last executing test programs: 2.510675979s ago: executing program 3 (id=4): syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000000)="0f20e035010000000f22e00f01caf4650fc76e070f060fc776003665650f01d1c402f92ab30fa384730f300f35", 0x2d}], 0x1, 0x11, 0x0, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xffffffffffffffff}, 0x0) socket$inet_icmp_raw(0x2, 0x3, 0x1) openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x800, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0) r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) socket(0x1d, 0x2, 0x6) openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0) pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x100, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = dup(r3) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text16={0x10, 0x0}], 0x1, 0x72, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), r4) r6 = bpf$OBJ_GET_MAP(0x7, &(0x7f00000000c0)=@generic={&(0x7f0000000040)='./file0\x00'}, 0x18) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{0x1, 0xffffffffffffffff}, &(0x7f0000000100), &(0x7f00000002c0)}, 0x20) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x13, 0xe, &(0x7f00000003c0)=@raw=[@generic={0x9, 0x1, 0x3, 0x0, 0x3}, @map_fd={0x18, 0x4, 0x1, 0x0, r6}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r7}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffff9}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}, @btf_id={0x18, 0x4, 0x3, 0x0, 0x3}], &(0x7f0000000000)='GPL\x00', 0x4}, 0x94) r8 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r8, 0x8933, &(0x7f0000000040)={'batadv0\x00', 0x0}) sendmsg$nl_route(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=@newlink={0x44, 0x10, 0x401, 0x20000, 0x0, {0x0, 0x0, 0x0, 0x0, 0x8003}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @gretap={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GRE_REMOTE={0x8, 0x7, @dev={0xac, 0x14, 0x14, 0x2d}}]}}}, @IFLA_MASTER={0x8, 0xa, r9}]}, 0x44}, 0x1, 0x0, 0x0, 0x240008c4}, 0x400c894) r10 = socket$inet6_tcp(0xa, 0x1, 0x0) dup(r10) 2.01649251s ago: executing program 0 (id=1): bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) openat$sequencer(0xffffffffffffff9c, 0x0, 0x80200, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r0, &(0x7f0000000840)=[{0x0}], 0x1) ioctl$TIOCL_PASTESEL(0xffffffffffffffff, 0x541c, &(0x7f0000000000)) socket$unix(0x1, 0x1, 0x0) move_pages(0x0, 0x1, &(0x7f0000000140)=[&(0x7f00001cc000/0x2000)=nil], 0xffffffffffffffff, 0x0, 0x0) 1.255271199s ago: executing program 2 (id=3): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) semget$private(0x0, 0x2, 0x2) madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0xc) 665.383605ms ago: executing program 1 (id=2): openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) r0 = socket$packet(0x11, 0xa, 0x300) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000fbe000)={0x0, 0x0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x5) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={0xffffffffffffffff, 0xffffffffffffffff}) ptrace$cont(0x18, r1, 0x1, 0x2) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f0000000480), 0x400034f, 0x2, 0x0) syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00'}, 0x10) socketpair(0x18, 0x0, 0x2, &(0x7f0000000000)) arch_prctl$ARCH_SHSTK_UNLOCK(0x5004, 0x0) io_submit(0x0, 0x0, &(0x7f0000000300)) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, 0x0, 0x0) r4 = socket$unix(0x1, 0x5, 0x0) ioctl$sock_SIOCETHTOOL(r4, 0x89f0, &(0x7f0000000080)={'bridge0\x00', &(0x7f00000000c0)=@ethtool_regs}) r5 = openat$sndtimer(0xffffffffffffff9c, &(0x7f00000000c0), 0x0) ioctl$SNDRV_TIMER_IOCTL_GINFO(r5, 0xc0f85403, 0x0) r6 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_MCAST_JOIN_GROUP(r6, 0x29, 0x6, &(0x7f0000000140)={0x11, {{0x29, 0x0, 0x3000000, @remote, 0x5}}}, 0x88) 418.614318ms ago: executing program 0 (id=6): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x0, 0x0, 0x0, 0x80040002, 0x0, 0x0, 0x41100, 0x18}, 0x94) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan0\x00'}) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl(r0, 0x8b1a, &(0x7f0000000040)) 298.721µs ago: executing program 3 (id=7): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000080000000c"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r1}, 0x18) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x3, 0x3, &(0x7f0000000000)=@framed={{0x7a, 0xa, 0x0, 0xff00, 0x0, 0x71, 0x10, 0x43}}, &(0x7f0000000480)='syzkaller\x00'}, 0x80) 0s ago: executing program 4 (id=5): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nfc(&(0x7f0000001ec0), r0) sendmsg$NFC_CMD_LLC_SET_PARAMS(r0, &(0x7f0000002000)={0x0, 0x0, &(0x7f0000001fc0)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002dbd7000fbdbdf251000000005000f00cf00000008000100d5"], 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x5000) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.18' (ED25519) to the list of known hosts. [ 174.235529][ T5772] cgroup: Unknown subsys name 'net' [ 174.385213][ T5772] cgroup: Unknown subsys name 'cpuset' [ 174.400986][ T5772] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 180.275080][ T5772] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 187.213661][ T50] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 187.223395][ T5795] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 187.259063][ T50] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 187.272609][ T50] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 187.283820][ T50] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 187.297824][ T5793] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 187.331044][ T50] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 187.348251][ T50] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 187.430351][ T50] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 187.464604][ T5793] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 187.483094][ T50] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 187.485107][ T5793] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 187.510422][ T50] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 187.529514][ T50] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 187.542087][ T50] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 187.669969][ T5793] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 187.682447][ T5793] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 187.698153][ T5793] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 187.707623][ T5793] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 187.720779][ T5793] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 187.732084][ T5793] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 187.766914][ T50] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 187.798643][ T50] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 187.834071][ T50] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 187.846216][ T50] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 189.053683][ T5792] chnl_net:caif_netlink_parms(): no params data found [ 189.267040][ T5788] chnl_net:caif_netlink_parms(): no params data found [ 189.388827][ T50] Bluetooth: hci0: command tx timeout [ 189.568452][ T50] Bluetooth: hci1: command tx timeout [ 189.672188][ T50] Bluetooth: hci2: command tx timeout [ 189.744974][ T5801] chnl_net:caif_netlink_parms(): no params data found [ 189.806226][ T50] Bluetooth: hci4: command tx timeout [ 189.820500][ T5792] bridge0: port 1(bridge_slave_0) entered blocking state [ 189.828240][ T5792] bridge0: port 1(bridge_slave_0) entered disabled state [ 189.836302][ T5792] bridge_slave_0: entered allmulticast mode [ 189.846046][ T5792] bridge_slave_0: entered promiscuous mode [ 189.876301][ T5797] chnl_net:caif_netlink_parms(): no params data found [ 189.899114][ T5792] bridge0: port 2(bridge_slave_1) entered blocking state [ 189.906851][ T5792] bridge0: port 2(bridge_slave_1) entered disabled state [ 189.914473][ T5792] bridge_slave_1: entered allmulticast mode [ 189.924252][ T5792] bridge_slave_1: entered promiscuous mode [ 189.964101][ T50] Bluetooth: hci3: command tx timeout [ 190.281211][ T5792] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 190.292602][ T5802] chnl_net:caif_netlink_parms(): no params data found [ 190.389704][ T5792] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 190.588152][ T5788] bridge0: port 1(bridge_slave_0) entered blocking state [ 190.596202][ T5788] bridge0: port 1(bridge_slave_0) entered disabled state [ 190.604025][ T5788] bridge_slave_0: entered allmulticast mode [ 190.614227][ T5788] bridge_slave_0: entered promiscuous mode [ 190.762600][ T5788] bridge0: port 2(bridge_slave_1) entered blocking state [ 190.770332][ T5788] bridge0: port 2(bridge_slave_1) entered disabled state [ 190.778137][ T5788] bridge_slave_1: entered allmulticast mode [ 190.788133][ T5788] bridge_slave_1: entered promiscuous mode [ 190.835007][ T5792] team0: Port device team_slave_0 added [ 190.873180][ T5792] team0: Port device team_slave_1 added [ 191.131176][ T5788] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 191.191215][ T5792] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 191.198487][ T5792] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 191.224771][ T5792] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 191.241782][ T5801] bridge0: port 1(bridge_slave_0) entered blocking state [ 191.249934][ T5801] bridge0: port 1(bridge_slave_0) entered disabled state [ 191.259702][ T5801] bridge_slave_0: entered allmulticast mode [ 191.269358][ T5801] bridge_slave_0: entered promiscuous mode [ 191.309944][ T5788] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 191.380907][ T5792] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 191.389234][ T5792] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 191.416550][ T5792] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 191.429711][ T5801] bridge0: port 2(bridge_slave_1) entered blocking state [ 191.437389][ T5801] bridge0: port 2(bridge_slave_1) entered disabled state [ 191.444898][ T5801] bridge_slave_1: entered allmulticast mode [ 191.454814][ T5801] bridge_slave_1: entered promiscuous mode [ 191.497832][ T50] Bluetooth: hci0: command tx timeout [ 191.636224][ T50] Bluetooth: hci1: command tx timeout [ 191.658908][ T5797] bridge0: port 1(bridge_slave_0) entered blocking state [ 191.666871][ T5797] bridge0: port 1(bridge_slave_0) entered disabled state [ 191.674558][ T5797] bridge_slave_0: entered allmulticast mode [ 191.685004][ T5797] bridge_slave_0: entered promiscuous mode [ 191.716778][ T50] Bluetooth: hci2: command tx timeout [ 191.742043][ T5802] bridge0: port 1(bridge_slave_0) entered blocking state [ 191.749722][ T5802] bridge0: port 1(bridge_slave_0) entered disabled state [ 191.757544][ T5802] bridge_slave_0: entered allmulticast mode [ 191.767202][ T5802] bridge_slave_0: entered promiscuous mode [ 191.821791][ T5788] team0: Port device team_slave_0 added [ 191.828808][ T5797] bridge0: port 2(bridge_slave_1) entered blocking state [ 191.836497][ T5797] bridge0: port 2(bridge_slave_1) entered disabled state [ 191.844000][ T5797] bridge_slave_1: entered allmulticast mode [ 191.853333][ T5797] bridge_slave_1: entered promiscuous mode [ 191.866308][ T50] Bluetooth: hci4: command tx timeout [ 191.868223][ T5802] bridge0: port 2(bridge_slave_1) entered blocking state [ 191.879613][ T5802] bridge0: port 2(bridge_slave_1) entered disabled state [ 191.887318][ T5802] bridge_slave_1: entered allmulticast mode [ 191.896626][ T5802] bridge_slave_1: entered promiscuous mode [ 191.956966][ T5801] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 192.018728][ T5788] team0: Port device team_slave_1 added [ 192.036120][ T50] Bluetooth: hci3: command tx timeout [ 192.036282][ T5797] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 192.123352][ T5801] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 192.207159][ T5797] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 192.293611][ T5802] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 192.412142][ T5792] hsr_slave_0: entered promiscuous mode [ 192.422653][ T5792] hsr_slave_1: entered promiscuous mode [ 192.441646][ T5802] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 192.464497][ T5801] team0: Port device team_slave_0 added [ 192.473545][ T5788] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 192.480870][ T5788] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 192.507236][ T5788] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 192.558041][ T5797] team0: Port device team_slave_0 added [ 192.573358][ T5801] team0: Port device team_slave_1 added [ 192.612694][ T5788] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 192.619991][ T5788] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 192.646335][ T5788] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 192.666971][ T5797] team0: Port device team_slave_1 added [ 192.787705][ T5802] team0: Port device team_slave_0 added [ 192.918901][ T5802] team0: Port device team_slave_1 added [ 193.004788][ T5797] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 193.012361][ T5797] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 193.038709][ T5797] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 193.083418][ T5801] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 193.090858][ T5801] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 193.117167][ T5801] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 193.134327][ T5801] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 193.141742][ T5801] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 193.168066][ T5801] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 193.182532][ T5802] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 193.189738][ T5802] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 193.215946][ T5802] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 193.230017][ T5797] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 193.237321][ T5797] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 193.263800][ T5797] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 193.278181][ T5802] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 193.285297][ T5802] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 193.311768][ T5802] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 193.510045][ T5788] hsr_slave_0: entered promiscuous mode [ 193.518962][ T5788] hsr_slave_1: entered promiscuous mode [ 193.527499][ T5788] debugfs: 'hsr0' already exists in 'hsr' [ 193.533371][ T5788] Cannot create hsr debugfs directory [ 193.546007][ T50] Bluetooth: hci0: command tx timeout [ 193.706229][ T50] Bluetooth: hci1: command tx timeout [ 193.793848][ T50] Bluetooth: hci2: command tx timeout [ 193.946770][ T50] Bluetooth: hci4: command tx timeout [ 193.964979][ T5797] hsr_slave_0: entered promiscuous mode [ 193.974205][ T5797] hsr_slave_1: entered promiscuous mode [ 193.982107][ T5797] debugfs: 'hsr0' already exists in 'hsr' [ 193.988133][ T5797] Cannot create hsr debugfs directory [ 194.009119][ T5802] hsr_slave_0: entered promiscuous mode [ 194.019326][ T5802] hsr_slave_1: entered promiscuous mode [ 194.028176][ T5802] debugfs: 'hsr0' already exists in 'hsr' [ 194.034070][ T5802] Cannot create hsr debugfs directory [ 194.110045][ T5801] hsr_slave_0: entered promiscuous mode [ 194.116154][ T50] Bluetooth: hci3: command tx timeout [ 194.120315][ T5801] hsr_slave_1: entered promiscuous mode [ 194.129545][ T5801] debugfs: 'hsr0' already exists in 'hsr' [ 194.135385][ T5801] Cannot create hsr debugfs directory [ 195.136737][ T5792] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 195.174535][ T5792] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 195.258865][ T5792] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 195.279966][ T5792] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 195.520470][ T5788] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 195.550125][ T5788] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 195.572531][ T5788] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 195.594296][ T5788] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 195.637006][ T50] Bluetooth: hci0: command tx timeout [ 195.753566][ T5802] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 195.786681][ T50] Bluetooth: hci1: command tx timeout [ 195.844996][ T5801] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 195.866194][ T50] Bluetooth: hci2: command tx timeout [ 195.873358][ T5802] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 195.911522][ T5802] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 195.933904][ T5802] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 196.015526][ T5801] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 196.026216][ T50] Bluetooth: hci4: command tx timeout [ 196.111804][ T5801] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 196.171146][ T5801] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 196.187328][ T50] Bluetooth: hci3: command tx timeout [ 196.205469][ T5797] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 196.251874][ T5797] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 196.314499][ T5797] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 196.381319][ T5797] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 196.907799][ T5792] 8021q: adding VLAN 0 to HW filter on device bond0 [ 197.075386][ T5802] 8021q: adding VLAN 0 to HW filter on device bond0 [ 197.190752][ T5792] 8021q: adding VLAN 0 to HW filter on device team0 [ 197.221873][ T5788] 8021q: adding VLAN 0 to HW filter on device bond0 [ 197.280010][ T4413] bridge0: port 1(bridge_slave_0) entered blocking state [ 197.287484][ T4413] bridge0: port 1(bridge_slave_0) entered forwarding state [ 197.340710][ T5802] 8021q: adding VLAN 0 to HW filter on device team0 [ 197.391929][ T4413] bridge0: port 2(bridge_slave_1) entered blocking state [ 197.399663][ T4413] bridge0: port 2(bridge_slave_1) entered forwarding state [ 197.500290][ T4413] bridge0: port 1(bridge_slave_0) entered blocking state [ 197.507883][ T4413] bridge0: port 1(bridge_slave_0) entered forwarding state [ 197.541242][ T5788] 8021q: adding VLAN 0 to HW filter on device team0 [ 197.595886][ T4413] bridge0: port 2(bridge_slave_1) entered blocking state [ 197.603370][ T4413] bridge0: port 2(bridge_slave_1) entered forwarding state [ 197.693757][ T4413] bridge0: port 1(bridge_slave_0) entered blocking state [ 197.701615][ T4413] bridge0: port 1(bridge_slave_0) entered forwarding state [ 197.843973][ T5801] 8021q: adding VLAN 0 to HW filter on device bond0 [ 197.890740][ T4413] bridge0: port 2(bridge_slave_1) entered blocking state [ 197.898328][ T4413] bridge0: port 2(bridge_slave_1) entered forwarding state [ 197.981480][ T5797] 8021q: adding VLAN 0 to HW filter on device bond0 [ 198.210325][ T5801] 8021q: adding VLAN 0 to HW filter on device team0 [ 198.304616][ T5797] 8021q: adding VLAN 0 to HW filter on device team0 [ 198.328445][ T4413] bridge0: port 1(bridge_slave_0) entered blocking state [ 198.336130][ T4413] bridge0: port 1(bridge_slave_0) entered forwarding state [ 198.417200][ T4413] bridge0: port 2(bridge_slave_1) entered blocking state [ 198.424695][ T4413] bridge0: port 2(bridge_slave_1) entered forwarding state [ 198.440452][ T4413] bridge0: port 1(bridge_slave_0) entered blocking state [ 198.448056][ T4413] bridge0: port 1(bridge_slave_0) entered forwarding state [ 198.488321][ T4413] bridge0: port 2(bridge_slave_1) entered blocking state [ 198.496027][ T4413] bridge0: port 2(bridge_slave_1) entered forwarding state [ 198.934178][ T5801] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 198.944972][ T5801] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 199.073358][ T5797] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 200.046661][ T5792] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 200.419757][ T5802] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 200.501926][ T5792] veth0_vlan: entered promiscuous mode [ 200.620637][ T5788] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 200.635079][ T5792] veth1_vlan: entered promiscuous mode [ 200.939556][ T5801] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 201.115045][ T5792] veth0_macvtap: entered promiscuous mode [ 201.136229][ T5797] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 201.206483][ T5792] veth1_macvtap: entered promiscuous mode [ 201.352701][ T5788] veth0_vlan: entered promiscuous mode [ 201.476357][ T5788] veth1_vlan: entered promiscuous mode [ 201.540628][ T5792] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 201.590980][ T5801] veth0_vlan: entered promiscuous mode [ 201.629908][ T5792] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 201.784524][ T5801] veth1_vlan: entered promiscuous mode [ 201.813908][ T3808] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 201.831492][ T5797] veth0_vlan: entered promiscuous mode [ 201.877072][ T3808] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 201.931408][ T1305] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 201.993852][ T1305] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 202.024216][ T5788] veth0_macvtap: entered promiscuous mode [ 202.074773][ T5797] veth1_vlan: entered promiscuous mode [ 202.116431][ T5788] veth1_macvtap: entered promiscuous mode [ 202.287655][ T5801] veth0_macvtap: entered promiscuous mode [ 202.340122][ T5788] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 202.395285][ T5801] veth1_macvtap: entered promiscuous mode [ 202.502343][ T5788] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 202.560374][ T5797] veth0_macvtap: entered promiscuous mode [ 202.592956][ T4413] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 202.614068][ T5797] veth1_macvtap: entered promiscuous mode [ 202.643706][ T5801] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 202.670259][ T4413] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 202.692400][ T4413] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 202.742874][ T4413] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 202.774412][ T5801] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 202.855436][ T5797] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 202.917205][ T4413] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 202.953938][ T5797] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 202.970719][ T4413] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 203.015976][ T4413] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 203.031005][ T4413] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 203.115019][ T4413] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 203.190442][ T4413] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 203.242277][ T4413] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 203.262450][ T5802] veth0_vlan: entered promiscuous mode [ 203.321504][ T4413] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 203.344859][ T5802] veth1_vlan: entered promiscuous mode [ 203.729458][ T5802] veth0_macvtap: entered promiscuous mode [ 203.840668][ T5802] veth1_macvtap: entered promiscuous mode [ 204.042630][ T5802] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 204.147478][ T5802] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 204.251183][ T1305] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 204.280472][ T1305] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 204.349818][ T1305] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 204.406459][ T4413] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 208.137191][ T4921] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 208.145247][ T4921] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 208.296955][ T4921] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 208.304990][ T4921] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 208.636289][ T1007] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 208.645143][ T1007] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 208.792205][ T5792] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 208.903261][ T1877] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 208.915888][ T1877] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 209.277423][ T4921] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 209.285458][ T4921] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 209.421395][ T4436] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 209.429960][ T4436] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 209.527721][ T4436] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 209.535964][ T4436] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 209.901538][ T1007] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 209.910064][ T1007] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 210.660167][ T3820] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 210.668911][ T3820] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 210.862802][ T5980] batman_adv: batadv0: Adding interface: gretap1 [ 210.869636][ T5980] batman_adv: batadv0: Interface activated: gretap1 [ 210.999217][ T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!! [ 211.137772][ T3820] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 211.145967][ T3820] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 211.762277][ T5990] warning: `syz.0.6' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 211.798476][ T5438] ===================================================== [ 211.806321][ T5438] BUG: KMSAN: kernel-infoleak in _copy_to_iter+0xef3/0x33f0 [ 211.817631][ T5438] _copy_to_iter+0xef3/0x33f0 [ 211.823917][ T5438] __skb_datagram_iter+0x196/0x12c0 [ 211.829509][ T5438] skb_copy_datagram_iter+0x5b/0x1e0 [ 211.834998][ T5438] netlink_recvmsg+0x4bb/0xfe0 [ 211.840057][ T5438] sock_recvmsg+0x2df/0x390 [ 211.844772][ T5438] ____sys_recvmsg+0x193/0x610 [ 211.849822][ T5438] ___sys_recvmsg+0x20b/0x850 [ 211.854682][ T5438] __x64_sys_recvmsg+0x20e/0x3d0 [ 211.860109][ T5438] x64_sys_call+0x38b7/0x3e70 [ 211.864981][ T5438] do_syscall_64+0xd9/0xf80 [ 211.873057][ T5438] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 211.879477][ T5438] [ 211.881896][ T5438] Uninit was stored to memory at: [ 211.887473][ T5438] pskb_expand_head+0x310/0x15d0 [ 211.892587][ T5438] netlink_trim+0x3a3/0x450 [ 211.897387][ T5438] netlink_broadcast_filtered+0x80/0x28f0 [ 211.903295][ T5438] nlmsg_notify+0x15b/0x2f0 [ 211.908082][ T5438] rtnl_notify+0xba/0x100 [ 211.912560][ T5438] wireless_nlevent_process+0xfe/0x290 [ 211.922016][ T5438] process_scheduled_works+0xb91/0x1d80 [ 211.929109][ T5438] worker_thread+0xedf/0x1590 [ 211.933949][ T5438] kthread+0xd5c/0xf00 [ 211.938906][ T5438] ret_from_fork+0x208/0x710 [ 211.943720][ T5438] ret_from_fork_asm+0x1a/0x30 [ 211.948903][ T5438] [ 211.951302][ T5438] Uninit was stored to memory at: [ 211.956698][ T5438] wireless_send_event+0x652/0x1540 [ 211.962082][ T5438] ioctl_standard_iw_point+0x12b0/0x13f0 [ 211.968298][ T5438] compat_standard_call+0x188/0x4c0 [ 211.973699][ T5438] wext_ioctl_dispatch+0x192/0x7a0 [ 211.979151][ T5438] compat_wext_handle_ioctl+0x1a1/0x300 [ 211.984907][ T5438] compat_sock_ioctl+0x20c/0xff0 [ 211.990183][ T5438] __ia32_compat_sys_ioctl+0x7f9/0x1270 [ 211.996462][ T5438] ia32_sys_call+0x25d9/0x4340 [ 212.001399][ T5438] __do_fast_syscall_32+0x155/0x310 [ 212.006884][ T5438] do_fast_syscall_32+0x38/0x80 [ 212.012000][ T5438] do_SYSENTER_32+0x1f/0x30 [ 212.016847][ T5438] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 212.027151][ T5438] [ 212.029567][ T5438] Local variable iwp created at: [ 212.034584][ T5438] compat_standard_call+0x4a/0x4c0 [ 212.042611][ T5438] wext_ioctl_dispatch+0x192/0x7a0 [ 212.048074][ T5438] [ 212.050471][ T5438] Bytes 60-63 of 64 are uninitialized [ 212.056102][ T5438] Memory access of size 64 starts at ffff88811b1ba100 [ 212.062973][ T5438] Data copied to user address 00007ffd78a707e0 [ 212.069519][ T5438] [ 212.071980][ T5438] CPU: 1 UID: 101 PID: 5438 Comm: dhcpcd Not tainted syzkaller #0 PREEMPT(none) [ 212.081380][ T5438] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 212.091701][ T5438] ===================================================== [ 212.098965][ T5438] Disabling lock debugging due to kernel taint [ 212.105330][ T5438] Kernel panic - not syncing: kmsan.panic set ... [ 212.111959][ T5438] CPU: 1 UID: 101 PID: 5438 Comm: dhcpcd Tainted: G B syzkaller #0 PREEMPT(none) [ 212.122818][ T5438] Tainted: [B]=BAD_PAGE [ 212.127062][ T5438] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 212.137247][ T5438] Call Trace: [ 212.140619][ T5438] [ 212.143635][ T5438] __dump_stack+0x26/0x30 [ 212.148134][ T5438] dump_stack_lvl+0x53/0x270 [ 212.152880][ T5438] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 212.159059][ T5438] dump_stack+0x1e/0x25 [ 212.163359][ T5438] vpanic+0x435/0xd30 [ 212.167517][ T5438] panic+0x15d/0x160 [ 212.171621][ T5438] kmsan_report+0x31c/0x320 [ 212.176310][ T5438] ? kmsan_internal_check_memory+0x1e1/0x230 [ 212.182462][ T5438] ? kmsan_copy_to_user+0xf1/0x190 [ 212.187751][ T5438] ? _copy_to_iter+0xef3/0x33f0 [ 212.192793][ T5438] ? __skb_datagram_iter+0x196/0x12c0 [ 212.198318][ T5438] ? skb_copy_datagram_iter+0x5b/0x1e0 [ 212.203930][ T5438] ? netlink_recvmsg+0x4bb/0xfe0 [ 212.209033][ T5438] ? sock_recvmsg+0x2df/0x390 [ 212.213879][ T5438] ? ____sys_recvmsg+0x193/0x610 [ 212.218965][ T5438] ? ___sys_recvmsg+0x20b/0x850 [ 212.223962][ T5438] ? __x64_sys_recvmsg+0x20e/0x3d0 [ 212.229248][ T5438] ? x64_sys_call+0x38b7/0x3e70 [ 212.234285][ T5438] ? do_syscall_64+0xd9/0xf80 [ 212.239119][ T5438] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 212.245445][ T5438] ? finish_task_switch+0x1fe/0x8c0 [ 212.250821][ T5438] ? kmsan_get_metadata+0xfb/0x160 [ 212.256119][ T5438] ? kmsan_get_metadata+0xfb/0x160 [ 212.261419][ T5438] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 212.267424][ T5438] ? kmsan_get_metadata+0xfb/0x160 [ 212.272720][ T5438] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 212.278728][ T5438] ? _raw_spin_lock+0x31/0x60 [ 212.283537][ T5438] ? kmsan_get_metadata+0xfb/0x160 [ 212.288836][ T5438] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 212.294854][ T5438] kmsan_internal_check_memory+0x1e1/0x230 [ 212.300862][ T5438] kmsan_copy_to_user+0xf1/0x190 [ 212.305981][ T5438] _copy_to_iter+0xef3/0x33f0 [ 212.310847][ T5438] ? kmsan_internal_set_shadow_origin+0x7a/0x110 [ 212.317363][ T5438] ? kmsan_get_metadata+0xfb/0x160 [ 212.322664][ T5438] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 212.328679][ T5438] ? kmsan_get_metadata+0xfb/0x160 [ 212.333996][ T5438] ? kmsan_internal_set_shadow_origin+0x7a/0x110 [ 212.340543][ T5438] __skb_datagram_iter+0x196/0x12c0 [ 212.345921][ T5438] ? __pfx_simple_copy_to_iter+0x10/0x10 [ 212.351773][ T5438] skb_copy_datagram_iter+0x5b/0x1e0 [ 212.357244][ T5438] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 212.363280][ T5438] netlink_recvmsg+0x4bb/0xfe0 [ 212.368246][ T5438] ? aa_sock_msg_perm+0x284/0x2e0 [ 212.373489][ T5438] ? __pfx_netlink_recvmsg+0x10/0x10 [ 212.378949][ T5438] sock_recvmsg+0x2df/0x390 [ 212.383652][ T5438] ____sys_recvmsg+0x193/0x610 [ 212.388579][ T5438] ? should_fail_ex+0x40/0x8a0 [ 212.393486][ T5438] ? stack_depot_save_flags+0x35/0x790 [ 212.399126][ T5438] ___sys_recvmsg+0x20b/0x850 [ 212.403997][ T5438] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 212.410000][ T5438] ? kmsan_get_metadata+0xfb/0x160 [ 212.415390][ T5438] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 212.421410][ T5438] __x64_sys_recvmsg+0x20e/0x3d0 [ 212.426531][ T5438] ? kmsan_get_metadata+0xfb/0x160 [ 212.431855][ T5438] x64_sys_call+0x38b7/0x3e70 [ 212.436733][ T5438] do_syscall_64+0xd9/0xf80 [ 212.441411][ T5438] ? clear_bhb_loop+0x40/0x90 [ 212.446240][ T5438] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 212.452291][ T5438] RIP: 0033:0x7f6477ddb407 [ 212.456822][ T5438] Code: 48 89 fa 4c 89 df e8 38 aa 00 00 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00 00 00 48 8b 44 24 10 0f 05 <5b> c3 0f 1f 80 00 00 00 00 83 e2 39 83 fa 08 75 de e8 23 ff ff ff [ 212.476596][ T5438] RSP: 002b:00007ffd78a706d0 EFLAGS: 00000202 ORIG_RAX: 000000000000002f [ 212.485159][ T5438] RAX: ffffffffffffffda RBX: 00007f6477d51740 RCX: 00007f6477ddb407 [ 212.493242][ T5438] RDX: 0000000000000040 RSI: 00007ffd78a70750 RDI: 0000000000000009 [ 212.501316][ T5438] RBP: 0000556cb9992aa0 R08: 0000000000000000 R09: 0000000000000000 [ 212.509387][ T5438] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000009 [ 212.517489][ T5438] R13: 00007ffd78a748b0 R14: 0000000000000000 R15: 00007ffd78a748a0 [ 212.525609][ T5438] [ 212.529187][ T5438] Kernel Offset: disabled [ 212.533587][ T5438] Rebooting in 86400 seconds..