last executing test programs: 8.77368634s ago: executing program 3 (id=4): prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ff9000/0x4000)=nil) prctl$PR_SET_MM(0x23, 0x7, &(0x7f0000ffc000/0x4000)=nil) brk(0x200000ffc000) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb}, 0x28) 8.070111315s ago: executing program 1 (id=2): ioctl$IOMMU_IOAS_ALLOW_IOVAS(0xffffffffffffffff, 0x3b82, &(0x7f0000000140)={0x18, 0x0, 0x1, 0x0, &(0x7f0000000380)=[{0x8000000, 0x4000000000000e8}]}) r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0) r1 = eventfd(0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f}) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000800)=""/90}) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000340)=0x1) 7.785730419s ago: executing program 1 (id=6): r0 = socket$vsock_stream(0x28, 0x1, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4) connect$inet6(r1, &(0x7f0000000200)={0xa, 0x0, 0x2, @loopback}, 0x1c) setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f00000000c0), 0x4) setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, 0x0, 0x0) sendmsg$inet(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000009c0)=[{0x0}], 0x1}, 0x0) setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x2, &(0x7f0000000680)=@gcm_128={{0x303}, "000037d7009400", "c0b6c5b29ca2b838d41ac2fc7ddf972d", "e9be1eae", "bb10000000000001"}, 0x28) read(r1, &(0x7f0000000380)=""/41, 0x18) bind$vsock_stream(r0, 0x0, 0x0) listen(r0, 0x5) r2 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r2, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10) r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70) ppoll(&(0x7f0000000500)=[{r3}], 0x1, 0x0, 0x0, 0x0) pselect6(0x40, &(0x7f00000001c0)={0x0, 0x2, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f0000000240)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0) 7.697549852s ago: executing program 3 (id=7): ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000080)={0x18, 0x0, 0xfffffffe}) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x4, 0x0, &(0x7f0000000100)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41100, 0x43, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7fff}, 0x94) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x40001e0, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) pivot_root(0x0, 0x0) r3 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) connect$netrom(r3, &(0x7f0000000380)={{0x6, @null, 0xa}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}]}, 0x48) socket$nl_netfilter(0x10, 0x3, 0xc) r4 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) connect$netrom(r4, &(0x7f0000000300)={{0x6, @rose, 0xffffffff}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @default, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}]}, 0x48) 7.564552283s ago: executing program 2 (id=3): r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000280)=ANY=[@ANYBLOB="12010000f2303920422c021240850102030109022400010000100009040c0202c17f0c0009050202000202000009058202000200"], 0x0) syz_usb_control_io$uac1(r0, 0x0, 0x0) syz_usb_control_io$printer(r0, 0x0, &(0x7f0000000c80)={0x34, &(0x7f0000000480)={0x40, 0xb}, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$printer(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000500)={0x44, &(0x7f0000000180)={0x40, 0x12, 0x1, "b4"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$uac1(r0, 0x0, 0x0) 6.729011953s ago: executing program 1 (id=8): io_cancel(0x0, 0xfffffffffffffffe, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0x3, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @fallback=0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x18) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0) r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) syz_open_dev$sg(0x0, 0xf9ba, 0x14b082) r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0) r3 = dup(r2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r3, 0x2000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x16) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x17) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r4 = getpid() sched_setscheduler(r4, 0x2, 0x0) r5 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r5, 0x29, 0x33, &(0x7f0000000040)=0x7, 0x4) r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000340)={0x1, &(0x7f0000000000)=[{0x6, 0xf, 0x0, 0x7fff8000}]}) close_range(r6, 0xffffffffffffffff, 0x0) 6.451812176s ago: executing program 0 (id=1): socket$packet(0x11, 0x3, 0x300) r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4) setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000140)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x7ff, 0xf83, 0x3}, 0x1c) r1 = socket(0x10, 0x803, 0x0) sendmsg$nl_route(r1, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0) getsockname$packet(r1, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000240)=@newlink={0x38, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, r2, 0x69801}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @gre={{0x8}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GRE_REMOTE={0x8, 0x7, @dev}]}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x20040000}, 0x0) 5.817725554s ago: executing program 4 (id=5): io_cancel(0x0, 0xfffffffffffffffe, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0x3, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @fallback=0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x18) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0) r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) syz_open_dev$sg(0x0, 0xf9ba, 0x14b082) r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0) r3 = dup(r2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r3, 0x2000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x16) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x17) 4.842715615s ago: executing program 2 (id=9): ioctl$PAGEMAP_SCAN(0xffffffffffffffff, 0xc0606610, &(0x7f0000000140)={0x60, 0x0, &(0x7f00001cd000/0x1000)=nil, &(0x7f000040c000/0x2000)=nil, 0xc, 0x0, 0x0, 0xc2ff, 0xa22383e66e8ea5f2, 0x0, 0x24, 0x76}) syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000034276d20402002c68e01000000010902120001000000000904"], 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40804}, 0x4) openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x6c4840, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000002c0), 0x4) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000400)=0x1, 0x4) 1.857997266s ago: executing program 1 (id=10): r0 = socket$pppl2tp(0x18, 0x1, 0x1) r1 = socket$inet6_udp(0xa, 0x2, 0x0) connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x0, @dev}, 0x2}}, 0x2e) socket$inet6_mptcp(0xa, 0x1, 0x106) socket$netlink(0x10, 0x3, 0x10) r2 = fsopen(&(0x7f00000000c0)='cgroup2\x00', 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r3 = getpid() sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) fsconfig$FSCONFIG_SET_BINARY(r2, 0x6, 0x0, 0x0, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r6 = fsmount(r2, 0x0, 0x0) r7 = openat$cgroup_subtree(r6, &(0x7f0000000100), 0x2, 0x0) r8 = socket$igmp6(0xa, 0x3, 0x3a) setsockopt$MRT6_ADD_MFC(r8, 0x29, 0x22, 0x0, 0x0) openat2(0xffffffffffffffff, &(0x7f0000000040)='./cgroup/file0\x00', &(0x7f0000000000)={0x4400, 0x0, 0x10}, 0x18) write$cgroup_subtree(r7, &(0x7f0000000140)=ANY=[@ANYBLOB='+rdma -cpu'], 0xe) 717.330042ms ago: executing program 0 (id=11): syz_usb_connect(0x0, 0x34, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000092e1300833280102d52a0000000109022200090000000009040000000e01000008240201"], 0x0) 607.272303ms ago: executing program 1 (id=12): syz_usb_connect(0x5, 0x27, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000b75c7f404705010264110102031109021200"], 0x0) r0 = syz_open_dev$I2C(&(0x7f0000000000), 0x1, 0x402) ioctl$I2C_RDWR(r0, 0x707, &(0x7f0000000780)={&(0x7f0000000700)=[{0x0, 0x800, 0x6, &(0x7f0000000080)="182954d90434"}, {0x5, 0x1, 0x0, 0x0}], 0x2}) 238.456334ms ago: executing program 3 (id=13): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xb, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000808500000004000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='kmem_cache_free\x00', r0}, 0x10) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYRES8, @ANYRES8=r1, @ANYRESOCT=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r2}, 0x10) rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8) r3 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) waitid(0x0, 0x0, 0x0, 0x4, 0x0) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) r4 = syz_pidfd_open(r3, 0x0) pidfd_send_signal(r4, 0x2, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) recvmmsg(0xffffffffffffffff, &(0x7f0000000b40)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000001d40)=""/4104, 0x2000}], 0x1}}], 0x1, 0x0, 0x0) r5 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x141301) sendmsg$IPCTNL_MSG_EXP_NEW(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000c80)=ANY=[@ANYBLOB="e0000000000201030000000000000000070000029c0003801400018008000100ac1414aa08000200ac1414aa0c000280050001002f000000"], 0xe0}, 0x1, 0x0, 0x0, 0x40010}, 0x4008000) r6 = socket(0x10, 0x803, 0x0) sendto(r6, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r6, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{0x0}, {&(0x7f0000000280)=""/85, 0x55}, {&(0x7f0000000fc0)=""/4096, 0x1000}, {&(0x7f0000000400)=""/112, 0x70}, {0x0}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/141, 0x8d}, {&(0x7f00000001c0)=""/17, 0x11}], 0x8, &(0x7f0000000600)=""/191, 0xbf}, 0x5}], 0x1, 0x2000, &(0x7f0000003700)={0x77359400}) ioctl$USBDEVFS_CONTROL(r5, 0xc0105500, &(0x7f00000000c0)={0x80, 0xa, 0x303, 0x0, 0x0, 0x6e9, 0x0}) 0s ago: executing program 4 (id=14): lsetxattr$security_ima(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0, 0x2) prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ff9000/0x4000)=nil) prctl$PR_SET_MM(0x23, 0x7, &(0x7f0000ffc000/0x4000)=nil) brk(0x200000ffc000) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb}, 0x28) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.160' (ED25519) to the list of known hosts. [ 81.021841][ T5790] cgroup: Unknown subsys name 'net' [ 81.262405][ T5790] cgroup: Unknown subsys name 'cpuset' [ 81.328652][ T5790] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 83.154427][ T5790] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 86.163850][ T5817] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 86.165491][ T5817] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 86.173321][ T5817] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 86.174479][ T5817] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 86.176094][ T5817] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 86.177105][ T5817] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 86.195958][ T5820] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 86.204232][ T5819] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 86.213458][ T5818] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 86.216221][ T5818] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 86.269700][ T5812] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 86.277534][ T5818] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 86.278015][ T5812] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 86.279443][ T5818] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 86.280031][ T5818] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 86.280957][ T5812] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 86.281064][ T5818] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 86.281223][ T5818] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 86.282168][ T5812] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 86.282996][ T5818] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 86.433290][ T5812] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 86.435672][ T5812] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 86.447500][ T5812] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 86.460882][ T5812] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 86.461958][ T5812] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 86.899996][ T31] cfg80211: failed to load regulatory.db [ 87.131954][ T5801] chnl_net:caif_netlink_parms(): no params data found [ 87.429480][ T5803] chnl_net:caif_netlink_parms(): no params data found [ 87.486075][ T5802] chnl_net:caif_netlink_parms(): no params data found [ 87.501917][ T5806] chnl_net:caif_netlink_parms(): no params data found [ 88.028631][ T5801] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.029699][ T5801] bridge0: port 1(bridge_slave_0) entered disabled state [ 88.030092][ T5801] bridge_slave_0: entered allmulticast mode [ 88.031785][ T5801] bridge_slave_0: entered promiscuous mode [ 88.034896][ T5813] chnl_net:caif_netlink_parms(): no params data found [ 88.084131][ T5801] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.084220][ T5801] bridge0: port 2(bridge_slave_1) entered disabled state [ 88.084344][ T5801] bridge_slave_1: entered allmulticast mode [ 88.085870][ T5801] bridge_slave_1: entered promiscuous mode [ 88.249584][ T5121] Bluetooth: hci0: command tx timeout [ 88.327372][ T5121] Bluetooth: hci1: command tx timeout [ 88.408197][ T5812] Bluetooth: hci3: command tx timeout [ 88.408449][ T5121] Bluetooth: hci2: command tx timeout [ 88.487729][ T5121] Bluetooth: hci4: command tx timeout [ 88.731666][ T5801] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 88.739709][ T5803] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.739841][ T5803] bridge0: port 1(bridge_slave_0) entered disabled state [ 88.740013][ T5803] bridge_slave_0: entered allmulticast mode [ 88.742546][ T5803] bridge_slave_0: entered promiscuous mode [ 88.900516][ T5801] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 88.906648][ T5803] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.906721][ T5803] bridge0: port 2(bridge_slave_1) entered disabled state [ 88.906840][ T5803] bridge_slave_1: entered allmulticast mode [ 88.910479][ T5803] bridge_slave_1: entered promiscuous mode [ 88.911839][ T5802] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.911958][ T5802] bridge0: port 1(bridge_slave_0) entered disabled state [ 88.912130][ T5802] bridge_slave_0: entered allmulticast mode [ 88.915756][ T5802] bridge_slave_0: entered promiscuous mode [ 88.922364][ T5806] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.922506][ T5806] bridge0: port 1(bridge_slave_0) entered disabled state [ 88.922680][ T5806] bridge_slave_0: entered allmulticast mode [ 88.925473][ T5806] bridge_slave_0: entered promiscuous mode [ 89.078542][ T5802] bridge0: port 2(bridge_slave_1) entered blocking state [ 89.078698][ T5802] bridge0: port 2(bridge_slave_1) entered disabled state [ 89.078854][ T5802] bridge_slave_1: entered allmulticast mode [ 89.080904][ T5802] bridge_slave_1: entered promiscuous mode [ 89.082211][ T5806] bridge0: port 2(bridge_slave_1) entered blocking state [ 89.082339][ T5806] bridge0: port 2(bridge_slave_1) entered disabled state [ 89.082479][ T5806] bridge_slave_1: entered allmulticast mode [ 89.083975][ T5806] bridge_slave_1: entered promiscuous mode [ 89.460265][ T5801] team0: Port device team_slave_0 added [ 89.546191][ T5803] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 89.680557][ T5801] team0: Port device team_slave_1 added [ 89.681118][ T5813] bridge0: port 1(bridge_slave_0) entered blocking state [ 89.681205][ T5813] bridge0: port 1(bridge_slave_0) entered disabled state [ 89.681318][ T5813] bridge_slave_0: entered allmulticast mode [ 89.682764][ T5813] bridge_slave_0: entered promiscuous mode [ 89.686823][ T5803] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 89.691319][ T5802] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 89.694955][ T5806] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 89.768458][ T5813] bridge0: port 2(bridge_slave_1) entered blocking state [ 89.768546][ T5813] bridge0: port 2(bridge_slave_1) entered disabled state [ 89.768664][ T5813] bridge_slave_1: entered allmulticast mode [ 89.770160][ T5813] bridge_slave_1: entered promiscuous mode [ 89.850321][ T5802] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 89.852475][ T5806] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 90.250955][ T5801] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 90.250967][ T5801] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 90.250980][ T5801] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 90.328825][ T5121] Bluetooth: hci0: command tx timeout [ 90.331142][ T5803] team0: Port device team_slave_0 added [ 90.407557][ T5121] Bluetooth: hci1: command tx timeout [ 90.458814][ T5801] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 90.458830][ T5801] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 90.458853][ T5801] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 90.462261][ T5813] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 90.465021][ T5803] team0: Port device team_slave_1 added [ 90.468924][ T5802] team0: Port device team_slave_0 added [ 90.487319][ T5121] Bluetooth: hci2: command tx timeout [ 90.487352][ T5121] Bluetooth: hci3: command tx timeout [ 90.567412][ T5812] Bluetooth: hci4: command tx timeout [ 90.681183][ T5806] team0: Port device team_slave_0 added [ 90.694881][ T5813] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 90.769950][ T5802] team0: Port device team_slave_1 added [ 90.771541][ T5806] team0: Port device team_slave_1 added [ 91.119168][ T5803] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 91.119184][ T5803] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 91.119206][ T5803] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 91.299494][ T5813] team0: Port device team_slave_0 added [ 91.300630][ T5803] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 91.300643][ T5803] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 91.300666][ T5803] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 91.301704][ T5802] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 91.301713][ T5802] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 91.301725][ T5802] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 91.303131][ T5806] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 91.303143][ T5806] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 91.303163][ T5806] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 91.394235][ T5813] team0: Port device team_slave_1 added [ 91.407791][ T5802] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 91.407808][ T5802] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 91.407847][ T5802] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 91.409561][ T5806] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 91.409573][ T5806] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 91.409653][ T5806] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 91.422073][ T5801] hsr_slave_0: entered promiscuous mode [ 91.423785][ T5801] hsr_slave_1: entered promiscuous mode [ 91.759776][ T5813] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 91.759787][ T5813] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 91.759800][ T5813] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 91.909911][ T5813] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 91.909927][ T5813] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 91.909940][ T5813] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 92.063134][ T5803] hsr_slave_0: entered promiscuous mode [ 92.063975][ T5803] hsr_slave_1: entered promiscuous mode [ 92.064668][ T5803] debugfs: 'hsr0' already exists in 'hsr' [ 92.064752][ T5803] Cannot create hsr debugfs directory [ 92.288422][ T5802] hsr_slave_0: entered promiscuous mode [ 92.289293][ T5802] hsr_slave_1: entered promiscuous mode [ 92.289880][ T5802] debugfs: 'hsr0' already exists in 'hsr' [ 92.289903][ T5802] Cannot create hsr debugfs directory [ 92.306704][ T5806] hsr_slave_0: entered promiscuous mode [ 92.309992][ T5806] hsr_slave_1: entered promiscuous mode [ 92.311020][ T5806] debugfs: 'hsr0' already exists in 'hsr' [ 92.311043][ T5806] Cannot create hsr debugfs directory [ 92.407535][ T5812] Bluetooth: hci0: command tx timeout [ 92.487470][ T5812] Bluetooth: hci1: command tx timeout [ 92.568898][ T5812] Bluetooth: hci2: command tx timeout [ 92.568930][ T5812] Bluetooth: hci3: command tx timeout [ 92.647476][ T5121] Bluetooth: hci4: command tx timeout [ 92.743285][ T5813] hsr_slave_0: entered promiscuous mode [ 92.744115][ T5813] hsr_slave_1: entered promiscuous mode [ 92.744643][ T5813] debugfs: 'hsr0' already exists in 'hsr' [ 92.744661][ T5813] Cannot create hsr debugfs directory [ 93.947929][ T5801] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 93.984990][ T5801] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 94.022681][ T5801] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 94.074377][ T5801] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 94.183808][ T5802] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 94.213935][ T5802] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 94.233833][ T5802] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 94.290736][ T5802] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 94.402469][ T5803] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 94.440160][ T5803] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 94.481586][ T5803] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 94.487360][ T5121] Bluetooth: hci0: command tx timeout [ 94.530591][ T5803] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 94.578532][ T5121] Bluetooth: hci1: command tx timeout [ 94.652233][ T5121] Bluetooth: hci3: command tx timeout [ 94.658574][ T5121] Bluetooth: hci2: command tx timeout [ 94.676283][ T5806] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 94.711920][ T5806] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 94.727505][ T5121] Bluetooth: hci4: command tx timeout [ 94.755022][ T5806] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 94.809122][ T5806] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 94.941864][ T5813] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 94.985265][ T5801] 8021q: adding VLAN 0 to HW filter on device bond0 [ 94.986383][ T5813] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 95.025448][ T5813] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 95.069716][ T5813] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 95.165187][ T5801] 8021q: adding VLAN 0 to HW filter on device team0 [ 95.186193][ T5802] 8021q: adding VLAN 0 to HW filter on device bond0 [ 95.212097][ T59] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.212647][ T59] bridge0: port 1(bridge_slave_0) entered forwarding state [ 95.254527][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.254888][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 95.298860][ T5802] 8021q: adding VLAN 0 to HW filter on device team0 [ 95.326557][ T5803] 8021q: adding VLAN 0 to HW filter on device bond0 [ 95.345057][ T3767] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.345182][ T3767] bridge0: port 1(bridge_slave_0) entered forwarding state [ 95.390598][ T3767] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.390711][ T3767] bridge0: port 2(bridge_slave_1) entered forwarding state [ 95.441632][ T5803] 8021q: adding VLAN 0 to HW filter on device team0 [ 95.473322][ T5806] 8021q: adding VLAN 0 to HW filter on device bond0 [ 95.481868][ T3767] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.482138][ T3767] bridge0: port 1(bridge_slave_0) entered forwarding state [ 95.520952][ T3767] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.521120][ T3767] bridge0: port 2(bridge_slave_1) entered forwarding state [ 95.612768][ T5806] 8021q: adding VLAN 0 to HW filter on device team0 [ 95.660414][ T5813] 8021q: adding VLAN 0 to HW filter on device bond0 [ 95.675420][ T3767] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.675550][ T3767] bridge0: port 1(bridge_slave_0) entered forwarding state [ 95.730763][ T3767] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.730903][ T3767] bridge0: port 2(bridge_slave_1) entered forwarding state [ 95.835637][ T5813] 8021q: adding VLAN 0 to HW filter on device team0 [ 95.877763][ T1363] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.877908][ T1363] bridge0: port 1(bridge_slave_0) entered forwarding state [ 95.929300][ T3767] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.929511][ T3767] bridge0: port 2(bridge_slave_1) entered forwarding state [ 96.003583][ T5801] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 96.271460][ T5802] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 96.310003][ T5801] veth0_vlan: entered promiscuous mode [ 96.366529][ T5801] veth1_vlan: entered promiscuous mode [ 96.442657][ T5803] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 96.525253][ T5801] veth0_macvtap: entered promiscuous mode [ 96.530886][ T5802] veth0_vlan: entered promiscuous mode [ 96.545397][ T5801] veth1_macvtap: entered promiscuous mode [ 96.608259][ T5802] veth1_vlan: entered promiscuous mode [ 96.654516][ T5801] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 96.682134][ T5801] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 96.685069][ T5806] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 96.706306][ T5803] veth0_vlan: entered promiscuous mode [ 96.741432][ T59] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.749013][ T59] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.756728][ T5813] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 96.756930][ T59] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.769683][ T59] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.776960][ T5803] veth1_vlan: entered promiscuous mode [ 96.849962][ T5802] veth0_macvtap: entered promiscuous mode [ 96.911673][ T5802] veth1_macvtap: entered promiscuous mode [ 97.099536][ T5802] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 97.134724][ T5803] veth0_macvtap: entered promiscuous mode [ 97.156962][ T5802] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 97.175375][ T90] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 97.175399][ T90] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 97.195415][ T5803] veth1_macvtap: entered promiscuous mode [ 97.223342][ T980] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.242359][ T980] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.264714][ T5813] veth0_vlan: entered promiscuous mode [ 97.265631][ T980] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.278600][ T980] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.311342][ T1363] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 97.311361][ T1363] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 97.376273][ T5813] veth1_vlan: entered promiscuous mode [ 97.406304][ T5803] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 97.472930][ T5803] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 97.558961][ T5806] veth0_vlan: entered promiscuous mode [ 97.587986][ T1363] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.594662][ T1363] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.623230][ T1363] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.633768][ T1363] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.702422][ T5806] veth1_vlan: entered promiscuous mode [ 97.933276][ T90] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 97.933298][ T90] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 98.133296][ T5813] veth0_macvtap: entered promiscuous mode [ 98.151448][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 98.151468][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 98.190175][ T5813] veth1_macvtap: entered promiscuous mode [ 98.234154][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 98.234172][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 98.261537][ T5806] veth0_macvtap: entered promiscuous mode [ 98.304788][ T5806] veth1_macvtap: entered promiscuous mode [ 98.349471][ T5813] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 98.354314][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 98.354334][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 98.435743][ T5813] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 98.477675][ T90] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.479239][ T90] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.483126][ T5806] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 98.483668][ T90] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.494655][ T90] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.525735][ T5806] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 98.725905][ T3767] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.726476][ T3767] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.726866][ T3767] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.729109][ T3767] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.243115][ T90] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 99.243138][ T90] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 99.290236][ T31] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 99.334195][ T3767] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 99.334218][ T3767] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 99.405813][ T3767] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 99.405833][ T3767] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 99.470030][ T31] usb 3-1: Using ep0 maxpacket: 32 [ 99.585050][ T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 99.585069][ T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 99.596442][ T31] usb 3-1: config 0 has an invalid interface number: 12 but max is 0 [ 99.596468][ T31] usb 3-1: config 0 has no interface number 0 [ 99.596519][ T31] usb 3-1: config 0 interface 12 has no altsetting 0 [ 99.605797][ T31] usb 3-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40 [ 99.605823][ T31] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 99.605841][ T31] usb 3-1: Product: syz [ 99.605853][ T31] usb 3-1: Manufacturer: syz [ 99.605865][ T31] usb 3-1: SerialNumber: syz [ 99.650511][ T31] usb 3-1: config 0 descriptor?? [ 100.893482][ T31] f81534 3-1:0.12: f81534_set_register: reg: 1002 data: 0 failed: -71 [ 100.893538][ T31] f81534 3-1:0.12: f81534_find_config_idx: read failed: -71 [ 100.893566][ T31] f81534 3-1:0.12: f81534_calc_num_ports: find idx failed: -71 [ 100.893661][ T31] f81534 3-1:0.12: probe with driver f81534 failed with error -71 [ 101.072118][ T31] usb 3-1: USB disconnect, device number 2 [ 102.307198][ T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!! [ 102.317564][ T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!! [ 102.517189][ T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!! [ 102.527242][ T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!! [ 102.637189][ T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!! [ 102.707189][ T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!! [ 102.767185][ T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!! [ 102.777222][ T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!! [ 102.787214][ T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!! [ 102.897193][ T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!! [ 105.837292][ T5950] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 105.987359][ T5950] usb 3-1: Using ep0 maxpacket: 32 [ 105.991510][ T5950] usb 3-1: New USB device found, idVendor=2040, idProduct=c602, bcdDevice= 1.8e [ 105.991536][ T5950] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 106.155875][ T5950] usb 3-1: config 0 descriptor?? [ 106.237286][ T5872] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 106.237423][ T5941] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 106.278426][ T5950] usb 3-1: dvb_usb_v2: found a 'HCW 126xxx' in warm state [ 106.303350][ T5950] usb 3-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 106.303997][ T5950] dvbdev: DVB: registering new adapter (HCW 126xxx) [ 106.304048][ T5950] usb 3-1: media controller created [ 106.410664][ T5941] usb 1-1: Using ep0 maxpacket: 8 [ 106.416319][ T5941] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 106.416342][ T5941] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 106.416393][ T5941] usb 1-1: New USB device found, idVendor=2833, idProduct=0201, bcdDevice=2a.d5 [ 106.416461][ T5941] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 106.441723][ T5872] usb 2-1: too many configurations: 17, using maximum allowed: 8 [ 106.458055][ T5872] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 106.458079][ T5872] usb 2-1: config 0 has no interfaces? [ 106.462619][ T5872] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 106.462642][ T5872] usb 2-1: config 0 has no interfaces? [ 106.506671][ T5872] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 106.506696][ T5872] usb 2-1: config 0 has no interfaces? [ 106.515092][ T5872] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 106.515115][ T5872] usb 2-1: config 0 has no interfaces? [ 106.516819][ T5941] usb 1-1: config 0 descriptor?? [ 106.535335][ T5872] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 106.535358][ T5872] usb 2-1: config 0 has no interfaces? [ 106.559650][ T5872] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 106.559674][ T5872] usb 2-1: config 0 has no interfaces? [ 106.569024][ T5872] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 106.569049][ T5872] usb 2-1: config 0 has no interfaces? [ 106.584967][ T5872] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 106.584991][ T5872] usb 2-1: config 0 has no interfaces? [ 106.621775][ T5872] usb 2-1: New USB device found, idVendor=0547, idProduct=0201, bcdDevice=11.64 [ 106.621803][ T5872] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 106.621821][ T5872] usb 2-1: Product: syz [ 106.621833][ T5872] usb 2-1: Manufacturer: syz [ 106.621845][ T5872] usb 2-1: SerialNumber: syz [ 106.633013][ T5941] uvcvideo 1-1:0.0: Found UVC 0.00 device (2833:0201) [ 106.633050][ T5941] uvcvideo 1-1:0.0: No valid video chain found. [ 106.683911][ T5872] usb 2-1: config 0 descriptor?? [ 107.030366][ T5964] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000018: 0000 [#1] SMP KASAN PTI [ 107.030388][ T5964] KASAN: null-ptr-deref in range [0x00000000000000c0-0x00000000000000c7] [ 107.030413][ T5964] CPU: 0 UID: 0 PID: 5964 Comm: syz.1.12 Not tainted syzkaller #0 PREEMPT_{RT,(full)} [ 107.030433][ T5964] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 107.030447][ T5964] RIP: 0010:kasan_byte_accessible+0x12/0x30 [ 107.030475][ T5964] Code: 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 40 d6 48 c1 ef 03 48 b8 00 00 00 00 00 fc ff df <0f> b6 04 07 3c 08 0f 92 c0 e9 40 e0 a9 08 cc 66 66 66 66 66 66 2e [ 107.030488][ T5964] RSP: 0018:ffffc9000520f3d8 EFLAGS: 00010206 [ 107.030504][ T5964] RAX: dffffc0000000000 RBX: ffffffff8ac903fa RCX: c65f71f3f6cd5700 [ 107.030518][ T5964] RDX: 0000000000000000 RSI: ffffffff8ac903fa RDI: 0000000000000018 [ 107.030529][ T5964] RBP: ffffffff87342986 R08: 0000000000000001 R09: 0000000000000000 [ 107.030560][ T5964] R10: dffffc0000000000 R11: ffffed100648772a R12: 0000000000000000 [ 107.030572][ T5964] R13: 00000000000000c0 R14: 00000000000000c0 R15: 0000000000000001 [ 107.030583][ T5964] FS: 00007fed4b60e6c0(0000) GS:ffff888126bc8000(0000) knlGS:0000000000000000 [ 107.030598][ T5964] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 107.030618][ T5964] CR2: 000000110c275585 CR3: 0000000026a5c000 CR4: 00000000003526f0 [ 107.030633][ T5964] Call Trace: [ 107.030640][ T5964] [ 107.030647][ T5964] __kasan_check_byte+0x12/0x40 [ 107.030665][ T5964] lock_acquire+0x8d/0x360 [ 107.030684][ T5964] ? _raw_spin_unlock_irqrestore+0xad/0x110 [ 107.030708][ T5964] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 107.030731][ T5964] ? try_to_take_rt_mutex+0x7fd/0xac0 [ 107.030751][ T5964] ? dvb_usbv2_generic_write+0x26/0x60 [ 107.030773][ T5964] mutex_lock_nested+0x5a/0x1d0 [ 107.030792][ T5964] ? dvb_usbv2_generic_write+0x26/0x60 [ 107.030815][ T5964] dvb_usbv2_generic_write+0x26/0x60 [ 107.030838][ T5964] mxl111sf_ctrl_msg+0x16a/0x2e0 [ 107.030859][ T5964] mxl111sf_write_reg+0xa0/0x180 [ 107.030876][ T5964] ? __pfx_mxl111sf_write_reg+0x10/0x10 [ 107.030894][ T5964] ? mutex_lock_interruptible_nested+0x154/0x1d0 [ 107.030913][ T5964] ? mxl111sf_i2c_xfer+0x174/0x4f00 [ 107.030934][ T5964] mxl111sf_i2c_xfer+0x461/0x4f00 [ 107.030955][ T5964] ? rcu_is_watching+0x15/0xb0 [ 107.030972][ T5964] ? __kasan_check_byte+0x12/0x40 [ 107.030989][ T5964] ? is_bpf_text_address+0x26/0x2b0 [ 107.031006][ T5964] ? rcu_is_watching+0x15/0xb0 [ 107.031026][ T5964] ? rcu_is_watching+0x15/0xb0 [ 107.031050][ T5964] ? __pfx_mxl111sf_i2c_xfer+0x10/0x10 [ 107.031071][ T5964] ? kernel_text_address+0xa5/0xe0 [ 107.031092][ T5964] ? __kernel_text_address+0xd/0x40 [ 107.031111][ T5964] ? unwind_get_return_address+0x4d/0x90 [ 107.031128][ T5964] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 107.031149][ T5964] ? arch_stack_walk+0xfc/0x150 [ 107.031170][ T5964] ? stack_trace_save+0x9c/0xe0 [ 107.031190][ T5964] ? __pfx_stack_trace_save+0x10/0x10 [ 107.031212][ T5964] ? check_path+0x21/0x40 [ 107.031229][ T5964] ? check_noncircular+0xe0/0x160 [ 107.031250][ T5964] ? lockdep_unlock+0x89/0x120 [ 107.031264][ T5964] ? validate_chain+0x897/0x2140 [ 107.031291][ T5964] ? __lock_acquire+0xab9/0xd20 [ 107.031309][ T5964] ? do_raw_spin_lock+0x121/0x290 [ 107.031333][ T5964] __i2c_transfer+0x874/0x2170 [ 107.031353][ T5964] ? lockdep_hardirqs_on+0x9c/0x150 [ 107.031380][ T5964] ? __pfx___i2c_transfer+0x10/0x10 [ 107.031400][ T5964] ? rt_mutex_lock_nested+0x15e/0x1e0 [ 107.031417][ T5964] ? i2c_transfer+0x120/0x3a0 [ 107.031436][ T5964] i2c_transfer+0x25b/0x3a0 [ 107.031456][ T5964] ? __pfx_i2c_transfer+0x10/0x10 [ 107.031476][ T5964] ? _copy_from_user+0x94/0xb0 [ 107.031494][ T5964] i2cdev_ioctl_rdwr+0x460/0x740 [ 107.031517][ T5964] i2cdev_ioctl+0x64e/0x800 [ 107.031536][ T5964] ? __pfx_i2cdev_ioctl+0x10/0x10 [ 107.031555][ T5964] ? __fget_files+0x3a6/0x420 [ 107.031571][ T5964] ? __fget_files+0x2a/0x420 [ 107.031588][ T5964] ? bpf_lsm_file_ioctl+0x9/0x20 [ 107.031607][ T5964] ? __pfx_i2cdev_ioctl+0x10/0x10 [ 107.031634][ T5964] __se_sys_ioctl+0xff/0x170 [ 107.031655][ T5964] do_syscall_64+0xfa/0xfa0 [ 107.031668][ T5964] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 107.031682][ T5964] ? asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 107.031699][ T5964] ? clear_bhb_loop+0x60/0xb0 [ 107.031714][ T5964] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 107.031728][ T5964] RIP: 0033:0x7fed4d3aefc9 [ 107.031752][ T5964] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 107.031766][ T5964] RSP: 002b:00007fed4b60e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 107.031783][ T5964] RAX: ffffffffffffffda RBX: 00007fed4d605fa0 RCX: 00007fed4d3aefc9 [ 107.031794][ T5964] RDX: 0000200000000780 RSI: 0000000000000707 RDI: 0000000000000004 [ 107.031804][ T5964] RBP: 00007fed4d431f91 R08: 0000000000000000 R09: 0000000000000000 [ 107.031815][ T5964] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 107.031825][ T5964] R13: 00007fed4d606038 R14: 00007fed4d605fa0 R15: 00007fff3cbae128 [ 107.031845][ T5964] [ 107.031852][ T5964] Modules linked in: [ 107.031871][ T5964] ---[ end trace 0000000000000000 ]--- [ 107.031883][ T5964] RIP: 0010:kasan_byte_accessible+0x12/0x30 [ 107.031904][ T5964] Code: 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 40 d6 48 c1 ef 03 48 b8 00 00 00 00 00 fc ff df <0f> b6 04 07 3c 08 0f 92 c0 e9 40 e0 a9 08 cc 66 66 66 66 66 66 2e [ 107.031918][ T5964] RSP: 0018:ffffc9000520f3d8 EFLAGS: 00010206 [ 107.031933][ T5964] RAX: dffffc0000000000 RBX: ffffffff8ac903fa RCX: c65f71f3f6cd5700 [ 107.031947][ T5964] RDX: 0000000000000000 RSI: ffffffff8ac903fa RDI: 0000000000000018 [ 107.031959][ T5964] RBP: ffffffff87342986 R08: 0000000000000001 R09: 0000000000000000 [ 107.031971][ T5964] R10: dffffc0000000000 R11: ffffed100648772a R12: 0000000000000000 [ 107.031983][ T5964] R13: 00000000000000c0 R14: 00000000000000c0 R15: 0000000000000001 [ 107.031995][ T5964] FS: 00007fed4b60e6c0(0000) GS:ffff888126bc8000(0000) knlGS:0000000000000000 [ 107.032011][ T5964] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 107.032024][ T5964] CR2: 000000110c275585 CR3: 0000000026a5c000 CR4: 00000000003526f0 [ 107.032042][ T5964] Kernel panic - not syncing: Fatal exception [ 107.032291][ T5964] Kernel Offset: disabled