[ OK ] Listening on Load/Save RF Kill Switch Status /dev/rfkill Watch. [ OK ] Started Getty on tty6. [ OK ] Started Getty on tty5. [ OK ] Started Getty on tty4. [ OK ] Started Getty on tty3. [ OK ] Started Getty on tty2. [ OK ] Started Serial Getty on ttyS0. [ OK ] Started Getty on tty1. [ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Starting Load/Save RF Kill Switch Status... [ OK ] Started Update UTMP about System Runlevel Changes. [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.1.63' (ECDSA) to the list of known hosts. 2021/02/12 20:03:32 fuzzer started 2021/02/12 20:03:33 dialing manager at 10.128.0.169:35641 2021/02/12 20:03:34 syscalls: 3517 2021/02/12 20:03:34 code coverage: enabled 2021/02/12 20:03:34 comparison tracing: enabled 2021/02/12 20:03:34 extra coverage: enabled 2021/02/12 20:03:34 setuid sandbox: enabled 2021/02/12 20:03:34 namespace sandbox: enabled 2021/02/12 20:03:34 Android sandbox: /sys/fs/selinux/policy does not exist 2021/02/12 20:03:34 fault injection: enabled 2021/02/12 20:03:34 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2021/02/12 20:03:34 net packet injection: enabled 2021/02/12 20:03:34 net device setup: enabled 2021/02/12 20:03:34 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2021/02/12 20:03:34 devlink PCI setup: PCI device 0000:00:10.0 is not available 2021/02/12 20:03:34 USB emulation: enabled 2021/02/12 20:03:34 hci packet injection: enabled 2021/02/12 20:03:34 wifi device emulation: enabled 2021/02/12 20:03:34 802.15.4 emulation: enabled 2021/02/12 20:03:34 fetching corpus: 0, signal 0/2000 (executing program) 2021/02/12 20:03:34 fetching corpus: 50, signal 15507/19271 (executing program) 2021/02/12 20:03:34 fetching corpus: 100, signal 21689/27165 (executing program) 2021/02/12 20:03:34 fetching corpus: 150, signal 28326/35432 (executing program) 2021/02/12 20:03:34 fetching corpus: 200, signal 35130/43766 (executing program) 2021/02/12 20:03:34 fetching corpus: 250, signal 41236/51261 (executing program) 2021/02/12 20:03:34 fetching corpus: 300, signal 46552/57932 (executing program) 2021/02/12 20:03:34 fetching corpus: 350, signal 52306/64969 (executing program) 2021/02/12 20:03:34 fetching corpus: 400, signal 54208/68356 (executing program) 2021/02/12 20:03:35 fetching corpus: 450, signal 57229/72701 (executing program) 2021/02/12 20:03:35 fetching corpus: 500, signal 60733/77442 (executing program) 2021/02/12 20:03:35 fetching corpus: 550, signal 63696/81663 (executing program) 2021/02/12 20:03:35 fetching corpus: 600, signal 65587/84832 (executing program) 2021/02/12 20:03:35 fetching corpus: 650, signal 67746/88202 (executing program) 2021/02/12 20:03:35 fetching corpus: 700, signal 70245/91872 (executing program) 2021/02/12 20:03:35 fetching corpus: 750, signal 72244/95003 (executing program) 2021/02/12 20:03:35 fetching corpus: 800, signal 74632/98525 (executing program) 2021/02/12 20:03:35 fetching corpus: 850, signal 76375/101443 (executing program) 2021/02/12 20:03:35 fetching corpus: 900, signal 78468/104604 (executing program) 2021/02/12 20:03:35 fetching corpus: 950, signal 80766/107924 (executing program) 2021/02/12 20:03:35 fetching corpus: 1000, signal 82250/110499 (executing program) 2021/02/12 20:03:35 fetching corpus: 1050, signal 83303/112708 (executing program) 2021/02/12 20:03:35 fetching corpus: 1100, signal 84660/115192 (executing program) 2021/02/12 20:03:35 fetching corpus: 1150, signal 87248/118640 (executing program) 2021/02/12 20:03:35 fetching corpus: 1200, signal 90206/122332 (executing program) 2021/02/12 20:03:36 fetching corpus: 1250, signal 91987/125025 (executing program) 2021/02/12 20:03:36 fetching corpus: 1300, signal 93553/127547 (executing program) 2021/02/12 20:03:36 fetching corpus: 1350, signal 95448/130248 (executing program) 2021/02/12 20:03:36 fetching corpus: 1400, signal 96818/132587 (executing program) 2021/02/12 20:03:36 fetching corpus: 1450, signal 98284/134960 (executing program) 2021/02/12 20:03:36 fetching corpus: 1500, signal 100105/137574 (executing program) 2021/02/12 20:03:36 fetching corpus: 1550, signal 101551/139865 (executing program) 2021/02/12 20:03:36 fetching corpus: 1600, signal 103012/142154 (executing program) 2021/02/12 20:03:36 fetching corpus: 1650, signal 104151/144196 (executing program) 2021/02/12 20:03:36 fetching corpus: 1700, signal 105883/146664 (executing program) 2021/02/12 20:03:36 fetching corpus: 1750, signal 107661/149052 (executing program) 2021/02/12 20:03:36 fetching corpus: 1800, signal 109229/151316 (executing program) 2021/02/12 20:03:36 fetching corpus: 1850, signal 110775/153484 (executing program) 2021/02/12 20:03:36 fetching corpus: 1900, signal 112794/156044 (executing program) 2021/02/12 20:03:36 fetching corpus: 1950, signal 113750/157743 (executing program) 2021/02/12 20:03:36 fetching corpus: 2000, signal 114694/159480 (executing program) 2021/02/12 20:03:36 fetching corpus: 2050, signal 115972/161426 (executing program) 2021/02/12 20:03:36 fetching corpus: 2100, signal 117176/163324 (executing program) 2021/02/12 20:03:37 fetching corpus: 2150, signal 118279/165106 (executing program) 2021/02/12 20:03:37 fetching corpus: 2200, signal 119457/166897 (executing program) 2021/02/12 20:03:37 fetching corpus: 2250, signal 120586/168672 (executing program) 2021/02/12 20:03:37 fetching corpus: 2300, signal 121475/170299 (executing program) 2021/02/12 20:03:37 fetching corpus: 2350, signal 122700/172112 (executing program) 2021/02/12 20:03:37 fetching corpus: 2400, signal 123672/173688 (executing program) 2021/02/12 20:03:37 fetching corpus: 2450, signal 124859/175396 (executing program) 2021/02/12 20:03:37 fetching corpus: 2500, signal 125657/176899 (executing program) 2021/02/12 20:03:37 fetching corpus: 2550, signal 126721/178540 (executing program) 2021/02/12 20:03:37 fetching corpus: 2600, signal 127473/179931 (executing program) 2021/02/12 20:03:37 fetching corpus: 2650, signal 128480/181466 (executing program) 2021/02/12 20:03:37 fetching corpus: 2700, signal 129327/182922 (executing program) 2021/02/12 20:03:37 fetching corpus: 2750, signal 130114/184375 (executing program) 2021/02/12 20:03:37 fetching corpus: 2800, signal 131254/185961 (executing program) 2021/02/12 20:03:37 fetching corpus: 2850, signal 131815/187187 (executing program) 2021/02/12 20:03:37 fetching corpus: 2900, signal 132758/188616 (executing program) 2021/02/12 20:03:37 fetching corpus: 2950, signal 133518/190027 (executing program) syzkaller login: [ 141.215007][ T3156] ieee802154 phy0 wpan0: encryption failed: -22 [ 141.236147][ T3156] ieee802154 phy1 wpan1: encryption failed: -22 2021/02/12 20:03:37 fetching corpus: 3000, signal 135317/191921 (executing program) 2021/02/12 20:03:37 fetching corpus: 3050, signal 137408/193875 (executing program) 2021/02/12 20:03:38 fetching corpus: 3100, signal 138115/195174 (executing program) 2021/02/12 20:03:38 fetching corpus: 3150, signal 138782/196394 (executing program) 2021/02/12 20:03:38 fetching corpus: 3200, signal 139681/197734 (executing program) 2021/02/12 20:03:38 fetching corpus: 3250, signal 140524/199033 (executing program) 2021/02/12 20:03:38 fetching corpus: 3300, signal 141175/200207 (executing program) 2021/02/12 20:03:38 fetching corpus: 3350, signal 141654/201337 (executing program) 2021/02/12 20:03:38 fetching corpus: 3400, signal 142081/202386 (executing program) 2021/02/12 20:03:38 fetching corpus: 3450, signal 142955/203629 (executing program) 2021/02/12 20:03:38 fetching corpus: 3500, signal 143747/204869 (executing program) 2021/02/12 20:03:38 fetching corpus: 3550, signal 144677/206159 (executing program) 2021/02/12 20:03:38 fetching corpus: 3600, signal 145502/207366 (executing program) 2021/02/12 20:03:38 fetching corpus: 3650, signal 145956/208391 (executing program) 2021/02/12 20:03:38 fetching corpus: 3700, signal 146746/209545 (executing program) 2021/02/12 20:03:38 fetching corpus: 3750, signal 147517/210732 (executing program) 2021/02/12 20:03:38 fetching corpus: 3800, signal 148152/211820 (executing program) 2021/02/12 20:03:38 fetching corpus: 3850, signal 148866/212899 (executing program) 2021/02/12 20:03:38 fetching corpus: 3900, signal 149803/214062 (executing program) 2021/02/12 20:03:38 fetching corpus: 3950, signal 150656/215165 (executing program) 2021/02/12 20:03:38 fetching corpus: 4000, signal 151296/216206 (executing program) 2021/02/12 20:03:39 fetching corpus: 4050, signal 151961/217217 (executing program) 2021/02/12 20:03:39 fetching corpus: 4100, signal 153105/218394 (executing program) 2021/02/12 20:03:39 fetching corpus: 4150, signal 153671/219328 (executing program) 2021/02/12 20:03:39 fetching corpus: 4200, signal 154352/220340 (executing program) 2021/02/12 20:03:39 fetching corpus: 4250, signal 155258/221370 (executing program) 2021/02/12 20:03:39 fetching corpus: 4300, signal 155759/222311 (executing program) 2021/02/12 20:03:39 fetching corpus: 4350, signal 156827/223383 (executing program) 2021/02/12 20:03:39 fetching corpus: 4400, signal 157505/224281 (executing program) 2021/02/12 20:03:39 fetching corpus: 4450, signal 157996/225175 (executing program) 2021/02/12 20:03:39 fetching corpus: 4500, signal 158591/226121 (executing program) 2021/02/12 20:03:39 fetching corpus: 4549, signal 159263/227050 (executing program) 2021/02/12 20:03:39 fetching corpus: 4598, signal 160398/228039 (executing program) 2021/02/12 20:03:39 fetching corpus: 4648, signal 161176/228983 (executing program) 2021/02/12 20:03:39 fetching corpus: 4698, signal 162471/230012 (executing program) 2021/02/12 20:03:39 fetching corpus: 4748, signal 163185/230900 (executing program) 2021/02/12 20:03:39 fetching corpus: 4798, signal 163693/231712 (executing program) 2021/02/12 20:03:40 fetching corpus: 4848, signal 164238/232540 (executing program) 2021/02/12 20:03:40 fetching corpus: 4898, signal 164931/233389 (executing program) 2021/02/12 20:03:40 fetching corpus: 4948, signal 165362/234201 (executing program) 2021/02/12 20:03:40 fetching corpus: 4998, signal 165942/235032 (executing program) 2021/02/12 20:03:40 fetching corpus: 5048, signal 166483/235793 (executing program) 2021/02/12 20:03:40 fetching corpus: 5098, signal 167483/236655 (executing program) 2021/02/12 20:03:40 fetching corpus: 5148, signal 168063/237418 (executing program) 2021/02/12 20:03:40 fetching corpus: 5198, signal 168558/238194 (executing program) 2021/02/12 20:03:40 fetching corpus: 5248, signal 169350/238971 (executing program) 2021/02/12 20:03:40 fetching corpus: 5298, signal 169846/239670 (executing program) 2021/02/12 20:03:40 fetching corpus: 5348, signal 170608/240448 (executing program) 2021/02/12 20:03:40 fetching corpus: 5398, signal 171156/241169 (executing program) 2021/02/12 20:03:40 fetching corpus: 5448, signal 171844/241915 (executing program) 2021/02/12 20:03:40 fetching corpus: 5498, signal 172463/242635 (executing program) 2021/02/12 20:03:40 fetching corpus: 5548, signal 173194/243386 (executing program) 2021/02/12 20:03:40 fetching corpus: 5598, signal 173613/244042 (executing program) 2021/02/12 20:03:40 fetching corpus: 5648, signal 174370/244732 (executing program) 2021/02/12 20:03:40 fetching corpus: 5698, signal 175363/245396 (executing program) 2021/02/12 20:03:41 fetching corpus: 5748, signal 176106/246063 (executing program) 2021/02/12 20:03:41 fetching corpus: 5798, signal 176724/246697 (executing program) 2021/02/12 20:03:41 fetching corpus: 5848, signal 177157/247320 (executing program) 2021/02/12 20:03:41 fetching corpus: 5898, signal 177619/247964 (executing program) 2021/02/12 20:03:41 fetching corpus: 5948, signal 178344/248580 (executing program) 2021/02/12 20:03:41 fetching corpus: 5998, signal 178851/249184 (executing program) 2021/02/12 20:03:41 fetching corpus: 6048, signal 179397/249761 (executing program) 2021/02/12 20:03:41 fetching corpus: 6098, signal 179733/250363 (executing program) 2021/02/12 20:03:41 fetching corpus: 6148, signal 180142/250915 (executing program) 2021/02/12 20:03:41 fetching corpus: 6198, signal 180683/251499 (executing program) 2021/02/12 20:03:41 fetching corpus: 6248, signal 181173/252023 (executing program) 2021/02/12 20:03:41 fetching corpus: 6298, signal 181614/252023 (executing program) 2021/02/12 20:03:41 fetching corpus: 6348, signal 182067/252027 (executing program) 2021/02/12 20:03:41 fetching corpus: 6398, signal 182513/252027 (executing program) 2021/02/12 20:03:41 fetching corpus: 6448, signal 182985/252027 (executing program) 2021/02/12 20:03:41 fetching corpus: 6498, signal 183602/252027 (executing program) 2021/02/12 20:03:41 fetching corpus: 6548, signal 184224/252027 (executing program) 2021/02/12 20:03:41 fetching corpus: 6598, signal 184655/252027 (executing program) 2021/02/12 20:03:41 fetching corpus: 6648, signal 185139/252027 (executing program) 2021/02/12 20:03:42 fetching corpus: 6698, signal 185643/252027 (executing program) 2021/02/12 20:03:42 fetching corpus: 6748, signal 186067/252027 (executing program) 2021/02/12 20:03:42 fetching corpus: 6798, signal 186515/252027 (executing program) 2021/02/12 20:03:42 fetching corpus: 6848, signal 187278/252027 (executing program) 2021/02/12 20:03:42 fetching corpus: 6898, signal 187669/252027 (executing program) 2021/02/12 20:03:42 fetching corpus: 6948, signal 188416/252027 (executing program) 2021/02/12 20:03:42 fetching corpus: 6998, signal 188709/252027 (executing program) 2021/02/12 20:03:42 fetching corpus: 7048, signal 189129/252041 (executing program) 2021/02/12 20:03:42 fetching corpus: 7098, signal 189565/252041 (executing program) 2021/02/12 20:03:42 fetching corpus: 7148, signal 189953/252041 (executing program) 2021/02/12 20:03:42 fetching corpus: 7198, signal 190386/252077 (executing program) 2021/02/12 20:03:42 fetching corpus: 7248, signal 190960/252077 (executing program) 2021/02/12 20:03:42 fetching corpus: 7298, signal 191295/252077 (executing program) 2021/02/12 20:03:42 fetching corpus: 7348, signal 191637/252077 (executing program) 2021/02/12 20:03:42 fetching corpus: 7398, signal 192099/252077 (executing program) 2021/02/12 20:03:42 fetching corpus: 7448, signal 192455/252077 (executing program) 2021/02/12 20:03:42 fetching corpus: 7498, signal 192900/252077 (executing program) 2021/02/12 20:03:43 fetching corpus: 7548, signal 193309/252077 (executing program) 2021/02/12 20:03:43 fetching corpus: 7598, signal 193720/252077 (executing program) 2021/02/12 20:03:43 fetching corpus: 7648, signal 194198/252077 (executing program) 2021/02/12 20:03:43 fetching corpus: 7698, signal 195143/252077 (executing program) 2021/02/12 20:03:43 fetching corpus: 7748, signal 195495/252077 (executing program) 2021/02/12 20:03:43 fetching corpus: 7798, signal 196055/252077 (executing program) 2021/02/12 20:03:43 fetching corpus: 7848, signal 196548/252077 (executing program) 2021/02/12 20:03:43 fetching corpus: 7898, signal 196799/252077 (executing program) 2021/02/12 20:03:43 fetching corpus: 7948, signal 197308/252077 (executing program) 2021/02/12 20:03:43 fetching corpus: 7998, signal 197675/252077 (executing program) 2021/02/12 20:03:43 fetching corpus: 8048, signal 198116/252077 (executing program) 2021/02/12 20:03:43 fetching corpus: 8098, signal 198542/252077 (executing program) 2021/02/12 20:03:43 fetching corpus: 8148, signal 198987/252077 (executing program) 2021/02/12 20:03:43 fetching corpus: 8198, signal 199390/252077 (executing program) 2021/02/12 20:03:43 fetching corpus: 8248, signal 199857/252077 (executing program) 2021/02/12 20:03:43 fetching corpus: 8298, signal 200347/252077 (executing program) 2021/02/12 20:03:43 fetching corpus: 8348, signal 200814/252077 (executing program) 2021/02/12 20:03:43 fetching corpus: 8398, signal 201203/252077 (executing program) 2021/02/12 20:03:44 fetching corpus: 8448, signal 201727/252077 (executing program) 2021/02/12 20:03:44 fetching corpus: 8498, signal 202332/252077 (executing program) 2021/02/12 20:03:44 fetching corpus: 8548, signal 202617/252077 (executing program) 2021/02/12 20:03:44 fetching corpus: 8598, signal 203036/252077 (executing program) 2021/02/12 20:03:44 fetching corpus: 8648, signal 203413/252077 (executing program) 2021/02/12 20:03:44 fetching corpus: 8698, signal 203860/252077 (executing program) 2021/02/12 20:03:44 fetching corpus: 8748, signal 204315/252077 (executing program) 2021/02/12 20:03:44 fetching corpus: 8798, signal 204666/252077 (executing program) 2021/02/12 20:03:44 fetching corpus: 8848, signal 205124/252077 (executing program) 2021/02/12 20:03:44 fetching corpus: 8898, signal 205789/252077 (executing program) 2021/02/12 20:03:44 fetching corpus: 8948, signal 206113/252077 (executing program) 2021/02/12 20:03:44 fetching corpus: 8998, signal 206551/252077 (executing program) 2021/02/12 20:03:44 fetching corpus: 9048, signal 207054/252077 (executing program) 2021/02/12 20:03:44 fetching corpus: 9098, signal 207425/252077 (executing program) 2021/02/12 20:03:44 fetching corpus: 9148, signal 207791/252077 (executing program) 2021/02/12 20:03:44 fetching corpus: 9198, signal 208163/252077 (executing program) 2021/02/12 20:03:44 fetching corpus: 9248, signal 208473/252077 (executing program) 2021/02/12 20:03:44 fetching corpus: 9298, signal 208825/252077 (executing program) 2021/02/12 20:03:45 fetching corpus: 9348, signal 209178/252077 (executing program) 2021/02/12 20:03:45 fetching corpus: 9398, signal 209592/252079 (executing program) 2021/02/12 20:03:45 fetching corpus: 9448, signal 210063/252079 (executing program) 2021/02/12 20:03:45 fetching corpus: 9498, signal 210661/252079 (executing program) 2021/02/12 20:03:45 fetching corpus: 9548, signal 211006/252079 (executing program) 2021/02/12 20:03:45 fetching corpus: 9598, signal 211567/252079 (executing program) 2021/02/12 20:03:45 fetching corpus: 9648, signal 212037/252079 (executing program) 2021/02/12 20:03:45 fetching corpus: 9698, signal 212320/252079 (executing program) 2021/02/12 20:03:45 fetching corpus: 9748, signal 212748/252079 (executing program) 2021/02/12 20:03:45 fetching corpus: 9798, signal 213134/252079 (executing program) 2021/02/12 20:03:45 fetching corpus: 9848, signal 213506/252079 (executing program) 2021/02/12 20:03:45 fetching corpus: 9898, signal 213795/252079 (executing program) 2021/02/12 20:03:45 fetching corpus: 9948, signal 214309/252080 (executing program) 2021/02/12 20:03:45 fetching corpus: 9998, signal 214821/252080 (executing program) 2021/02/12 20:03:45 fetching corpus: 10048, signal 215376/252080 (executing program) 2021/02/12 20:03:45 fetching corpus: 10098, signal 215796/252080 (executing program) 2021/02/12 20:03:46 fetching corpus: 10148, signal 216178/252080 (executing program) 2021/02/12 20:03:46 fetching corpus: 10198, signal 216685/252081 (executing program) 2021/02/12 20:03:46 fetching corpus: 10248, signal 217039/252081 (executing program) 2021/02/12 20:03:46 fetching corpus: 10298, signal 217272/252081 (executing program) 2021/02/12 20:03:46 fetching corpus: 10348, signal 217578/252081 (executing program) 2021/02/12 20:03:46 fetching corpus: 10398, signal 217947/252081 (executing program) 2021/02/12 20:03:46 fetching corpus: 10448, signal 218350/252083 (executing program) 2021/02/12 20:03:46 fetching corpus: 10498, signal 218781/252083 (executing program) 2021/02/12 20:03:46 fetching corpus: 10548, signal 219232/252087 (executing program) 2021/02/12 20:03:46 fetching corpus: 10598, signal 219541/252087 (executing program) 2021/02/12 20:03:46 fetching corpus: 10648, signal 219896/252087 (executing program) 2021/02/12 20:03:46 fetching corpus: 10698, signal 220187/252087 (executing program) 2021/02/12 20:03:46 fetching corpus: 10748, signal 220923/252087 (executing program) 2021/02/12 20:03:46 fetching corpus: 10798, signal 221246/252087 (executing program) 2021/02/12 20:03:46 fetching corpus: 10848, signal 221493/252087 (executing program) 2021/02/12 20:03:46 fetching corpus: 10897, signal 221726/252091 (executing program) 2021/02/12 20:03:46 fetching corpus: 10947, signal 222199/252091 (executing program) 2021/02/12 20:03:46 fetching corpus: 10997, signal 222577/252091 (executing program) 2021/02/12 20:03:46 fetching corpus: 11047, signal 222791/252091 (executing program) 2021/02/12 20:03:47 fetching corpus: 11097, signal 223150/252094 (executing program) 2021/02/12 20:03:47 fetching corpus: 11147, signal 223517/252094 (executing program) 2021/02/12 20:03:47 fetching corpus: 11197, signal 223780/252094 (executing program) 2021/02/12 20:03:47 fetching corpus: 11247, signal 224164/252094 (executing program) 2021/02/12 20:03:47 fetching corpus: 11297, signal 224459/252094 (executing program) 2021/02/12 20:03:47 fetching corpus: 11347, signal 224751/252094 (executing program) 2021/02/12 20:03:47 fetching corpus: 11397, signal 225148/252094 (executing program) 2021/02/12 20:03:47 fetching corpus: 11447, signal 225501/252094 (executing program) 2021/02/12 20:03:47 fetching corpus: 11497, signal 225911/252094 (executing program) 2021/02/12 20:03:47 fetching corpus: 11547, signal 226158/252094 (executing program) 2021/02/12 20:03:47 fetching corpus: 11597, signal 226517/252094 (executing program) 2021/02/12 20:03:47 fetching corpus: 11647, signal 226842/252094 (executing program) 2021/02/12 20:03:47 fetching corpus: 11697, signal 227218/252094 (executing program) 2021/02/12 20:03:47 fetching corpus: 11747, signal 227413/252094 (executing program) 2021/02/12 20:03:47 fetching corpus: 11797, signal 227836/252094 (executing program) 2021/02/12 20:03:48 fetching corpus: 11847, signal 228122/252094 (executing program) 2021/02/12 20:03:48 fetching corpus: 11897, signal 228478/252094 (executing program) 2021/02/12 20:03:48 fetching corpus: 11947, signal 228734/252094 (executing program) 2021/02/12 20:03:48 fetching corpus: 11997, signal 229021/252094 (executing program) 2021/02/12 20:03:48 fetching corpus: 12047, signal 229424/252094 (executing program) 2021/02/12 20:03:48 fetching corpus: 12097, signal 229652/252094 (executing program) 2021/02/12 20:03:48 fetching corpus: 12147, signal 229883/252096 (executing program) 2021/02/12 20:03:48 fetching corpus: 12197, signal 230195/252097 (executing program) 2021/02/12 20:03:48 fetching corpus: 12247, signal 230433/252097 (executing program) 2021/02/12 20:03:48 fetching corpus: 12297, signal 230749/252097 (executing program) 2021/02/12 20:03:48 fetching corpus: 12347, signal 231014/252097 (executing program) 2021/02/12 20:03:48 fetching corpus: 12397, signal 231274/252097 (executing program) 2021/02/12 20:03:48 fetching corpus: 12447, signal 231557/252097 (executing program) 2021/02/12 20:03:48 fetching corpus: 12497, signal 231867/252097 (executing program) 2021/02/12 20:03:48 fetching corpus: 12547, signal 232246/252097 (executing program) 2021/02/12 20:03:48 fetching corpus: 12597, signal 232507/252097 (executing program) 2021/02/12 20:03:48 fetching corpus: 12647, signal 232768/252097 (executing program) 2021/02/12 20:03:49 fetching corpus: 12697, signal 233182/252097 (executing program) 2021/02/12 20:03:49 fetching corpus: 12747, signal 233618/252097 (executing program) 2021/02/12 20:03:49 fetching corpus: 12797, signal 234263/252109 (executing program) 2021/02/12 20:03:49 fetching corpus: 12847, signal 234472/252109 (executing program) 2021/02/12 20:03:49 fetching corpus: 12897, signal 234793/252109 (executing program) 2021/02/12 20:03:49 fetching corpus: 12947, signal 235098/252109 (executing program) 2021/02/12 20:03:49 fetching corpus: 12997, signal 235352/252109 (executing program) 2021/02/12 20:03:49 fetching corpus: 13047, signal 235628/252109 (executing program) 2021/02/12 20:03:49 fetching corpus: 13097, signal 236555/252109 (executing program) 2021/02/12 20:03:49 fetching corpus: 13146, signal 237058/252110 (executing program) 2021/02/12 20:03:49 fetching corpus: 13196, signal 237568/252110 (executing program) 2021/02/12 20:03:49 fetching corpus: 13243, signal 237785/252110 (executing program) 2021/02/12 20:03:49 fetching corpus: 13243, signal 237785/252110 (executing program) 2021/02/12 20:03:51 starting 6 fuzzer processes 20:03:56 executing program 0: openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x0, 0x0) ioctl$RTC_SET_TIME(0xffffffffffffffff, 0x4024700a, &(0x7f0000000080)={0x0, 0xa, 0x14, 0x12, 0x5, 0x3, 0x1, 0x20}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) clone(0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)="0f") perf_event_open(&(0x7f0000000300)={0x0, 0x70, 0x6, 0x80, 0x0, 0xff, 0x0, 0x6c6a, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x4, 0x0, @perf_config_ext={0x3f, 0xb96}, 0x0, 0x8, 0x5, 0x10, 0x81, 0x0, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5], 0x100000}) perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xc, 0x0, 0x0, 0x40, 0x0, 0x0, 0x1120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x22, 0x6, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_NMI(r2, 0xae9a) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 161.778965][ T8225] IPVS: ftp: loaded support on port[0] = 21 [ 162.149475][ T8225] chnl_net:caif_netlink_parms(): no params data found [ 162.296808][ T8225] bridge0: port 1(bridge_slave_0) entered blocking state [ 162.304882][ T8225] bridge0: port 1(bridge_slave_0) entered disabled state [ 162.314377][ T8225] device bridge_slave_0 entered promiscuous mode [ 162.385413][ T8225] bridge0: port 2(bridge_slave_1) entered blocking state [ 162.392984][ T8225] bridge0: port 2(bridge_slave_1) entered disabled state [ 162.402354][ T8225] device bridge_slave_1 entered promiscuous mode [ 162.456828][ T8225] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 162.475156][ T8225] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 162.535022][ T8225] team0: Port device team_slave_0 added [ 162.551333][ T8225] team0: Port device team_slave_1 added [ 162.598064][ T8225] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 162.605510][ T8225] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 162.631859][ T8225] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 162.648277][ T8225] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 162.655613][ T8225] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 162.681987][ T8225] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 162.741934][ T8225] device hsr_slave_0 entered promiscuous mode [ 162.752126][ T8225] device hsr_slave_1 entered promiscuous mode [ 163.034276][ T8225] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 163.051966][ T8225] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 163.094516][ T8225] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 163.120640][ T8225] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 163.408791][ T8225] 8021q: adding VLAN 0 to HW filter on device bond0 [ 163.440190][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 163.449874][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 163.471401][ T8225] 8021q: adding VLAN 0 to HW filter on device team0 [ 163.493713][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 163.503621][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 163.513071][ T55] bridge0: port 1(bridge_slave_0) entered blocking state [ 163.520331][ T55] bridge0: port 1(bridge_slave_0) entered forwarding state [ 163.535742][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 163.549766][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 163.560157][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 163.569554][ T55] bridge0: port 2(bridge_slave_1) entered blocking state [ 163.576919][ T55] bridge0: port 2(bridge_slave_1) entered forwarding state [ 163.607083][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 163.632320][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 163.667386][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 163.678457][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 163.688807][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 163.699262][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 163.715198][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 163.735757][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 163.745726][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 163.773656][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 163.784228][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 163.798980][ T8225] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 163.822809][ T55] Bluetooth: hci0: command 0x0409 tx timeout [ 163.860103][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 163.868201][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 163.896901][ T8225] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 163.954519][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 163.964538][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 164.016904][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 164.027450][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 164.043189][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 164.052210][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 164.066175][ T8225] device veth0_vlan entered promiscuous mode [ 164.098664][ T8225] device veth1_vlan entered promiscuous mode [ 164.174508][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 164.184724][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 164.208943][ T8225] device veth0_macvtap entered promiscuous mode [ 164.231471][ T8225] device veth1_macvtap entered promiscuous mode [ 164.289480][ T8225] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 164.297632][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 164.307117][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 164.316511][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 164.326478][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 164.350121][ T8225] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 164.367855][ T8225] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 164.377864][ T8225] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 164.386918][ T8225] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 164.395931][ T8225] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 164.411244][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 164.421546][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 164.775204][ T1074] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 164.783567][ T1074] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 164.796385][ T8455] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 164.854600][ T938] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 164.862550][ T938] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 164.872135][ T8445] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 165.175818][ T8470] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. 20:04:02 executing program 0: openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x0, 0x0) ioctl$RTC_SET_TIME(0xffffffffffffffff, 0x4024700a, &(0x7f0000000080)={0x0, 0xa, 0x14, 0x12, 0x5, 0x3, 0x1, 0x20}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) clone(0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)="0f") perf_event_open(&(0x7f0000000300)={0x0, 0x70, 0x6, 0x80, 0x0, 0xff, 0x0, 0x6c6a, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x4, 0x0, @perf_config_ext={0x3f, 0xb96}, 0x0, 0x8, 0x5, 0x10, 0x81, 0x0, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5], 0x100000}) perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xc, 0x0, 0x0, 0x40, 0x0, 0x0, 0x1120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x22, 0x6, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_NMI(r2, 0xae9a) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 20:04:02 executing program 0: openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x0, 0x0) ioctl$RTC_SET_TIME(0xffffffffffffffff, 0x4024700a, &(0x7f0000000080)={0x0, 0xa, 0x14, 0x12, 0x5, 0x3, 0x1, 0x20}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) clone(0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)="0f") perf_event_open(&(0x7f0000000300)={0x0, 0x70, 0x6, 0x80, 0x0, 0xff, 0x0, 0x6c6a, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x4, 0x0, @perf_config_ext={0x3f, 0xb96}, 0x0, 0x8, 0x5, 0x10, 0x81, 0x0, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5], 0x100000}) perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xc, 0x0, 0x0, 0x40, 0x0, 0x0, 0x1120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x22, 0x6, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_NMI(r2, 0xae9a) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 165.857947][ T55] Bluetooth: hci0: command 0x041b tx timeout 20:04:02 executing program 0: openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x0, 0x0) ioctl$RTC_SET_TIME(0xffffffffffffffff, 0x4024700a, &(0x7f0000000080)={0x0, 0xa, 0x14, 0x12, 0x5, 0x3, 0x1, 0x20}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) clone(0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)="0f") perf_event_open(&(0x7f0000000300)={0x0, 0x70, 0x6, 0x80, 0x0, 0xff, 0x0, 0x6c6a, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x4, 0x0, @perf_config_ext={0x3f, 0xb96}, 0x0, 0x8, 0x5, 0x10, 0x81, 0x0, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5], 0x100000}) perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xc, 0x0, 0x0, 0x40, 0x0, 0x0, 0x1120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x22, 0x6, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_NMI(r2, 0xae9a) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 20:04:03 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000001ec0)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000001f00)=@newlink={0x40, 0x10, 0x705, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipoib={{0xa, 0x1, 'ipoib\x00'}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x5, @empty=[0x14]}]}, 0x40}, 0x1, 0xb}, 0x0) [ 166.818805][ T8508] netlink: 'syz-executor.0': attribute type 5 has an invalid length. 20:04:03 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000001ec0)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000001f00)=@newlink={0x40, 0x10, 0x705, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipoib={{0xa, 0x1, 'ipoib\x00'}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x5, @empty=[0x14]}]}, 0x40}, 0x1, 0xb}, 0x0) [ 167.051381][ T8512] netlink: 'syz-executor.0': attribute type 5 has an invalid length. 20:04:03 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000001ec0)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000001f00)=@newlink={0x40, 0x10, 0x705, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipoib={{0xa, 0x1, 'ipoib\x00'}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x5, @empty=[0x14]}]}, 0x40}, 0x1, 0xb}, 0x0) [ 167.267155][ T8514] netlink: 'syz-executor.0': attribute type 5 has an invalid length. 20:04:04 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000001ec0)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000001f00)=@newlink={0x40, 0x10, 0x705, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipoib={{0xa, 0x1, 'ipoib\x00'}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x5, @empty=[0x14]}]}, 0x40}, 0x1, 0xb}, 0x0) [ 167.500914][ T8518] netlink: 'syz-executor.0': attribute type 5 has an invalid length. 20:04:04 executing program 0: r0 = epoll_create(0x3f) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000040)={0xe0000000}) epoll_ctl$EPOLL_CTL_ADD(r1, 0x3, r0, &(0x7f0000000940)={0x20000022}) 20:04:04 executing program 0: r0 = epoll_create(0x3f) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000040)={0xe0000000}) epoll_ctl$EPOLL_CTL_ADD(r1, 0x3, r0, &(0x7f0000000940)={0x20000022}) [ 167.944198][ T55] Bluetooth: hci0: command 0x040f tx timeout 20:04:04 executing program 0: r0 = epoll_create(0x3f) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000040)={0xe0000000}) epoll_ctl$EPOLL_CTL_ADD(r1, 0x3, r0, &(0x7f0000000940)={0x20000022}) 20:04:05 executing program 0: r0 = epoll_create(0x3f) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000040)={0xe0000000}) epoll_ctl$EPOLL_CTL_ADD(r1, 0x3, r0, &(0x7f0000000940)={0x20000022}) 20:04:05 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb, 0x1, 'clsact\x00'}]}, 0x30}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000340)=@delchain={0x24, 0x24, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff3, 0xffff}}}, 0x24}}, 0x0) [ 168.947953][ T8560] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'. 20:04:05 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb, 0x1, 'clsact\x00'}]}, 0x30}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000340)=@delchain={0x24, 0x24, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff3, 0xffff}}}, 0x24}}, 0x0) [ 169.266970][ T8566] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'. 20:04:05 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb, 0x1, 'clsact\x00'}]}, 0x30}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000340)=@delchain={0x24, 0x24, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff3, 0xffff}}}, 0x24}}, 0x0) [ 169.530408][ T8570] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'. 20:04:06 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb, 0x1, 'clsact\x00'}]}, 0x30}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000340)=@delchain={0x24, 0x24, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff3, 0xffff}}}, 0x24}}, 0x0) [ 169.770573][ T8573] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'. 20:04:06 executing program 0: unshare(0x8000600) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_udp_int(r0, 0x11, 0x0, &(0x7f0000000100), 0x4) [ 170.013640][ T55] Bluetooth: hci0: command 0x0419 tx timeout 20:04:06 executing program 0: unshare(0x8000600) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_udp_int(r0, 0x11, 0x0, &(0x7f0000000100), 0x4) 20:04:07 executing program 0: unshare(0x8000600) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_udp_int(r0, 0x11, 0x0, &(0x7f0000000100), 0x4) 20:04:07 executing program 0: unshare(0x8000600) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_udp_int(r0, 0x11, 0x0, &(0x7f0000000100), 0x4) 20:04:07 executing program 0: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x0) setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000000)=0x91, 0x4) syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a3ff2", 0x14, 0x6, 0x0, @empty={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) [ 171.218018][ T8591] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. [ 171.257234][ T8592] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. 20:04:07 executing program 0: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x0) setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000000)=0x91, 0x4) syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a3ff2", 0x14, 0x6, 0x0, @empty={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) [ 171.565581][ T8596] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. 20:04:08 executing program 0: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x0) setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000000)=0x91, 0x4) syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a3ff2", 0x14, 0x6, 0x0, @empty={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) [ 171.832146][ T8600] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. 20:04:08 executing program 0: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x0) setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000000)=0x91, 0x4) syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a3ff2", 0x14, 0x6, 0x0, @empty={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) [ 172.056618][ T8602] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. 20:04:08 executing program 1: syz_usb_connect$cdc_ncm(0x4, 0x8f, &(0x7f0000000000)={{0x12, 0x1, 0x100, 0x2, 0x0, 0x0, 0x10, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x7d, 0x2, 0x1, 0x3, 0x40, 0x2, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5, 0x24, 0x0, 0x1c4b}, {0xd, 0x24, 0xf, 0x1, 0x0, 0x6, 0x0, 0x1}, {0x6, 0x24, 0x1a, 0xf000, 0x8}, [@dmm={0x7, 0x24, 0x14, 0x7ff, 0x80}, @country_functional={0xa, 0x24, 0x7, 0x60, 0x80, [0xe797, 0x783e]}, @network_terminal={0x7, 0x24, 0xa, 0x7, 0x3, 0x5, 0x7}, @obex={0x5, 0x24, 0x15, 0x3}, @acm={0x4, 0x24, 0x2, 0x5}]}, {{0x9, 0x5, 0x81, 0x3, 0x400, 0x8, 0x7f, 0x6}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x20, 0x0, 0x7, 0x7}}, {{0x9, 0x5, 0x3, 0x2, 0x10, 0xf6, 0x6, 0x3}}}}}}}]}}, &(0x7f0000000300)={0xa, &(0x7f00000000c0)={0xa, 0x6, 0x200, 0x20, 0x0, 0x80, 0xff, 0x5}, 0xbe, &(0x7f0000000100)={0x5, 0xf, 0xbe, 0x5, [@ss_cap={0xa, 0x10, 0x3, 0x2, 0x1, 0x0, 0x2, 0xffff}, @ptm_cap={0x3}, @ext_cap={0x7, 0x10, 0x2, 0x10, 0x8, 0x8, 0x708d}, @generic={0xa2, 0x10, 0x2, "b383511c1a2a7c8975424c8ec5fc60b6f74b5fdee259c63b4f2a200b500c34264f61ab9bf9e2a1caa767031a291a1c3ceb352061d5454a2c310f7dbe5f0fdd473e1b463ea9ce37f87d0972d5bfc5e5dc885d8f81d4d25bfb7e2e3290bc95dca2b7b59a684de991198fbbb49956f9c3ff8b6b415f9eb941d7b93ffa91df6bb97650d434c4e6edb419c8398a6bed5dbf5a2fe73ec82c3ead2f2095356b71d12f"}, @ptm_cap={0x3}]}, 0x3, [{0x3c, &(0x7f00000001c0)=@string={0x3c, 0x3, "d551ccb99a54f9db43778c0a743ee7c46d849e039ba4d1899fd9aa9c3d603c952d7596fb766490b43f9277159271d1327ae5398621db3e1dedb6"}}, {0x47, &(0x7f0000000200)=@string={0x47, 0x3, "5be9b573264dde350f6338a028e65141899aaf5673246f56acc9ffbaeba501c6892daecfd362c66852e6ed47829d030f96545cb281d84329d4e45391ba57d2a9131522d2ea"}}, {0x7a, &(0x7f0000000280)=@string={0x7a, 0x3, "07242338065f7a68e5ec39e84d7562ae361fcb3472aafab55d417d529b8819a4fde818cb7cec1b1e0ead35f542f157c5dec9259269e303be96300b17e5a6b3c413e9ee37c70237465a2cfcbaa41a09bec8ab191c033953c0b6443c387e6f71f1e9e65d53578d7ee0c319452277decdc5c0a949c50ef30648"}}]}) syz_usb_connect$cdc_ncm(0x0, 0x74, &(0x7f0000000340)={{0x12, 0x1, 0x310, 0x2, 0x0, 0x0, 0x10, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x62, 0x2, 0x1, 0x1, 0xa0, 0x6, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0xb, 0x24, 0x6, 0x0, 0x1, "4465bccade42"}, {0x5, 0x24, 0x0, 0x3}, {0xd, 0x24, 0xf, 0x1, 0x5, 0x8, 0x400, 0x1}, {0x6, 0x24, 0x1a, 0x40, 0x28}}, {{0x9, 0x5, 0x81, 0x3, 0x20, 0x1, 0xca, 0x1f}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x10, 0x79, 0x81, 0x8}}, {{0x9, 0x5, 0x3, 0x2, 0x3ff, 0x6}}}}}}}]}}, &(0x7f00000007c0)={0xa, &(0x7f00000003c0)={0xa, 0x6, 0x200, 0x8, 0x3f, 0x2, 0x8, 0x4}, 0x19, &(0x7f0000000400)={0x5, 0xf, 0x19, 0x1, [@ss_container_id={0x14, 0x10, 0x4, 0x6c, "d91474948930a9a401eec12f17e3bf36"}]}, 0x5, [{0x102, &(0x7f0000000440)=@string={0x102, 0x3, "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"}}, {0xcc, &(0x7f0000000580)=@string={0xcc, 0x3, "aa7c8c466d6c6575323f24edfee1c16f185d83b1324ba049d1a9881844d32392c2ce0b3902a27273b0a2af9e9fe531d24e6866f670853f2d2d8910dc2cb3738424a9f82e843ed01487a1b26c68d2685f05611a1f5a44331dcea896c98942115031df87458c6da746279f7d24ca15469fb9f45ed3ad12869bb8344c98dab27d2a8e8a5e5678f250a1981161df00dc6c80c79fc45add5990ef8306d2d294ece81c43964dca5e9b0af95158f7ee2abbdefd9d1406e8596bd5d4343c08f38ee79972e42aa576e89849e1b93b"}}, {0x4, &(0x7f0000000680)=@lang_id={0x4, 0x3, 0x448}}, {0x4, &(0x7f00000006c0)=@lang_id={0x4, 0x3, 0x424}}, {0xaa, &(0x7f0000000700)=@string={0xaa, 0x3, "354998fb61d793f470582ac04431c7e094e16464e14c0ba56e7151c58b8b9bf26c315e7c29bd1bfbb9393465dbc992f2a80c4638f80d01bbd23e416d7f4faaebbc846d360d525e57d4878acbda7db751f2bed9241d567d0c5e47c0cc9b77266559ddaea682e8b65a41cf85fad3b75e32b5dd1a74a29b08682e742e3c9c8f79eb36ec5a98295a9def68d78b4a60b9cbcd5b3fe70f9c6a121c4beedb8be012c180cc26914bc960fba0"}}]}) r0 = syz_usb_connect$cdc_ncm(0x4, 0xe0, &(0x7f0000000800)={{0x12, 0x1, 0x110, 0x2, 0x0, 0x0, 0x28, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xce, 0x2, 0x1, 0x20, 0xc0, 0x5, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x9, 0x24, 0x6, 0x0, 0x1, "be39d846"}, {0x5, 0x24, 0x0, 0x401}, {0xd, 0x24, 0xf, 0x1, 0xf17, 0x1, 0xfff, 0xff}, {0x6, 0x24, 0x1a, 0xf000, 0x10}, [@dmm={0x7, 0x24, 0x14, 0x9, 0x1}, @obex={0x5, 0x24, 0x15, 0x100}, @mdlm_detail={0x62, 0x24, 0x13, 0x9, "66a311d2e34d0a7920b7087f53d243ce0a9b01e517c2ee0b724a05c417f100139befadc501ebafed1f9ff73812a465e916c2344db816ee4e5a430d3003e6374e9723af3e26efa7e35e41f7a824cdbda86ea009443fcb431e1f284ed69bda"}]}, {{0x9, 0x5, 0x81, 0x3, 0x10, 0x40, 0x4, 0x4}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x40, 0x7, 0x3, 0x80}}, {{0x9, 0x5, 0x3, 0x2, 0x10, 0x81, 0x8, 0x5}}}}}}}]}}, &(0x7f0000000a80)={0xa, &(0x7f0000000900)={0xa, 0x6, 0x200, 0x8, 0xfe, 0x8, 0x0, 0x7}, 0xf6, &(0x7f0000000940)={0x5, 0xf, 0xf6, 0x5, [@generic={0x96, 0x10, 0xb, "eacceb8642a538f8bd9e9e36e17d6cab8bba11507ecb2bd238c11fa9b71e380398db9e2da1363b4807294396bd0dc782b13289da2dd448cdb9a87ef0394caa63667b51781c6e979fb97cbfeea4c62df0179cb3fc0a196c39cd8df848c4ff20094e684c76769f24f65dfd4c868014105062d2e997b1f75715b11cf83b59ffb27f81c972c3ea8990e09ca31864fe5afa31dc89a9"}, @ptm_cap={0x3}, @ssp_cap={0x24, 0x10, 0xa, 0xef, 0x6, 0x3, 0xf00, 0xb5c0, [0xff0000, 0xf, 0xc0, 0x18000, 0x9fcf, 0xc0]}, @ss_container_id={0x14, 0x10, 0x4, 0x7, "5a3f4b98efc5f451b4e5bbcdba3664f4"}, @ssp_cap={0x20, 0x10, 0xa, 0x6, 0x5, 0x401, 0xff0f, 0x0, [0x3f00, 0xffc000, 0xf, 0x3fe1, 0xff0000]}]}, 0x1, [{0x4, &(0x7f0000000a40)=@lang_id={0x4, 0x3, 0x807}}]}) syz_usb_connect(0x4, 0x4bc, &(0x7f0000000ac0)={{0x12, 0x1, 0x310, 0x88, 0x4d, 0xfe, 0x8, 0xc26, 0xd, 0xa435, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x4aa, 0x2, 0x3f, 0x2, 0x20, 0x8, [{{0x9, 0x4, 0x54, 0x0, 0x0, 0xb4, 0x75, 0x5c, 0x7, [@uac_control={{0xa, 0x24, 0x1, 0x401, 0x80}, [@input_terminal={0xc, 0x24, 0x2, 0x1, 0x101, 0x5, 0x29, 0x4, 0xac, 0x5}]}]}}, {{0x9, 0x4, 0xd4, 0x40, 0xf, 0x1c, 0x31, 0x24, 0x7, [@generic={0xfe, 0x7, "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"}, @uac_as={[@as_header={0x7, 0x24, 0x1, 0x1, 0x7}, @format_type_i_discrete={0xb, 0x24, 0x2, 0x1, 0x5, 0x1, 0xa9, 0x40, "aad8ec"}, @format_type_i_discrete={0x8, 0x24, 0x2, 0x1, 0x0, 0x1, 0xff}, @format_type_i_continuous={0xb, 0x24, 0x2, 0x1, 0x2, 0x4, 0x0, 0x3, "32b9c4"}]}], [{{0x9, 0x5, 0x0, 0xc, 0x8, 0x3, 0x1, 0x4}}, {{0x9, 0x5, 0x3, 0x0, 0x200, 0x0, 0x0, 0x1}}, {{0x9, 0x5, 0x4, 0x2, 0x8, 0x9, 0x40, 0x1, [@generic={0x2c, 0xa, "d4653f434f4ec39222e7327427e6e57f7c6ebc4f6cdc99942f10601a0339643e29996d548db25f4bf014"}, @uac_iso={0x7, 0x25, 0x1, 0x1, 0x3f}]}}, {{0x9, 0x5, 0xa, 0x8, 0x8, 0x6, 0x2, 0x9, [@generic={0xd, 0xe, "489d2aa24bdaae3010997f"}, @uac_iso={0x7, 0x25, 0x1, 0x1, 0xfd, 0x4}]}}, {{0x9, 0x5, 0xc, 0x2, 0x8, 0x21, 0x81, 0x7}}, {{0x9, 0x5, 0xc, 0x1, 0x3ff, 0x0, 0x3, 0x6, [@generic={0xc2, 0x30, "ed138c4a9f36964016c83c1c2257cf2e3e4efbec524d18b6848c0133f5b1c1e90294de825e4283ee8a63c12ba545c6e548c0561a4f294aa534f90e60107a280b1c4933cadf79bcd9eef1d1451dee9246204a6e3e0a26638a3012fb3fdf77495c87f66fa42a14c3d38f0357c755c77cbc2737f4272c0f0e408990df0e00c37e403a5cbe344c72b98ae5670a5c0ef2134d607c326e2a8114845e0121a9506040e60b8acb4f2962fd96bfa6e460460d7445fd2c1c873a3f013e98a7b7f7fa4fb7fa"}]}}, {{0x9, 0x5, 0xa, 0x0, 0x200, 0x8, 0xa3, 0x0, [@uac_iso={0x7, 0x25, 0x1, 0x81, 0xf8, 0x6}]}}, {{0x9, 0x5, 0x5, 0x0, 0x3ff, 0x1, 0x80}}, {{0x9, 0x5, 0x2, 0x0, 0xa10, 0xff, 0x1, 0x0, [@generic={0x75, 0x6, "9261d563bf1c2f680038ec7b92826586970a3f85b08d742d2b1ed2ab8bd804aa77746d388b81a81a3af1353b195a8621f9b52c55a2cc51208110cff83808a4db9a5cdd22931cb108b1b2fcda332b9d7ef62487754761b1ea993e64f13b9bb6d960c05aea45ef0a79c2d05123720630515b6d4a"}]}}, {{0x9, 0x5, 0x9, 0x0, 0x400, 0x6, 0x6, 0xd9, [@generic={0x5, 0x21, "7c269d"}, @generic={0xc, 0x22, "c2d814572e507491ad00"}]}}, {{0x9, 0x5, 0xb, 0x1, 0x10, 0x7f, 0x1, 0x0, [@uac_iso={0x7, 0x25, 0x1, 0x0, 0x5, 0xe7e3}]}}, {{0x9, 0x5, 0x6, 0x1, 0x3ff, 0x61, 0x1, 0x0, [@generic={0x11, 0x22, "84071f79d70391f0e5d2a92027e494"}, @uac_iso={0x7, 0x25, 0x1, 0x2, 0x0, 0x9}]}}, {{0x9, 0x5, 0x3, 0x0, 0x8, 0x1, 0x86, 0x5}}, {{0x9, 0x5, 0x4, 0x2, 0x3ff, 0x0, 0xfe, 0xf8, [@generic={0x7a, 0x25, "7a7b2d22bd475159e9191e3c965f557a395bf7cd17948159fe48755cbdb80c0cc8127cf431cd7f8ebf73d0c2ae1ad316f66630ae80fd72fc3198e56f4b4e859dd0ed86e77985e380283f24d5aa16d535d5d8bb747718c63e3c4340c4b96971c42b639674d34804eee037a3a7fd53ea44c41d7c1615aacaeb"}, @generic={0xa1, 0x3, "a1782cff0668791f8f0f6a18bd6759f7342a7c2c0e79aeda9d62bb3e9799f1e7cb52b3ab10fd3d21856cda8f1599f2d91b29c7f28f4f44b39a14865392a939002422a57860159a2b755ab1af7205d3ad0725325b1c8c43fc48c3f7f3faafeb530dad987a10c073b1d60c0acf513609d38c52aa7fd909384385c6fc63b106337012ffdf964fc1f65f58b398f621cefa4ef025f3a290f5d3d20204540f71d278"}]}}, {{0x9, 0x5, 0xf, 0x0, 0x20, 0xfe, 0x2, 0x80}}]}}]}}]}}, &(0x7f0000001100)={0xa, &(0x7f0000000f80)={0xa, 0x6, 0x201, 0x7, 0x8, 0x8, 0x40, 0xd1}, 0x55, &(0x7f0000000fc0)={0x5, 0xf, 0x55, 0x2, [@ss_container_id={0x14, 0x10, 0x4, 0x4, "d42c4ce95ad81309ed4282604f1a0ce0"}, @generic={0x3c, 0x10, 0x1, "58bc4190e16823c2460edceaa5345b96c5312eb7db60de8b07a4cd5a2e882aecb9b1c04dff147b1f6fc59f6eebca2b52ea0610ebf325ab3f5e"}]}, 0x3, [{0x4, &(0x7f0000001040)=@lang_id={0x4, 0x3, 0x448}}, {0x4, &(0x7f0000001080)=@lang_id={0x4, 0x3, 0x1c09}}, {0x4, &(0x7f00000010c0)=@lang_id={0x4, 0x3, 0x1007}}]}) syz_usb_control_io$printer(0xffffffffffffffff, &(0x7f00000011c0)={0xc, &(0x7f0000001140)={0x0, 0xc, 0x32, {0x32, 0x0, "e7c304a2bcdfb4ef781a9d0ad60b8bcdc2fa42ffebc53db367bee214ce55a5e0dd42923f1af97a99807bba1ca6915419"}}, &(0x7f0000001180)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0xa04}}}, &(0x7f00000014c0)={0x1c, &(0x7f0000001200)={0x40, 0x15, 0x85, "892ccea75251f8a9be986a8caf22ac35c6474185999a07daca40866a54934a29039c82cc0b8f92bdb4eca9dd99547d48c2375df44abc4036ed2a19e77d274df3eb96f99685f51731949f1cac09f3e620e4a8b20ecf187edc9ed1346803cd017c4f71d92f852b3c3c69d0063dcdd81c43b2c260a9d3af8b706afb1c2597f47969f8bec4fdfd"}, &(0x7f00000012c0)={0x0, 0xa, 0x1, 0xef}, &(0x7f0000001300)={0x0, 0x8, 0x1, 0x9}, &(0x7f0000001340)={0x20, 0x0, 0xe6, {0xe4, "fdb4f1addc821d0e97446997b391dbae8ad625f9ce4cc35eba01c40775abc89c0b0f1ce75148dfb9a78b98ad2b163dc6b5300948717c4bf44de15236c6d2c99bdb12769456863e57e6ec67e304ba47b6ba7a08b7edf0ca6b7f6c2d82e04f02aee05c8e54a3abe19d2c775edd6b494752f21d99ef0075f6db28d4c748dbd74e805b893b2f8495ce3eb5551c47c627d8d55b9066337ed87d8b238e991a288f245c016265bfb941b84e6bcc2d491d8c0aeeb7f38fe10df49f13331862a38f43d267d956b3705cc49e6a9240e5d459050744c55d528bba02583c405623d1f9c02071e8f60fc7"}}, &(0x7f0000001440)={0x20, 0x1, 0x1, 0x40}, &(0x7f0000001480)={0x20, 0x0, 0x1, 0x9}}) r1 = syz_init_net_socket$ax25(0x3, 0x2, 0x1) shutdown(r1, 0x1) connect$ax25(r1, &(0x7f0000001500)={{0x3, @null, 0x1}, [@bcast, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @null, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x48) syz_usb_connect$hid(0x4, 0x3f, &(0x7f0000001580)={{0x12, 0x1, 0x300, 0x0, 0x0, 0x0, 0xff, 0xeef, 0x726b, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x40, 0xa0, 0x8, [{{0x9, 0x4, 0x0, 0x2c, 0x1, 0x3, 0x1, 0x1, 0x0, {0x9, 0x21, 0x6, 0x7, 0x1, {0x22, 0xd46}}, {{{0x9, 0x5, 0x81, 0x3, 0x3ff, 0x3f, 0x2, 0xaa}}, [{{0x9, 0x5, 0x2, 0x3, 0x608, 0x0, 0x9, 0xe9}}]}}}]}}]}}, &(0x7f00000019c0)={0xa, &(0x7f00000015c0)={0xa, 0x6, 0x110, 0xfa, 0x8f, 0x6, 0x8, 0x2}, 0x144, &(0x7f0000001600)={0x5, 0xf, 0x144, 0x6, [@ss_container_id={0x14, 0x10, 0x4, 0xd, "93122557eb87695abf53c5cbaf03a5aa"}, @ss_container_id={0x14, 0x10, 0x4, 0x53, "4045a9e78c972edd38b3b4710292e030"}, @generic={0xdf, 0x10, 0x2, "e96fb5a144443ed2aa9a6bfe09be740e98ce9a6966399510446270a734360e9fc0e626b049aecbe6a4f2193ea4c1146ec7c760c76ea58c325438b5181503ac18640e14c251dca5e13422689499daebd7115de2fe73da5e9b596779e21e083625ecfe73fd592d09e80aeb720c129c63d57e6107e7bc7dd8ace7b76b43fe94b7f7d477c6a57938a4e8833e2ebaea21c159a0b96e0c573cec5dd28732bb55109717e2d2833a212805c269c59b7d63e7c38ff8eabdb817f5285db1b1d36ec0e870ff720e3ecf377c67c0b8f1ac9bb299e0aa272916340fce54eeb4f932b3"}, @ssp_cap={0x10, 0x10, 0xa, 0x7, 0x1, 0x0, 0x0, 0x7, [0x3f00]}, @generic={0x14, 0x10, 0x1, "998bcdf06bcb171592d5b39871395e42fa"}, @ss_container_id={0x14, 0x10, 0x4, 0x81, "1770f8be89c4c1cd4ad824bd3b5ff9b6"}]}, 0x5, [{0x4, &(0x7f0000001780)=@lang_id={0x4, 0x3, 0x4ff}}, {0x4, &(0x7f00000017c0)=@lang_id={0x4, 0x3, 0x40a}}, {0xff, &(0x7f0000001800)=@string={0xff, 0x3, "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"}}, {0x4, &(0x7f0000001900)=@lang_id={0x4, 0x3, 0x404}}, {0x4f, &(0x7f0000001940)=@string={0x4f, 0x3, "3e6b4f60f0e39af83c1d1e8077b5538ab7e1ef8e39505d72c7df290fd7cc999c88b2f48ce862c33a549714494d07ba0b68dae45063def93f6b6716f81fbb2b5609df0c347ca23d9017c9fa18c8"}}]}) syz_usb_connect$cdc_ncm(0x3, 0x197, &(0x7f0000001a00)={{0x12, 0x1, 0x310, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x185, 0x2, 0x1, 0xcb, 0x50, 0x6, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5, 0x24, 0x0, 0x979}, {0xd, 0x24, 0xf, 0x1, 0x5, 0x0, 0x1, 0x3}, {0x6, 0x24, 0x1a, 0x8, 0x20}, [@obex={0x5, 0x24, 0x15, 0x3}, @mdlm_detail={0x9c, 0x24, 0x13, 0x1, "e7090bb632999925836c9ad9f58a5183bda8d923ec67f03800902af73aebdd07a6f9518e3e3d46a1b7e52c48299b16a0512c9aff8a08a2d1a47f76c893e90e47815c8394a6e78bc80aec80ec51861a7a30e11a17e3c7bd2b9a9333f3c602cd07489278ee3867b80a5e4b73f66aab0b72acdcd33005b7aa4e68211fa1cc73c542d1c297d109d978b778474a36fe4f3dd200d2bbf9de5bd616"}, @dmm={0x7, 0x24, 0x14, 0xfff, 0x7ff}, @dmm={0x7, 0x24, 0x14, 0x9, 0x7}, @mdlm_detail={0x7a, 0x24, 0x13, 0x9, "78b99dd8dd78514e4cb4ec1d55f97ee2d2225bcbd0759fcbaab02bb5795b8e0475fbed335884ee5c09ce8206625b5b4b70210de56e5c811567ec9e7af7d1695c4e33ea06b501dca85f2fd75d0eef7cc20ab5152977c24e461310db0d3437dad6bd201cb8012fb20d721a854c5445c9a406cbc21cb566"}]}, {{0x9, 0x5, 0x81, 0x3, 0x40, 0x4, 0x7}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0xcaa7b92625bbdb6f, 0x72, 0xff, 0xff}}, {{0x9, 0x5, 0x3, 0x2, 0x400, 0xff, 0x9, 0x8}}}}}}}]}}, &(0x7f0000001f80)={0xa, &(0x7f0000001bc0)={0xa, 0x6, 0x200, 0x8, 0xf8, 0x3, 0x10, 0x8}, 0x33, &(0x7f0000001c00)={0x5, 0xf, 0x33, 0x5, [@ssp_cap={0xc, 0x10, 0xa, 0x81, 0x0, 0x5, 0xf00f, 0x9}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x6, 0x4, 0x3f, 0x1}, @wireless={0xb, 0x10, 0x1, 0xc, 0x0, 0x5, 0x2, 0x1, 0x1}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x9, 0x6, 0xfe, 0x1}, @ptm_cap={0x3}]}, 0x9, [{0x4, &(0x7f0000001c40)=@lang_id={0x4, 0x3, 0x82c}}, {0xb7, &(0x7f0000001c80)=@string={0xb7, 0x3, "c7f93ee953f305f6ec0a9eeabfb44a00be1fbaa68192a4c03534cf2fa32496c665ebba23c613a2bf2c94c615e4af223d6dfa1a0c5a6c4f61d69c0eb12835e32f34d69404994dab8fb08059a3fa2ee4fabb65d7613de60cfc4ee8e1a912e6fa0fe8ad0bb7ecde98a53687b4fb4d9db2d43d2ffc05a88c9bfc291076579cbf8d9b5e5ecd08f1c726a11edc891706fc07d47bc6a409a6df82035de9611539a936e55916bcf2c42be0cc00bf8bcf379f70f6f439a3e039"}}, {0x8b, &(0x7f0000001d40)=@string={0x8b, 0x3, "322d22595fa931ee0e9b4532e7062e52d2a7fdb4df2f60e76c46efea5c96c33f6e4645a4f21a814c7092558f42c1d95250193e5d02f946fb23443cc3b90f7ffa49e1cbbaa599295433b09891bbe85119f95f88cf28763a56feb4e541275e7adb66a8b942bbac5b1a6a2bc88f77121cb64a361c429f8d98cf480956b11958c1083c2644bb0d302ce9bd"}}, {0x4, &(0x7f0000001e00)=@lang_id={0x4, 0x3, 0x80c}}, {0x4, &(0x7f0000001e40)=@lang_id={0x4, 0x3, 0x500a}}, {0x38, &(0x7f0000001e80)=@string={0x38, 0x3, "25b506acbe638dccbe7f7a383f8509de2d0003c263dd62636d40e7e4470f45f47b99dc76e0f937663c86db4764e626cc435ef66c2294"}}, {0x4, &(0x7f0000001ec0)=@lang_id={0x4, 0x3, 0x4ff}}, {0x4, &(0x7f0000001f00)=@lang_id={0x4}}, {0x4, &(0x7f0000001f40)=@lang_id={0x4, 0x3, 0xc07}}]}) r2 = syz_usb_connect$cdc_ncm(0x6, 0xcc, &(0x7f0000002000)={{0x12, 0x1, 0x110, 0x2, 0x0, 0x0, 0x10, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xba, 0x2, 0x1, 0x5, 0x20, 0x9, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x9, 0x24, 0x6, 0x0, 0x1, "fdbfa3cd"}, {0x5, 0x24, 0x0, 0x3}, {0xd, 0x24, 0xf, 0x1, 0x400, 0xff81, 0xfbff, 0x9f}, {0x6, 0x24, 0x1a, 0x0, 0x22}, [@network_terminal={0x7, 0x24, 0xa, 0x4, 0xc0, 0x20, 0x20}, @country_functional={0xc, 0x24, 0x7, 0x1, 0x3f, [0x8, 0xd13, 0x400]}, @network_terminal={0x7, 0x24, 0xa, 0x3b, 0x8, 0x0, 0x7}, @mdlm_detail={0x40, 0x24, 0x13, 0x1, "53561f0aae87ece3810a5ef314da4c10f5d8fc8595bee30a12a5f800452aacf3b75d4e4d8108803958fa2c8b70d1c038f7320c068704074dcf01320b"}]}, {{0x9, 0x5, 0x81, 0x3, 0x10, 0x3, 0x4, 0x7f}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x20, 0xee, 0x60, 0x9}}, {{0x9, 0x5, 0x3, 0x2, 0x40, 0x98, 0xff, 0x2}}}}}}}]}}, &(0x7f0000002540)={0xa, &(0x7f0000002100)={0xa, 0x6, 0x250, 0x7f, 0x0, 0x80, 0x0, 0x7f}, 0x175, &(0x7f0000002140)={0x5, 0xf, 0x175, 0x6, [@ssp_cap={0x14, 0x10, 0xa, 0x80, 0x2, 0x8, 0x1e88f, 0x6, [0xc030, 0xc000]}, @ss_container_id={0x14, 0x10, 0x4, 0xbd, "f2f11d3b8e32fe0200295fca829b8579"}, @ss_container_id={0x14, 0x10, 0x4, 0x6, "b0a0a9394341b82d72aa8e31a49638bd"}, @generic={0xec, 0x10, 0xa, "b4bbf785cfc39d2aee378454bd341e60105ade416c8826ce1d05078f3db5dc53c326f41ae7e4ddee4169294827929f1d180b89bd22751a1048cd53d8248ff131ffa3b5f1ce59e3f2ea5308273d2b5681b47cf420ed9e33b2be97d2cea37061d6eefb7b097455d8627b3d40476ff54cfb97b4fce79eb4c44bfc021c41504faa016cb29f160e05de61d7f39a0d6d1c6d4c46f5fdee31ae79f2a18b960c3054d180543b3b80c6e8bbdc5cf736a07ac44b324810540a8445617fc404c2bfc135426b80145bdfe4902fc8567173374ff317f990a8be8e84a863e340dd2ffa7b0c39437ca326dd910d270973"}, @ptm_cap={0x3}, @generic={0x45, 0x10, 0x2, "8771fe307969cff54e0a597a263513701dd81ded6420976fb5c9dfdeef6319a10b4c0ede2f596f9da3818aefbbc98e618b7b7c2f1a09e8439589936a2baac2997d0a"}]}, 0x7, [{0x4, &(0x7f00000022c0)=@lang_id={0x4, 0x3, 0x429}}, {0x4, &(0x7f0000002300)=@lang_id={0x4, 0x3, 0x438}}, {0x70, &(0x7f0000002340)=@string={0x70, 0x3, "c97130527bdbc40810fc90f2b78f3ddf4ebcee70e9c60a473dfc7ab4c21fcde05691000b19da4edcc85c02796b4dc9ac4c0a6f81c5454fbcc54e2ea3bc1a40a6c06b5a18187b06989128f4edea32d6db0e0fa7fbeeadfcdf23971bb1dcef6381df4406efb3ce2d8039eece5cadcd"}}, {0x1a, &(0x7f00000023c0)=@string={0x1a, 0x3, "638048a666160bb496d192eed609fc5f7f78ca04db7b28c8"}}, {0x4, &(0x7f0000002400)=@lang_id={0x4, 0x3, 0x5504a9a9edf4370}}, {0x4, &(0x7f0000002440)=@lang_id={0x4, 0x3, 0x3801}}, {0x93, &(0x7f0000002480)=@string={0x93, 0x3, "983abb9705f6f526257904870f95eaf88434df9f44757e291e4633a9423b37ef4d908eec9987a5d61dd96d626eeaaf9433b1e04ed3936536939a93512a58cc4b41c242a7c6406ebcb200eead2109aebaac9d19ad7a321a33470e172519e3120b85fe16e2da07f5030356eeb2738553affeb899a7ada266a81c18d0fddb3fc4b788788752db093df473c4a7fb29a84e5758"}}]}) syz_usb_disconnect(r2) syz_usb_control_io(0xffffffffffffffff, &(0x7f0000002980)={0x18, &(0x7f00000025c0)={0x0, 0x31, 0xdf, {0xdf, 0x23, "222bd95360d7140fd2c98e97349edbd8bd573e8f5627e94a652122cead7cd2efabef3df362adbfb17e6f47b22106fe7bc1c91aaedce7da684f3bf978124552ccb00e7b7b1daf6aac876c6910f89881bd31a958588fea263305fac75b20d27660bfc1f7f5748448445715d34e184caa99dc9aa3a5da6ac4ef1296707d9be9d7aacbe9876824e87409cf46eb0aaa814becad7bfbe6648552e1892e27d583a6e94659e86b305a653892f7fd465b44d6ea520eaf68d9a999c3ccd6d6870cce39d55ee5f7afec3e5966c2d48665823479db97f54f97b6f337afe3d4725fc2fd"}}, &(0x7f00000026c0)={0x0, 0x3, 0xcb, @string={0xcb, 0x3, "c0bbd5f225ff01a1a1750af4ab1e098545b8f449644fc8d5c359cce85bb48ab5451af35b8483391c98db76bc694d752d731750db8cd72e9faae42935aaf4b30c3307eb58a054972fce6fd91cfd9734fbac024290507ccbbf16071d7b1e17f6c862acd7d0d4c59b26170887b940417aadee9e123860469cebee4954fe87358c5f2991475d46d301fb46c8f0cf36f6a865270e00281b19d645ebdd4a77cc2264e1761ecda2a3f1e3ad47dedccd8d7809d8baf0dcd480afc4664ce200d0a6c4f0348b91d15d0a86c02972"}}, &(0x7f00000027c0)={0x0, 0xf, 0x102, {0x5, 0xf, 0x102, 0x5, [@ssp_cap={0x14, 0x10, 0xa, 0x4, 0x2, 0x1f, 0xe111, 0x800, [0xffff00, 0x30]}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x6, 0x0, 0x6, 0x1}, @ext_cap={0x7, 0x10, 0x2, 0x0, 0x6, 0x7, 0x4}, @ss_container_id={0x14, 0x10, 0x4, 0x0, "935957c03e454b433763936d4f34a8c9"}, @generic={0xc4, 0x10, 0x2, "ea86e09c48b15b5b1acd1055290f5401bf2d3da379b37e27e0e501eb68626c53004f762748320f2a8222e730d7458ccbee80b831a7acf424caf344c3bee1e6e6598abcc0da99891df70de449f38dec7e8f5205a80bf22cdd255a232f9a3d878453d89f4680071c2e76447a818ed76e488d1a7bf7910f818884926fc90d83f171f89e2ab08e0adef532ae1aabb4d05e6316f8bd4d2cdf0b1da3450449af9859799e46ef2d926a6eef86f7283cdcd9578189d526b78f6d7b24577037c77739adafe8"}]}}, &(0x7f0000002900)={0x20, 0x29, 0xf, {0xf, 0x29, 0x6, 0x18, 0x5, 0x57, "6f7d519f", "6b3373ce"}}, &(0x7f0000002940)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x6, 0x18, 0x6, 0xf8, 0x0, 0xfff, 0x8}}}, &(0x7f0000002dc0)={0x44, &(0x7f00000029c0)={0x0, 0x6, 0x12, "d045eb11861fb4e7b66b0ab3c4991cb288c2"}, &(0x7f0000002a00)={0x0, 0xa, 0x1}, &(0x7f0000002a40)={0x0, 0x8, 0x1, 0x3}, &(0x7f0000002a80)={0x20, 0x0, 0x4, {0x2, 0x6}}, &(0x7f0000002ac0)={0x20, 0x0, 0x4, {0x410, 0x8}}, &(0x7f0000002b00)={0x40, 0x7, 0x2, 0x8}, &(0x7f0000002b40)={0x40, 0x9, 0x1, 0x7f}, &(0x7f0000002b80)={0x40, 0xb, 0x2, "1b36"}, &(0x7f0000002bc0)={0x40, 0xf, 0x2, 0x9}, &(0x7f0000002c00)={0x40, 0x13, 0x6, @remote}, &(0x7f0000002c40)={0x40, 0x17, 0x6}, &(0x7f0000002c80)={0x40, 0x19, 0x2, "e819"}, &(0x7f0000002cc0)={0x40, 0x1a, 0x2, 0x7}, &(0x7f0000002d00)={0x40, 0x1c, 0x1, 0xf7}, &(0x7f0000002d40)={0x40, 0x1e, 0x1, 0x4}, &(0x7f0000002d80)={0x40, 0x21, 0x1, 0x7}}) setsockopt$ax25_int(0xffffffffffffffff, 0x101, 0x5, &(0x7f0000002e40)=0x9d9, 0x4) r3 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000002e80)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_control_io(r3, &(0x7f00000030c0)={0x18, &(0x7f0000002f00)={0x40, 0x3, 0x8c, {0x8c, 0x24, "8aef566c05c5208d3b2c58796f7133d117fe1c48cf88c8ee2d8df73662878ae2f777c2d0d43087bcb0cdedcedc813452f1aaf055a9797a4694d1831862d4810a85745cbadf8e3b551ffb5d6cbe313ec7ba1bc1d2992d4fe6fccff85e85054d6513676c96d770ce88236646298e2e08b32b90f1c50adf00c719ca3763be9800736d356bb212b4eb157b68"}}, &(0x7f0000002fc0)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x480a}}, &(0x7f0000003000)={0x0, 0xf, 0x21, {0x5, 0xf, 0x21, 0x1, [@ssp_cap={0x1c, 0x10, 0xa, 0x68, 0x4, 0x7f, 0xf000, 0x6, [0xc0, 0xff00, 0xf0, 0xc0cf]}]}}, &(0x7f0000003040)={0x20, 0x29, 0xf, {0xf, 0x29, 0x1f, 0x80, 0x7, 0x3, "40bfd71b", "2a7fe861"}}, &(0x7f0000003080)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x7f, 0x60, 0x20, 0x8, 0x20, 0x8, 0x49e5}}}, &(0x7f0000003540)={0x44, &(0x7f0000003100)={0x20, 0x18, 0x3f, "86a4ddabe2532f3e390a82e06f5eb9d4613dfddd74137000505c5bef0fe8f8a1f3375544fe5b240a30a44ac2ae24fd42ca2441a14cf2d60fc4f717b978304f"}, &(0x7f0000003180)={0x0, 0xa, 0x1, 0x40}, &(0x7f00000031c0)={0x0, 0x8, 0x1, 0x8}, &(0x7f0000003200)={0x20, 0x0, 0x4, {0x1}}, &(0x7f0000003240)={0x20, 0x0, 0x4, {0x2, 0x80}}, &(0x7f0000003280)={0x40, 0x7, 0x2, 0x9f32}, &(0x7f00000032c0)={0x40, 0x9, 0x1, 0x1b}, &(0x7f0000003300)={0x40, 0xb, 0x2, "2186"}, &(0x7f0000003340)={0x40, 0xf, 0x2, 0x3}, &(0x7f0000003380)={0x40, 0x13, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, &(0x7f00000033c0)={0x40, 0x17, 0x6, @remote}, &(0x7f0000003400)={0x40, 0x19, 0x2, "1464"}, &(0x7f0000003440)={0x40, 0x1a, 0x2, 0x101}, &(0x7f0000003480)={0x40, 0x1c, 0x1, 0x7}, &(0x7f00000034c0)={0x40, 0x1e, 0x1, 0x3}, &(0x7f0000003500)={0x40, 0x21, 0x1, 0x7}}) r4 = openat$dlm_plock(0xffffff9c, &(0x7f00000035c0)='/dev/dlm_plock\x00', 0x40, 0x0) setsockopt$ax25_int(r4, 0x101, 0x0, &(0x7f0000003600)=0x8, 0x4) syz_usb_ep_write(r0, 0x7f, 0xe5, &(0x7f0000003640)="e06802e12d3ec6cbe116785e038d2bbca8f54d057063e6aa1c9da43567f420fcbe7573a73aee9b3642b4993340910e3cc530091bacf58484d63acc6d8d702b362a465936c04c75a4f791b508b6efe31971d32bb72dc72ae6107bf1ceeeb29010f6c5d8fddb7c77b23c5812b94b0e1edf4cc006e6052886470bf05e625eb8d54a89ee072c9a8347fc34afb868f185dfe2d7ff9e3d98290271f7f64f3c29b7dd8004a12c6d032570e9618e24beed129decfeab3db9a1344e21921c6b6abe8e1cc9927320261f441b7bba66feaeda6a91e273152b524f1522068f47ab61ddc812ccdbf0df842a") setsockopt$ax25_int(r4, 0x101, 0x4, &(0x7f0000003740), 0x4) 20:04:08 executing program 0: r0 = socket(0x200000100000011, 0x803, 0x0) r1 = socket(0x10, 0x3, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=@newqdisc={0x38, 0x24, 0xe0b, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq={{0x7, 0x1, 'fq\x00'}, {0xc, 0x2, [@TCA_FQ_CE_THRESHOLD={0x8}]}}]}, 0x38}}, 0x0) r5 = syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00') ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r5, 0xc0096616, &(0x7f0000000080)=@v1={0x0, @aes128, 0x0, @auto="3f7f0199da186418"}) clock_gettime(0x0, &(0x7f0000007c40)={0x0, 0x0}) recvmmsg(r5, &(0x7f0000007b40)=[{{&(0x7f0000000300)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, 0x80, &(0x7f0000000280)=[{&(0x7f00000000c0)=""/18, 0x12}, {&(0x7f0000000380)=""/153, 0x99}, {&(0x7f0000000440)=""/185, 0xb9}], 0x3, &(0x7f0000000500)=""/80, 0x50}, 0xffff}, {{0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000000580)=""/211, 0xd3}, {&(0x7f0000000680)=""/184, 0xb8}, {&(0x7f0000000800)=""/4096, 0x1000}, {&(0x7f0000001800)=""/102, 0x66}, {&(0x7f0000000740)}, {&(0x7f0000001880)=""/4096, 0x1000}, {&(0x7f0000002880)=""/91, 0x5b}], 0x7, &(0x7f0000002940)=""/11, 0xb}}, {{&(0x7f0000002980)=@x25={0x9, @remote}, 0x80, &(0x7f0000002a00), 0x0, &(0x7f0000002a40)=""/132, 0x84}, 0xffffff80}, {{&(0x7f0000002b00)=@generic, 0x80, &(0x7f0000004dc0)=[{&(0x7f0000002b80)=""/130, 0x82}, {&(0x7f0000002c40)=""/66, 0x42}, {&(0x7f0000002cc0)=""/4096, 0x1000}, {&(0x7f0000003cc0)=""/45, 0x2d}, {&(0x7f0000003d00)=""/113, 0x71}, {&(0x7f0000003d80)=""/18, 0x12}, {&(0x7f0000003dc0)=""/4096, 0x1000}], 0x7}, 0x7}, {{&(0x7f0000004e00)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, 0x80, &(0x7f00000071c0)=[{&(0x7f0000004e80)=""/161, 0xa1}, {&(0x7f0000004f40)=""/234, 0xea}, {&(0x7f0000005040)=""/4096, 0x1000}, {&(0x7f0000006040)=""/1, 0x1}, {&(0x7f0000006080)=""/129, 0x81}, {&(0x7f0000006140)=""/41, 0x29}, {&(0x7f0000006180)=""/4096, 0x1000}, {&(0x7f0000007180)=""/28, 0x1c}], 0x8, &(0x7f0000007200)=""/189, 0xbd}, 0x4}, {{0x0, 0x0, &(0x7f0000007380)=[{&(0x7f00000072c0)=""/155, 0x9b}], 0x1, &(0x7f00000073c0)=""/139, 0x8b}, 0x7}, {{&(0x7f0000007480)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @dev}}}, 0x80, &(0x7f0000007880)=[{&(0x7f0000007500)=""/249, 0xf9}, {&(0x7f0000007600)=""/169, 0xa9}, {&(0x7f00000076c0)=""/117, 0x75}, {&(0x7f0000007740)=""/177, 0xb1}, {&(0x7f0000007800)=""/100, 0x64}], 0x5, &(0x7f00000078c0)}, 0x7}, {{&(0x7f0000007900)=@vsock, 0x80, &(0x7f0000007a40)=[{&(0x7f0000007980)=""/8, 0x8}, {&(0x7f00000079c0)=""/55, 0x37}, {&(0x7f0000007a00)=""/60, 0x3c}], 0x3, &(0x7f0000007a80)=""/156, 0x9c}, 0x980}], 0x8, 0x10000, &(0x7f0000007c80)={r6, r7+60000000}) sendto$packet(r0, &(0x7f0000000080)="1509e885000800000000000686dd", 0xe, 0x0, &(0x7f00000002c0)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @random="c6b3126367da"}, 0x14) [ 172.623503][ T8608] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'. [ 172.658070][ T8608] ===================================================== [ 172.665050][ T8608] BUG: KMSAN: uninit-value in iptable_mangle_hook+0x75a/0x8c0 [ 172.672569][ T8608] CPU: 1 PID: 8608 Comm: syz-executor.0 Not tainted 5.11.0-rc7-syzkaller #0 [ 172.681267][ T8608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 172.691344][ T8608] Call Trace: [ 172.694641][ T8608] dump_stack+0x21c/0x280 [ 172.699016][ T8608] kmsan_report+0xfb/0x1e0 [ 172.703472][ T8608] __msan_warning+0x5f/0xa0 [ 172.708031][ T8608] iptable_mangle_hook+0x75a/0x8c0 [ 172.713177][ T8608] ? iptable_mangle_net_exit+0x100/0x100 [ 172.718842][ T8608] nf_hook_slow+0x17b/0x460 [ 172.723379][ T8608] __ip_local_out+0x78c/0x840 [ 172.728085][ T8608] ? __ip_local_out+0x840/0x840 [ 172.732971][ T8608] ip_local_out+0xa1/0x1e0 [ 172.737416][ T8608] iptunnel_xmit+0x931/0xf20 [ 172.742034][ T8608] ? kmsan_get_metadata+0x116/0x180 [ 172.747278][ T8608] udp_tunnel_xmit_skb+0x526/0x640 [ 172.752422][ T8608] geneve_xmit+0x209e/0x3c20 [ 172.757046][ T8608] ? geneve_stop+0x400/0x400 [ 172.761653][ T8608] xmit_one+0x2b6/0x760 [ 172.766267][ T8608] dev_hard_start_xmit+0x196/0x420 [ 172.771411][ T8608] sch_direct_xmit+0x57c/0x1a60 [ 172.776288][ T8608] __qdisc_run+0x35b/0x490 [ 172.780723][ T8608] __dev_queue_xmit+0x2120/0x45c0 [ 172.785775][ T8608] dev_queue_xmit+0x4b/0x60 [ 172.790304][ T8608] ? netdev_core_pick_tx+0x5a0/0x5a0 [ 172.795610][ T8608] packet_sendmsg+0x8778/0x9a60 [ 172.800493][ T8608] ? kmsan_get_metadata+0x116/0x180 [ 172.805725][ T8608] ? kmsan_internal_set_origin+0x85/0xc0 [ 172.811384][ T8608] ? kmsan_get_metadata+0x116/0x180 [ 172.816612][ T8608] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 172.822444][ T8608] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 172.828553][ T8608] ? packet_getsockopt+0x1120/0x1120 [ 172.833918][ T8608] __sys_sendto+0x9ea/0xc60 [ 172.838458][ T8608] ? kmsan_get_metadata+0x116/0x180 [ 172.843696][ T8608] __se_sys_sendto+0x107/0x130 [ 172.848496][ T8608] __ia32_sys_sendto+0x6e/0x90 [ 172.853315][ T8608] __do_fast_syscall_32+0x102/0x160 [ 172.858540][ T8608] do_fast_syscall_32+0x6a/0xc0 [ 172.863421][ T8608] do_SYSENTER_32+0x73/0x90 [ 172.867965][ T8608] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 172.874319][ T8608] RIP: 0023:0xf7f90549 [ 172.878400][ T8608] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 172.898043][ T8608] RSP: 002b:00000000f558a5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000171 [ 172.906493][ T8608] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000080 [ 172.914519][ T8608] RDX: 000000000000000e RSI: 0000000000000000 RDI: 00000000200002c0 [ 172.922517][ T8608] RBP: 0000000000000014 R08: 0000000000000000 R09: 0000000000000000 [ 172.930514][ T8608] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 172.938503][ T8608] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 172.946556][ T8608] [ 172.948880][ T8608] Uninit was stored to memory at: [ 172.953893][ T8608] kmsan_internal_chain_origin+0xad/0x130 [ 172.959644][ T8608] __msan_chain_origin+0x57/0xa0 [ 172.964623][ T8608] iptunnel_xmit+0xbd6/0xf20 [ 172.969227][ T8608] udp_tunnel_xmit_skb+0x526/0x640 [ 172.974357][ T8608] geneve_xmit+0x209e/0x3c20 [ 172.978960][ T8608] xmit_one+0x2b6/0x760 [ 172.983128][ T8608] dev_hard_start_xmit+0x196/0x420 [ 172.988256][ T8608] sch_direct_xmit+0x57c/0x1a60 [ 172.993124][ T8608] __qdisc_run+0x35b/0x490 [ 172.997557][ T8608] __dev_queue_xmit+0x2120/0x45c0 [ 173.002603][ T8608] dev_queue_xmit+0x4b/0x60 [ 173.007140][ T8608] packet_sendmsg+0x8778/0x9a60 [ 173.012022][ T8608] __sys_sendto+0x9ea/0xc60 [ 173.016550][ T8608] __se_sys_sendto+0x107/0x130 [ 173.021334][ T8608] __ia32_sys_sendto+0x6e/0x90 [ 173.026118][ T8608] __do_fast_syscall_32+0x102/0x160 [ 173.031337][ T8608] do_fast_syscall_32+0x6a/0xc0 [ 173.036207][ T8608] do_SYSENTER_32+0x73/0x90 [ 173.040727][ T8608] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 173.047080][ T8608] [ 173.049403][ T8608] Uninit was created at: [ 173.053632][ T8608] kmsan_internal_poison_shadow+0x5c/0xf0 [ 173.059375][ T8608] kmsan_slab_alloc+0x8d/0xe0 [ 173.064070][ T8608] __kmalloc_node_track_caller+0xa37/0x1430 [ 173.070003][ T8608] __alloc_skb+0x2f8/0xb30 [ 173.074458][ T8608] alloc_skb_with_frags+0x1f3/0xc10 [ 173.079680][ T8608] sock_alloc_send_pskb+0xdc1/0xf90 [ 173.084899][ T8608] packet_sendmsg+0x6aab/0x9a60 [ 173.089765][ T8608] __sys_sendto+0x9ea/0xc60 [ 173.094291][ T8608] __se_sys_sendto+0x107/0x130 [ 173.099094][ T8608] __ia32_sys_sendto+0x6e/0x90 [ 173.103882][ T8608] __do_fast_syscall_32+0x102/0x160 [ 173.109106][ T8608] do_fast_syscall_32+0x6a/0xc0 [ 173.113980][ T8608] do_SYSENTER_32+0x73/0x90 [ 173.118503][ T8608] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 173.124868][ T8608] ===================================================== [ 173.131807][ T8608] Disabling lock debugging due to kernel taint [ 173.137963][ T8608] Kernel panic - not syncing: panic_on_warn set ... [ 173.144556][ T8608] CPU: 1 PID: 8608 Comm: syz-executor.0 Tainted: G B 5.11.0-rc7-syzkaller #0 [ 173.154658][ T8608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 173.164746][ T8608] Call Trace: [ 173.168045][ T8608] dump_stack+0x21c/0x280 [ 173.172407][ T8608] panic+0x4c6/0xea7 [ 173.176341][ T8608] ? add_taint+0x17c/0x210 [ 173.180785][ T8608] kmsan_report+0x1de/0x1e0 [ 173.185314][ T8608] __msan_warning+0x5f/0xa0 [ 173.189840][ T8608] iptable_mangle_hook+0x75a/0x8c0 [ 173.194985][ T8608] ? iptable_mangle_net_exit+0x100/0x100 [ 173.200660][ T8608] nf_hook_slow+0x17b/0x460 [ 173.205200][ T8608] __ip_local_out+0x78c/0x840 [ 173.209905][ T8608] ? __ip_local_out+0x840/0x840 [ 173.214785][ T8608] ip_local_out+0xa1/0x1e0 [ 173.219221][ T8608] iptunnel_xmit+0x931/0xf20 [ 173.223832][ T8608] ? kmsan_get_metadata+0x116/0x180 [ 173.229095][ T8608] udp_tunnel_xmit_skb+0x526/0x640 [ 173.234258][ T8608] geneve_xmit+0x209e/0x3c20 [ 173.238900][ T8608] ? geneve_stop+0x400/0x400 [ 173.243513][ T8608] xmit_one+0x2b6/0x760 [ 173.247689][ T8608] dev_hard_start_xmit+0x196/0x420 [ 173.252822][ T8608] sch_direct_xmit+0x57c/0x1a60 [ 173.257695][ T8608] __qdisc_run+0x35b/0x490 [ 173.262133][ T8608] __dev_queue_xmit+0x2120/0x45c0 [ 173.267189][ T8608] dev_queue_xmit+0x4b/0x60 [ 173.271720][ T8608] ? netdev_core_pick_tx+0x5a0/0x5a0 [ 173.277037][ T8608] packet_sendmsg+0x8778/0x9a60 [ 173.281910][ T8608] ? kmsan_get_metadata+0x116/0x180 [ 173.287139][ T8608] ? kmsan_internal_set_origin+0x85/0xc0 [ 173.292800][ T8608] ? kmsan_get_metadata+0x116/0x180 [ 173.298023][ T8608] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 173.303852][ T8608] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 173.309959][ T8608] ? packet_getsockopt+0x1120/0x1120 [ 173.315263][ T8608] __sys_sendto+0x9ea/0xc60 [ 173.319807][ T8608] ? kmsan_get_metadata+0x116/0x180 [ 173.325027][ T8608] __se_sys_sendto+0x107/0x130 [ 173.329827][ T8608] __ia32_sys_sendto+0x6e/0x90 [ 173.334636][ T8608] __do_fast_syscall_32+0x102/0x160 [ 173.339855][ T8608] do_fast_syscall_32+0x6a/0xc0 [ 173.344720][ T8608] do_SYSENTER_32+0x73/0x90 [ 173.349257][ T8608] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 173.355620][ T8608] RIP: 0023:0xf7f90549 [ 173.359718][ T8608] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 173.379342][ T8608] RSP: 002b:00000000f558a5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000171 [ 173.387787][ T8608] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000080 [ 173.395769][ T8608] RDX: 000000000000000e RSI: 0000000000000000 RDI: 00000000200002c0 [ 173.403755][ T8608] RBP: 0000000000000014 R08: 0000000000000000 R09: 0000000000000000 [ 173.411740][ T8608] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 173.419721][ T8608] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 173.428244][ T8608] Kernel Offset: disabled [ 173.432639][ T8608] Rebooting in 86400 seconds..