syzkaller login: [ 100.713152][ T2053] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 100.718381][ T2053] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 100.744854][ T2053] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. Warning: Permanently added '[localhost]:65450' (ECDSA) to the list of known hosts. 1970/01/01 00:02:26 fuzzer started 1970/01/01 00:02:32 dialing manager at localhost:40823 [ 154.632489][ T2212] cgroup: Unknown subsys name 'net' [ 155.134130][ T2212] cgroup: Unknown subsys name 'rlimit' 1970/01/01 00:02:35 syscalls: 2980 1970/01/01 00:02:35 code coverage: CONFIG_KCOV is not enabled 1970/01/01 00:02:35 comparison tracing: CONFIG_KCOV is not enabled 1970/01/01 00:02:35 extra coverage: CONFIG_KCOV is not enabled 1970/01/01 00:02:35 delay kcov mmap: CONFIG_KCOV is not enabled 1970/01/01 00:02:35 setuid sandbox: enabled 1970/01/01 00:02:35 namespace sandbox: enabled 1970/01/01 00:02:35 Android sandbox: /sys/fs/selinux/policy does not exist 1970/01/01 00:02:35 fault injection: enabled 1970/01/01 00:02:35 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 1970/01/01 00:02:35 net packet injection: enabled 1970/01/01 00:02:35 net device setup: enabled 1970/01/01 00:02:35 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 1970/01/01 00:02:35 devlink PCI setup: PCI device 0000:00:10.0 is not available 1970/01/01 00:02:35 USB emulation: enabled 1970/01/01 00:02:35 hci packet injection: /dev/vhci does not exist 1970/01/01 00:02:35 wifi device emulation: /sys/class/mac80211_hwsim/ does not exist 1970/01/01 00:02:35 802.15.4 emulation: /sys/bus/platform/devices/mac802154_hwsim does not exist 1970/01/01 00:02:35 fetching corpus: 0, signal 0/2000 (executing program) 1970/01/01 00:02:35 fetching corpus: 50, signal 102/4085 (executing program) 1970/01/01 00:02:35 fetching corpus: 100, signal 199/6147 (executing program) 1970/01/01 00:02:35 fetching corpus: 150, signal 296/8183 (executing program) 1970/01/01 00:02:36 fetching corpus: 200, signal 394/10199 (executing program) 1970/01/01 00:02:36 fetching corpus: 250, signal 491/12196 (executing program) 1970/01/01 00:02:36 fetching corpus: 300, signal 595/14173 (executing program) 1970/01/01 00:02:36 fetching corpus: 350, signal 677/16136 (executing program) 1970/01/01 00:02:36 fetching corpus: 400, signal 759/18064 (executing program) 1970/01/01 00:02:36 fetching corpus: 450, signal 839/19317 (executing program) 1970/01/01 00:02:36 fetching corpus: 500, signal 939/19320 (executing program) 1970/01/01 00:02:37 fetching corpus: 550, signal 1043/19320 (executing program) 1970/01/01 00:02:37 fetching corpus: 600, signal 1144/19323 (executing program) 1970/01/01 00:02:37 fetching corpus: 650, signal 1232/19323 (executing program) 1970/01/01 00:02:37 fetching corpus: 700, signal 1340/19323 (executing program) 1970/01/01 00:02:37 fetching corpus: 750, signal 1432/19324 (executing program) 1970/01/01 00:02:37 fetching corpus: 800, signal 1518/19324 (executing program) 1970/01/01 00:02:38 fetching corpus: 850, signal 1609/19325 (executing program) 1970/01/01 00:02:38 fetching corpus: 900, signal 1692/19325 (executing program) 1970/01/01 00:02:38 fetching corpus: 950, signal 1779/19325 (executing program) 1970/01/01 00:02:38 fetching corpus: 1000, signal 1883/19325 (executing program) 1970/01/01 00:02:38 fetching corpus: 1050, signal 1958/19325 (executing program) 1970/01/01 00:02:38 fetching corpus: 1100, signal 2050/19326 (executing program) 1970/01/01 00:02:38 fetching corpus: 1150, signal 2127/19326 (executing program) 1970/01/01 00:02:39 fetching corpus: 1200, signal 2205/19328 (executing program) 1970/01/01 00:02:39 fetching corpus: 1250, signal 2287/19328 (executing program) 1970/01/01 00:02:39 fetching corpus: 1300, signal 2370/19328 (executing program) 1970/01/01 00:02:39 fetching corpus: 1350, signal 2450/19328 (executing program) 1970/01/01 00:02:39 fetching corpus: 1400, signal 2527/19330 (executing program) 1970/01/01 00:02:39 fetching corpus: 1450, signal 2613/19330 (executing program) 1970/01/01 00:02:39 fetching corpus: 1500, signal 2701/19330 (executing program) 1970/01/01 00:02:39 fetching corpus: 1550, signal 2775/19332 (executing program) 1970/01/01 00:02:39 fetching corpus: 1600, signal 2849/19332 (executing program) 1970/01/01 00:02:40 fetching corpus: 1650, signal 2920/19332 (executing program) 1970/01/01 00:02:40 fetching corpus: 1700, signal 2992/19333 (executing program) 1970/01/01 00:02:40 fetching corpus: 1750, signal 3075/19335 (executing program) 1970/01/01 00:02:40 fetching corpus: 1800, signal 3167/19335 (executing program) 1970/01/01 00:02:40 fetching corpus: 1850, signal 3239/19335 (executing program) 1970/01/01 00:02:40 fetching corpus: 1900, signal 3319/19335 (executing program) 1970/01/01 00:02:40 fetching corpus: 1950, signal 3404/19335 (executing program) 1970/01/01 00:02:41 fetching corpus: 2000, signal 3487/19336 (executing program) 1970/01/01 00:02:41 fetching corpus: 2050, signal 3567/19336 (executing program) 1970/01/01 00:02:41 fetching corpus: 2100, signal 3642/19336 (executing program) 1970/01/01 00:02:41 fetching corpus: 2150, signal 3706/19336 (executing program) 1970/01/01 00:02:41 fetching corpus: 2200, signal 3797/19338 (executing program) 1970/01/01 00:02:41 fetching corpus: 2250, signal 3869/19339 (executing program) 1970/01/01 00:02:41 fetching corpus: 2300, signal 3940/19339 (executing program) 1970/01/01 00:02:41 fetching corpus: 2350, signal 4007/19341 (executing program) 1970/01/01 00:02:41 fetching corpus: 2400, signal 4086/19342 (executing program) 1970/01/01 00:02:42 fetching corpus: 2450, signal 4151/19344 (executing program) 1970/01/01 00:02:42 fetching corpus: 2500, signal 4223/19346 (executing program) 1970/01/01 00:02:42 fetching corpus: 2550, signal 4292/19348 (executing program) 1970/01/01 00:02:43 fetching corpus: 2600, signal 4364/19348 (executing program) 1970/01/01 00:02:43 fetching corpus: 2650, signal 4436/19349 (executing program) 1970/01/01 00:02:43 fetching corpus: 2700, signal 4514/19349 (executing program) 1970/01/01 00:02:43 fetching corpus: 2750, signal 4586/19349 (executing program) 1970/01/01 00:02:43 fetching corpus: 2800, signal 4668/19350 (executing program) 1970/01/01 00:02:43 fetching corpus: 2850, signal 4743/19350 (executing program) 1970/01/01 00:02:44 fetching corpus: 2900, signal 4813/19351 (executing program) 1970/01/01 00:02:44 fetching corpus: 2950, signal 4884/19351 (executing program) 1970/01/01 00:02:44 fetching corpus: 3000, signal 4951/19351 (executing program) 1970/01/01 00:02:44 fetching corpus: 3050, signal 5017/19351 (executing program) 1970/01/01 00:02:44 fetching corpus: 3100, signal 5086/19352 (executing program) 1970/01/01 00:02:45 fetching corpus: 3150, signal 5156/19354 (executing program) 1970/01/01 00:02:45 fetching corpus: 3200, signal 5222/19354 (executing program) 1970/01/01 00:02:45 fetching corpus: 3250, signal 5295/19354 (executing program) 1970/01/01 00:02:45 fetching corpus: 3300, signal 5368/19357 (executing program) 1970/01/01 00:02:45 fetching corpus: 3350, signal 5459/19358 (executing program) 1970/01/01 00:02:46 fetching corpus: 3400, signal 5529/19358 (executing program) 1970/01/01 00:02:46 fetching corpus: 3450, signal 5601/19360 (executing program) 1970/01/01 00:02:46 fetching corpus: 3500, signal 5677/19360 (executing program) 1970/01/01 00:02:46 fetching corpus: 3550, signal 5752/19360 (executing program) 1970/01/01 00:02:46 fetching corpus: 3600, signal 5824/19361 (executing program) 1970/01/01 00:02:46 fetching corpus: 3650, signal 5898/19364 (executing program) 1970/01/01 00:02:46 fetching corpus: 3700, signal 5969/19364 (executing program) 1970/01/01 00:02:46 fetching corpus: 3750, signal 6046/19364 (executing program) 1970/01/01 00:02:46 fetching corpus: 3800, signal 6128/19364 (executing program) 1970/01/01 00:02:47 fetching corpus: 3850, signal 6189/19364 (executing program) 1970/01/01 00:02:47 fetching corpus: 3900, signal 6265/19364 (executing program) 1970/01/01 00:02:47 fetching corpus: 3950, signal 6342/19364 (executing program) 1970/01/01 00:02:47 fetching corpus: 4000, signal 6413/19366 (executing program) 1970/01/01 00:02:47 fetching corpus: 4050, signal 6492/19367 (executing program) 1970/01/01 00:02:47 fetching corpus: 4100, signal 6570/19369 (executing program) 1970/01/01 00:02:48 fetching corpus: 4150, signal 6643/19369 (executing program) 1970/01/01 00:02:48 fetching corpus: 4200, signal 6711/19369 (executing program) 1970/01/01 00:02:48 fetching corpus: 4250, signal 6776/19370 (executing program) 1970/01/01 00:02:48 fetching corpus: 4300, signal 6837/19370 (executing program) 1970/01/01 00:02:48 fetching corpus: 4350, signal 6901/19371 (executing program) 1970/01/01 00:02:48 fetching corpus: 4400, signal 6959/19371 (executing program) 1970/01/01 00:02:48 fetching corpus: 4450, signal 7020/19371 (executing program) 1970/01/01 00:02:49 fetching corpus: 4500, signal 7083/19372 (executing program) 1970/01/01 00:02:49 fetching corpus: 4550, signal 7156/19372 (executing program) 1970/01/01 00:02:49 fetching corpus: 4600, signal 7218/19372 (executing program) 1970/01/01 00:02:49 fetching corpus: 4650, signal 7291/19373 (executing program) 1970/01/01 00:02:49 fetching corpus: 4700, signal 7356/19374 (executing program) 1970/01/01 00:02:49 fetching corpus: 4750, signal 7423/19374 (executing program) 1970/01/01 00:02:49 fetching corpus: 4800, signal 7494/19374 (executing program) 1970/01/01 00:02:49 fetching corpus: 4850, signal 7568/19374 (executing program) 1970/01/01 00:02:49 fetching corpus: 4900, signal 7646/19374 (executing program) 1970/01/01 00:02:49 fetching corpus: 4950, signal 7708/19375 (executing program) 1970/01/01 00:02:50 fetching corpus: 5000, signal 7773/19375 (executing program) 1970/01/01 00:02:50 fetching corpus: 5050, signal 7842/19375 (executing program) 1970/01/01 00:02:50 fetching corpus: 5100, signal 7911/19375 (executing program) 1970/01/01 00:02:50 fetching corpus: 5150, signal 7977/19376 (executing program) 1970/01/01 00:02:50 fetching corpus: 5200, signal 8040/19377 (executing program) 1970/01/01 00:02:50 fetching corpus: 5250, signal 8110/19377 (executing program) 1970/01/01 00:02:50 fetching corpus: 5300, signal 8200/19377 (executing program) 1970/01/01 00:02:50 fetching corpus: 5350, signal 8269/19377 (executing program) 1970/01/01 00:02:51 fetching corpus: 5400, signal 8332/19378 (executing program) 1970/01/01 00:02:51 fetching corpus: 5450, signal 8399/19379 (executing program) 1970/01/01 00:02:51 fetching corpus: 5500, signal 8473/19380 (executing program) 1970/01/01 00:02:51 fetching corpus: 5550, signal 8539/19385 (executing program) 1970/01/01 00:02:51 fetching corpus: 5600, signal 8595/19385 (executing program) 1970/01/01 00:02:51 fetching corpus: 5650, signal 8663/19386 (executing program) 1970/01/01 00:02:51 fetching corpus: 5700, signal 8726/19386 (executing program) 1970/01/01 00:02:52 fetching corpus: 5750, signal 8788/19387 (executing program) 1970/01/01 00:02:52 fetching corpus: 5800, signal 8866/19388 (executing program) 1970/01/01 00:02:52 fetching corpus: 5850, signal 8936/19388 (executing program) 1970/01/01 00:02:52 fetching corpus: 5900, signal 9003/19388 (executing program) 1970/01/01 00:02:52 fetching corpus: 5950, signal 9078/19388 (executing program) 1970/01/01 00:02:52 fetching corpus: 6000, signal 9136/19388 (executing program) 1970/01/01 00:02:52 fetching corpus: 6050, signal 9203/19388 (executing program) 1970/01/01 00:02:52 fetching corpus: 6100, signal 9264/19388 (executing program) 1970/01/01 00:02:52 fetching corpus: 6150, signal 9330/19388 (executing program) 1970/01/01 00:02:52 fetching corpus: 6200, signal 9403/19388 (executing program) 1970/01/01 00:02:53 fetching corpus: 6250, signal 9468/19389 (executing program) 1970/01/01 00:02:53 fetching corpus: 6300, signal 9545/19389 (executing program) 1970/01/01 00:02:53 fetching corpus: 6350, signal 9609/19390 (executing program) 1970/01/01 00:02:53 fetching corpus: 6400, signal 9671/19390 (executing program) 1970/01/01 00:02:53 fetching corpus: 6450, signal 9735/19390 (executing program) 1970/01/01 00:02:54 fetching corpus: 6500, signal 9800/19390 (executing program) 1970/01/01 00:02:54 fetching corpus: 6550, signal 9865/19390 (executing program) 1970/01/01 00:02:54 fetching corpus: 6600, signal 9927/19392 (executing program) 1970/01/01 00:02:54 fetching corpus: 6650, signal 9989/19392 (executing program) 1970/01/01 00:02:54 fetching corpus: 6700, signal 10057/19393 (executing program) 1970/01/01 00:02:54 fetching corpus: 6750, signal 10124/19393 (executing program) 1970/01/01 00:02:54 fetching corpus: 6800, signal 10183/19393 (executing program) 1970/01/01 00:02:55 fetching corpus: 6850, signal 10251/19393 (executing program) 1970/01/01 00:02:55 fetching corpus: 6900, signal 10319/19395 (executing program) 1970/01/01 00:02:55 fetching corpus: 6950, signal 10376/19396 (executing program) 1970/01/01 00:02:55 fetching corpus: 7000, signal 10445/19396 (executing program) 1970/01/01 00:02:55 fetching corpus: 7050, signal 10511/19396 (executing program) 1970/01/01 00:02:55 fetching corpus: 7100, signal 10572/19397 (executing program) 1970/01/01 00:02:55 fetching corpus: 7150, signal 10647/19397 (executing program) 1970/01/01 00:02:55 fetching corpus: 7200, signal 10715/19397 (executing program) 1970/01/01 00:02:55 fetching corpus: 7250, signal 10781/19398 (executing program) 1970/01/01 00:02:55 fetching corpus: 7300, signal 10838/19398 (executing program) 1970/01/01 00:02:55 fetching corpus: 7350, signal 10902/19398 (executing program) 1970/01/01 00:02:56 fetching corpus: 7400, signal 10964/19398 (executing program) 1970/01/01 00:02:56 fetching corpus: 7450, signal 11036/19398 (executing program) 1970/01/01 00:02:56 fetching corpus: 7500, signal 11100/19398 (executing program) 1970/01/01 00:02:56 fetching corpus: 7550, signal 11170/19398 (executing program) 1970/01/01 00:02:56 fetching corpus: 7600, signal 11227/19400 (executing program) 1970/01/01 00:02:57 fetching corpus: 7649, signal 11284/19401 (executing program) 1970/01/01 00:02:57 fetching corpus: 7699, signal 11345/19402 (executing program) 1970/01/01 00:02:57 fetching corpus: 7749, signal 11409/19402 (executing program) 1970/01/01 00:02:57 fetching corpus: 7799, signal 11467/19402 (executing program) 1970/01/01 00:02:57 fetching corpus: 7849, signal 11525/19402 (executing program) 1970/01/01 00:02:57 fetching corpus: 7899, signal 11589/19402 (executing program) 1970/01/01 00:02:57 fetching corpus: 7949, signal 11654/19403 (executing program) 1970/01/01 00:02:57 fetching corpus: 7999, signal 11714/19405 (executing program) 1970/01/01 00:02:57 fetching corpus: 8049, signal 11769/19406 (executing program) 1970/01/01 00:02:57 fetching corpus: 8099, signal 11832/19406 (executing program) 1970/01/01 00:02:57 fetching corpus: 8149, signal 11891/19407 (executing program) 1970/01/01 00:02:58 fetching corpus: 8199, signal 11956/19408 (executing program) 1970/01/01 00:02:58 fetching corpus: 8249, signal 12024/19408 (executing program) 1970/01/01 00:02:58 fetching corpus: 8299, signal 12086/19408 (executing program) 1970/01/01 00:02:58 fetching corpus: 8349, signal 12146/19408 (executing program) 1970/01/01 00:02:58 fetching corpus: 8399, signal 12215/19408 (executing program) 1970/01/01 00:02:58 fetching corpus: 8449, signal 12275/19411 (executing program) 1970/01/01 00:02:58 fetching corpus: 8499, signal 12333/19412 (executing program) 1970/01/01 00:02:58 fetching corpus: 8549, signal 12392/19412 (executing program) 1970/01/01 00:02:58 fetching corpus: 8599, signal 12455/19412 (executing program) 1970/01/01 00:02:58 fetching corpus: 8649, signal 12518/19412 (executing program) 1970/01/01 00:02:58 fetching corpus: 8699, signal 12578/19413 (executing program) 1970/01/01 00:02:59 fetching corpus: 8749, signal 12645/19414 (executing program) 1970/01/01 00:02:59 fetching corpus: 8799, signal 12705/19414 (executing program) 1970/01/01 00:02:59 fetching corpus: 8849, signal 12766/19414 (executing program) 1970/01/01 00:02:59 fetching corpus: 8899, signal 12831/19414 (executing program) 1970/01/01 00:02:59 fetching corpus: 8949, signal 12886/19414 (executing program) 1970/01/01 00:03:00 fetching corpus: 8999, signal 12948/19414 (executing program) 1970/01/01 00:03:00 fetching corpus: 9049, signal 13011/19416 (executing program) 1970/01/01 00:03:00 fetching corpus: 9099, signal 13071/19416 (executing program) 1970/01/01 00:03:00 fetching corpus: 9149, signal 13146/19419 (executing program) 1970/01/01 00:03:00 fetching corpus: 9199, signal 13223/19419 (executing program) 1970/01/01 00:03:00 fetching corpus: 9249, signal 13279/19420 (executing program) 1970/01/01 00:03:00 fetching corpus: 9299, signal 13349/19420 (executing program) 1970/01/01 00:03:01 fetching corpus: 9349, signal 13413/19421 (executing program) 1970/01/01 00:03:01 fetching corpus: 9399, signal 13474/19421 (executing program) 1970/01/01 00:03:01 fetching corpus: 9449, signal 13543/19421 (executing program) 1970/01/01 00:03:01 fetching corpus: 9499, signal 13608/19421 (executing program) 1970/01/01 00:03:01 fetching corpus: 9549, signal 13668/19421 (executing program) 1970/01/01 00:03:01 fetching corpus: 9599, signal 13730/19423 (executing program) 1970/01/01 00:03:01 fetching corpus: 9649, signal 13789/19424 (executing program) 1970/01/01 00:03:01 fetching corpus: 9699, signal 13846/19424 (executing program) 1970/01/01 00:03:01 fetching corpus: 9749, signal 13911/19425 (executing program) 1970/01/01 00:03:01 fetching corpus: 9799, signal 13972/19425 (executing program) 1970/01/01 00:03:01 fetching corpus: 9849, signal 14036/19426 (executing program) 1970/01/01 00:03:01 fetching corpus: 9899, signal 14101/19426 (executing program) 1970/01/01 00:03:02 fetching corpus: 9949, signal 14162/19427 (executing program) 1970/01/01 00:03:02 fetching corpus: 9999, signal 14223/19429 (executing program) 1970/01/01 00:03:02 fetching corpus: 10049, signal 14291/19429 (executing program) 1970/01/01 00:03:02 fetching corpus: 10099, signal 14352/19429 (executing program) 1970/01/01 00:03:02 fetching corpus: 10149, signal 14414/19430 (executing program) 1970/01/01 00:03:02 fetching corpus: 10199, signal 14471/19430 (executing program) 1970/01/01 00:03:03 fetching corpus: 10249, signal 14536/19430 (executing program) 1970/01/01 00:03:03 fetching corpus: 10299, signal 14599/19432 (executing program) 1970/01/01 00:03:03 fetching corpus: 10349, signal 14664/19434 (executing program) 1970/01/01 00:03:03 fetching corpus: 10399, signal 14733/19434 (executing program) 1970/01/01 00:03:03 fetching corpus: 10449, signal 14793/19434 (executing program) 1970/01/01 00:03:04 fetching corpus: 10499, signal 14858/19435 (executing program) 1970/01/01 00:03:04 fetching corpus: 10549, signal 14927/19441 (executing program) 1970/01/01 00:03:04 fetching corpus: 10599, signal 14997/19442 (executing program) 1970/01/01 00:03:04 fetching corpus: 10649, signal 15071/19443 (executing program) 1970/01/01 00:03:04 fetching corpus: 10699, signal 15130/19444 (executing program) 1970/01/01 00:03:04 fetching corpus: 10749, signal 15189/19444 (executing program) 1970/01/01 00:03:04 fetching corpus: 10799, signal 15247/19444 (executing program) 1970/01/01 00:03:04 fetching corpus: 10849, signal 15305/19444 (executing program) 1970/01/01 00:03:04 fetching corpus: 10899, signal 15367/19447 (executing program) 1970/01/01 00:03:05 fetching corpus: 10949, signal 15430/19448 (executing program) 1970/01/01 00:03:05 fetching corpus: 10999, signal 15495/19448 (executing program) 1970/01/01 00:03:05 fetching corpus: 11049, signal 15569/19448 (executing program) 1970/01/01 00:03:05 fetching corpus: 11099, signal 15634/19450 (executing program) 1970/01/01 00:03:05 fetching corpus: 11149, signal 15697/19451 (executing program) 1970/01/01 00:03:05 fetching corpus: 11199, signal 15760/19451 (executing program) 1970/01/01 00:03:05 fetching corpus: 11249, signal 15824/19451 (executing program) 1970/01/01 00:03:05 fetching corpus: 11299, signal 15891/19452 (executing program) 1970/01/01 00:03:05 fetching corpus: 11349, signal 15947/19453 (executing program) 1970/01/01 00:03:05 fetching corpus: 11399, signal 16018/19455 (executing program) 1970/01/01 00:03:06 fetching corpus: 11449, signal 16081/19455 (executing program) 1970/01/01 00:03:06 fetching corpus: 11499, signal 16138/19456 (executing program) 1970/01/01 00:03:06 fetching corpus: 11549, signal 16201/19456 (executing program) 1970/01/01 00:03:06 fetching corpus: 11599, signal 16258/19456 (executing program) 1970/01/01 00:03:06 fetching corpus: 11649, signal 16319/19456 (executing program) 1970/01/01 00:03:06 fetching corpus: 11699, signal 16384/19456 (executing program) 1970/01/01 00:03:06 fetching corpus: 11749, signal 16453/19456 (executing program) 1970/01/01 00:03:07 fetching corpus: 11799, signal 16529/19457 (executing program) 1970/01/01 00:03:07 fetching corpus: 11849, signal 16586/19457 (executing program) 1970/01/01 00:03:07 fetching corpus: 11899, signal 16656/19457 (executing program) 1970/01/01 00:03:07 fetching corpus: 11948, signal 16726/19459 (executing program) 1970/01/01 00:03:07 fetching corpus: 11998, signal 16779/19461 (executing program) 1970/01/01 00:03:07 fetching corpus: 12048, signal 16839/19461 (executing program) 1970/01/01 00:03:08 fetching corpus: 12098, signal 16901/19461 (executing program) 1970/01/01 00:03:08 fetching corpus: 12148, signal 16974/19461 (executing program) 1970/01/01 00:03:08 fetching corpus: 12198, signal 17035/19462 (executing program) 1970/01/01 00:03:08 fetching corpus: 12248, signal 17092/19462 (executing program) 1970/01/01 00:03:08 fetching corpus: 12298, signal 17160/19462 (executing program) 1970/01/01 00:03:09 fetching corpus: 12348, signal 17218/19462 (executing program) 1970/01/01 00:03:09 fetching corpus: 12398, signal 17291/19463 (executing program) 1970/01/01 00:03:09 fetching corpus: 12448, signal 17350/19463 (executing program) 1970/01/01 00:03:09 fetching corpus: 12498, signal 17408/19463 (executing program) 1970/01/01 00:03:09 fetching corpus: 12548, signal 17484/19465 (executing program) 1970/01/01 00:03:09 fetching corpus: 12598, signal 17548/19468 (executing program) 1970/01/01 00:03:09 fetching corpus: 12648, signal 17626/19468 (executing program) 1970/01/01 00:03:09 fetching corpus: 12697, signal 17682/19469 (executing program) 1970/01/01 00:03:09 fetching corpus: 12747, signal 17746/19470 (executing program) 1970/01/01 00:03:09 fetching corpus: 12797, signal 17803/19470 (executing program) 1970/01/01 00:03:09 fetching corpus: 12847, signal 17858/19470 (executing program) 1970/01/01 00:03:10 fetching corpus: 12897, signal 17921/19470 (executing program) 1970/01/01 00:03:10 fetching corpus: 12947, signal 17981/19470 (executing program) 1970/01/01 00:03:10 fetching corpus: 12996, signal 18043/19470 (executing program) 1970/01/01 00:03:10 fetching corpus: 13046, signal 18104/19470 (executing program) 1970/01/01 00:03:10 fetching corpus: 13096, signal 18168/19470 (executing program) 1970/01/01 00:03:10 fetching corpus: 13146, signal 18231/19470 (executing program) 1970/01/01 00:03:10 fetching corpus: 13196, signal 18291/19470 (executing program) 1970/01/01 00:03:10 fetching corpus: 13246, signal 18354/19470 (executing program) 1970/01/01 00:03:10 fetching corpus: 13296, signal 18415/19470 (executing program) 1970/01/01 00:03:10 fetching corpus: 13346, signal 18490/19471 (executing program) 1970/01/01 00:03:11 fetching corpus: 13396, signal 18554/19471 (executing program) 1970/01/01 00:03:11 fetching corpus: 13446, signal 18612/19471 (executing program) 1970/01/01 00:03:11 fetching corpus: 13496, signal 18672/19473 (executing program) 1970/01/01 00:03:11 fetching corpus: 13546, signal 18731/19474 (executing program) 1970/01/01 00:03:11 fetching corpus: 13596, signal 18791/19474 (executing program) 1970/01/01 00:03:11 fetching corpus: 13646, signal 18857/19474 (executing program) 1970/01/01 00:03:11 fetching corpus: 13696, signal 18912/19474 (executing program) 1970/01/01 00:03:12 fetching corpus: 13746, signal 18973/19474 (executing program) 1970/01/01 00:03:12 fetching corpus: 13796, signal 19040/19474 (executing program) 1970/01/01 00:03:12 fetching corpus: 13846, signal 19102/19474 (executing program) 1970/01/01 00:03:12 fetching corpus: 13896, signal 19165/19474 (executing program) 1970/01/01 00:03:12 fetching corpus: 13946, signal 19236/19474 (executing program) 1970/01/01 00:03:12 fetching corpus: 13959, signal 19258/19474 (executing program) 1970/01/01 00:03:12 fetching corpus: 13959, signal 19258/19474 (executing program) 1970/01/01 00:04:04 starting 2 fuzzer processes 00:04:05 executing program 0: pipe2$watch_queue(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80) close_range(r0, 0xffffffffffffffff, 0x0) r1 = socket(0x1d, 0x2, 0x6) ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f00000003c0)={'vxcan1\x00', 0x0}) bind$xdp(r1, &(0x7f0000000000)={0x2c, 0x0, r2, 0x0, r1}, 0x10) sendmsg$MPTCP_PM_CMD_GET_ADDR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x14}, 0x14}}, 0x0) 00:04:05 executing program 1: r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) close(r0) r1 = socket(0x1d, 0x2, 0x6) ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f00000003c0)={'vxcan1\x00', 0x0}) bind$xdp(r1, &(0x7f0000000000)={0x2c, 0x0, r2, 0x0, r1}, 0x10) sendmsg$ETHTOOL_MSG_WOL_SET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)={0x14}, 0x14}}, 0x0) [ 253.995801][ T2217] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 254.081360][ T2218] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 254.114900][ T2217] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 254.141344][ T2218] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 258.156489][ T2218] device hsr_slave_0 entered promiscuous mode [ 258.235253][ T2218] device hsr_slave_1 entered promiscuous mode [ 258.670967][ T2217] device hsr_slave_0 entered promiscuous mode [ 258.713787][ T2217] device hsr_slave_1 entered promiscuous mode [ 258.782088][ T2217] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 258.783657][ T2217] Cannot create hsr debugfs directory [ 261.656049][ T2218] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 261.814080][ T2218] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 261.912667][ T2218] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 262.071101][ T2218] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 262.613078][ T2217] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 262.715771][ T2217] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 262.814769][ T2217] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 262.911290][ T2217] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 264.891323][ T2218] 8021q: adding VLAN 0 to HW filter on device bond0 [ 265.044575][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 265.073971][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 265.790209][ T2217] 8021q: adding VLAN 0 to HW filter on device bond0 [ 266.047542][ T890] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 266.062362][ T890] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 266.734906][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 266.752573][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 266.847378][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 266.861393][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 266.946360][ T1692] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 267.005601][ T1692] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 267.388243][ T1692] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 267.418809][ T1692] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 267.528692][ T1692] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 267.537612][ T1692] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 267.664728][ T2218] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 267.863205][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 267.874057][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 267.984643][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 267.998045][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 268.062557][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 268.064833][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 268.095004][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 268.191576][ T890] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 268.497039][ T88] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 268.518259][ T88] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 268.694185][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 268.698992][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 268.806451][ T2217] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 269.122429][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 269.123886][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 272.667071][ T88] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 272.687341][ T88] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 273.575571][ T2213] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 273.647698][ T2213] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 274.297318][ T88] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 274.304707][ T88] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 274.341443][ T88] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 274.345584][ T88] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 274.383394][ T2218] device veth0_vlan entered promiscuous mode [ 274.554905][ T2218] device veth1_vlan entered promiscuous mode [ 274.922888][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 274.936751][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 274.986832][ T2218] device veth0_macvtap entered promiscuous mode [ 275.058851][ T2218] device veth1_macvtap entered promiscuous mode [ 275.256845][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 275.267255][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 275.284663][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 275.294363][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 275.456946][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 275.473018][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 275.572200][ T890] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 275.595408][ T890] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 275.626674][ T2218] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 275.628066][ T2218] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 275.628652][ T2218] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 275.640883][ T2218] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 275.707176][ T890] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 275.717673][ T890] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 275.758564][ T2217] device veth0_vlan entered promiscuous mode [ 276.086878][ T2217] device veth1_vlan entered promiscuous mode [ 276.421921][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 276.438883][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 276.727271][ T1692] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 276.737121][ T1692] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 276.826993][ T2217] device veth0_macvtap entered promiscuous mode [ 276.920796][ T2217] device veth1_macvtap entered promiscuous mode [ 277.206276][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 277.217656][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 277.235070][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 277.245343][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 277.365392][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 277.388890][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 277.474594][ T2217] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 277.475366][ T2217] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 277.475907][ T2217] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 277.476434][ T2217] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 00:04:39 executing program 0: pipe2$watch_queue(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80) close_range(r0, 0xffffffffffffffff, 0x0) r1 = socket(0x1d, 0x2, 0x6) ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f00000003c0)={'vxcan1\x00', 0x0}) bind$xdp(r1, &(0x7f0000000000)={0x2c, 0x0, r2, 0x0, r1}, 0x10) sendmsg$MPTCP_PM_CMD_GET_ADDR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x14}, 0x14}}, 0x0) 00:04:39 executing program 1: r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) close(r0) r1 = socket(0x1d, 0x2, 0x6) ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f00000003c0)={'vxcan1\x00', 0x0}) bind$xdp(r1, &(0x7f0000000000)={0x2c, 0x0, r2, 0x0, r1}, 0x10) sendmsg$ETHTOOL_MSG_WOL_SET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)={0x14}, 0x14}}, 0x0) 00:04:40 executing program 0: pipe2$watch_queue(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80) close_range(r0, 0xffffffffffffffff, 0x0) r1 = socket(0x1d, 0x2, 0x6) ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f00000003c0)={'vxcan1\x00', 0x0}) bind$xdp(r1, &(0x7f0000000000)={0x2c, 0x0, r2, 0x0, r1}, 0x10) sendmsg$MPTCP_PM_CMD_GET_ADDR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x14}, 0x14}}, 0x0) 00:04:41 executing program 1: r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) close(r0) r1 = socket(0x1d, 0x2, 0x6) ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f00000003c0)={'vxcan1\x00', 0x0}) bind$xdp(r1, &(0x7f0000000000)={0x2c, 0x0, r2, 0x0, r1}, 0x10) sendmsg$ETHTOOL_MSG_WOL_SET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)={0x14}, 0x14}}, 0x0) 00:04:42 executing program 0: pipe2$watch_queue(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80) close_range(r0, 0xffffffffffffffff, 0x0) r1 = socket(0x1d, 0x2, 0x6) ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f00000003c0)={'vxcan1\x00', 0x0}) bind$xdp(r1, &(0x7f0000000000)={0x2c, 0x0, r2, 0x0, r1}, 0x10) sendmsg$MPTCP_PM_CMD_GET_ADDR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x14}, 0x14}}, 0x0) 00:04:43 executing program 1: r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) close(r0) r1 = socket(0x1d, 0x2, 0x6) ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f00000003c0)={'vxcan1\x00', 0x0}) bind$xdp(r1, &(0x7f0000000000)={0x2c, 0x0, r2, 0x0, r1}, 0x10) sendmsg$ETHTOOL_MSG_WOL_SET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)={0x14}, 0x14}}, 0x0) 00:04:45 executing program 0: r0 = openat2(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)={0x41}, 0x18) close(r0) socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$MPTCP_PM_CMD_GET_ADDR(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)={0x14}, 0x14}}, 0x0) 00:04:45 executing program 1: r0 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TUNSETSNDBUF(r0, 0x400454d4, 0x0) 00:04:46 executing program 0: r0 = openat2(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)={0x41}, 0x18) close(r0) socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$MPTCP_PM_CMD_GET_ADDR(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)={0x14}, 0x14}}, 0x0) 00:04:46 executing program 1: r0 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TUNSETSNDBUF(r0, 0x400454d4, 0x0) 00:04:47 executing program 1: r0 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TUNSETSNDBUF(r0, 0x400454d4, 0x0) 00:04:47 executing program 0: r0 = openat2(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)={0x41}, 0x18) close(r0) socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$MPTCP_PM_CMD_GET_ADDR(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)={0x14}, 0x14}}, 0x0) 00:04:48 executing program 0: r0 = openat2(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)={0x41}, 0x18) close(r0) socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$MPTCP_PM_CMD_GET_ADDR(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)={0x14}, 0x14}}, 0x0) 00:04:48 executing program 1: r0 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TUNSETSNDBUF(r0, 0x400454d4, 0x0) 00:04:49 executing program 1: r0 = openat2(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080)={0x41}, 0x18) close(r0) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_NEW_MPATH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) 00:04:49 executing program 0: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) socket$can_bcm(0x1d, 0x2, 0x2) sendmsg$inet_sctp(r0, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x0) 00:04:50 executing program 1: r0 = openat2(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080)={0x41}, 0x18) close(r0) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_NEW_MPATH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) 00:04:51 executing program 0: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) socket$can_bcm(0x1d, 0x2, 0x2) sendmsg$inet_sctp(r0, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x0) 00:04:52 executing program 0: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) socket$can_bcm(0x1d, 0x2, 0x2) sendmsg$inet_sctp(r0, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x0) 00:04:52 executing program 1: r0 = openat2(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080)={0x41}, 0x18) close(r0) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_NEW_MPATH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) 00:04:52 executing program 1: r0 = openat2(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080)={0x41}, 0x18) close(r0) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_NEW_MPATH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) 00:04:53 executing program 0: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) socket$can_bcm(0x1d, 0x2, 0x2) sendmsg$inet_sctp(r0, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x0) 00:04:53 executing program 1: r0 = socket$rds(0x15, 0x5, 0x0) fcntl$getown(r0, 0x9) 00:04:54 executing program 0: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)={0x14}, 0x14}}, 0x0) 00:04:54 executing program 1: r0 = socket$rds(0x15, 0x5, 0x0) fcntl$getown(r0, 0x9) 00:04:55 executing program 1: r0 = socket$rds(0x15, 0x5, 0x0) fcntl$getown(r0, 0x9) 00:04:55 executing program 0: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)={0x14}, 0x14}}, 0x0) 00:04:56 executing program 1: r0 = socket$rds(0x15, 0x5, 0x0) fcntl$getown(r0, 0x9) 00:04:56 executing program 0: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)={0x14}, 0x14}}, 0x0) 00:04:56 executing program 1: r0 = socket$xdp(0x2c, 0x3, 0x0) r1 = dup(r0) r2 = dup(r1) ioctl$TIOCMIWAIT(r2, 0x545c, 0x0) 00:04:57 executing program 0: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)={0x14}, 0x14}}, 0x0) 00:04:57 executing program 1: r0 = socket$xdp(0x2c, 0x3, 0x0) r1 = dup(r0) r2 = dup(r1) ioctl$TIOCMIWAIT(r2, 0x545c, 0x0) 00:04:58 executing program 0: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$VHOST_SET_OWNER(r1, 0xaf01, 0x0) ioctl$FIONREAD(r1, 0x541b, &(0x7f0000000000)) 00:04:58 executing program 1: r0 = socket$xdp(0x2c, 0x3, 0x0) r1 = dup(r0) r2 = dup(r1) ioctl$TIOCMIWAIT(r2, 0x545c, 0x0) [ 299.446222][ T2969] ------------[ cut here ]------------ [ 299.447363][ T2969] WARNING: CPU: 0 PID: 2969 at kernel/cpu.c:347 lockdep_assert_cpus_held+0xa4/0xc0 [ 299.448193][ T2969] Modules linked in: [ 299.449008][ T2969] CPU: 0 PID: 2969 Comm: vhost-2968 Not tainted 6.0.0-rc2-syzkaller-00054-gc40e8341e3b3 #0 [ 299.449733][ T2969] Hardware name: linux,dummy-virt (DT) [ 299.451643][ T2969] pstate: 10000005 (nzcV daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 299.452756][ T2969] pc : lockdep_assert_cpus_held+0xa4/0xc0 [ 299.453370][ T2969] lr : lockdep_assert_cpus_held+0xa0/0xc0 [ 299.453859][ T2969] sp : ffff8000121879f0 [ 299.454302][ T2969] x29: ffff8000121879f0 x28: ffff80000e0abc98 x27: 1ffff00002430f50 [ 299.455296][ T2969] x26: ffff700002430f9a x25: 0000000000000000 x24: ffff80000e0bc480 [ 299.455950][ T2969] x23: ffff80000e0aa740 x22: dfff800000000000 x21: ffff8000107c23e0 [ 299.456812][ T2969] x20: ffff800012187cb0 x19: ffff80000de8f000 x18: ffff00006a9cbb88 [ 299.457770][ T2969] x17: 0000000000000000 x16: 0000000000000000 x15: ffff00006a9cbbc4 [ 299.458611][ T2969] x14: ffff00006a9cbbbc x13: 1fffe00001468b97 x12: ffff700001c154dd [ 299.459536][ T2969] x11: 1ffff00001c154dc x10: ffff700001c154dc x9 : ffff80000f3d5f40 [ 299.460304][ T2969] x8 : ffff00000a345c18 x7 : 1fffe00001468b83 x6 : 00000000f3f3f3f3 [ 299.461131][ T2969] x5 : 00000000f1f1f1f1 x4 : ffff700002430f50 x3 : 1fffe00001468a39 [ 299.462080][ T2969] x2 : 0000000000000003 x1 : 00000000000000c0 x0 : 0000000000000000 [ 299.462997][ T2969] Call trace: [ 299.463575][ T2969] lockdep_assert_cpus_held+0xa4/0xc0 [ 299.464382][ T2969] cpuset_attach+0xa4/0x42c [ 299.464970][ T2969] cgroup_migrate_execute+0x7f0/0xcec [ 299.465404][ T2969] cgroup_migrate+0xe4/0x184 [ 299.465917][ T2969] cgroup_attach_task+0x2a4/0x74c [ 299.466297][ T2969] cgroup_attach_task_all+0xd8/0x140 [ 299.466739][ T2969] vhost_attach_cgroups_work+0x38/0x90 [ 299.467328][ T2969] vhost_worker+0x1a8/0x310 [ 299.467789][ T2969] kthread+0x23c/0x2a0 [ 299.468178][ T2969] ret_from_fork+0x10/0x20 [ 299.468808][ T2969] irq event stamp: 106 [ 299.469356][ T2969] hardirqs last enabled at (105): [] _raw_spin_unlock_irq+0x38/0x9c [ 299.470194][ T2969] hardirqs last disabled at (106): [] el1_dbg+0x24/0x7c [ 299.470831][ T2969] softirqs last enabled at (28): [] _stext+0x938/0xf58 [ 299.471569][ T2969] softirqs last disabled at (15): [] __irq_exit_rcu+0x3bc/0x4e0 [ 299.472090][ T2969] ---[ end trace 0000000000000000 ]--- 00:04:59 executing program 0: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$VHOST_SET_OWNER(r1, 0xaf01, 0x0) ioctl$FIONREAD(r1, 0x541b, &(0x7f0000000000)) 00:04:59 executing program 1: r0 = socket$xdp(0x2c, 0x3, 0x0) r1 = dup(r0) r2 = dup(r1) ioctl$TIOCMIWAIT(r2, 0x545c, 0x0) 00:05:00 executing program 1: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='children\x00') r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r2 = dup3(r1, r0, 0x0) ioctl$UI_SET_SWBIT(r2, 0x4004556d, 0x0) [ 301.031198][ T2976] ------------[ cut here ]------------ [ 301.031885][ T2976] WARNING: CPU: 1 PID: 2976 at kernel/cpu.c:347 lockdep_assert_cpus_held+0xa4/0xc0 [ 301.033018][ T2976] Modules linked in: [ 301.034479][ T2976] CPU: 1 PID: 2976 Comm: vhost-2975 Tainted: G W 6.0.0-rc2-syzkaller-00054-gc40e8341e3b3 #0 [ 301.037258][ T2976] Hardware name: linux,dummy-virt (DT) [ 301.037706][ T2976] pstate: 10000005 (nzcV daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 301.038150][ T2976] pc : lockdep_assert_cpus_held+0xa4/0xc0 [ 301.038711][ T2976] lr : lockdep_assert_cpus_held+0xa0/0xc0 [ 301.039180][ T2976] sp : ffff8000121a79f0 [ 301.039577][ T2976] x29: ffff8000121a79f0 x28: ffff80000e0abc98 x27: 1ffff00002434f50 [ 301.040348][ T2976] x26: ffff700002434f9a x25: 0000000000000000 x24: ffff80000e0bc480 [ 301.041318][ T2976] x23: ffff80000e0aa740 x22: dfff800000000000 x21: ffff8000107c23e0 [ 301.042181][ T2976] x20: ffff8000121a7cb0 x19: ffff80000de8f000 x18: ffff00006a9eab88 [ 301.042891][ T2976] x17: 0000000000000000 x16: 0000000000000000 x15: ffff00006a9eabc4 [ 301.043755][ T2976] x14: ffff00006a9eabbc x13: 1fffe00002ae1b97 x12: ffff700001c154dd [ 301.044428][ T2976] x11: 1ffff00001c154dc x10: ffff700001c154dc x9 : ffff80000f3d5f40 [ 301.045101][ T2976] x8 : ffff00001570dc18 x7 : 1fffe00002ae1b83 x6 : 00000000f3f3f3f3 [ 301.045804][ T2976] x5 : 00000000f1f1f1f1 x4 : ffff700002434f50 x3 : 1fffe00002ae1a39 [ 301.046502][ T2976] x2 : 0000000000000003 x1 : 00000000000000c0 x0 : 0000000000000000 [ 301.047176][ T2976] Call trace: [ 301.047520][ T2976] lockdep_assert_cpus_held+0xa4/0xc0 [ 301.047965][ T2976] cpuset_attach+0xa4/0x42c [ 301.048364][ T2976] cgroup_migrate_execute+0x7f0/0xcec [ 301.048773][ T2976] cgroup_migrate+0xe4/0x184 [ 301.049340][ T2976] cgroup_attach_task+0x2a4/0x74c [ 301.049746][ T2976] cgroup_attach_task_all+0xd8/0x140 [ 301.050396][ T2976] vhost_attach_cgroups_work+0x38/0x90 [ 301.050809][ T2976] vhost_worker+0x1a8/0x310 [ 301.051219][ T2976] kthread+0x23c/0x2a0 [ 301.051774][ T2976] ret_from_fork+0x10/0x20 [ 301.052325][ T2976] irq event stamp: 116 [ 301.052779][ T2976] hardirqs last enabled at (115): [] _raw_spin_unlock_irq+0x38/0x9c [ 301.053479][ T2976] hardirqs last disabled at (116): [] el1_dbg+0x24/0x7c [ 301.054099][ T2976] softirqs last enabled at (108): [] _stext+0x938/0xf58 [ 301.054703][ T2976] softirqs last disabled at (91): [] __irq_exit_rcu+0x3bc/0x4e0 [ 301.055233][ T2976] ---[ end trace 0000000000000000 ]--- 00:05:00 executing program 0: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$VHOST_SET_OWNER(r1, 0xaf01, 0x0) ioctl$FIONREAD(r1, 0x541b, &(0x7f0000000000)) 00:05:01 executing program 1: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='children\x00') r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r2 = dup3(r1, r0, 0x0) ioctl$UI_SET_SWBIT(r2, 0x4004556d, 0x0) [ 302.132140][ T2982] ------------[ cut here ]------------ [ 302.132691][ T2982] WARNING: CPU: 1 PID: 2982 at kernel/cpu.c:347 lockdep_assert_cpus_held+0xa4/0xc0 [ 302.133131][ T2982] Modules linked in: [ 302.133537][ T2982] CPU: 1 PID: 2982 Comm: vhost-2981 Tainted: G W 6.0.0-rc2-syzkaller-00054-gc40e8341e3b3 #0 [ 302.134047][ T2982] Hardware name: linux,dummy-virt (DT) [ 302.134345][ T2982] pstate: 10000005 (nzcV daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 302.134765][ T2982] pc : lockdep_assert_cpus_held+0xa4/0xc0 [ 302.135095][ T2982] lr : lockdep_assert_cpus_held+0xa0/0xc0 [ 302.135404][ T2982] sp : ffff8000121c79f0 [ 302.135683][ T2982] x29: ffff8000121c79f0 x28: ffff80000e0abc98 x27: 1ffff00002438f50 [ 302.136233][ T2982] x26: ffff700002438f9a x25: 0000000000000000 x24: ffff80000e0bc480 [ 302.136794][ T2982] x23: ffff80000e0aa740 x22: dfff800000000000 x21: ffff8000107c23e0 [ 302.137337][ T2982] x20: ffff8000121c7cb0 x19: ffff80000de8f000 x18: ffff00006a9eab88 [ 302.137854][ T2982] x17: 0000000000000000 x16: 0000000000000000 x15: ffff00006a9eabc4 [ 302.138428][ T2982] x14: ffff00006a9eabbc x13: 1fffe0000224515f x12: ffff700001c154dd [ 302.139002][ T2982] x11: 1ffff00001c154dc x10: ffff700001c154dc x9 : ffff80000f3d5f40 [ 302.139751][ T2982] x8 : ffff000011228a58 x7 : 1fffe0000224514b x6 : 00000000f3f3f3f3 [ 302.140314][ T2982] x5 : 00000000f1f1f1f1 x4 : ffff700002438f50 x3 : 1fffe00002245001 [ 302.140972][ T2982] x2 : 0000000000000003 x1 : 00000000000000c0 x0 : 0000000000000000 [ 302.141631][ T2982] Call trace: [ 302.141903][ T2982] lockdep_assert_cpus_held+0xa4/0xc0 [ 302.142303][ T2982] cpuset_attach+0xa4/0x42c [ 302.142657][ T2982] cgroup_migrate_execute+0x7f0/0xcec [ 302.142969][ T2982] cgroup_migrate+0xe4/0x184 [ 302.143395][ T2982] cgroup_attach_task+0x2a4/0x74c [ 302.143808][ T2982] cgroup_attach_task_all+0xd8/0x140 [ 302.144125][ T2982] vhost_attach_cgroups_work+0x38/0x90 [ 302.144557][ T2982] vhost_worker+0x1a8/0x310 [ 302.144854][ T2982] kthread+0x23c/0x2a0 [ 302.145215][ T2982] ret_from_fork+0x10/0x20 [ 302.145575][ T2982] irq event stamp: 86 [ 302.145850][ T2982] hardirqs last enabled at (85): [] _raw_spin_unlock_irq+0x38/0x9c [ 302.146560][ T2982] hardirqs last disabled at (86): [] el1_dbg+0x24/0x7c [ 302.146942][ T2982] softirqs last enabled at (0): [] copy_process+0x132c/0x5310 [ 302.147404][ T2982] softirqs last disabled at (0): [<0000000000000000>] 0x0 [ 302.148362][ T2982] ---[ end trace 0000000000000000 ]--- 00:05:01 executing program 0: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$VHOST_SET_OWNER(r1, 0xaf01, 0x0) ioctl$FIONREAD(r1, 0x541b, &(0x7f0000000000)) 00:05:01 executing program 1: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='children\x00') r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r2 = dup3(r1, r0, 0x0) ioctl$UI_SET_SWBIT(r2, 0x4004556d, 0x0) [ 303.261215][ T2988] ------------[ cut here ]------------ [ 303.261775][ T2988] WARNING: CPU: 0 PID: 2988 at kernel/cpu.c:347 lockdep_assert_cpus_held+0xa4/0xc0 [ 303.262136][ T2988] Modules linked in: [ 303.262418][ T2988] CPU: 0 PID: 2988 Comm: vhost-2987 Tainted: G W 6.0.0-rc2-syzkaller-00054-gc40e8341e3b3 #0 [ 303.262738][ T2988] Hardware name: linux,dummy-virt (DT) [ 303.262980][ T2988] pstate: 10000005 (nzcV daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 303.263266][ T2988] pc : lockdep_assert_cpus_held+0xa4/0xc0 [ 303.263524][ T2988] lr : lockdep_assert_cpus_held+0xa0/0xc0 [ 303.263769][ T2988] sp : ffff8000121e79f0 [ 303.263971][ T2988] x29: ffff8000121e79f0 x28: ffff80000e0abc98 x27: 1ffff0000243cf50 [ 303.264342][ T2988] x26: ffff70000243cf9a x25: 0000000000000000 x24: ffff80000e0bc480 [ 303.264731][ T2988] x23: ffff80000e0aa740 x22: dfff800000000000 x21: ffff8000107c23e0 [ 303.265126][ T2988] x20: ffff8000121e7cb0 x19: ffff80000de8f000 x18: ffff00006a9cbb88 [ 303.265572][ T2988] x17: ffff80005cb98000 x16: ffff800008008000 x15: ffff00006a9cbbc4 [ 303.265965][ T2988] x14: ffff00006a9cbbbc x13: 1fffe00004f3b82f x12: ffff700001c154dd [ 303.266349][ T2988] x11: 1ffff00001c154dc x10: ffff700001c154dc x9 : ffff80000f3d5f40 [ 303.266744][ T2988] x8 : ffff0000279dc0d8 x7 : 1fffe00004f3b81b x6 : 00000000f3f3f3f3 [ 303.267190][ T2988] x5 : 00000000f1f1f1f1 x4 : ffff70000243cf50 x3 : 1fffe00004f3b6d1 [ 303.267582][ T2988] x2 : 0000000000000003 x1 : 00000000000000c0 x0 : 0000000000000000 [ 303.268014][ T2988] Call trace: [ 303.268358][ T2988] lockdep_assert_cpus_held+0xa4/0xc0 [ 303.268628][ T2988] cpuset_attach+0xa4/0x42c [ 303.269022][ T2988] cgroup_migrate_execute+0x7f0/0xcec [ 303.269417][ T2988] cgroup_migrate+0xe4/0x184 [ 303.269755][ T2988] cgroup_attach_task+0x2a4/0x74c [ 303.270014][ T2988] cgroup_attach_task_all+0xd8/0x140 [ 303.270348][ T2988] vhost_attach_cgroups_work+0x38/0x90 [ 303.270625][ T2988] vhost_worker+0x1a8/0x310 [ 303.270946][ T2988] kthread+0x23c/0x2a0 [ 303.271175][ T2988] ret_from_fork+0x10/0x20 [ 303.271633][ T2988] irq event stamp: 86 [ 303.271913][ T2988] hardirqs last enabled at (85): [] _raw_spin_unlock_irq+0x38/0x9c [ 303.272526][ T2988] hardirqs last disabled at (86): [] el1_dbg+0x24/0x7c [ 303.272859][ T2988] softirqs last enabled at (0): [] copy_process+0x132c/0x5310 [ 303.273481][ T2988] softirqs last disabled at (0): [<0000000000000000>] 0x0 [ 303.273816][ T2988] ---[ end trace 0000000000000000 ]--- 00:05:02 executing program 1: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='children\x00') r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r2 = dup3(r1, r0, 0x0) ioctl$UI_SET_SWBIT(r2, 0x4004556d, 0x0) 00:05:03 executing program 0: socketpair(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$AUDIT_ADD_RULE(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) dup3(r1, r0, 0x0) sendmsg$IPSET_CMD_DESTROY(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0}}, 0x0) 00:05:03 executing program 0: socketpair(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$AUDIT_ADD_RULE(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) dup3(r1, r0, 0x0) sendmsg$IPSET_CMD_DESTROY(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0}}, 0x0) 00:05:04 executing program 1: pipe2(&(0x7f0000000000)={0xffffffffffffffff}, 0x0) close(r0) openat$mixer(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$USBDEVFS_REAPURBNDELAY(r0, 0x4008550d, &(0x7f0000000040)) 00:05:04 executing program 1: pipe2(&(0x7f0000000000)={0xffffffffffffffff}, 0x0) close(r0) openat$mixer(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$USBDEVFS_REAPURBNDELAY(r0, 0x4008550d, &(0x7f0000000040)) 00:05:04 executing program 0: socketpair(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$AUDIT_ADD_RULE(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) dup3(r1, r0, 0x0) sendmsg$IPSET_CMD_DESTROY(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0}}, 0x0) 00:05:05 executing program 1: pipe2(&(0x7f0000000000)={0xffffffffffffffff}, 0x0) close(r0) openat$mixer(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$USBDEVFS_REAPURBNDELAY(r0, 0x4008550d, &(0x7f0000000040)) 00:05:05 executing program 0: socketpair(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$AUDIT_ADD_RULE(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) dup3(r1, r0, 0x0) sendmsg$IPSET_CMD_DESTROY(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0}}, 0x0) 00:05:05 executing program 1: pipe2(&(0x7f0000000000)={0xffffffffffffffff}, 0x0) close(r0) openat$mixer(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$USBDEVFS_REAPURBNDELAY(r0, 0x4008550d, &(0x7f0000000040)) 00:05:06 executing program 0: r0 = add_key(&(0x7f0000001400)='keyring\x00', &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffb) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, &(0x7f0000000080)='asymmetric\x00', &(0x7f0000000000)=@chain={'key_or_keyring:', r0}) 00:05:06 executing program 0: r0 = add_key(&(0x7f0000001400)='keyring\x00', &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffb) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, &(0x7f0000000080)='asymmetric\x00', &(0x7f0000000000)=@chain={'key_or_keyring:', r0}) 00:05:07 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0) dup3(r0, r1, 0x0) write$FUSE_WRITE(r1, &(0x7f0000000040)={0x18}, 0x18) 00:05:08 executing program 0: r0 = add_key(&(0x7f0000001400)='keyring\x00', &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffb) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, &(0x7f0000000080)='asymmetric\x00', &(0x7f0000000000)=@chain={'key_or_keyring:', r0}) 00:05:08 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0) dup3(r0, r1, 0x0) write$FUSE_WRITE(r1, &(0x7f0000000040)={0x18}, 0x18) 00:05:08 executing program 0: r0 = add_key(&(0x7f0000001400)='keyring\x00', &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffb) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, &(0x7f0000000080)='asymmetric\x00', &(0x7f0000000000)=@chain={'key_or_keyring:', r0}) 00:05:08 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0) dup3(r0, r1, 0x0) write$FUSE_WRITE(r1, &(0x7f0000000040)={0x18}, 0x18) 00:05:09 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0) dup3(r0, r1, 0x0) write$FUSE_WRITE(r1, &(0x7f0000000040)={0x18}, 0x18) 00:05:09 executing program 0: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0x0) ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, 0x0) 00:05:10 executing program 0: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0x0) ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, 0x0) 00:05:10 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000140)={0x26, 'hash\x00', 0x0, 0x0, 'md5\x00'}, 0x58) r1 = accept(r0, 0x0, 0x0) ioctl$sock_SIOCGSKNS(r1, 0x894c, 0x0) 00:05:10 executing program 0: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0x0) ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, 0x0) 00:05:11 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000140)={0x26, 'hash\x00', 0x0, 0x0, 'md5\x00'}, 0x58) r1 = accept(r0, 0x0, 0x0) ioctl$sock_SIOCGSKNS(r1, 0x894c, 0x0) 00:05:11 executing program 0: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0x0) ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, 0x0) 00:05:12 executing program 0: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$VHOST_SET_OWNER(r1, 0xaf01, 0x0) ioctl$BTRFS_IOC_BALANCE_V2(r1, 0xc4009420, &(0x7f0000000240)={0x2, 0x0, {}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}}) 00:05:12 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000140)={0x26, 'hash\x00', 0x0, 0x0, 'md5\x00'}, 0x58) r1 = accept(r0, 0x0, 0x0) ioctl$sock_SIOCGSKNS(r1, 0x894c, 0x0) 00:05:12 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000140)={0x26, 'hash\x00', 0x0, 0x0, 'md5\x00'}, 0x58) r1 = accept(r0, 0x0, 0x0) ioctl$sock_SIOCGSKNS(r1, 0x894c, 0x0) [ 313.632269][ T3039] ------------[ cut here ]------------ [ 313.633014][ T3039] WARNING: CPU: 1 PID: 3039 at kernel/cpu.c:347 lockdep_assert_cpus_held+0xa4/0xc0 [ 313.633623][ T3039] Modules linked in: [ 313.634042][ T3039] CPU: 1 PID: 3039 Comm: vhost-3038 Tainted: G W 6.0.0-rc2-syzkaller-00054-gc40e8341e3b3 #0 [ 313.634931][ T3039] Hardware name: linux,dummy-virt (DT) [ 313.635395][ T3039] pstate: 10000005 (nzcV daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 313.635887][ T3039] pc : lockdep_assert_cpus_held+0xa4/0xc0 [ 313.636544][ T3039] lr : lockdep_assert_cpus_held+0xa0/0xc0 [ 313.636938][ T3039] sp : ffff8000122f79f0 [ 313.637264][ T3039] x29: ffff8000122f79f0 x28: ffff80000e0abc98 x27: 1ffff0000245ef50 [ 313.638381][ T3039] x26: ffff70000245ef9a x25: 0000000000000000 x24: ffff80000e0bc480 [ 313.639472][ T3039] x23: ffff80000e0aa740 x22: dfff800000000000 x21: ffff8000107c23e0 [ 313.640063][ T3039] x20: ffff8000122f7cb0 x19: ffff80000de8f000 x18: ffff00006a9eab88 [ 313.640734][ T3039] x17: 00000000000014e0 x16: 00000000000014e4 x15: ffff00006a9eabc4 [ 313.641530][ T3039] x14: ffff00006a9eabbc x13: 1fffe000014e5b97 x12: ffff700001c154dd [ 313.642128][ T3039] x11: 1ffff00001c154dc x10: ffff700001c154dc x9 : ffff80000f3d5f40 [ 313.642845][ T3039] x8 : ffff00000a72dc18 x7 : 1fffe000014e5b83 x6 : 00000000f3f3f3f3 [ 313.643389][ T3039] x5 : 00000000f1f1f1f1 x4 : ffff70000245ef50 x3 : 1fffe000014e5a39 [ 313.644080][ T3039] x2 : 0000000000000003 x1 : 00000000000000c0 x0 : 0000000000000000 [ 313.644558][ T3039] Call trace: [ 313.644918][ T3039] lockdep_assert_cpus_held+0xa4/0xc0 [ 313.645352][ T3039] cpuset_attach+0xa4/0x42c [ 313.645680][ T3039] cgroup_migrate_execute+0x7f0/0xcec [ 313.646084][ T3039] cgroup_migrate+0xe4/0x184 [ 313.646518][ T3039] cgroup_attach_task+0x2a4/0x74c [ 313.646871][ T3039] cgroup_attach_task_all+0xd8/0x140 [ 313.647288][ T3039] vhost_attach_cgroups_work+0x38/0x90 [ 313.647672][ T3039] vhost_worker+0x1a8/0x310 [ 313.648116][ T3039] kthread+0x23c/0x2a0 [ 313.648434][ T3039] ret_from_fork+0x10/0x20 [ 313.648964][ T3039] irq event stamp: 82 [ 313.649445][ T3039] hardirqs last enabled at (81): [] _raw_spin_unlock_irq+0x38/0x9c [ 313.649818][ T3039] hardirqs last disabled at (82): [] el1_dbg+0x24/0x7c [ 313.650324][ T3039] softirqs last enabled at (0): [] copy_process+0x132c/0x5310 [ 313.650684][ T3039] softirqs last disabled at (0): [<0000000000000000>] 0x0 [ 313.651144][ T3039] ---[ end trace 0000000000000000 ]--- 00:05:13 executing program 0: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$VHOST_SET_OWNER(r1, 0xaf01, 0x0) ioctl$BTRFS_IOC_BALANCE_V2(r1, 0xc4009420, &(0x7f0000000240)={0x2, 0x0, {}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}}) 00:05:13 executing program 1: r0 = syz_open_dev$vcsn(&(0x7f0000000000), 0x1ff, 0x0) read$FUSE(r0, &(0x7f00000022c0)={0x2020, 0x0, 0x0, 0x0}, 0x2020) setuid(r1) syz_open_dev$sndctrl(&(0x7f0000000080), 0x0, 0x0) [ 314.582782][ T3045] ------------[ cut here ]------------ [ 314.583404][ T3045] WARNING: CPU: 0 PID: 3045 at kernel/cpu.c:347 lockdep_assert_cpus_held+0xa4/0xc0 [ 314.583838][ T3045] Modules linked in: [ 314.584182][ T3045] CPU: 0 PID: 3045 Comm: vhost-3044 Tainted: G W 6.0.0-rc2-syzkaller-00054-gc40e8341e3b3 #0 [ 314.584590][ T3045] Hardware name: linux,dummy-virt (DT) [ 314.584876][ T3045] pstate: 10000005 (nzcV daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 314.585274][ T3045] pc : lockdep_assert_cpus_held+0xa4/0xc0 [ 314.585621][ T3045] lr : lockdep_assert_cpus_held+0xa0/0xc0 [ 314.585933][ T3045] sp : ffff8000122f79f0 [ 314.586210][ T3045] x29: ffff8000122f79f0 x28: ffff80000e0abc98 x27: 1ffff0000245ef50 [ 314.586802][ T3045] x26: ffff70000245ef9a x25: 0000000000000000 x24: ffff80000e0bc480 [ 314.587316][ T3045] x23: ffff80000e0aa740 x22: dfff800000000000 x21: ffff8000107c23e0 [ 314.588105][ T3045] x20: ffff8000122f7cb0 x19: ffff80000de8f000 x18: ffff00006a9cbb88 [ 314.588928][ T3045] x17: 0000000000000000 x16: 0000000000000000 x15: ffff00006a9cbbc4 [ 314.589746][ T3045] x14: ffff00006a9cbbbc x13: 1fffe000017aeb97 x12: ffff700001c154dd [ 314.590362][ T3045] x11: 1ffff00001c154dc x10: ffff700001c154dc x9 : ffff80000f3d5f40 [ 314.591082][ T3045] x8 : ffff00000bd75c18 x7 : 1fffe000017aeb83 x6 : 00000000f3f3f3f3 [ 314.591736][ T3045] x5 : 00000000f1f1f1f1 x4 : ffff70000245ef50 x3 : 1fffe000017aea39 [ 314.592221][ T3045] x2 : 0000000000000003 x1 : 00000000000000c0 x0 : 0000000000000000 [ 314.592747][ T3045] Call trace: [ 314.593079][ T3045] lockdep_assert_cpus_held+0xa4/0xc0 [ 314.593439][ T3045] cpuset_attach+0xa4/0x42c [ 314.593897][ T3045] cgroup_migrate_execute+0x7f0/0xcec [ 314.594241][ T3045] cgroup_migrate+0xe4/0x184 [ 314.594527][ T3045] cgroup_attach_task+0x2a4/0x74c [ 314.595050][ T3045] cgroup_attach_task_all+0xd8/0x140 [ 314.595382][ T3045] vhost_attach_cgroups_work+0x38/0x90 [ 314.595701][ T3045] vhost_worker+0x1a8/0x310 [ 314.596106][ T3045] kthread+0x23c/0x2a0 [ 314.596466][ T3045] ret_from_fork+0x10/0x20 [ 314.597090][ T3045] irq event stamp: 94 [ 314.597378][ T3045] hardirqs last enabled at (93): [] _raw_spin_unlock_irq+0x38/0x9c [ 314.597890][ T3045] hardirqs last disabled at (94): [] el1_dbg+0x24/0x7c [ 314.598434][ T3045] softirqs last enabled at (0): [] copy_process+0x132c/0x5310 [ 314.598914][ T3045] softirqs last disabled at (0): [<0000000000000000>] 0x0 [ 314.599650][ T3045] ---[ end trace 0000000000000000 ]--- 00:05:14 executing program 1: r0 = syz_open_dev$vcsn(&(0x7f0000000000), 0x1ff, 0x0) read$FUSE(r0, &(0x7f00000022c0)={0x2020, 0x0, 0x0, 0x0}, 0x2020) setuid(r1) syz_open_dev$sndctrl(&(0x7f0000000080), 0x0, 0x0) 00:05:14 executing program 0: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$VHOST_SET_OWNER(r1, 0xaf01, 0x0) ioctl$BTRFS_IOC_BALANCE_V2(r1, 0xc4009420, &(0x7f0000000240)={0x2, 0x0, {}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}}) [ 315.472039][ T3051] ------------[ cut here ]------------ [ 315.472657][ T3051] WARNING: CPU: 1 PID: 3051 at kernel/cpu.c:347 lockdep_assert_cpus_held+0xa4/0xc0 [ 315.473132][ T3051] Modules linked in: [ 315.473528][ T3051] CPU: 1 PID: 3051 Comm: vhost-3049 Tainted: G W 6.0.0-rc2-syzkaller-00054-gc40e8341e3b3 #0 [ 315.474040][ T3051] Hardware name: linux,dummy-virt (DT) [ 315.474358][ T3051] pstate: 10000005 (nzcV daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 315.474774][ T3051] pc : lockdep_assert_cpus_held+0xa4/0xc0 [ 315.475237][ T3051] lr : lockdep_assert_cpus_held+0xa0/0xc0 [ 315.475575][ T3051] sp : ffff8000123879f0 [ 315.475852][ T3051] x29: ffff8000123879f0 x28: ffff80000e0abc98 x27: 1ffff00002470f50 [ 315.476394][ T3051] x26: ffff700002470f9a x25: 0000000000000000 x24: ffff80000e0bc480 [ 315.476921][ T3051] x23: ffff80000e0aa740 x22: dfff800000000000 x21: ffff8000107c23e0 [ 315.477509][ T3051] x20: ffff800012387cb0 x19: ffff80000de8f000 x18: ffff00006a9eab88 [ 315.478084][ T3051] x17: 0000000000000000 x16: 0000000000000000 x15: ffff00006a9eabc4 [ 315.478745][ T3051] x14: ffff00006a9eabbc x13: 1fffe000028754c7 x12: ffff700001c154dd [ 315.479715][ T3051] x11: 1ffff00001c154dc x10: ffff700001c154dc x9 : ffff80000f3d5f40 [ 315.480383][ T3051] x8 : ffff0000143aa598 x7 : 1fffe000028754b3 x6 : 00000000f3f3f3f3 [ 315.480989][ T3051] x5 : 00000000f1f1f1f1 x4 : ffff700002470f50 x3 : 1fffe00002875369 [ 315.481682][ T3051] x2 : 0000000000000003 x1 : 00000000000000c0 x0 : 0000000000000000 [ 315.482400][ T3051] Call trace: [ 315.482745][ T3051] lockdep_assert_cpus_held+0xa4/0xc0 [ 315.483081][ T3051] cpuset_attach+0xa4/0x42c [ 315.483374][ T3051] cgroup_migrate_execute+0x7f0/0xcec [ 315.483987][ T3051] cgroup_migrate+0xe4/0x184 [ 315.484390][ T3051] cgroup_attach_task+0x2a4/0x74c [ 315.484703][ T3051] cgroup_attach_task_all+0xd8/0x140 [ 315.485107][ T3051] vhost_attach_cgroups_work+0x38/0x90 [ 315.485665][ T3051] vhost_worker+0x1a8/0x310 [ 315.485972][ T3051] kthread+0x23c/0x2a0 [ 315.486347][ T3051] ret_from_fork+0x10/0x20 [ 315.486743][ T3051] irq event stamp: 90 [ 315.487218][ T3051] hardirqs last enabled at (89): [] _raw_spin_unlock_irq+0x38/0x9c [ 315.487808][ T3051] hardirqs last disabled at (90): [] el1_dbg+0x24/0x7c [ 315.488330][ T3051] softirqs last enabled at (56): [] _stext+0x938/0xf58 [ 315.488972][ T3051] softirqs last disabled at (47): [] __irq_exit_rcu+0x3bc/0x4e0 [ 315.489950][ T3051] ---[ end trace 0000000000000000 ]--- 00:05:15 executing program 1: r0 = syz_open_dev$vcsn(&(0x7f0000000000), 0x1ff, 0x0) read$FUSE(r0, &(0x7f00000022c0)={0x2020, 0x0, 0x0, 0x0}, 0x2020) setuid(r1) syz_open_dev$sndctrl(&(0x7f0000000080), 0x0, 0x0) 00:05:15 executing program 0: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$VHOST_SET_OWNER(r1, 0xaf01, 0x0) ioctl$BTRFS_IOC_BALANCE_V2(r1, 0xc4009420, &(0x7f0000000240)={0x2, 0x0, {}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}}) [ 316.373330][ T3056] ------------[ cut here ]------------ [ 316.374131][ T3056] WARNING: CPU: 1 PID: 3056 at kernel/cpu.c:347 lockdep_assert_cpus_held+0xa4/0xc0 [ 316.374834][ T3056] Modules linked in: [ 316.375372][ T3056] CPU: 1 PID: 3056 Comm: vhost-3054 Tainted: G W 6.0.0-rc2-syzkaller-00054-gc40e8341e3b3 #0 [ 316.376280][ T3056] Hardware name: linux,dummy-virt (DT) [ 316.376718][ T3056] pstate: 10000005 (nzcV daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 316.377319][ T3056] pc : lockdep_assert_cpus_held+0xa4/0xc0 [ 316.377802][ T3056] lr : lockdep_assert_cpus_held+0xa0/0xc0 [ 316.378347][ T3056] sp : ffff8000123d79f0 [ 316.378853][ T3056] x29: ffff8000123d79f0 x28: ffff80000e0abc98 x27: 1ffff0000247af50 [ 316.379620][ T3056] x26: ffff70000247af9a x25: 0000000000000000 x24: ffff80000e0bc480 [ 316.380521][ T3056] x23: ffff80000e0aa740 x22: dfff800000000000 x21: ffff8000107c23e0 [ 316.381531][ T3056] x20: ffff8000123d7cb0 x19: ffff80000de8f000 x18: ffff00006a9eab88 [ 316.383118][ T3056] x17: ffff80005cbb7000 x16: ffff800010ab8000 x15: ffff00006a9eabc4 [ 316.383992][ T3056] x14: ffff00006a9eabbc x13: 1fffe0000138d15f x12: ffff700001c154dd [ 316.384886][ T3056] x11: 1ffff00001c154dc x10: ffff700001c154dc x9 : ffff80000f3d5f40 [ 316.385864][ T3056] x8 : ffff000009c68a58 x7 : 1fffe0000138d14b x6 : 00000000f3f3f3f3 [ 316.386912][ T3056] x5 : 00000000f1f1f1f1 x4 : ffff70000247af50 x3 : 1fffe0000138d001 [ 316.387961][ T3056] x2 : 0000000000000003 x1 : 00000000000000c0 x0 : 0000000000000000 [ 316.388842][ T3056] Call trace: [ 316.389423][ T3056] lockdep_assert_cpus_held+0xa4/0xc0 [ 316.390010][ T3056] cpuset_attach+0xa4/0x42c [ 316.390595][ T3056] cgroup_migrate_execute+0x7f0/0xcec [ 316.391127][ T3056] cgroup_migrate+0xe4/0x184 [ 316.391628][ T3056] cgroup_attach_task+0x2a4/0x74c [ 316.392194][ T3056] cgroup_attach_task_all+0xd8/0x140 [ 316.392709][ T3056] vhost_attach_cgroups_work+0x38/0x90 [ 316.393472][ T3056] vhost_worker+0x1a8/0x310 [ 316.394084][ T3056] kthread+0x23c/0x2a0 [ 316.394518][ T3056] ret_from_fork+0x10/0x20 [ 316.394934][ T3056] irq event stamp: 82 [ 316.395386][ T3056] hardirqs last enabled at (81): [] _raw_spin_unlock_irq+0x38/0x9c [ 316.396002][ T3056] hardirqs last disabled at (82): [] el1_dbg+0x24/0x7c [ 316.396664][ T3056] softirqs last enabled at (0): [] copy_process+0x132c/0x5310 [ 316.397587][ T3056] softirqs last disabled at (0): [<0000000000000000>] 0x0 [ 316.398431][ T3056] ---[ end trace 0000000000000000 ]--- 00:05:16 executing program 1: r0 = syz_open_dev$vcsn(&(0x7f0000000000), 0x1ff, 0x0) read$FUSE(r0, &(0x7f00000022c0)={0x2020, 0x0, 0x0, 0x0}, 0x2020) setuid(r1) syz_open_dev$sndctrl(&(0x7f0000000080), 0x0, 0x0) 00:05:16 executing program 0: r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) dup3(r1, r0, 0x0) sendmsg$NL80211_CMD_NEW_STATION(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)={0x20, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @val={0xc}}}}, 0x20}}, 0x0) 00:05:16 executing program 0: r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) dup3(r1, r0, 0x0) sendmsg$NL80211_CMD_NEW_STATION(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)={0x20, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @val={0xc}}}}, 0x20}}, 0x0) 00:05:17 executing program 1: renameat(0xffffffffffffffff, &(0x7f00000000c0)='\x00', 0xffffffffffffffff, 0x0) 00:05:18 executing program 1: renameat(0xffffffffffffffff, &(0x7f00000000c0)='\x00', 0xffffffffffffffff, 0x0) 00:05:18 executing program 0: r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) dup3(r1, r0, 0x0) sendmsg$NL80211_CMD_NEW_STATION(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)={0x20, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @val={0xc}}}}, 0x20}}, 0x0) 00:05:18 executing program 0: r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) dup3(r1, r0, 0x0) sendmsg$NL80211_CMD_NEW_STATION(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)={0x20, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @val={0xc}}}}, 0x20}}, 0x0) 00:05:18 executing program 1: renameat(0xffffffffffffffff, &(0x7f00000000c0)='\x00', 0xffffffffffffffff, 0x0) 00:05:19 executing program 1: renameat(0xffffffffffffffff, &(0x7f00000000c0)='\x00', 0xffffffffffffffff, 0x0) 00:05:19 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0) dup3(r0, r1, 0x0) sendmsg$DEVLINK_CMD_TRAP_POLICER_GET(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) 00:05:20 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0) dup3(r0, r1, 0x0) sendmsg$DEVLINK_CMD_TRAP_POLICER_GET(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) 00:05:20 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) dup3(r0, r1, 0x0) r2 = syz_open_dev$vcsn(&(0x7f0000000000), 0x1ff, 0x0) read$FUSE(r2, &(0x7f00000022c0)={0x2020, 0x0, 0x0, 0x0}, 0x2020) setuid(r3) sendmsg$IPVS_CMD_SET_CONFIG(r1, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x14}, 0x14}}, 0x0) 00:05:21 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0) dup3(r0, r1, 0x0) sendmsg$DEVLINK_CMD_TRAP_POLICER_GET(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) 00:05:21 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) dup3(r0, r1, 0x0) r2 = syz_open_dev$vcsn(&(0x7f0000000000), 0x1ff, 0x0) read$FUSE(r2, &(0x7f00000022c0)={0x2020, 0x0, 0x0, 0x0}, 0x2020) setuid(r3) sendmsg$IPVS_CMD_SET_CONFIG(r1, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x14}, 0x14}}, 0x0) 00:05:22 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0) dup3(r0, r1, 0x0) sendmsg$DEVLINK_CMD_TRAP_POLICER_GET(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)={0x14}, 0x14}}, 0x0) 00:05:22 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) dup3(r0, r1, 0x0) r2 = syz_open_dev$vcsn(&(0x7f0000000000), 0x1ff, 0x0) read$FUSE(r2, &(0x7f00000022c0)={0x2020, 0x0, 0x0, 0x0}, 0x2020) setuid(r3) sendmsg$IPVS_CMD_SET_CONFIG(r1, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x14}, 0x14}}, 0x0) 00:05:22 executing program 0: r0 = syz_mount_image$tmpfs(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[{@nr_inodes={'nr_inodes', 0x3d, [0x31]}}]}) mkdirat(r0, &(0x7f0000000040)='./file1\x00', 0x0) 00:05:23 executing program 0: r0 = syz_mount_image$tmpfs(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[{@nr_inodes={'nr_inodes', 0x3d, [0x31]}}]}) mkdirat(r0, &(0x7f0000000040)='./file1\x00', 0x0) 00:05:23 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) dup3(r0, r1, 0x0) r2 = syz_open_dev$vcsn(&(0x7f0000000000), 0x1ff, 0x0) read$FUSE(r2, &(0x7f00000022c0)={0x2020, 0x0, 0x0, 0x0}, 0x2020) setuid(r3) sendmsg$IPVS_CMD_SET_CONFIG(r1, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x14}, 0x14}}, 0x0) 00:05:24 executing program 0: r0 = syz_mount_image$tmpfs(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[{@nr_inodes={'nr_inodes', 0x3d, [0x31]}}]}) mkdirat(r0, &(0x7f0000000040)='./file1\x00', 0x0) 00:05:24 executing program 1: socketpair(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$TIPC_NL_SOCK_GET(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0) recvmmsg$unix(r0, &(0x7f0000003a00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000003900)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}}], 0x1, 0x0, 0x0) write$RDMA_USER_CM_CMD_DESTROY_ID(r2, 0x0, 0x0) 00:05:25 executing program 1: socketpair(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$TIPC_NL_SOCK_GET(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0) recvmmsg$unix(r0, &(0x7f0000003a00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000003900)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}}], 0x1, 0x0, 0x0) write$RDMA_USER_CM_CMD_DESTROY_ID(r2, 0x0, 0x0) 00:05:25 executing program 0: r0 = syz_mount_image$tmpfs(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[{@nr_inodes={'nr_inodes', 0x3d, [0x31]}}]}) mkdirat(r0, &(0x7f0000000040)='./file1\x00', 0x0) 00:05:26 executing program 1: socketpair(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$TIPC_NL_SOCK_GET(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0) recvmmsg$unix(r0, &(0x7f0000003a00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000003900)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}}], 0x1, 0x0, 0x0) write$RDMA_USER_CM_CMD_DESTROY_ID(r2, 0x0, 0x0) 00:05:26 executing program 0: r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) dup3(r1, r0, 0x0) sendmsg$TIPC_CMD_GET_BEARER_NAMES(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x1c}, 0x1c}}, 0x0) 00:05:27 executing program 1: socketpair(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$TIPC_NL_SOCK_GET(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0) recvmmsg$unix(r0, &(0x7f0000003a00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000003900)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}}], 0x1, 0x0, 0x0) write$RDMA_USER_CM_CMD_DESTROY_ID(r2, 0x0, 0x0) 00:05:27 executing program 0: r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) dup3(r1, r0, 0x0) sendmsg$TIPC_CMD_GET_BEARER_NAMES(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x1c}, 0x1c}}, 0x0) 00:05:28 executing program 0: r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) dup3(r1, r0, 0x0) sendmsg$TIPC_CMD_GET_BEARER_NAMES(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x1c}, 0x1c}}, 0x0) 00:05:28 executing program 1: r0 = socket$kcm(0x29, 0x2, 0x0) r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000600), 0x0, 0x0) dup3(r0, r1, 0x0) sendmsg$ETHTOOL_MSG_WOL_SET(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0) VM DIAGNOSIS: 17:40:52 Registers: info registers vcpu 0 PC=ffff8000081bceb0 X00=ffff80000c8d56c0 X01=ffff00000a3451c0 X02=0000000000000000 X03=0000000000000000 X04=1fffe00001468a39 X05=ffff00006a9cbc60 X06=0000000000000001 X07=00009ffff2ac6874 X08=ffff00006a9cbc63 X09=dfff800000000000 X10=ffff60000d53978c X11=1fffe0000d53978c X12=ffff60000d53978d X13=0000000000000000 X14=1ffff00002430dfa X15=0000000000000000 X16=0000000000000000 X17=0000000000000000 X18=fffffffffffccf30 X19=ffff00000a3451c0 X20=ffff80000c8d56c0 X21=ffff80000dea9d03 X22=ffff00000a3459c0 X23=ffff80000f3d04e0 X24=0000000000000000 X25=0000000000000b99 X26=ffff80000cbf92e0 X27=0000000000000001 X28=ffff800008030e90 X29=ffff800012187510 X30=ffff80000930cd08 SP=ffff8000121874f0 PSTATE=600003c5 -ZC- EL1h FPCR=00000000 FPSR=00000000 Q00=0000000000000000:0000000000000000 Q01=6f6f6c2f7665642f:00000074616d726f Q02=65725f7265766f63:000000756c6c2570 Q03=0000000000000000:ffffff0000000000 Q04=0000000000000000:ffffff0000000000 Q05=0000000000000000:4010040000000000 Q06=0000000000000000:4010040000000400 Q07=4010040140100401:4010040140100401 Q08=0000000000000000:0000000000000000 Q09=0000000000000000:0000000000000000 Q10=0000000000000000:0000000000000000 Q11=0000000000000000:0000000000000000 Q12=0000000000000000:0000000000000000 Q13=0000000000000000:0000000000000000 Q14=0000000000000000:0000000000000000 Q15=0000000000000000:0000000000000000 Q16=0000540400005400:0000540400005400 Q17=000000ff00ff00ff:000000ff00ff00ff Q18=0000000000000000:0000000000000000 Q19=0000000000000000:0000000000000000 Q20=0000000000000000:0000000000000000 Q21=0000000000000000:0000000000000000 Q22=0000000000000000:0000000000000000 Q23=0000000000000000:0000000000000000 Q24=0000000000000000:0000000000000000 Q25=0000000000000000:0000000000000000 Q26=0000000000000000:0000000000000000 Q27=0000000000000000:0000000000000000 Q28=0000000000000000:0000000000000000 Q29=0000000000000000:0000000000000000 Q30=0000000000000000:0000000000000000 Q31=0000000000000000:0000000000000000 info registers vcpu 1 PC=0000ffffb78eb304 X00=0000000000000001 X01=0000ffffeda300c0 X02=0000000000000001 X03=0000000000000002 X04=0000ffffb78e9000 X05=00000000fffffffa X06=00000000000f4240 X07=000000000000e980 X08=0000ffffb78e9010 X09=000000000000e980 X10=0000000000000017 X11=001c4fecc0000000 X12=000000046bb6ebc7 X13=000000007fffffff X14=000000000000000a X15=0000000000000038 X16=0000ffffb6939018 X17=0000000000000000 X18=0000000000000001 X19=0000000000000001 X20=0000ffffeda300c0 X21=0000ffffb6960000 X22=0000ffffeda300c0 X23=0000ffffb6960000 X24=0000000000048ece X25=0000ffffeda30080 X26=431bde82d7b634db X27=0000000000000002 X28=0000000040000001 X29=0000ffffeda2ff70 X30=0000ffffb6858368 SP=0000ffffeda2ff70 PSTATE=00000000 ---- EL0t FPCR=00000000 FPSR=00000000 Q00=0000000000000000:0000000000000000 Q01=6f6f6c2f7665642f:00000074616d726f Q02=65725f7265766f63:000000756c6c2570 Q03=0000000000000000:ffffff0000000000 Q04=0000000000000000:ffffff0000000000 Q05=0000000000000000:4010040000000000 Q06=0000000000000000:4010040000000400 Q07=4010040140100401:4010040140100401 Q08=0000000000000000:0000000000000000 Q09=0000000000000000:0000000000000000 Q10=0000000000000000:0000000000000000 Q11=0000000000000000:0000000000000000 Q12=0000000000000000:0000000000000000 Q13=0000000000000000:0000000000000000 Q14=0000000000000000:0000000000000000 Q15=0000000000000000:0000000000000000 Q16=0000540400005400:0000540400005400 Q17=000000ff00ff00ff:000000ff00ff00ff Q18=0000000000000000:0000000000000000 Q19=0000000000000000:0000000000000000 Q20=0000000000000000:0000000000000000 Q21=0000000000000000:0000000000000000 Q22=0000000000000000:0000000000000000 Q23=0000000000000000:0000000000000000 Q24=0000000000000000:0000000000000000 Q25=0000000000000000:0000000000000000 Q26=0000000000000000:0000000000000000 Q27=0000000000000000:0000000000000000 Q28=0000000000000000:0000000000000000 Q29=0000000000000000:0000000000000000 Q30=0000000000000000:0000000000000000 Q31=0000000000000000:0000000000000000