74000 CR4: 00000000003506f0 [ 210.380913][ T6538] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 210.388906][ T6538] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 210.396939][ T6538] Kernel panic - not syncing: Fatal exception in interrupt [ 210.404438][ T6538] Kernel Offset: disabled [ 210.408792][ T6538] Rebooting in 86400 seconds..