last executing test programs: 364.682845ms ago: executing program 3 (id=4): openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x1) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x10400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff}}, 0x50) syz_fuse_handle_req(r0, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0) ioctl$FS_IOC_FSGETXATTR(r2, 0x801c581f, 0x0) close(r0) 247.824045ms ago: executing program 1 (id=2): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10) r1 = fcntl$dupfd(r0, 0x406, r0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x1, &(0x7f0000000280)=[{0x6, 0xfd, 0x0, 0xf1}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200047fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) mount$fuse(0x0, 0x0, 0x0, 0x80, &(0x7f00000002c0)={{}, 0x2c, {'rootmode', 0x3d, 0x4000}}) sendmmsg$unix(r1, &(0x7f0000000d80)=[{{0x0, 0x0, &(0x7f0000000780)=[{&(0x7f00000001c0)="ff324f81b4dc93407de49322f1c0e252279ea3220d3880fc3d18b84b94db3485979bea58271b52e68c5e4195a126ee948fa46820803787eb62aa87309d79135aaec686", 0x43}, {&(0x7f0000000040)="52171919d8957675df0f13c824521544e4706abc3b70b9e0da5ba90fba30bee2a37a05195a629c22217ee65e81ac4efadf887f81743f057ae10b327336ffa1", 0x3f}, {&(0x7f0000000380)="c0d92d5c29cf47476ffed8ced0cff9181c44c062cd41a7be401e0640276b54fce5e0c03fd3ca87d884429eb346bbee8dc01528eb2c72f8e8a4dad391cfaf99a53a97443de4967611966cd04398c1b00c94bfe2415d8698f5be0d9de79c3f3d84fc3e74e14733368d1451ad5bef8eb4b6f04fa2e9f91cef773056032878819d302221130d05aeb76531ed245b7861eaceee0d6e77150838bce94c7971", 0x9c}, {&(0x7f0000000500)="e656da1af6e70df513ff6ae539312940df350400da21bcf25a13a8be9b1e8715b77fd845d2649d98128601971d87d6072665b1d03807f896120cb91608cac99f41ace142d4e4c1b3da9888211c4085ffb83a58f91808034453e798cd313d8374a07f2daab4ba251517ca8621a11ccb5d5c33ecac1fcc8a7fc5bca7910d809bee73df342ecd2ad2b845f68c7eb478e695e5e17a47", 0x94}, {&(0x7f00000005c0)="584ec62c5830b8a457f2237bd49e07597011076e8911890319e805eecf974fcbdef86359739714bf529d57d94c92c94fa36e9360711f008363e141579b6f4c1db97abf5832991c5242fc8611aad2ac64f6af0bfeb5c309b2fb37620fbceb238a3feb0f0733", 0x65}], 0x5, 0x0, 0x0, 0x54}}], 0x1, 0x20000000) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000002c0)='bbr', 0x37) 109.626795ms ago: executing program 3 (id=5): sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000004440)={0x0, 0x0, &(0x7f0000000440)={0x0}, 0x1, 0x0, 0x0, 0xc051}, 0x4000) r0 = socket$can_j1939(0x1d, 0x2, 0x7) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vcan0\x00', 0x0}) bind$can_j1939(r0, &(0x7f00000000c0)={0x1d, r1}, 0x18) connect$can_j1939(r0, &(0x7f0000000140)={0x1d, r1}, 0x18) sendmmsg(r0, &(0x7f0000003e40)=[{{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000001c0)="b875a1431a05b9319c", 0x9}], 0x1}}], 0xa19afd5e7047374e, 0x4) recvmmsg(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f0000000040), 0x10, &(0x7f0000000480)=""/230}}], 0x2, 0x0, 0x0) 109.113258ms ago: executing program 0 (id=1): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) r2 = socket$unix(0x1, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xfff3}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x10, 0x9, 0x7, 0xfffffff9, 0x9, 0xffffff56, 0x8, 0x2, 0x6}}}}]}, 0x58}, 0x1, 0x0, 0x0, 0x40001}, 0x0) r3 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) r5 = openat$tun(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) close(r5) socket$unix(0x1, 0x2, 0x0) ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast}) r6 = socket$kcm(0x11, 0x3, 0x0) r7 = socket(0x400000000010, 0x3, 0x0) r8 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r7, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001300)=@newtfilter={0xe8c, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r9, {0x5, 0x4}, {}, {0x8}}, [@filter_kind_options=@f_matchall={{0xd}, {0xe58, 0x2, [@TCA_MATCHALL_ACT={0xe54, 0x2, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{0x2, 0x2, 0x5, 0x10000, 0x40}, 0x8, 0x5}, [{0x7, 0x8, 0x2, 0x5, 0x2, 0x203}, {0xff, 0x7, 0x101, 0x8, 0x400810, 0xffffffff}, {0x5, 0x8, 0xfff, 0x2, 0xffffffff, 0xb93}, {0x6, 0x4, 0x3, 0xfffffff3, 0x4, 0x6}, {0xd3d4, 0x2, 0x8, 0x6, 0x101, 0x10}, {0x9, 0x40, 0x6, 0x80000000, 0x6, 0x10001}, {0x4, 0x9, 0x100, 0xf9d8, 0x7, 0x2}, {0x5796, 0xffff, 0xd44b, 0x8, 0x1, 0x37a}, {0x6, 0x3, 0x1, 0x80000001, 0x3f, 0x10}, {0x4, 0x9e9c, 0x60, 0x7, 0x0, 0x1}, {0xffe00000, 0x1, 0x8000, 0x4, 0x3, 0x7}, {0x101, 0x9, 0x400, 0x3, 0x9, 0x3}, {0xce9, 0xfffffffb, 0x4, 0xae5e, 0x3ff, 0x2}, {0x3, 0x5, 0x6, 0x4, 0x197d, 0xfb56}, {0x2, 0xc58, 0xf3, 0x0, 0x6, 0x101}, {0x4, 0x5, 0x74d77b97, 0xfffffd8b, 0x0, 0x4}, {0x7fff, 0x5b, 0xb3a, 0x6, 0x2, 0xb5e}, {0x4c5be96a, 0x2, 0x2, 0x5, 0xd2a1, 0xbe47}, {0x6, 0x9, 0x9, 0x4, 0x3, 0x10000001}, {0x3, 0x8, 0x7, 0x4, 0x95, 0x3}, {0x6, 0x5, 0x2, 0x7fffffff, 0x8, 0xff}, {0x1, 0x71, 0x800000, 0xcf55, 0x3, 0x9}, {0x7933, 0x6e20, 0x6, 0x81, 0x2, 0x8}, {0xff, 0x8001, 0xff, 0x10001, 0x5, 0x5}, {0x6, 0x5, 0x0, 0x6, 0xed, 0x5}, {0xce, 0xae, 0x4, 0x2, 0x10000, 0x800}, {0x200, 0x5, 0x6, 0x8, 0x9, 0x9}, {0x8, 0xdd8, 0x8, 0x8, 0x5}, {0x3, 0x3, 0xa, 0x6, 0x9, 0x9}, {0x9, 0x4, 0x9d42, 0x4, 0x1, 0xfffffffb}, {0x8c, 0x6b8, 0x6, 0x2, 0x2, 0xfffffffe}, {0x3, 0x811, 0x9, 0x5, 0x4}, {0x1, 0x80000001, 0x400, 0x2, 0x0, 0x8001}, {0xfffffe01, 0x2, 0x8, 0x2, 0x8, 0x8}, {0x0, 0x22, 0x5, 0x3, 0x401, 0x5}, {0xa, 0x5, 0x101, 0x5, 0xfffffc01}, {0x4, 0x5, 0x0, 0x0, 0xdb, 0x3d04b554}, {0x5, 0x9, 0xfffffffa, 0x1, 0xfffffffc, 0x2}, {0x8, 0x7, 0x7, 0x99f, 0x9, 0x3}, {0x5, 0x252, 0x8000, 0xffff8001, 0xb, 0x900}, {0x4, 0x3, 0x3, 0x21, 0x7, 0x7}, {0xfffffffb, 0x8a1, 0x2, 0x7, 0x0, 0x4}, {0x0, 0x7fff, 0x2, 0xfffff399, 0x20000009, 0xe756}, {0xfff, 0xc, 0x4, 0x8, 0x2, 0xe}, {0x6, 0x4, 0x6, 0x1, 0x80, 0x980}, {0x23ae789, 0xc, 0x4, 0x7, 0x200, 0x4}, {0x5, 0xe, 0x2, 0x9, 0x0, 0xf3}, {0x0, 0x9, 0x2, 0x4, 0x3, 0x4}, {0x8, 0x4, 0x5, 0xfffffffd, 0x400, 0x7f}, {0x9, 0x80, 0x6e6b, 0x6, 0x203}, {0x371cf7fc, 0x7, 0x2, 0x1ff, 0xfffffffa, 0x6a97}, {0xd1, 0x4, 0x4, 0x7, 0x5a, 0x9}, {0x8, 0x7f, 0x7fffffff, 0x7f, 0x2, 0x8}, {0x7ff, 0x1, 0x3, 0x2, 0x9, 0x400}, {0x6, 0x1ff, 0x0, 0x9, 0x7, 0x4}, {0x4, 0x6, 0xfe, 0x100, 0xc6}, {0x3, 0xfffffffd, 0xd, 0x6, 0xfffffffe, 0x1000}, {0x7, 0x2, 0x1, 0xd, 0xfffffffe, 0x3}, {0xfffffff9, 0x80000001, 0xe, 0x2, 0x200, 0x7}, {0x3, 0x0, 0xa820, 0x787e, 0x2, 0x2}, {0x8, 0x4, 0x5ae, 0x2, 0x8}, {0x5, 0x52, 0x8, 0x5, 0x10, 0x9}, {0x1, 0x7, 0x3, 0x280, 0x800, 0x6}, {0x10, 0x801, 0x0, 0x8, 0x3, 0xa}, {0xad, 0x8, 0x4, 0x5, 0x2, 0xfff}, {0x6, 0x6, 0x7fff, 0x0, 0xff, 0x7fffffff}, {0x8, 0x85e6, 0x3, 0x0, 0x5, 0xc}, {0x9, 0x78e3, 0x5, 0xbc27, 0x7, 0x887b}, {0x6, 0x7, 0x2, 0xdb60, 0x3}, {0x80000001, 0x0, 0x3, 0x1, 0x81, 0xba}, {0x10001, 0xfff, 0x7, 0x0, 0x9, 0xc29}, {0x100, 0x2, 0x9, 0x7, 0x84e1, 0x3ff}, {0xdc, 0x8, 0xe, 0x7, 0x9}, {0x7, 0x5, 0x1, 0x80, 0x6, 0xff}, {0xd5e, 0x5, 0x0, 0x100, 0x0, 0x10}, {0x200, 0x2, 0x8000, 0x0, 0x6b, 0x4}, {0x20000, 0x0, 0x9, 0x8, 0x100, 0x1000}, {0x4, 0x3ff, 0x0, 0x10000, 0x7, 0x7}, {0x6, 0x9, 0x1, 0x2001ff, 0x4, 0x1}, {0x4, 0xd38f, 0x6, 0x4, 0x170ddbc4, 0xe38}, {0x14a, 0x7, 0x0, 0x10001, 0x1, 0x2}, {0x9, 0x6, 0x1, 0x400, 0xffffffff, 0xfffffffc}, {0x7, 0x6, 0x3909, 0xffffffff, 0x1705, 0x7}, {0x3, 0x3b10fe2d, 0x4004, 0x5, 0x3, 0xffff7fff}, {0x9430, 0xb, 0x6, 0x2, 0x9, 0x5}, {0xa, 0xb1fb, 0x6, 0x6, 0xf, 0x9}, {0x2a455dad, 0x5, 0x29, 0xfffffff9, 0x800, 0x7fff}, {0x3, 0x3, 0xee, 0x9, 0x6, 0x8}, {0x5ce, 0x3, 0x0, 0xb, 0x8, 0x99}, {0x2, 0x9, 0xf623, 0x7, 0xff, 0x8}, {0x101, 0x6, 0x80000000, 0x9, 0xfffff697, 0x8}, {0x6, 0x8, 0x7, 0x2, 0xa226, 0x9}, {0x8, 0x8, 0x3, 0xfffff246, 0xf, 0x2}, {0x3, 0xaf, 0x7ff, 0xe0, 0x0, 0x7cf}, {0x8, 0x7, 0x29af2cf0, 0x1, 0x7, 0x80000000}, {0x7fff, 0x9, 0x4b, 0xa4e}, {0xffffffff, 0x7, 0xa, 0x80000000, 0x0, 0x69}, {0x4, 0x9, 0x9, 0x4, 0x100, 0x5}, {0x6, 0x6, 0x2, 0x80000001, 0x6, 0x9}, {0x6, 0x401, 0x2, 0x2, 0x3, 0xb}, {0xd, 0x40, 0x3, 0xa, 0xffffffff, 0x1d1a}, {0xc0, 0x81, 0xb, 0x3, 0xea, 0x3}, {0xc, 0x2, 0x1, 0xa, 0x1, 0x2f4}, {0xf, 0x6, 0x9, 0x73e7, 0x1000, 0x4}, {0x6, 0x8000, 0x3ff, 0x8dcc, 0x4, 0x7ff}, {0x7, 0x12, 0x8, 0x8, 0x69, 0x9}, {0x7f, 0x7, 0x4, 0x0, 0x3, 0x2}, {0x9, 0x0, 0x7a, 0x5, 0x4, 0x1000}, {0xb06, 0x7, 0x7ff, 0x400009, 0x0, 0x7bffffff}, {0x4, 0x7b, 0x3, 0x4, 0x0, 0xa7}, {0x81, 0x56c3, 0x1, 0xdda, 0x6, 0xb27d}, {0x4, 0x3, 0x401, 0xad, 0xcf5, 0xf8c}, {0x8, 0x1, 0x3, 0x40, 0x1, 0x4907}, {0x6, 0x4, 0x38, 0x4, 0x5, 0x6}, {0x7, 0x2, 0x1000f, 0x64, 0x1, 0x7}, {0x1, 0x2, 0x4010, 0xffffffad, 0x0, 0x751e}, {0xfff0, 0x2, 0x4, 0x3, 0x3, 0x5}, {0x5, 0x7, 0x8, 0x1, 0x5, 0xfff}, {0x4fb, 0x0, 0x0, 0x7ff, 0x4, 0x5}, {0xf455, 0x3, 0x7fff, 0x59ed, 0xb4e9, 0xe4}, {0x7, 0x2, 0xe, 0x0, 0x3da78e9c, 0x8000}, {0x2, 0x0, 0x400, 0x765, 0x7f, 0x7}, {0x5, 0x7, 0x5, 0x8, 0x8, 0x7}, {0x10, 0x3, 0x9, 0x5, 0x8, 0x2}, {0x6a, 0x200, 0x81, 0xffffffff, 0x4, 0x200}, {0x3, 0x8007, 0x3, 0x4a, 0x6, 0x1}, {0x0, 0x2, 0x7, 0x616, 0x5, 0x4}, {0x6, 0xb25b, 0x3, 0x0, 0x6, 0xb}], [{0x4, 0x1}, {0x5}, {0x4}, {}, {0x5, 0x1}, {}, {0x0, 0x1}, {0x5, 0x1}, {0x6}, {0x0, 0x1}, {0x2}, {0x4}, {0x5}, {0x4, 0x1}, {0x1, 0x1}, {0x1, 0x1}, {0x1}, {0x2}, {0x4}, {0x1}, {0x0, 0x1}, {0x5}, {0x5, 0x1}, {0x5}, {0x2, 0x1}, {0x0, 0x1}, {}, {0x5}, {0x4}, {0x3, 0x1}, {}, {0x3, 0x1}, {0x4}, {}, {0x5}, {0x5, 0x1}, {0x0, 0x1}, {0x0, 0x1}, {0x5, 0x1}, {0x4, 0x1}, {}, {0x3, 0x1}, {0x1, 0x1}, {0x4}, {}, {0x5}, {0x3}, {0xd}, {0x0, 0x338f50ad6d91f11}, {0x1, 0x1}, {0x5, 0x1}, {0x0, 0x1}, {0x4}, {}, {0x4}, {0x3}, {0x1, 0x1}, {0x4}, {0x5}, {0x4, 0x1}, {0x5, 0x1}, {}, {0x1}, {0x3, 0x1}, {0x0, 0x1}, {0x1}, {0x0, 0x1}, {0x5, 0x1}, {0x4}, {0x4, 0x1}, {0x2, 0x1}, {0x1, 0x1}, {0x2, 0x1}, {0x3}, {0x1, 0x1}, {0x3, 0x1}, {0x1, 0x1}, {0x3, 0x1}, {0x0, 0x1}, {0x1, 0x1}, {0x4}, {0x4}, {0x4}, {0x3}, {}, {0x5, 0x1}, {0x2, 0x1}, {}, {0x1, 0x1}, {0x3}, {0x3, 0x1}, {0x5, 0x1}, {0x2, 0x1}, {0x5, 0x1}, {0x1}, {0x6, 0x1}, {0x5}, {0x3}, {0x1, 0x1}, {0x1, 0x1}, {0x3}, {0x2, 0x1}, {0x0, 0x1}, {0x4, 0x1}, {0x3}, {0x5, 0x1}, {0x3}, {0x3}, {0x3}, {0x4}, {0x5, 0x1}, {0x3}, {0x0, 0x1}, {0x2, 0x1}, {0x3}, {0x5}, {0x2, 0x1}, {0x2, 0x1}, {0x3}, {0x3, 0x1}, {0x4}, {0x4}, {0x5}, {0x5, 0x1}, {0x2, 0x1}, {0x2, 0x1}, {0x1, 0x1}, {0x4}]}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}]}]}}]}, 0xe8c}, 0x1, 0x0, 0x0, 0x10}, 0x0) setsockopt$sock_attach_bpf(r6, 0x107, 0xf, &(0x7f0000000600), 0x56) sendmsg$kcm(r6, &(0x7f00000000c0)={&(0x7f0000000500)=@xdp={0x2c, 0x0, r4, 0xc}, 0x80, &(0x7f00000006c0)=[{&(0x7f0000000180)="27030200590214000600002fb96dbcf706e10500000086ddffff1144ee163cd4b8bf", 0x22}, {&(0x7f0000000c00)="4307ed2e", 0x4}], 0x2}, 0x4) 40.025593ms ago: executing program 1 (id=6): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ieee802154(&(0x7f0000001040), r1) sendmsg$IEEE802154_LLSEC_DEL_KEY(r0, &(0x7f0000001140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x8000) 39.734947ms ago: executing program 1 (id=7): bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8c, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2}, 0x48) 0s ago: executing program 2 (id=3): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newsa={0x184, 0x10, 0x1, 0xbffffffe, 0x100, {{@in=@private=0xa010100, @in=@initdev={0xac, 0x1e, 0x1, 0x0}, 0x1, 0x395, 0x4e23, 0x5, 0xa, 0x0, 0x0, 0x3a}, {@in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x4d4, 0x6c}, @in6=@mcast2, {0x0, 0x9, 0x6, 0x10001, 0x8251c, 0x2, 0xfffffffffffffff8}, {0x6, 0x0, 0x1f, 0x1ff}, {0x2, 0xfffffffc}, 0x70bd2a, 0x3502, 0xa, 0x1, 0xfd, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}, @algo_aead={0x4c, 0x12, {{'rfc4309(generic-gcm-aesni)\x00'}, 0x0, 0x60}}]}, 0x184}, 0x1, 0x0, 0x0, 0x8801}, 0x10) kernel console output (not intermixed with test programs): [ 52.849222][ T40] audit: type=1400 audit(1775047578.741:59): avc: denied { write } for pid=5836 comm="sh" path="pipe:[1722]" dev="pipefs" ino=1722 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1 [ 52.858339][ T40] audit: type=1400 audit(1775047578.741:60): avc: denied { rlimitinh } for pid=5836 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 52.867031][ T40] audit: type=1400 audit(1775047578.741:61): avc: denied { siginh } for pid=5836 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 Warning: Permanently added '[localhost]:62928' (ED25519) to the list of known hosts. [ 54.674709][ T40] audit: type=1400 audit(1775047580.581:62): avc: denied { name_bind } for pid=5867 comm="sshd-session" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 54.706914][ T40] audit: type=1400 audit(1775047580.611:63): avc: denied { execute } for pid=5868 comm="sh" name="syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 54.715477][ T40] audit: type=1400 audit(1775047580.611:64): avc: denied { execute_no_trans } for pid=5868 comm="sh" path="/syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 57.355350][ T40] audit: type=1400 audit(1775047583.261:65): avc: denied { mounton } for pid=5868 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2022 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 57.366731][ T40] audit: type=1400 audit(1775047583.271:66): avc: denied { mount } for pid=5868 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 57.370578][ T5868] cgroup: Unknown subsys name 'net' [ 57.568041][ T5868] cgroup: Unknown subsys name 'cpuset' [ 57.572739][ T5868] cgroup: Unknown subsys name 'rlimit' [ 57.859419][ T5918] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). [ 57.864680][ T40] kauditd_printk_skb: 11 callbacks suppressed [ 57.864698][ T40] audit: type=1400 audit(1775047583.771:78): avc: denied { relabelto } for pid=5918 comm="mkswap" name="swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" Setting up swapspace version 1, size = 127995904 bytes [ 57.879150][ T40] audit: type=1400 audit(1775047583.771:79): avc: denied { write } for pid=5918 comm="mkswap" path="/swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 57.891511][ T40] audit: type=1400 audit(1775047583.781:80): avc: denied { read } for pid=5868 comm="syz-executor" name="swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 57.902601][ T40] audit: type=1400 audit(1775047583.781:81): avc: denied { open } for pid=5868 comm="syz-executor" path="/swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 58.686045][ T5868] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 62.679178][ T40] audit: type=1400 audit(1775047588.571:82): avc: denied { execmem } for pid=5928 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 62.918100][ T40] audit: type=1400 audit(1775047588.821:83): avc: denied { create } for pid=5932 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 62.929087][ T40] audit: type=1400 audit(1775047588.821:84): avc: denied { read write } for pid=5932 comm="syz-executor" name="vhci" dev="devtmpfs" ino=1291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 62.946353][ T40] audit: type=1400 audit(1775047588.821:85): avc: denied { open } for pid=5932 comm="syz-executor" path="/dev/vhci" dev="devtmpfs" ino=1291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 62.956822][ T40] audit: type=1400 audit(1775047588.851:86): avc: denied { ioctl } for pid=5932 comm="syz-executor" path="socket:[6055]" dev="sockfs" ino=6055 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 62.968171][ T5944] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 62.973873][ T5944] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 62.978243][ T5944] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 62.979309][ T5946] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 62.982479][ T5945] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 62.982493][ T5944] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 62.983994][ T5944] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 62.984780][ T5944] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 62.984905][ T5944] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 62.995950][ T5945] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 63.000243][ T5944] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 63.003429][ T5945] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 63.005089][ T5948] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 63.005981][ T5944] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 63.006468][ T5944] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 63.008187][ T5944] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 63.013213][ T5948] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 63.014136][ T5945] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 63.021211][ T40] audit: type=1400 audit(1775047588.921:87): avc: denied { read } for pid=5932 comm="syz-executor" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 63.025796][ T5291] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 63.026988][ T40] audit: type=1400 audit(1775047588.921:88): avc: denied { open } for pid=5932 comm="syz-executor" path="net:[4026531833]" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 63.029901][ T5946] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 63.042520][ T40] audit: type=1400 audit(1775047588.931:89): avc: denied { mounton } for pid=5932 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 63.368061][ T40] audit: type=1400 audit(1775047589.271:90): avc: denied { module_request } for pid=5933 comm="syz-executor" kmod="rtnl-link-nicvf" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 63.411069][ T5932] chnl_net:caif_netlink_parms(): no params data found [ 63.422912][ T5933] chnl_net:caif_netlink_parms(): no params data found [ 63.437508][ T5935] chnl_net:caif_netlink_parms(): no params data found [ 63.575689][ T5936] chnl_net:caif_netlink_parms(): no params data found [ 63.599751][ T5932] bridge0: port 1(bridge_slave_0) entered blocking state [ 63.604050][ T5932] bridge0: port 1(bridge_slave_0) entered disabled state [ 63.607333][ T5932] bridge_slave_0: entered allmulticast mode [ 63.611248][ T5932] bridge_slave_0: entered promiscuous mode [ 63.619014][ T5932] bridge0: port 2(bridge_slave_1) entered blocking state [ 63.622175][ T5932] bridge0: port 2(bridge_slave_1) entered disabled state [ 63.625243][ T5932] bridge_slave_1: entered allmulticast mode [ 63.629112][ T5932] bridge_slave_1: entered promiscuous mode [ 63.671307][ T5935] bridge0: port 1(bridge_slave_0) entered blocking state [ 63.673894][ T5935] bridge0: port 1(bridge_slave_0) entered disabled state [ 63.676423][ T5935] bridge_slave_0: entered allmulticast mode [ 63.679223][ T5935] bridge_slave_0: entered promiscuous mode [ 63.706630][ T5932] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 63.710092][ T5935] bridge0: port 2(bridge_slave_1) entered blocking state [ 63.712771][ T5935] bridge0: port 2(bridge_slave_1) entered disabled state [ 63.715089][ T5935] bridge_slave_1: entered allmulticast mode [ 63.717771][ T5935] bridge_slave_1: entered promiscuous mode [ 63.736286][ T5933] bridge0: port 1(bridge_slave_0) entered blocking state [ 63.738986][ T5933] bridge0: port 1(bridge_slave_0) entered disabled state [ 63.741933][ T5933] bridge_slave_0: entered allmulticast mode [ 63.745837][ T5933] bridge_slave_0: entered promiscuous mode [ 63.751187][ T5932] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 63.773732][ T5935] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 63.776930][ T5933] bridge0: port 2(bridge_slave_1) entered blocking state [ 63.779332][ T5933] bridge0: port 2(bridge_slave_1) entered disabled state [ 63.781878][ T5933] bridge_slave_1: entered allmulticast mode [ 63.785254][ T5933] bridge_slave_1: entered promiscuous mode [ 63.822938][ T5935] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 63.833380][ T5933] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 63.844005][ T5933] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 63.849080][ T5932] team0: Port device team_slave_0 added [ 63.870413][ T5936] bridge0: port 1(bridge_slave_0) entered blocking state [ 63.874007][ T5936] bridge0: port 1(bridge_slave_0) entered disabled state [ 63.877699][ T5936] bridge_slave_0: entered allmulticast mode [ 63.881947][ T5936] bridge_slave_0: entered promiscuous mode [ 63.896621][ T5932] team0: Port device team_slave_1 added [ 63.899817][ T5933] team0: Port device team_slave_0 added [ 63.902993][ T5935] team0: Port device team_slave_0 added [ 63.905217][ T5936] bridge0: port 2(bridge_slave_1) entered blocking state [ 63.908623][ T5936] bridge0: port 2(bridge_slave_1) entered disabled state [ 63.911909][ T5936] bridge_slave_1: entered allmulticast mode [ 63.916414][ T5936] bridge_slave_1: entered promiscuous mode [ 63.933851][ T5933] team0: Port device team_slave_1 added [ 63.946258][ T5935] team0: Port device team_slave_1 added [ 63.982083][ T5936] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 63.992119][ T5936] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 63.995469][ T5932] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 63.997780][ T5932] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 64.005981][ T5932] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 64.010607][ T5935] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 64.013314][ T5935] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 64.021944][ T5935] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 64.026625][ T5933] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 64.029146][ T5933] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 64.040077][ T5933] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 64.056223][ T5932] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 64.058459][ T5932] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 64.067266][ T5932] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 64.071579][ T5935] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 64.074827][ T5935] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 64.085263][ T5935] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 64.090314][ T5933] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 64.092925][ T5933] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 64.101948][ T5933] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 64.122875][ T5936] team0: Port device team_slave_0 added [ 64.131569][ T5936] team0: Port device team_slave_1 added [ 64.167689][ T5936] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 64.171254][ T5936] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 64.183367][ T5936] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 64.191266][ T5936] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 64.194574][ T5936] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 64.206264][ T5936] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 64.251509][ T5932] hsr_slave_0: entered promiscuous mode [ 64.254521][ T5932] hsr_slave_1: entered promiscuous mode [ 64.281239][ T5935] hsr_slave_0: entered promiscuous mode [ 64.284366][ T5935] hsr_slave_1: entered promiscuous mode [ 64.287308][ T5935] debugfs: 'hsr0' already exists in 'hsr' [ 64.290041][ T5935] Cannot create hsr debugfs directory [ 64.308052][ T5933] hsr_slave_0: entered promiscuous mode [ 64.311377][ T5933] hsr_slave_1: entered promiscuous mode [ 64.315608][ T5933] debugfs: 'hsr0' already exists in 'hsr' [ 64.318725][ T5933] Cannot create hsr debugfs directory [ 64.366688][ T5936] hsr_slave_0: entered promiscuous mode [ 64.370434][ T5936] hsr_slave_1: entered promiscuous mode [ 64.374587][ T5936] debugfs: 'hsr0' already exists in 'hsr' [ 64.377109][ T5936] Cannot create hsr debugfs directory [ 64.724658][ T5932] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 64.731170][ T5932] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 64.735752][ T5932] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 64.746001][ T5932] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 64.783220][ T5935] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 64.790767][ T5935] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 64.799177][ T5935] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 64.810703][ T5935] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 64.888128][ T5933] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 64.897614][ T5933] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 64.913441][ T5933] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 64.935792][ T5933] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 65.012151][ T5936] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 65.017303][ T5936] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 65.026633][ T5932] 8021q: adding VLAN 0 to HW filter on device bond0 [ 65.034449][ T5946] Bluetooth: hci0: command tx timeout [ 65.042561][ T5936] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 65.047206][ T5936] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 65.074294][ T5932] 8021q: adding VLAN 0 to HW filter on device team0 [ 65.085722][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 65.088166][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 65.107847][ T46] bridge0: port 2(bridge_slave_1) entered blocking state [ 65.110254][ T46] bridge0: port 2(bridge_slave_1) entered forwarding state [ 65.112665][ T5946] Bluetooth: hci2: command tx timeout [ 65.115377][ T5942] Bluetooth: hci3: command tx timeout [ 65.122693][ T5942] Bluetooth: hci1: command tx timeout [ 65.145874][ T5935] 8021q: adding VLAN 0 to HW filter on device bond0 [ 65.155953][ T5933] 8021q: adding VLAN 0 to HW filter on device bond0 [ 65.193724][ T5935] 8021q: adding VLAN 0 to HW filter on device team0 [ 65.216082][ T5933] 8021q: adding VLAN 0 to HW filter on device team0 [ 65.224209][ T80] bridge0: port 1(bridge_slave_0) entered blocking state [ 65.227287][ T80] bridge0: port 1(bridge_slave_0) entered forwarding state [ 65.245304][ T80] bridge0: port 2(bridge_slave_1) entered blocking state [ 65.247949][ T80] bridge0: port 2(bridge_slave_1) entered forwarding state [ 65.254174][ T154] bridge0: port 1(bridge_slave_0) entered blocking state [ 65.256496][ T154] bridge0: port 1(bridge_slave_0) entered forwarding state [ 65.259786][ T40] audit: type=1400 audit(1775047591.161:91): avc: denied { sys_module } for pid=5932 comm="syz-executor" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 65.264976][ T80] bridge0: port 2(bridge_slave_1) entered blocking state [ 65.270732][ T80] bridge0: port 2(bridge_slave_1) entered forwarding state [ 65.351251][ T5936] 8021q: adding VLAN 0 to HW filter on device bond0 [ 65.359141][ T5932] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 65.369496][ T5936] 8021q: adding VLAN 0 to HW filter on device team0 [ 65.383243][ T80] bridge0: port 1(bridge_slave_0) entered blocking state [ 65.385802][ T80] bridge0: port 1(bridge_slave_0) entered forwarding state [ 65.397828][ T1204] bridge0: port 2(bridge_slave_1) entered blocking state [ 65.400229][ T1204] bridge0: port 2(bridge_slave_1) entered forwarding state [ 65.441292][ T5932] veth0_vlan: entered promiscuous mode [ 65.459842][ T5932] veth1_vlan: entered promiscuous mode [ 65.477114][ T5935] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 65.502585][ T5933] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 65.524209][ T5932] veth0_macvtap: entered promiscuous mode [ 65.539350][ T5932] veth1_macvtap: entered promiscuous mode [ 65.565196][ T5935] veth0_vlan: entered promiscuous mode [ 65.579176][ T5933] veth0_vlan: entered promiscuous mode [ 65.586048][ T5932] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 65.590608][ T5935] veth1_vlan: entered promiscuous mode [ 65.604628][ T5932] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 65.614655][ T5933] veth1_vlan: entered promiscuous mode [ 65.624287][ T60] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.628198][ T60] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.633962][ T80] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.651393][ T80] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.687362][ T5936] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 65.692830][ T5935] veth0_macvtap: entered promiscuous mode [ 65.700419][ T5935] veth1_macvtap: entered promiscuous mode [ 65.728777][ T5933] veth0_macvtap: entered promiscuous mode [ 65.735126][ T5933] veth1_macvtap: entered promiscuous mode [ 65.740584][ T80] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 65.745196][ T5935] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 65.745240][ T80] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 65.775432][ T5935] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 65.788228][ T46] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.795202][ T46] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.800701][ T5933] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 65.811037][ T46] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.814456][ T46] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.817751][ T80] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 65.823563][ T80] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 65.830070][ T5933] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 65.836280][ T5936] veth0_vlan: entered promiscuous mode [ 65.841173][ T40] audit: type=1400 audit(1775047591.741:92): avc: denied { mount } for pid=5932 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 65.868656][ T1204] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.873757][ T5936] veth1_vlan: entered promiscuous mode [ 65.882242][ T1204] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.885094][ T5932] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 65.885115][ T1204] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.909309][ T1204] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.915377][ T1204] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 65.921880][ T1204] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 65.971000][ T60] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 65.972041][ T5936] veth0_macvtap: entered promiscuous mode [ 65.974899][ T60] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 65.988132][ T5936] veth1_macvtap: entered promiscuous mode [ 66.024462][ T5936] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 66.027139][ T80] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 66.030216][ T80] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 66.031212][ T5936] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 66.046681][ T46] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 66.049843][ T46] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 66.061153][ T46] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 66.065316][ T46] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 66.082953][ T154] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 66.085545][ T154] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 66.148197][ T60] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 66.150773][ T60] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 66.189228][ T1204] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 66.192696][ T1204] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 66.283655][ T6032] ------------[ cut here ]------------ [ 66.285640][ T6032] verifier bug: REG INVARIANTS VIOLATION (true_reg1): range bounds violation u64=[0xffffdfcd, 0xffffffffffffdfcc] s64=[0x80000000ffffdfcd, 0x7fffffffffffdfcc] u32=[0xffffdfcd, 0xffffdfcc] s32=[0xffffdfcd, 0xffffdfcc] var_off=(0xffffdfcc, 0xffffffff00000000) [ 66.294253][ T6032] WARNING: kernel/bpf/verifier.c:2817 at reg_bounds_sanity_check+0x36a/0x1280, CPU#1: syz.1.7/6032 [ 66.298183][ T6032] Modules linked in: [ 66.300040][ T6032] CPU: 1 UID: 0 PID: 6032 Comm: syz.1.7 Not tainted syzkaller #0 PREEMPT(full) [ 66.304768][ T6032] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 66.308074][ T6032] RIP: 0010:reg_bounds_sanity_check+0x3aa/0x1280 [ 66.310319][ T6032] Code: ff ff 50 8b 85 6c ff ff ff 50 8b 85 78 ff ff ff 50 8b 85 7c ff ff ff 50 ff 75 b8 4c 8b 4d c0 48 8b 95 70 ff ff ff 48 8b 75 80 <67> 48 0f b9 3a 48 8b 95 48 ff ff ff 48 83 c4 38 48 b8 00 00 00 00 [ 66.317271][ T6032] RSP: 0018:ffffc90003c5f280 EFLAGS: 00010283 [ 66.319791][ T6032] RAX: 00000000ffffdfcd RBX: ffff8880592e627c RCX: 00000000ffffdfcd [ 66.323102][ T6032] RDX: ffffffff8bb8d020 RSI: ffffffff8bb91fe0 RDI: ffffffff90ddc100 [ 66.326220][ T6032] RBP: ffffc90003c5f370 R08: ffffffffffffdfcc R09: 80000000ffffdfcd [ 66.328961][ T6032] R10: 00000000ffffdfcc R11: 0000000000000000 R12: 00000000ffffdfcd [ 66.331550][ T6032] R13: ffffffffffffdfcc R14: ffff8880592e6230 R15: ffff8880592e6284 [ 66.334429][ T6032] FS: 00007f43d90466c0(0000) GS:ffff8880d643c000(0000) knlGS:0000000000000000 [ 66.337645][ T6032] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 66.340073][ T6032] CR2: 000000110c27a462 CR3: 0000000057fbd000 CR4: 0000000000352ef0 [ 66.342731][ T6032] Call Trace: [ 66.343883][ T6032] [ 66.344927][ T6032] reg_set_min_max+0x199/0x2d0 [ 66.346662][ T6032] check_cond_jmp_op+0x2be6/0x68c0 [ 66.348519][ T6032] ? bpf_mark_stack_read+0x300/0x3d0 [ 66.350461][ T6032] ? __pfx_check_cond_jmp_op+0x10/0x10 [ 66.352526][ T6032] ? rcu_is_watching+0x12/0xc0 [ 66.354515][ T6032] ? do_check_common+0x6574/0xcb00 [ 66.356674][ T6032] ? kfree+0x2ec/0x6b0 [ 66.358143][ T6032] ? compute_scc_callchain+0x257/0x370 [ 66.360403][ T6032] do_check_common+0x99b7/0xcb00 [ 66.362471][ T6032] ? __pfx_do_check_common+0x10/0x10 [ 66.364308][ T6032] ? compute_live_registers+0x1/0xfd0 [ 66.366307][ T6032] bpf_check+0xbd53/0xcd50 [ 66.367770][ T6033] syzkaller0: entered promiscuous mode [ 66.367846][ T6032] ? __pfx_bpf_check+0x10/0x10 [ 66.372067][ T6032] ? avc_has_perm+0x135/0x1e0 [ 66.373644][ T6032] ? __pfx_avc_has_perm+0x10/0x10 [ 66.375450][ T6032] ? bpf_prog_load+0x1c86/0x2c20 [ 66.377160][ T6032] bpf_prog_load+0x1c86/0x2c20 [ 66.379084][ T6032] ? __pfx_bpf_prog_load+0x10/0x10 [ 66.381751][ T6032] ? avc_has_perm+0x1b1/0x1e0 [ 66.383001][ T6033] syzkaller0: entered allmulticast mode [ 66.384152][ T6032] ? avc_has_perm+0x135/0x1e0 [ 66.387678][ T6032] ? selinux_bpf+0xfb/0x150 [ 66.389225][ T6032] __sys_bpf+0x223a/0x4b90 [ 66.390730][ T6032] ? tomoyo_path_number_perm+0x188/0x580 [ 66.392978][ T6032] ? __pfx___sys_bpf+0x10/0x10 [ 66.394577][ T6032] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 66.396593][ T6032] ? __lock_acquire+0x4a5/0x2630 [ 66.398491][ T6032] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 66.400686][ T6032] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 66.403395][ T6032] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 66.405363][ T6032] ? kcov_ioctl+0x16a/0x720 [ 66.407002][ T6032] __x64_sys_bpf+0x7b/0xc0 [ 66.408509][ T6032] ? lockdep_hardirqs_on+0x78/0x100 [ 66.410243][ T6032] do_syscall_64+0x106/0xf80 [ 66.411802][ T6032] ? clear_bhb_loop+0x40/0x90 [ 66.413418][ T6032] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 66.415364][ T6032] RIP: 0033:0x7f43d819c819 [ 66.416953][ T6032] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 66.424097][ T6032] RSP: 002b:00007f43d9046028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 66.426817][ T6032] RAX: ffffffffffffffda RBX: 00007f43d8415fa0 RCX: 00007f43d819c819 [ 66.429380][ T6032] RDX: 0000000000000048 RSI: 00002000000054c0 RDI: 0000000000000005 [ 66.432377][ T6032] RBP: 00007f43d8232c91 R08: 0000000000000000 R09: 0000000000000000 [ 66.435886][ T6032] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 66.438769][ T6032] R13: 00007f43d8416038 R14: 00007f43d8415fa0 R15: 00007ffd03cada38 [ 66.441506][ T6032] [ 66.442788][ T6032] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 66.445333][ T6032] CPU: 1 UID: 0 PID: 6032 Comm: syz.1.7 Not tainted syzkaller #0 PREEMPT(full) [ 66.448370][ T6032] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 66.451804][ T6032] Call Trace: [ 66.453022][ T6032] [ 66.454114][ T6032] dump_stack_lvl+0x100/0x190 [ 66.455851][ T6032] vpanic+0x552/0x970 [ 66.457190][ T6032] ? __pfx_vpanic+0x10/0x10 [ 66.458723][ T6032] panic+0xd1/0xe0 [ 66.460354][ T6032] ? __pfx_panic+0x10/0x10 [ 66.462309][ T6032] check_panic_on_warn.cold+0x19/0x34 [ 66.464743][ T6032] ? reg_bounds_sanity_check+0x36a/0x1280 [ 66.466806][ T6032] __warn.cold+0x191/0x348 [ 66.468288][ T6032] __report_bug+0x296/0x3d0 [ 66.469782][ T6032] ? reg_bounds_sanity_check+0x36a/0x1280 [ 66.471647][ T6032] ? __pfx___report_bug+0x10/0x10 [ 66.473461][ T6032] ? copy_verifier_state+0xbea/0x1010 [ 66.475488][ T6032] ? push_stack+0x1ca/0x380 [ 66.477393][ T6032] ? check_cond_jmp_op+0xaae/0x68c0 [ 66.479435][ T6032] ? do_check_common+0x99b7/0xcb00 [ 66.481254][ T6032] ? bpf_check+0xbd53/0xcd50 [ 66.482806][ T6032] ? bpf_prog_load+0x1c86/0x2c20 [ 66.484506][ T6032] ? __sys_bpf+0x223a/0x4b90 [ 66.486105][ T6032] ? __x64_sys_bpf+0x7b/0xc0 [ 66.487786][ T6032] report_bug_entry+0xe1/0x290 [ 66.489509][ T6032] ? reg_bounds_sanity_check+0x3aa/0x1280 [ 66.491987][ T6032] handle_bug+0x1cd/0x2a0 [ 66.493975][ T6032] exc_invalid_op+0x17/0x50 [ 66.495902][ T6032] asm_exc_invalid_op+0x1a/0x20 [ 66.497671][ T6032] RIP: 0010:reg_bounds_sanity_check+0x3aa/0x1280 [ 66.499826][ T6032] Code: ff ff 50 8b 85 6c ff ff ff 50 8b 85 78 ff ff ff 50 8b 85 7c ff ff ff 50 ff 75 b8 4c 8b 4d c0 48 8b 95 70 ff ff ff 48 8b 75 80 <67> 48 0f b9 3a 48 8b 95 48 ff ff ff 48 83 c4 38 48 b8 00 00 00 00 [ 66.506339][ T6032] RSP: 0018:ffffc90003c5f280 EFLAGS: 00010283 [ 66.509486][ T6032] RAX: 00000000ffffdfcd RBX: ffff8880592e627c RCX: 00000000ffffdfcd [ 66.512299][ T6032] RDX: ffffffff8bb8d020 RSI: ffffffff8bb91fe0 RDI: ffffffff90ddc100 [ 66.516081][ T6032] RBP: ffffc90003c5f370 R08: ffffffffffffdfcc R09: 80000000ffffdfcd [ 66.519672][ T6032] R10: 00000000ffffdfcc R11: 0000000000000000 R12: 00000000ffffdfcd [ 66.522407][ T6032] R13: ffffffffffffdfcc R14: ffff8880592e6230 R15: ffff8880592e6284 [ 66.525003][ T6032] reg_set_min_max+0x199/0x2d0 [ 66.526674][ T6032] check_cond_jmp_op+0x2be6/0x68c0 [ 66.528641][ T6032] ? bpf_mark_stack_read+0x300/0x3d0 [ 66.530725][ T6032] ? __pfx_check_cond_jmp_op+0x10/0x10 [ 66.532684][ T6032] ? rcu_is_watching+0x12/0xc0 [ 66.534476][ T6032] ? do_check_common+0x6574/0xcb00 [ 66.536444][ T6032] ? kfree+0x2ec/0x6b0 [ 66.537922][ T6032] ? compute_scc_callchain+0x257/0x370 [ 66.539794][ T6032] do_check_common+0x99b7/0xcb00 [ 66.541523][ T6032] ? __pfx_do_check_common+0x10/0x10 [ 66.543422][ T6032] ? compute_live_registers+0x1/0xfd0 [ 66.545515][ T6032] bpf_check+0xbd53/0xcd50 [ 66.547374][ T6032] ? __pfx_bpf_check+0x10/0x10 [ 66.549151][ T6032] ? avc_has_perm+0x135/0x1e0 [ 66.550847][ T6032] ? __pfx_avc_has_perm+0x10/0x10 [ 66.552554][ T6032] ? bpf_prog_load+0x1c86/0x2c20 [ 66.554198][ T6032] bpf_prog_load+0x1c86/0x2c20 [ 66.555841][ T6032] ? __pfx_bpf_prog_load+0x10/0x10 [ 66.557642][ T6032] ? avc_has_perm+0x1b1/0x1e0 [ 66.559215][ T6032] ? avc_has_perm+0x135/0x1e0 [ 66.560850][ T6032] ? selinux_bpf+0xfb/0x150 [ 66.562407][ T6032] __sys_bpf+0x223a/0x4b90 [ 66.563950][ T6032] ? tomoyo_path_number_perm+0x188/0x580 [ 66.566195][ T6032] ? __pfx___sys_bpf+0x10/0x10 [ 66.568176][ T6032] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 66.570307][ T6032] ? __lock_acquire+0x4a5/0x2630 [ 66.572006][ T6032] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 66.573694][ T6032] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 66.575965][ T6032] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 66.577990][ T6032] ? kcov_ioctl+0x16a/0x720 [ 66.579496][ T6032] __x64_sys_bpf+0x7b/0xc0 [ 66.581219][ T6032] ? lockdep_hardirqs_on+0x78/0x100 [ 66.583149][ T6032] do_syscall_64+0x106/0xf80 [ 66.584838][ T6032] ? clear_bhb_loop+0x40/0x90 [ 66.586469][ T6032] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 66.588686][ T6032] RIP: 0033:0x7f43d819c819 [ 66.590216][ T6032] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 66.597107][ T6032] RSP: 002b:00007f43d9046028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 66.600138][ T6032] RAX: ffffffffffffffda RBX: 00007f43d8415fa0 RCX: 00007f43d819c819 [ 66.602738][ T6032] RDX: 0000000000000048 RSI: 00002000000054c0 RDI: 0000000000000005 [ 66.605379][ T6032] RBP: 00007f43d8232c91 R08: 0000000000000000 R09: 0000000000000000 [ 66.608228][ T6032] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 66.611219][ T6032] R13: 00007f43d8416038 R14: 00007f43d8415fa0 R15: 00007ffd03cada38 [ 66.613965][ T6032] [ 66.615824][ T6032] Kernel Offset: disabled [ 66.617326][ T6032] Rebooting in 86400 seconds..