last executing test programs: 336.214828ms ago: executing program 0 (id=1): r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r0, &(0x7f00000000c0), 0x10) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000080)={'vxcan1\x00', 0x0}) sendmsg$can_bcm(r0, &(0x7f0000000000)={&(0x7f0000000040)={0x1d, r1, 0x2000000}, 0x10, &(0x7f0000000180)={0x0, 0x48}}, 0x0) 242.773356ms ago: executing program 0 (id=5): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) socket(0x10, 0x3, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000440)=@newqdisc={0x2c, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xffe0}, {0xf}, {0xe, 0xd}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x3}}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000914}, 0x4000c00) 228.648958ms ago: executing program 2 (id=3): r0 = socket$inet6(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f00000003c0)={'batadv_slave_0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000d40)={&(0x7f0000000000)=ANY=[@ANYBLOB="480000001400090527bd7000fddbdf25021000cb", @ANYRES32=r2, @ANYBLOB="080004000a010102080001006401010108000200ac"], 0x48}, 0x1, 0x0, 0x0, 0x4040014}, 0x24040840) sendto$inet6(r0, &(0x7f0000000000)='s', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b) 172.033745ms ago: executing program 0 (id=6): r0 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x5) ioctl$SG_GET_NUM_WAITING(r0, 0x227d, 0x0) 171.880908ms ago: executing program 2 (id=7): bpf$MAP_CREATE(0x0, 0x0, 0x50) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) setsockopt$CAN_RAW_FILTER(0xffffffffffffffff, 0x65, 0x1, 0x0, 0x100000) 171.752095ms ago: executing program 0 (id=8): mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x4b5, &(0x7f0000010400)={0x0, 0x86e1, 0x2, 0x8}, &(0x7f0000010080), &(0x7f0000000000)) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000900)={{r1}, &(0x7f00000008c0), &(0x7f0000000880)=r2}, 0x20) io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000b40)=[{0x0}, {0x0}], 0x2) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', 0xffffffffffffffff, 0x0, 0x2}, 0x18) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10) mbind(&(0x7f00005b4000/0x4000)=nil, 0x100000000004000, 0x0, 0x0, 0x0, 0x2) 112.274542ms ago: executing program 2 (id=9): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="06000000040000"], 0x39) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r1}, 0x18) r2 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r2, &(0x7f0000000140)={0x28, 0x0, 0x0, @my=0x1}, 0x10) setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r2, 0x28, 0x1, &(0x7f0000000100)=0xfffffffffffffffe, 0x112) 111.535886ms ago: executing program 0 (id=10): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0600000004000000ff0f0000"], 0x39) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r1}, 0x18) r2 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r2, &(0x7f0000000140)={0x28, 0x0, 0x0, @my=0x1}, 0x10) 62.704708ms ago: executing program 2 (id=11): syz_emit_ethernet(0x56, &(0x7f0000000340)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1d}, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "f900f5", 0x20, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x8, 0x2, 0x0, 0x0, 0x0, {[@mptcp=@capable={0x1e, 0xc, 0x6, 0x8, 0x9e, 0x3}]}}}}}}}}, 0x0) 38.317052ms ago: executing program 1 (id=2): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000080)={0xa, 0x2, 0x200, @loopback, 0x7}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000045, &(0x7f0000000140)={0xa, 0x2, 0xffff, @loopback, 0x3}, 0x1c) write$P9_RMKNOD(r0, &(0x7f0000000280)={0x14, 0x13, 0x2, {0x4, 0x2}}, 0xfffffe5c) shutdown(r0, 0x1) 30.286979ms ago: executing program 0 (id=12): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, 0x0, &(0x7f0000001480)='GPL\x00', 0x5, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000380)='kfree\x00', r0, 0x0, 0x4804}, 0x18) bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0xe, 0x16, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb=0x4, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x49) 22.46115ms ago: executing program 2 (id=13): r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r0, &(0x7f00000000c0), 0x10) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000080)={'vxcan1\x00', 0x0}) sendmsg$can_bcm(r0, &(0x7f0000000000)={&(0x7f0000000040)={0x1d, r1, 0x2000000}, 0x10, &(0x7f0000000180)={0x0, 0x48}}, 0x0) 0s ago: executing program 3 (id=4): r0 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc) write$binfmt_elf32(r0, &(0x7f00000016c0)=ANY=[@ANYBLOB="7f454c4604070003070000000000000002000300030000000903000038000000fcffffff0e000000000020000100050000000000000000000300000008000000f30000007f00000004"], 0x58) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x20040000) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="040000"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000008000"], 0x50) r3 = socket$netlink(0x10, 0x3, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7) syz_clone(0xb44040, 0x0, 0x0, 0x0, 0x0, 0x0) sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="15010000000000001c00128009000500626f6e64000000000c00028008000f003e0b0000"], 0x3c}}, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000100)=ANY=[@ANYRES16=r1, @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000010000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41002, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x18) r5 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r5, &(0x7f0000000240)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x14}}, 0x10) sendmmsg$inet(r5, &(0x7f0000001480)=[{{&(0x7f0000000100)={0x2, 0x6e20, @multicast1}, 0x10, 0x0}}], 0x1, 0x2000c044) sendto$inet(r5, &(0x7f0000000c80)="e8", 0x6200, 0x12000000, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb702000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x10) quotactl$Q_GETINFO(0xffffffff80000502, 0x0, 0x0, 0x0) mount$9p_rdma(&(0x7f0000000340), &(0x7f0000000380)='./file0\x00', &(0x7f00000003c0), 0x80, &(0x7f0000000580)={'trans=rdma,', {'port', 0x3d, 0x4e23}}) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1c, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000000)='console\x00', r6}, 0x18) socket$nl_xfrm(0x10, 0x3, 0x6) kernel console output (not intermixed with test programs): Warning: Permanently added '[localhost]:52875' (ED25519) to the list of known hosts. [ 47.800150][ T5854] cgroup: Unknown subsys name 'net' [ 47.927604][ T5854] cgroup: Unknown subsys name 'cpuset' [ 47.933922][ T5854] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 48.927152][ T5854] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 53.067048][ T5949] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 53.069489][ T5949] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 53.074127][ T5949] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 53.077411][ T5949] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 53.081393][ T5949] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 53.083389][ T5950] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 53.083478][ T5956] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 53.084313][ T5956] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 53.087829][ T5949] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 53.088033][ T5950] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 53.090139][ T5957] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 53.090282][ T5950] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 53.091258][ T5950] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 53.091726][ T5950] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 53.094076][ T5957] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 53.097452][ T5950] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 53.105120][ T5957] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 53.114138][ T5950] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 53.115593][ T5957] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 53.117928][ T5305] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 53.403333][ T5954] chnl_net:caif_netlink_parms(): no params data found [ 53.461502][ T5943] chnl_net:caif_netlink_parms(): no params data found [ 53.549060][ T5942] chnl_net:caif_netlink_parms(): no params data found [ 53.570310][ T5945] chnl_net:caif_netlink_parms(): no params data found [ 53.625868][ T5954] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.629683][ T5954] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.632989][ T5954] bridge_slave_0: entered allmulticast mode [ 53.637139][ T5954] bridge_slave_0: entered promiscuous mode [ 53.704452][ T5954] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.707603][ T5954] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.710707][ T5954] bridge_slave_1: entered allmulticast mode [ 53.713803][ T5954] bridge_slave_1: entered promiscuous mode [ 53.717692][ T5943] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.720621][ T5943] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.724087][ T5943] bridge_slave_0: entered allmulticast mode [ 53.727878][ T5943] bridge_slave_0: entered promiscuous mode [ 53.769858][ T5943] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.773077][ T5943] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.776401][ T5943] bridge_slave_1: entered allmulticast mode [ 53.780912][ T5943] bridge_slave_1: entered promiscuous mode [ 53.813550][ T5954] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 53.864890][ T5954] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 53.890651][ T5945] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.893534][ T5945] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.895971][ T5945] bridge_slave_0: entered allmulticast mode [ 53.898728][ T5945] bridge_slave_0: entered promiscuous mode [ 53.911291][ T5943] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 53.923288][ T5943] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 53.935551][ T5945] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.938388][ T5945] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.940998][ T5945] bridge_slave_1: entered allmulticast mode [ 53.944371][ T5945] bridge_slave_1: entered promiscuous mode [ 53.959156][ T5942] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.961517][ T5942] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.963987][ T5942] bridge_slave_0: entered allmulticast mode [ 53.966620][ T5942] bridge_slave_0: entered promiscuous mode [ 53.981078][ T5942] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.984140][ T5942] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.987687][ T5942] bridge_slave_1: entered allmulticast mode [ 53.991860][ T5942] bridge_slave_1: entered promiscuous mode [ 54.006792][ T5954] team0: Port device team_slave_0 added [ 54.009804][ T5943] team0: Port device team_slave_0 added [ 54.020121][ T5943] team0: Port device team_slave_1 added [ 54.040065][ T5954] team0: Port device team_slave_1 added [ 54.051313][ T5945] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 54.070088][ T5943] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 54.072458][ T5943] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 54.080155][ T5943] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 54.086448][ T5942] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 54.093532][ T5945] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 54.117122][ T5943] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 54.119353][ T5943] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 54.128466][ T5943] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 54.133532][ T5942] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 54.137506][ T5954] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 54.139939][ T5954] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 54.151115][ T5954] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 54.158596][ T5945] team0: Port device team_slave_0 added [ 54.179013][ T5954] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 54.181295][ T5954] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 54.191639][ T5954] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 54.207019][ T5945] team0: Port device team_slave_1 added [ 54.217183][ T5942] team0: Port device team_slave_0 added [ 54.221112][ T5942] team0: Port device team_slave_1 added [ 54.259277][ T5945] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 54.261798][ T5945] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 54.270274][ T5945] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 54.301851][ T5943] hsr_slave_0: entered promiscuous mode [ 54.305296][ T5943] hsr_slave_1: entered promiscuous mode [ 54.308312][ T5945] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 54.310853][ T5945] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 54.319649][ T5945] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 54.323870][ T5942] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 54.326312][ T5942] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 54.335680][ T5942] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 54.343591][ T5954] hsr_slave_0: entered promiscuous mode [ 54.346323][ T5954] hsr_slave_1: entered promiscuous mode [ 54.350099][ T5954] debugfs: 'hsr0' already exists in 'hsr' [ 54.352836][ T5954] Cannot create hsr debugfs directory [ 54.362089][ T5942] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 54.366423][ T5942] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 54.374704][ T5942] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 54.507656][ T5942] hsr_slave_0: entered promiscuous mode [ 54.510211][ T5942] hsr_slave_1: entered promiscuous mode [ 54.512498][ T5942] debugfs: 'hsr0' already exists in 'hsr' [ 54.514387][ T5942] Cannot create hsr debugfs directory [ 54.529036][ T5945] hsr_slave_0: entered promiscuous mode [ 54.531427][ T5945] hsr_slave_1: entered promiscuous mode [ 54.533643][ T5945] debugfs: 'hsr0' already exists in 'hsr' [ 54.535465][ T5945] Cannot create hsr debugfs directory [ 54.766442][ T5943] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 54.775608][ T5943] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 54.782967][ T5943] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 54.789668][ T5943] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 54.834202][ T5942] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 54.842960][ T5942] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 54.848857][ T5942] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 54.859858][ T5942] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 54.933458][ T5954] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 54.940617][ T5954] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 54.954553][ T5954] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 54.965470][ T5954] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 55.008741][ T5945] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 55.015288][ T5945] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 55.021187][ T5945] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 55.026649][ T5945] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 55.046226][ T5943] 8021q: adding VLAN 0 to HW filter on device bond0 [ 55.098794][ T5943] 8021q: adding VLAN 0 to HW filter on device team0 [ 55.116768][ T4232] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.119933][ T4232] bridge0: port 1(bridge_slave_0) entered forwarding state [ 55.125777][ T4232] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.128806][ T4232] bridge0: port 2(bridge_slave_1) entered forwarding state [ 55.156675][ T5305] Bluetooth: hci3: command tx timeout [ 55.156678][ T5951] Bluetooth: hci1: command tx timeout [ 55.163334][ T5951] Bluetooth: hci2: command tx timeout [ 55.163388][ T5305] Bluetooth: hci0: command tx timeout [ 55.184978][ T5954] 8021q: adding VLAN 0 to HW filter on device bond0 [ 55.217917][ T5954] 8021q: adding VLAN 0 to HW filter on device team0 [ 55.224418][ T5942] 8021q: adding VLAN 0 to HW filter on device bond0 [ 55.236708][ T4232] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.239119][ T4232] bridge0: port 1(bridge_slave_0) entered forwarding state [ 55.257106][ T5266] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.260142][ T5266] bridge0: port 2(bridge_slave_1) entered forwarding state [ 55.271423][ T5945] 8021q: adding VLAN 0 to HW filter on device bond0 [ 55.280609][ T5942] 8021q: adding VLAN 0 to HW filter on device team0 [ 55.295519][ T5266] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.298399][ T5266] bridge0: port 1(bridge_slave_0) entered forwarding state [ 55.319300][ T5266] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.322291][ T5266] bridge0: port 2(bridge_slave_1) entered forwarding state [ 55.341131][ T5945] 8021q: adding VLAN 0 to HW filter on device team0 [ 55.356104][ T46] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.359320][ T46] bridge0: port 1(bridge_slave_0) entered forwarding state [ 55.378830][ T46] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.381983][ T46] bridge0: port 2(bridge_slave_1) entered forwarding state [ 55.458735][ T5943] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 55.514866][ T5943] veth0_vlan: entered promiscuous mode [ 55.523908][ T5943] veth1_vlan: entered promiscuous mode [ 55.548519][ T5954] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 55.574535][ T5943] veth0_macvtap: entered promiscuous mode [ 55.586633][ T5943] veth1_macvtap: entered promiscuous mode [ 55.612027][ T5943] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 55.622055][ T5943] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 55.627421][ T5954] veth0_vlan: entered promiscuous mode [ 55.630732][ T5942] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 55.648243][ T4232] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.652527][ T5954] veth1_vlan: entered promiscuous mode [ 55.656869][ T4232] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.660248][ T4232] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.666920][ T5945] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 55.672062][ T4232] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.726567][ T5954] veth0_macvtap: entered promiscuous mode [ 55.735367][ T5942] veth0_vlan: entered promiscuous mode [ 55.749825][ T5954] veth1_macvtap: entered promiscuous mode [ 55.758308][ T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 55.760655][ T5942] veth1_vlan: entered promiscuous mode [ 55.761124][ T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 55.786515][ T5945] veth0_vlan: entered promiscuous mode [ 55.797930][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 55.801443][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 55.805669][ T5954] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 55.812013][ T5945] veth1_vlan: entered promiscuous mode [ 55.817823][ T5942] veth0_macvtap: entered promiscuous mode [ 55.823814][ T5954] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 55.839411][ T5942] veth1_macvtap: entered promiscuous mode [ 55.846325][ T4232] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.849290][ T4232] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.855133][ T4232] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.858270][ T4232] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.864046][ T5943] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 55.882198][ T5942] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 55.908149][ T5942] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 55.921254][ T5945] veth0_macvtap: entered promiscuous mode [ 55.927034][ T99] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 55.929932][ T99] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 55.934544][ T5945] veth1_macvtap: entered promiscuous mode [ 55.940145][ T4232] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.944330][ T4232] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.953220][ T4232] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.966948][ T4232] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.981572][ T99] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 55.985212][ T99] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 55.993964][ T5945] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 56.011651][ T5945] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 56.017684][ T6035] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5'. [ 56.031393][ T4232] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.050270][ T4232] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.057013][ T6037] netlink: 67 bytes leftover after parsing attributes in process `syz.2.3'. [ 56.062841][ T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 56.065297][ T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 56.066161][ T4232] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.070877][ T4232] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.144705][ T5266] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 56.147629][ T5266] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 56.150573][ T5266] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 56.162441][ T5266] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 56.209150][ T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 56.212161][ T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 56.258267][ T6054] ------------[ cut here ]------------ [ 56.260074][ T6054] verifier bug: REG INVARIANTS VIOLATION (true_reg1): range bounds violation u64=[0xffffdfcd, 0xffffffffffffdfcc] s64=[0x80000000ffffdfcd, 0x7fffffffffffdfcc] u32=[0xffffdfcd, 0xffffdfcc] s32=[0xffffdfcd, 0xffffdfcc] var_off=(0xffffdfcc, 0xffffffff00000000) [ 56.268764][ T6054] WARNING: kernel/bpf/verifier.c:2742 at reg_bounds_sanity_check+0x321/0x1360, CPU#3: syz.0.12/6054 [ 56.272720][ T6054] Modules linked in: [ 56.274236][ T6054] CPU: 3 UID: 0 PID: 6054 Comm: syz.0.12 Not tainted syzkaller #0 PREEMPT(full) [ 56.277283][ T6054] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 56.281177][ T6054] RIP: 0010:reg_bounds_sanity_check+0x361/0x1360 [ 56.283688][ T6054] Code: ff ff 50 8b 85 6c ff ff ff 50 8b 85 7c ff ff ff 50 8b 85 78 ff ff ff 50 ff 75 b8 4c 8b 4d c0 48 8b 95 70 ff ff ff 48 8b 75 80 <67> 48 0f b9 3a 48 8b 95 48 ff ff ff 48 83 c4 38 48 b8 00 00 00 00 [ 56.290627][ T6054] RSP: 0018:ffffc90004f9f290 EFLAGS: 00010283 [ 56.292713][ T6054] RAX: 00000000ffffdfcd RBX: ffff88804c68727c RCX: 00000000ffffdfcd [ 56.295288][ T6054] RDX: ffffffff8b95e300 RSI: ffffffff8b962fa0 RDI: ffffffff908cd4d0 [ 56.297834][ T6054] RBP: ffffc90004f9f380 R08: ffffffffffffdfcc R09: 80000000ffffdfcd [ 56.300323][ T6054] R10: 00000000ffffdfcc R11: 0000000000000000 R12: 00000000ffffdfcd [ 56.302887][ T6054] R13: ffffffffffffdfcc R14: ffff88804c687284 R15: ffff88804c687230 [ 56.305225][ T6054] FS: 0000000000000000(0000) GS:ffff8880979fc000(0063) knlGS:00000000f54a6b40 [ 56.307973][ T6054] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 56.310056][ T6054] CR2: 000000000c2b6f25 CR3: 000000006b65a000 CR4: 0000000000352ef0 [ 56.312626][ T6054] Call Trace: [ 56.313694][ T6054] [ 56.314688][ T6054] reg_set_min_max+0x18d/0x2d0 [ 56.316211][ T6054] check_cond_jmp_op+0x277c/0x7890 [ 56.317817][ T6054] ? __pfx_check_cond_jmp_op+0x10/0x10 [ 56.319550][ T6054] ? check_alu_op+0x80d/0x38f0 [ 56.321076][ T6054] ? commit_stack_write_marks.isra.0+0x2fb/0x450 [ 56.323122][ T6054] do_check_common+0xa4d3/0xc640 [ 56.324702][ T6054] ? kvfree+0xd/0x20 [ 56.326053][ T6054] ? __pfx_do_check_common+0x10/0x10 [ 56.327964][ T6054] ? compute_scc+0x8d5/0xa50 [ 56.329779][ T6054] ? get_call_summary+0x6b0/0x780 [ 56.331412][ T6054] bpf_check+0x82aa/0xc820 [ 56.332947][ T6054] ? __pfx_bpf_check+0x10/0x10 [ 56.334495][ T6054] ? __asan_memset+0x23/0x50 [ 56.336096][ T6054] ? lsm_blob_alloc+0x2b/0x90 [ 56.337625][ T6054] ? bpf_lsm_bpf_prog_load+0x9/0x10 [ 56.339311][ T6054] bpf_prog_load+0x114e/0x2cc0 [ 56.340872][ T6054] ? __pfx_bpf_prog_load+0x10/0x10 [ 56.342627][ T6054] ? __lock_acquire+0x436/0x2890 [ 56.344452][ T6054] __sys_bpf+0x3e72/0x4980 [ 56.346006][ T6054] ? futex_private_hash_put+0x160/0x1b0 [ 56.347870][ T6054] ? __pfx___sys_bpf+0x10/0x10 [ 56.349545][ T6054] ? __pfx_futex_wait+0x10/0x10 [ 56.351281][ T6054] ? rcu_is_watching+0x12/0xc0 [ 56.353233][ T6054] ? __schedule+0x10b9/0x6150 [ 56.354989][ T6054] ? __schedule+0x114c/0x6150 [ 56.356741][ T6054] ? do_futex+0x122/0x350 [ 56.358118][ T6054] ? xfd_validate_state+0x61/0x180 [ 56.359716][ T6054] __ia32_sys_bpf+0x76/0xe0 [ 56.361218][ T6054] ? lockdep_hardirqs_on+0x7c/0x110 [ 56.363114][ T6054] __do_fast_syscall_32+0xe8/0x680 [ 56.366030][ T6054] do_fast_syscall_32+0x32/0x80 [ 56.367857][ T6054] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 56.370090][ T6054] RIP: 0023:0xf7fb2579 [ 56.371528][ T6054] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 56.377793][ T6054] RSP: 002b:00000000f54a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165 [ 56.380576][ T6054] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000140 [ 56.383485][ T6054] RDX: 0000000000000049 RSI: 0000000000000000 RDI: 0000000000000000 [ 56.385979][ T6054] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 56.388706][ T6054] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 56.391255][ T6054] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 56.393851][ T6054] [ 56.394958][ T6054] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 56.397251][ T6054] CPU: 3 UID: 0 PID: 6054 Comm: syz.0.12 Not tainted syzkaller #0 PREEMPT(full) [ 56.400062][ T6054] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 56.403390][ T6054] Call Trace: [ 56.404486][ T6054] [ 56.405583][ T6054] dump_stack_lvl+0x3d/0x1f0 [ 56.407092][ T6054] vpanic+0x640/0x6f0 [ 56.408388][ T6054] ? reg_bounds_sanity_check+0x321/0x1360 [ 56.410184][ T6054] panic+0xca/0xd0 [ 56.411402][ T6054] ? __pfx_panic+0x10/0x10 [ 56.412846][ T6054] check_panic_on_warn+0xab/0xb0 [ 56.414435][ T6054] __warn+0x108/0x3c0 [ 56.415716][ T6054] __report_bug+0x2a0/0x520 [ 56.417177][ T6054] ? reg_bounds_sanity_check+0x321/0x1360 [ 56.419123][ T6054] ? __pfx___report_bug+0x10/0x10 [ 56.420765][ T6054] ? __kasan_kmalloc+0xaa/0xb0 [ 56.422329][ T6054] ? copy_verifier_state+0xc1b/0x1030 [ 56.424038][ T6054] ? push_stack+0x1ca/0x380 [ 56.425521][ T6054] ? check_cond_jmp_op+0xb06/0x7890 [ 56.427367][ T6054] ? do_check_common+0xa4d3/0xc640 [ 56.429026][ T6054] ? bpf_check+0x82aa/0xc820 [ 56.430474][ T6054] ? bpf_prog_load+0x114e/0x2cc0 [ 56.432054][ T6054] ? __sys_bpf+0x3e72/0x4980 [ 56.433537][ T6054] report_bug_entry+0xe1/0x290 [ 56.435136][ T6054] ? reg_bounds_sanity_check+0x361/0x1360 [ 56.436944][ T6054] handle_bug+0x18a/0x260 [ 56.438290][ T6054] exc_invalid_op+0x17/0x50 [ 56.439713][ T6054] asm_exc_invalid_op+0x1a/0x20 [ 56.441267][ T6054] RIP: 0010:reg_bounds_sanity_check+0x361/0x1360 [ 56.443237][ T6054] Code: ff ff 50 8b 85 6c ff ff ff 50 8b 85 7c ff ff ff 50 8b 85 78 ff ff ff 50 ff 75 b8 4c 8b 4d c0 48 8b 95 70 ff ff ff 48 8b 75 80 <67> 48 0f b9 3a 48 8b 95 48 ff ff ff 48 83 c4 38 48 b8 00 00 00 00 [ 56.449360][ T6054] RSP: 0018:ffffc90004f9f290 EFLAGS: 00010283 [ 56.451436][ T6054] RAX: 00000000ffffdfcd RBX: ffff88804c68727c RCX: 00000000ffffdfcd [ 56.454008][ T6054] RDX: ffffffff8b95e300 RSI: ffffffff8b962fa0 RDI: ffffffff908cd4d0 [ 56.456576][ T6054] RBP: ffffc90004f9f380 R08: ffffffffffffdfcc R09: 80000000ffffdfcd [ 56.459063][ T6054] R10: 00000000ffffdfcc R11: 0000000000000000 R12: 00000000ffffdfcd [ 56.461515][ T6054] R13: ffffffffffffdfcc R14: ffff88804c687284 R15: ffff88804c687230 [ 56.464012][ T6054] reg_set_min_max+0x18d/0x2d0 [ 56.465651][ T6054] check_cond_jmp_op+0x277c/0x7890 [ 56.467331][ T6054] ? __pfx_check_cond_jmp_op+0x10/0x10 [ 56.469103][ T6054] ? check_alu_op+0x80d/0x38f0 [ 56.470674][ T6054] ? commit_stack_write_marks.isra.0+0x2fb/0x450 [ 56.472708][ T6054] do_check_common+0xa4d3/0xc640 [ 56.474287][ T6054] ? kvfree+0xd/0x20 [ 56.475649][ T6054] ? __pfx_do_check_common+0x10/0x10 [ 56.477371][ T6054] ? compute_scc+0x8d5/0xa50 [ 56.478853][ T6054] ? get_call_summary+0x6b0/0x780 [ 56.480476][ T6054] bpf_check+0x82aa/0xc820 [ 56.481937][ T6054] ? __pfx_bpf_check+0x10/0x10 [ 56.483466][ T6054] ? __asan_memset+0x23/0x50 [ 56.485092][ T6054] ? lsm_blob_alloc+0x2b/0x90 [ 56.486618][ T6054] ? bpf_lsm_bpf_prog_load+0x9/0x10 [ 56.488283][ T6054] bpf_prog_load+0x114e/0x2cc0 [ 56.489864][ T6054] ? __pfx_bpf_prog_load+0x10/0x10 [ 56.491557][ T6054] ? __lock_acquire+0x436/0x2890 [ 56.493248][ T6054] __sys_bpf+0x3e72/0x4980 [ 56.494680][ T6054] ? futex_private_hash_put+0x160/0x1b0 [ 56.496476][ T6054] ? __pfx___sys_bpf+0x10/0x10 [ 56.498106][ T6054] ? __pfx_futex_wait+0x10/0x10 [ 56.499664][ T6054] ? rcu_is_watching+0x12/0xc0 [ 56.501212][ T6054] ? __schedule+0x10b9/0x6150 [ 56.502751][ T6054] ? __schedule+0x114c/0x6150 [ 56.504283][ T6054] ? do_futex+0x122/0x350 [ 56.505668][ T6054] ? xfd_validate_state+0x61/0x180 [ 56.507287][ T6054] __ia32_sys_bpf+0x76/0xe0 [ 56.508937][ T6054] ? lockdep_hardirqs_on+0x7c/0x110 [ 56.510675][ T6054] __do_fast_syscall_32+0xe8/0x680 [ 56.512571][ T6054] do_fast_syscall_32+0x32/0x80 [ 56.514250][ T6054] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 56.516400][ T6054] RIP: 0023:0xf7fb2579 [ 56.517766][ T6054] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 56.523873][ T6054] RSP: 002b:00000000f54a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165 [ 56.526422][ T6054] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000140 [ 56.528838][ T6054] RDX: 0000000000000049 RSI: 0000000000000000 RDI: 0000000000000000 [ 56.531276][ T6054] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 56.533702][ T6054] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 56.536112][ T6054] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 56.538597][ T6054] [ 56.540377][ T6054] Kernel Offset: disabled [ 56.541784][ T6054] Rebooting in 86400 seconds..