last executing test programs: 6.532195823s ago: executing program 3 (id=4): socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz1\x00', 0x200002, 0x0) r1 = openat$cgroup_type(r0, &(0x7f0000000300), 0x2, 0x0) write$cgroup_type(r1, &(0x7f0000000280), 0x9) r2 = openat$cgroup_procs(r0, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0) write$cgroup_pid(r2, &(0x7f0000000c40), 0x12) r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) write$cgroup_pid(r2, &(0x7f0000000080), 0x12) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03", 0x3}], 0x1}, 0x0) r4 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r5) ioctl$IOCTL_GET_NCIDEV_IDX(r4, 0x0, &(0x7f00000000c0)=0x0) sendmsg$NFC_CMD_DEV_UP(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000d80)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYBLOB="010426bd7000f8dbdf2502000000", @ANYRES32=r7], 0x1c}}, 0x4008054) write$nci(r4, &(0x7f0000000300)=ANY=[@ANYBLOB='p\x00\t'], 0xc) write$nci(r4, &(0x7f0000000040)=ANY=[@ANYBLOB="5001"], 0x14) write$nci(r4, 0x0, 0x0) connect$llc(0xffffffffffffffff, &(0x7f00000001c0)={0x1a, 0x0, 0x0, 0x8, 0x0, 0x0, @dev}, 0x10) r8 = openat$cgroup_ro(r3, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0) write$cgroup_int(r8, &(0x7f0000000200)=0x1, 0x12) 6.336786099s ago: executing program 3 (id=5): socket$nl_generic(0x10, 0x3, 0x10) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz1\x00', 0x200002, 0x0) r1 = openat$cgroup_type(r0, &(0x7f0000000300), 0x2, 0x0) write$cgroup_type(r1, &(0x7f0000000280), 0x9) r2 = openat$cgroup_procs(r0, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0) write$cgroup_pid(r2, &(0x7f0000000c40), 0x12) r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) write$cgroup_pid(r2, &(0x7f0000000080), 0x12) bpf$MAP_UPDATE_ELEM(0x2, 0x0, 0x0) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f", 0x2}], 0x1}, 0x0) r4 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r5) ioctl$IOCTL_GET_NCIDEV_IDX(r4, 0x0, &(0x7f00000000c0)=0x0) sendmsg$NFC_CMD_DEV_UP(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000d80)=ANY=[@ANYBLOB="1c000000", @ANYBLOB="010426bd7000f8dbdf250200000008000100", @ANYRES32=r6], 0x1c}}, 0x4008054) write$nci(r4, &(0x7f0000000300)=ANY=[@ANYBLOB='p\x00\t'], 0xc) write$nci(r4, &(0x7f0000000040)=ANY=[@ANYBLOB="5001"], 0x14) r7 = openat$cgroup_ro(r3, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0) write$cgroup_int(r7, &(0x7f0000000200)=0x1, 0x12) 5.603727623s ago: executing program 1 (id=2): r0 = socket$l2tp(0x2, 0x2, 0x73) mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0xc3072, 0xffffffffffffffff, 0x200000) r1 = syz_open_dev$video(0x0, 0x4ad, 0xc2ca62a1b4984f7c) r2 = syz_clone(0x100, 0x0, 0x0, 0x0, 0x0, 0x0) migrate_pages(r2, 0x5, 0x0, &(0x7f0000000080)=0x272) syz_mount_image$fuse(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) lsetxattr$system_posix_acl(&(0x7f0000000280)='./file0\x00', 0x0, &(0x7f00000000c0)={{}, {0x20}, [], {0x4, 0x7}}, 0x24, 0x0) r3 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000680)=ANY=[@ANYBLOB="1201000000000040f30455070000000000010902240001000040b109040000010300010009210101000122050009058103"], 0x0) socket$nl_generic(0x10, 0x3, 0x10) dup(r1) syz_usb_control_io(r3, 0x0, 0x0) mbind(&(0x7f0000111000/0x3000)=nil, 0x3000, 0x4000, 0x0, 0x2ec0, 0x1) r4 = socket$packet(0x11, 0x2, 0x300) getpeername$packet(r4, 0x0, 0x0) syz_usb_connect(0x2, 0x24, &(0x7f0000000080)=ANY=[@ANYBLOB="120100005c3f6b200304a4bc23d7010203010902120001000000000904d4"], 0x0) syz_usb_control_io(r3, &(0x7f0000000340)={0x18, &(0x7f0000000700)=ANY=[@ANYBLOB=' \n\a'], 0x0, 0x0, 0x0, 0x0}, 0x0) r5 = syz_open_dev$hidraw(&(0x7f0000000280), 0x82, 0x2) ioctl$HIDIOCGRDESC(r5, 0x90044802, &(0x7f0000000000)={0xffffffffffffffef, "a5cf27d047ccbb89c1f100c4290def60e820cd8c04b1c593b61e33d495b06be46cdcd2311370ed9c07275742032bb2e44288967c70cd701ce0c12a45842875e8227d6cb40397f2eb7d49b3088b3ebc835bcca76ff6619e90cb54f7c521c679b25bcebda5fc398b9c05767955246311071fedaa9a378cc709642ac04d40ff2c71fa910da868fb3aed27b688940dc6a0d9d97ee7e3f9ec75fcbd8ca675953c2bea817becdc9dc1762e758c334d3b156be6923e78bbf23132ce96574d33cebd32164717acd9ede1791b611c80a8a693ed966363ce6da2a145d3dbd0a1"}) setsockopt$EBT_SO_SET_COUNTERS(r0, 0x0, 0x81, &(0x7f0000000280)={'nat\x00', 0x0, 0x0, 0x0, [0x8, 0x3, 0x4, 0x5, 0x3, 0x9], 0x3, 0x0, 0x0, [{}, {}, {}]}, 0xa8) r6 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFNL_MSG_ACCT_NEW(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0xc005}, 0x80c0) 5.306058902s ago: executing program 3 (id=6): sendmsg$TEAM_CMD_OPTIONS_SET(0xffffffffffffffff, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f0000000500)=ANY=[@ANYBLOB="a0000000", @ANYRES16, @ANYBLOB="050424bd7000fedbdf25010000000800", @ANYRES32=0x0, @ANYBLOB="84000280400001"], 0xa0}, 0x1, 0x0, 0x0, 0xaddf11c998560ddf}, 0x24040084) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="1c000000180009040015000000"], 0x1c}}, 0x0) r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000980)={0x802}, 0x10) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, &(0x7f0000000380)=0xfffffffe, 0x4) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x3}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_NEWRULE={0x28, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x3}}}, 0x9c}}, 0x0) openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000001c40)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0) r2 = socket$unix(0x1, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000000c0)={'veth0_macvtap\x00', 0x0}) r4 = socket(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x88, 0x24, 0xf0b, 0x70bd26, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xffff}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0x1, [], 0x0, [0x1, 0x2, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x5c4, 0x8000, 0x0, 0x0, 0x3dc], [0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000]}}}}]}, 0x88}}, 0x20000000) r5 = socket(0x400000000010, 0x3, 0x0) sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x70bd25, 0xfffbffff, {0x0, 0x0, 0x0, r3, {0x0, 0x8}, {0xffff, 0xffff}, {0xc, 0xfff3}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x1c, 0x2, [@TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x8001}]}]}, @TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8}]}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40001}, 0x10) 5.216073575s ago: executing program 0 (id=1): mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) sendmsg$netlink(0xffffffffffffffff, &(0x7f0000004000)={0x0, 0x0, &(0x7f0000003f00)=[{&(0x7f0000000180)=ANY=[], 0x114}], 0x1}, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000040)={0x3, &(0x7f0000000140)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20, 0x0, 0x0, 0xfffff024}, {0x6}]}, 0x10) sendmmsg(r0, &(0x7f0000001c00), 0x400000000000159, 0x40840) 4.984597332s ago: executing program 2 (id=3): kexec_load(0x3, 0x4, &(0x7f00000005c0)=[{&(0x7f0000000200)="d8f3aabb28de3faf55566e010b6ef42f8002b91bf54d78caa3135bc4a5d30a8fd06d1e70130a8d2b505e9abe3aef1de2219df6f5f695131f", 0x38, 0x5, 0x4}, {&(0x7f0000000340)="8c4e55be8948c65379def4df", 0xc, 0x100, 0x9}, {0x0, 0x0, 0x7, 0x2}, {&(0x7f00000004c0), 0x0, 0x5, 0x6}], 0x0) bind$inet(0xffffffffffffffff, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000002840)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback, 0x20}, 0x1c, 0x0}}], 0x1, 0x14018891) sendmsg$inet(0xffffffffffffffff, &(0x7f0000003c00)={0x0, 0x0, &(0x7f0000000700)=[{0x0}, {&(0x7f0000000280)="da3b7d7035cdbd35bccc23a2f8164fe26ad17c1668bf60cc412d60d7b02fe70f0d4c385a653d469c0888c116c5e9", 0x2e}, {0x0}, {&(0x7f0000000740)="747516464293f8e8eec3ccb7dd473a382a0d368ad8a1242abe3b11d915f3eb582e10ff9b8afa9a3d6fa9075032a573688f84e342bf19f200379d5291489fa5151a46ed483044e784cb8f430cbcd5a6145d72a2d2b2b6aa78add2ab0812de906e5545585d6aadca", 0x67}], 0x4}, 0x41) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48001}, 0x4044050) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000540), 0x82, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$alg(0x26, 0x5, 0x0) syz_open_dev$dri(&(0x7f0000000180), 0x1, 0xc0400) bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58) syz_emit_vhci(&(0x7f0000000340)=ANY=[@ANYBLOB="040e"], 0xd) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3", 0x5) r3 = accept4(r2, 0x0, 0x0, 0x800) sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800) recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil}) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0) pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)}], 0x1, 0x1, 0x2) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 4.785832769s ago: executing program 3 (id=7): r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000003c0), 0x1c1341, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r1) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000440), r2) sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c"], 0x38}}, 0x0) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast}) writev(r0, &(0x7f00000032c0)=[{&(0x7f0000000380)="89e7ee2c7cdad9b4b47380c988ca", 0xe}, {&(0x7f00000022c0)="7d58109dd8baaa3f61b6b780c28580d917844f2d8194ee88a6f0eca28a92b4008145c55afb0d4d05", 0x28}], 0x2) 3.541466308s ago: executing program 2 (id=8): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) r2 = socket$unix(0x1, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x42}}}]}, 0x38}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001380)=@newtfilter={0xb4, 0x2c, 0xd27, 0x70bd24, 0x25dfdbfc, {0x0, 0x0, 0x0, r3, {0x4}, {}, {0x6, 0x8}}, [@filter_kind_options=@f_u32={{0x8}, {0x88, 0x2, [@TCA_U32_SEL={0x84, 0x5, {0x0, 0x6, 0x8, 0x101, 0x4, 0xe, 0x7, 0x7, [{0x8, 0x3, 0x9, 0x2d}, {0xffffff8a, 0x9d2, 0x2, 0x10000}, {0x9, 0xc, 0x8, 0x8}, {0x0, 0x1, 0x3b7, 0x5}, {0x553e3387, 0x3, 0x8000, 0x2}, {0x8001, 0x4, 0x1}, {0x1000, 0xa8c, 0xfffffff8, 0xd}]}}]}}]}, 0xb4}, 0x1, 0x0, 0x0, 0x10}, 0x20000000) sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=@gettfilter={0x24, 0x2e, 0x205, 0x70bd2c, 0x25dfdafd, {0x0, 0x0, 0x0, r3, {0xc, 0xc}, {0x0, 0xfff1}}}, 0x24}, 0x1, 0x0, 0x0, 0x20000801}, 0x4041080) r4 = socket(0x400000000010, 0x3, 0x0) r5 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000001480)=@newtfilter={0x44, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r6, {0xf, 0xf}, {}, {0xffff, 0x6}}, [@filter_kind_options=@f_u32={{0x8}, {0x4}}, @filter_kind_options=@f_matchall={{0xd}, {0x4}}]}, 0x44}, 0x1, 0x0, 0x0, 0x10}, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r1) 3.15677647s ago: executing program 0 (id=9): syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000000)='./file1\x00', 0x10000, &(0x7f0000000040)=ANY=[], 0x0, 0x295, &(0x7f0000000140)="$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") sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002240)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) socket$packet(0x11, 0x2, 0x300) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000040)=0x3) syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) r2 = socket$inet6(0xa, 0x80003, 0xff) setsockopt$inet6_int(r2, 0x29, 0x16, 0x0, 0x0) r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x0, 0x0}) r4 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$SW_SYNC_IOC_CREATE_FENCE(r4, 0xc0285700, &(0x7f0000000080)={0x0, "4fcb813dd28b42bee2b094a3de6dbfd30a74457bcd1cfd5feffe5c019f45d57f", 0xffffffffffffffff}) ioctl$SYNC_IOC_MERGE(r5, 0xc0303e03, &(0x7f00000000c0)={"000000149c0286e08ffad43c40fc0a000000ab65a29e23546aad0281b3aff5eb", r5}) close_range(r3, 0xffffffffffffffff, 0x0) 3.139932161s ago: executing program 1 (id=10): socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz1\x00', 0x200002, 0x0) r1 = openat$cgroup_type(r0, &(0x7f0000000300), 0x2, 0x0) write$cgroup_type(r1, &(0x7f0000000280), 0x9) r2 = openat$cgroup_procs(r0, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0) write$cgroup_pid(r2, &(0x7f0000000c40), 0x12) r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) write$cgroup_pid(r2, &(0x7f0000000080), 0x12) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03", 0x3}], 0x1}, 0x0) r4 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r5) ioctl$IOCTL_GET_NCIDEV_IDX(r4, 0x0, &(0x7f00000000c0)=0x0) sendmsg$NFC_CMD_DEV_UP(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000d80)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYBLOB="010426bd7000f8dbdf2502000000", @ANYRES32=r7], 0x1c}}, 0x4008054) write$nci(r4, &(0x7f0000000300)=ANY=[@ANYBLOB='p\x00\t'], 0xc) write$nci(r4, &(0x7f0000000040)=ANY=[@ANYBLOB="5001"], 0x14) write$nci(r4, 0x0, 0x0) connect$llc(0xffffffffffffffff, &(0x7f00000001c0)={0x1a, 0x0, 0x0, 0x8, 0x0, 0x0, @dev}, 0x10) r8 = openat$cgroup_ro(r3, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0) write$cgroup_int(r8, &(0x7f0000000200)=0x1, 0x12) 1.397519676s ago: executing program 0 (id=11): bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @void}, 0x10) r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0) r1 = eventfd(0x7e) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f00000005c0)=r1) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/240, &(0x7f00000000c0)=""/87, 0x0}) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000980)={0x3, 0x0, [{0x0, 0x73, &(0x7f0000000880)=""/115}, {0xc000, 0xa0, &(0x7f00000007c0)=""/160}, {0xdddc0000, 0xd5, &(0x7f0000000a00)=""/213}]}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1) bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0000000000000000010001"], 0x50) 1.140292234s ago: executing program 1 (id=12): socket$nl_generic(0x10, 0x3, 0x10) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz1\x00', 0x200002, 0x0) r1 = openat$cgroup_type(r0, &(0x7f0000000300), 0x2, 0x0) write$cgroup_type(r1, &(0x7f0000000280), 0x9) r2 = openat$cgroup_procs(r0, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0) write$cgroup_pid(r2, &(0x7f0000000c40), 0x12) r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) write$cgroup_pid(r2, &(0x7f0000000080), 0x12) bpf$MAP_UPDATE_ELEM(0x2, 0x0, 0x0) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f", 0x2}], 0x1}, 0x0) r4 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r5) ioctl$IOCTL_GET_NCIDEV_IDX(r4, 0x0, &(0x7f00000000c0)=0x0) sendmsg$NFC_CMD_DEV_UP(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000d80)=ANY=[@ANYBLOB="1c000000", @ANYBLOB="010426bd7000f8dbdf250200000008000100", @ANYRES32=r6], 0x1c}}, 0x4008054) write$nci(r4, &(0x7f0000000300)=ANY=[@ANYBLOB='p\x00\t'], 0xc) write$nci(r4, &(0x7f0000000040)=ANY=[@ANYBLOB="5001"], 0x14) r7 = openat$cgroup_ro(r3, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0) write$cgroup_int(r7, &(0x7f0000000200)=0x1, 0x12) 142.622746ms ago: executing program 0 (id=13): bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_group_source_req(r0, 0x0, 0x2e, 0x0, 0x0) setitimer(0x0, &(0x7f0000000000)={{0xffffffff}, {0x0, 0x82}}, 0x0) alarm(0xc8aa9c0000000000) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) getpid() r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuacct.usage_percpu\x00', 0x275a, 0x0) fcntl$lock(r1, 0x6, &(0x7f0000000000)={0x0, 0x0, 0x8}) fcntl$lock(r1, 0x26, &(0x7f0000000280)={0x1, 0x0, 0x9, 0xb6bc}) timer_create(0x0, &(0x7f0000000240)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=0x0) fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5}) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) timer_settime(r2, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0) r3 = socket$inet_udp(0x2, 0x2, 0x0) recvmsg(r3, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) 0s ago: executing program 1 (id=14): syz_mount_image$ext4(0x0, &(0x7f0000000440)='./file0\x00', 0x2915048, 0x0, 0x0, 0x0, &(0x7f00000002c0)) r0 = getpgrp(0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5) sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1f1) renameat2(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.174' (ED25519) to the list of known hosts. [ 75.495296][ T5760] cgroup: Unknown subsys name 'net' [ 75.630151][ T5760] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 77.243730][ T5760] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 78.889572][ T5777] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 78.897900][ T5777] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 78.906600][ T5777] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 78.914790][ T5777] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 78.923150][ T5777] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 78.930654][ T5777] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 78.939198][ T5785] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 78.966621][ T5779] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 78.983325][ T5779] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 78.991201][ T5785] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 78.998836][ T5777] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 79.000216][ T5785] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 79.007506][ T5777] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 79.014312][ T5785] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 79.027955][ T5777] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 79.029293][ T5785] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 79.040950][ T5777] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 79.045037][ T5785] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 79.056324][ T5083] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 79.082382][ T5785] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 79.083819][ T5777] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 79.098616][ T5777] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 79.135338][ T5779] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 79.142907][ T5779] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 79.538788][ T5774] chnl_net:caif_netlink_parms(): no params data found [ 79.654660][ T5772] chnl_net:caif_netlink_parms(): no params data found [ 79.666170][ T5773] chnl_net:caif_netlink_parms(): no params data found [ 79.777995][ T5774] bridge0: port 1(bridge_slave_0) entered blocking state [ 79.786350][ T5774] bridge0: port 1(bridge_slave_0) entered disabled state [ 79.793865][ T5774] bridge_slave_0: entered allmulticast mode [ 79.800938][ T5774] bridge_slave_0: entered promiscuous mode [ 79.818888][ T5774] bridge0: port 2(bridge_slave_1) entered blocking state [ 79.826096][ T5774] bridge0: port 2(bridge_slave_1) entered disabled state [ 79.833461][ T5774] bridge_slave_1: entered allmulticast mode [ 79.840526][ T5774] bridge_slave_1: entered promiscuous mode [ 79.873692][ T5771] chnl_net:caif_netlink_parms(): no params data found [ 79.920507][ T5774] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 79.947408][ T5773] bridge0: port 1(bridge_slave_0) entered blocking state [ 79.954753][ T5773] bridge0: port 1(bridge_slave_0) entered disabled state [ 79.962089][ T5773] bridge_slave_0: entered allmulticast mode [ 79.969040][ T5773] bridge_slave_0: entered promiscuous mode [ 79.987236][ T5774] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 80.016373][ T5773] bridge0: port 2(bridge_slave_1) entered blocking state [ 80.023672][ T5773] bridge0: port 2(bridge_slave_1) entered disabled state [ 80.030809][ T5773] bridge_slave_1: entered allmulticast mode [ 80.038179][ T5773] bridge_slave_1: entered promiscuous mode [ 80.098396][ T5772] bridge0: port 1(bridge_slave_0) entered blocking state [ 80.105698][ T5772] bridge0: port 1(bridge_slave_0) entered disabled state [ 80.112962][ T5772] bridge_slave_0: entered allmulticast mode [ 80.120027][ T5772] bridge_slave_0: entered promiscuous mode [ 80.132233][ T5774] team0: Port device team_slave_0 added [ 80.155628][ T5772] bridge0: port 2(bridge_slave_1) entered blocking state [ 80.162990][ T5772] bridge0: port 2(bridge_slave_1) entered disabled state [ 80.170123][ T5772] bridge_slave_1: entered allmulticast mode [ 80.177466][ T5772] bridge_slave_1: entered promiscuous mode [ 80.209886][ T5774] team0: Port device team_slave_1 added [ 80.237768][ T5771] bridge0: port 1(bridge_slave_0) entered blocking state [ 80.245652][ T5771] bridge0: port 1(bridge_slave_0) entered disabled state [ 80.252952][ T5771] bridge_slave_0: entered allmulticast mode [ 80.259887][ T5771] bridge_slave_0: entered promiscuous mode [ 80.270507][ T5773] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 80.302292][ T5772] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 80.314589][ T5772] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 80.323894][ T5771] bridge0: port 2(bridge_slave_1) entered blocking state [ 80.331114][ T5771] bridge0: port 2(bridge_slave_1) entered disabled state [ 80.338802][ T5771] bridge_slave_1: entered allmulticast mode [ 80.346433][ T5771] bridge_slave_1: entered promiscuous mode [ 80.355294][ T5773] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 80.375622][ T5774] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 80.384764][ T5774] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 80.411097][ T5774] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 80.424767][ T5774] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 80.431732][ T5774] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 80.458266][ T5774] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 80.510188][ T5773] team0: Port device team_slave_0 added [ 80.546366][ T5772] team0: Port device team_slave_0 added [ 80.568106][ T5771] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 80.579524][ T5773] team0: Port device team_slave_1 added [ 80.607361][ T5772] team0: Port device team_slave_1 added [ 80.626410][ T5771] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 80.673014][ T5774] hsr_slave_0: entered promiscuous mode [ 80.679615][ T5774] hsr_slave_1: entered promiscuous mode [ 80.700455][ T5771] team0: Port device team_slave_0 added [ 80.709732][ T5771] team0: Port device team_slave_1 added [ 80.716471][ T5773] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 80.723704][ T5773] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 80.750443][ T5773] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 80.763211][ T5773] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 80.770182][ T5773] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 80.796205][ T5773] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 80.808135][ T5772] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 80.815184][ T5772] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 80.841616][ T5772] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 80.889807][ T5772] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 80.897115][ T5772] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 80.923443][ T5772] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 80.935360][ T5771] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 80.942770][ T5771] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 80.969432][ T5771] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 81.007923][ T5771] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 81.015136][ T5771] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 81.041560][ T5771] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 81.084789][ T5773] hsr_slave_0: entered promiscuous mode [ 81.091327][ T5773] hsr_slave_1: entered promiscuous mode [ 81.098416][ T5773] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 81.106476][ T5773] Cannot create hsr debugfs directory [ 81.112763][ T5781] Bluetooth: hci0: command tx timeout [ 81.171637][ T5772] hsr_slave_0: entered promiscuous mode [ 81.179232][ T5772] hsr_slave_1: entered promiscuous mode [ 81.186879][ T5772] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 81.194614][ T5779] Bluetooth: hci3: command tx timeout [ 81.200666][ T5781] Bluetooth: hci2: command tx timeout [ 81.200675][ T5772] Cannot create hsr debugfs directory [ 81.212554][ T5779] Bluetooth: hci1: command tx timeout [ 81.312386][ T5771] hsr_slave_0: entered promiscuous mode [ 81.318798][ T5771] hsr_slave_1: entered promiscuous mode [ 81.326344][ T5771] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 81.334048][ T5771] Cannot create hsr debugfs directory [ 81.658307][ T5774] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 81.687290][ T5774] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 81.700250][ T5774] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 81.710606][ T5774] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 81.778198][ T5773] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 81.809082][ T5773] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 81.821395][ T5773] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 81.851874][ T5773] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 81.916376][ T5772] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 81.929761][ T5772] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 81.940303][ T5772] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 81.951285][ T5772] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 82.059178][ T5771] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 82.084685][ T5774] 8021q: adding VLAN 0 to HW filter on device bond0 [ 82.094827][ T5771] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 82.106198][ T5771] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 82.116824][ T5771] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 82.174392][ T5774] 8021q: adding VLAN 0 to HW filter on device team0 [ 82.225189][ T1102] bridge0: port 1(bridge_slave_0) entered blocking state [ 82.232599][ T1102] bridge0: port 1(bridge_slave_0) entered forwarding state [ 82.250101][ T5773] 8021q: adding VLAN 0 to HW filter on device bond0 [ 82.266891][ T1084] bridge0: port 2(bridge_slave_1) entered blocking state [ 82.274062][ T1084] bridge0: port 2(bridge_slave_1) entered forwarding state [ 82.334058][ T5773] 8021q: adding VLAN 0 to HW filter on device team0 [ 82.399145][ T56] bridge0: port 1(bridge_slave_0) entered blocking state [ 82.406351][ T56] bridge0: port 1(bridge_slave_0) entered forwarding state [ 82.421674][ T5772] 8021q: adding VLAN 0 to HW filter on device bond0 [ 82.465605][ T5772] 8021q: adding VLAN 0 to HW filter on device team0 [ 82.486724][ T1084] bridge0: port 2(bridge_slave_1) entered blocking state [ 82.494013][ T1084] bridge0: port 2(bridge_slave_1) entered forwarding state [ 82.526458][ T1102] bridge0: port 1(bridge_slave_0) entered blocking state [ 82.533676][ T1102] bridge0: port 1(bridge_slave_0) entered forwarding state [ 82.559794][ T5771] 8021q: adding VLAN 0 to HW filter on device bond0 [ 82.603177][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 82.610375][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 82.661376][ T5771] 8021q: adding VLAN 0 to HW filter on device team0 [ 82.720541][ T5773] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 82.745653][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 82.752866][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 82.763771][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 82.770940][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 82.929288][ T5774] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 83.054734][ T5774] veth0_vlan: entered promiscuous mode [ 83.104676][ T5774] veth1_vlan: entered promiscuous mode [ 83.171213][ T5774] veth0_macvtap: entered promiscuous mode [ 83.189270][ T5774] veth1_macvtap: entered promiscuous mode [ 83.195769][ T5781] Bluetooth: hci0: command tx timeout [ 83.235956][ T5774] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 83.248943][ T5774] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 83.272191][ T5781] Bluetooth: hci2: command tx timeout [ 83.272555][ T5779] Bluetooth: hci3: command tx timeout [ 83.277639][ T5781] Bluetooth: hci1: command tx timeout [ 83.291510][ T5774] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.301200][ T5774] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.310412][ T5774] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.326838][ T5774] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.348200][ T5773] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 83.526698][ T5773] veth0_vlan: entered promiscuous mode [ 83.549757][ T5771] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 83.584586][ T76] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.603596][ T76] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.619502][ T5773] veth1_vlan: entered promiscuous mode [ 83.676023][ T5772] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 83.705146][ T76] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.713874][ T76] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.720054][ T5773] veth0_macvtap: entered promiscuous mode [ 83.739236][ T5773] veth1_macvtap: entered promiscuous mode [ 83.803507][ T5772] veth0_vlan: entered promiscuous mode [ 83.834453][ T5773] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 83.850170][ T5773] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.866412][ T5773] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 83.888122][ T5771] veth0_vlan: entered promiscuous mode [ 83.896414][ T5773] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 83.909832][ T5773] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.922501][ T5773] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 83.947220][ T5772] veth1_vlan: entered promiscuous mode [ 83.974909][ T5773] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.993579][ T5773] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.017156][ T5773] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.032039][ T5773] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.068389][ T5831] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4'. [ 84.097016][ T5771] veth1_vlan: entered promiscuous mode [ 84.216628][ T5772] veth0_macvtap: entered promiscuous mode [ 84.256969][ T5772] veth1_macvtap: entered promiscuous mode [ 84.310165][ T5771] veth0_macvtap: entered promiscuous mode [ 84.331699][ T1084] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.349770][ T1084] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.350860][ T5772] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 84.368768][ T5772] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.379355][ T5772] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 84.390113][ T5772] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.404770][ T5772] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 84.416676][ T5772] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.427337][ T5772] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.438401][ T5772] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.448904][ T5772] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.460019][ T5772] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 84.469373][ T5771] veth1_macvtap: entered promiscuous mode [ 84.508183][ T5772] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.518632][ T5772] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.527589][ T5772] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.536765][ T5772] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.558128][ T56] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.573529][ T56] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.598544][ T5771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 84.617992][ T5771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.628985][ T5771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 84.646766][ T5771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.657109][ T5771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 84.667842][ T5771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.680375][ T5771] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 84.691705][ T5771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.706732][ T5771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.717301][ T5771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.728080][ T5771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.738433][ T5771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.749156][ T5771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.761047][ T5771] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 84.788364][ T5771] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.802167][ T5771] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.811716][ T5771] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.821583][ T5771] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.944640][ T1084] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.975474][ T1084] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.054204][ T76] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.066890][ T76] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.124861][ T1084] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.155172][ T1084] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.256290][ T56] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.275174][ T56] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.278351][ T5781] Bluetooth: hci0: command tx timeout [ 85.352130][ T5781] Bluetooth: hci1: command tx timeout [ 85.353751][ T5779] Bluetooth: hci3: command tx timeout [ 85.357887][ T5781] Bluetooth: hci2: command tx timeout [ 85.374498][ T5840] usb 2-1: new full-speed USB device number 2 using dummy_hcd [ 85.471515][ C1] hrtimer: interrupt took 979805 ns [ 85.624923][ T5840] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 85.688955][ T5840] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 85.716648][ T5840] usb 2-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00 [ 85.727909][ T5840] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 85.776485][ T5851] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 85.799268][ T5840] usb 2-1: config 0 descriptor?? [ 85.927288][ T5854] tipc: Enabling of bearer rejected, failed to enable media [ 86.199249][ T5854] syzkaller0: entered promiscuous mode [ 86.223100][ T5843] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 86.252777][ T5854] syzkaller0: entered allmulticast mode [ 86.281282][ T5843] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 86.404533][ T5840] elan 0003:04F3:0755.0001: unknown main item tag 0x0 [ 86.442408][ T5840] elan 0003:04F3:0755.0001: unknown main item tag 0x0 [ 86.480550][ T5840] elan 0003:04F3:0755.0001: unknown main item tag 0x0 [ 86.494780][ T5840] elan 0003:04F3:0755.0001: unknown main item tag 0x0 [ 86.517949][ T5840] elan 0003:04F3:0755.0001: unknown main item tag 0x0 [ 86.541048][ T5840] elan 0003:04F3:0755.0001: failed to start in urb: -90 [ 86.598780][ T5843] Zero length message leads to an empty skb [ 86.653996][ T5840] elan 0003:04F3:0755.0001: hidraw0: USB HID v1.01 Device [HID 04f3:0755] on usb-dummy_hcd.1-1/input0 [ 86.784757][ T5840] usb 2-1: USB disconnect, device number 2 [ 86.994973][ T5866] fido_id[5866]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory [ 87.352795][ T5781] Bluetooth: hci0: command tx timeout [ 87.432811][ T5781] Bluetooth: hci3: command tx timeout [ 87.437240][ T5779] Bluetooth: hci1: command tx timeout [ 87.602950][ T5878] syz.0.9[5878]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set [ 87.697561][ T5878] loop0: detected capacity change from 0 to 256 [ 87.769780][ T5878] FAT-fs (loop0): bogus logical sector size 128 [ 87.783018][ T5886] netlink: 8 bytes leftover after parsing attributes in process `syz.1.10'. [ 87.844968][ T5878] FAT-fs (loop0): Can't find a valid FAT filesystem [ 94.332399][ T0] NOHZ tick-stop error: local softirq work is pending, handler #144!!! [ 94.461833][ T0] NOHZ tick-stop error: local softirq work is pending, handler #04!!! [ 94.741915][ T0] NOHZ tick-stop error: local softirq work is pending, handler #144!!! [ 94.761831][ T0] NOHZ tick-stop error: local softirq work is pending, handler #04!!! [ 94.871816][ T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!! [ 94.941812][ T0] NOHZ tick-stop error: local softirq work is pending, handler #04!!! [ 95.001834][ T0] NOHZ tick-stop error: local softirq work is pending, handler #04!!! [ 95.061834][ T0] NOHZ tick-stop error: local softirq work is pending, handler #04!!! [ 95.121834][ T0] NOHZ tick-stop error: local softirq work is pending, handler #04!!! [ 95.151958][ T0] NOHZ tick-stop error: local softirq work is pending, handler #44!!! [ 196.031762][ C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 196.038919][ C1] rcu: Tasks blocked on level-0 rcu_node (CPUs 0-1): P48/1:b..l [ 196.047029][ C1] rcu: (detected by 1, t=10502 jiffies, g=10849, q=554 ncpus=2) [ 196.054786][ C1] task:kworker/u4:3 state:R running task stack:25256 pid:48 ppid:2 flags:0x00004000 [ 196.066259][ C1] Workqueue: bat_events batadv_nc_worker [ 196.071972][ C1] Call Trace: [ 196.075287][ C1] [ 196.078259][ C1] __schedule+0x1553/0x45a0 [ 196.082809][ C1] ? register_lock_class+0xc4/0x8a0 [ 196.088047][ C1] ? mark_lock+0x80/0x320 [ 196.092429][ C1] ? asan.module_dtor+0x20/0x20 [ 196.097316][ C1] ? mark_lock+0x94/0x320 [ 196.101696][ C1] ? lockdep_hardirqs_on_prepare+0x40d/0x770 [ 196.107726][ C1] ? preempt_schedule_irq+0xb4/0x150 [ 196.113052][ C1] preempt_schedule_irq+0xbf/0x150 [ 196.118204][ C1] ? preempt_schedule_notrace+0x110/0x110 [ 196.123985][ C1] ? rcu_irq_exit_check_preempt+0xdf/0x210 [ 196.129838][ C1] irqentry_exit+0x67/0x70 [ 196.134305][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 196.140364][ C1] RIP: 0010:lock_acquire+0x208/0x420 [ 196.145695][ C1] Code: f7 84 24 80 00 00 00 00 02 00 00 43 c6 44 3c 04 f8 0f 85 f0 00 00 00 41 f7 c6 00 02 00 00 74 01 fb 48 c7 44 24 60 0e 36 e0 45 <4b> c7 04 3c 00 00 00 00 43 c7 44 3c 08 00 00 00 00 65 48 8b 04 25 [ 196.165341][ C1] RSP: 0018:ffffc90000b97a40 EFLAGS: 00000206 [ 196.171455][ C1] RAX: 0000000000000001 RBX: 0000000000000000 RCX: f820ab22584f6900 [ 196.179458][ C1] RDX: 0000000000000000 RSI: ffffffff8acadd60 RDI: ffffffff8b1c9860 [ 196.187477][ C1] RBP: ffffc90000b97b48 R08: dffffc0000000000 R09: 1ffffffff2238ea0 [ 196.195480][ C1] R10: dffffc0000000000 R11: fffffbfff2238ea1 R12: 1ffff92000172f54 [ 196.203489][ C1] R13: ffffffff8d132160 R14: 0000000000000246 R15: dffffc0000000000 [ 196.211520][ C1] ? batadv_nc_worker+0xd2/0x610 [ 196.216504][ C1] ? read_lock_is_recursive+0x20/0x20 [ 196.221939][ C1] ? batadv_nc_worker+0xd2/0x610 [ 196.226923][ C1] batadv_nc_worker+0xef/0x610 [ 196.231732][ C1] ? batadv_nc_worker+0xd2/0x610 [ 196.236710][ C1] ? process_scheduled_works+0x96f/0x15d0 [ 196.242479][ C1] process_scheduled_works+0xa5d/0x15d0 [ 196.248100][ C1] ? worker_attach_to_pool+0x380/0x380 [ 196.253612][ C1] ? assign_work+0x3d2/0x5d0 [ 196.258258][ C1] worker_thread+0xa55/0xfc0 [ 196.262905][ C1] kthread+0x2fa/0x390 [ 196.267008][ C1] ? pr_cont_work+0x560/0x560 [ 196.271726][ C1] ? kthread_blkcg+0xd0/0xd0 [ 196.276349][ C1] ret_from_fork+0x48/0x80 [ 196.280806][ C1] ? kthread_blkcg+0xd0/0xd0 [ 196.285433][ C1] ret_from_fork_asm+0x11/0x20 [ 196.290251][ C1] [ 196.293316][ C1] rcu: rcu_preempt kthread starved for 10282 jiffies! g10849 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1 [ 196.304558][ C1] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 196.314548][ C1] rcu: RCU grace-period kthread stack dump: [ 196.320463][ C1] task:rcu_preempt state:R running task stack:26728 pid:17 ppid:2 flags:0x00004000 [ 196.331288][ C1] Call Trace: [ 196.334605][ C1] [ 196.337572][ C1] __schedule+0x1553/0x45a0 [ 196.342134][ C1] ? asan.module_dtor+0x20/0x20 [ 196.347025][ C1] ? enqueue_timer+0x4cd/0x550 [ 196.351838][ C1] ? __mod_timer+0x984/0xdb0 [ 196.356489][ C1] schedule+0xbd/0x170 [ 196.360593][ C1] schedule_timeout+0x188/0x2d0 [ 196.365504][ C1] ? console_conditional_schedule+0x40/0x40 [ 196.371439][ C1] ? _raw_spin_unlock_irqrestore+0x86/0x120 [ 196.377380][ C1] ? update_process_times+0x1b0/0x1b0 [ 196.382807][ C1] ? prepare_to_swait_event+0x339/0x360 [ 196.388400][ C1] rcu_gp_fqs_loop+0x313/0x1590 [ 196.393290][ C1] ? rcu_gp_init+0x1162/0x1560 [ 196.398112][ C1] ? rcu_gp_kthread+0x3b0/0x3b0 [ 196.403003][ C1] ? dyntick_save_progress_counter+0x2b0/0x2b0 [ 196.409204][ C1] ? rcu_gp_init+0x1560/0x1560 [ 196.414002][ C1] ? rcu_gp_cleanup+0xb41/0xc90 [ 196.418907][ C1] ? _raw_spin_unlock_irq+0x23/0x50 [ 196.424149][ C1] ? lockdep_hardirqs_on+0x98/0x150 [ 196.429408][ C1] rcu_gp_kthread+0x9d/0x3b0 [ 196.434126][ C1] ? rcu_report_qs_rsp+0x1a0/0x1a0 [ 196.439286][ C1] ? __kthread_parkme+0x7a/0x1c0 [ 196.444271][ C1] ? __kthread_parkme+0x162/0x1c0 [ 196.449338][ C1] kthread+0x2fa/0x390 [ 196.453454][ C1] ? rcu_report_qs_rsp+0x1a0/0x1a0 [ 196.458611][ C1] ? kthread_blkcg+0xd0/0xd0 [ 196.463238][ C1] ret_from_fork+0x48/0x80 [ 196.467712][ C1] ? kthread_blkcg+0xd0/0xd0 [ 196.472341][ C1] ret_from_fork_asm+0x11/0x20 [ 196.477173][ C1] [ 196.480245][ C1] rcu: Stack dump where RCU GP kthread last ran: [ 196.486626][ C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted syzkaller #0 [ 196.493683][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 196.503771][ C1] RIP: 0010:pv_native_safe_halt+0xf/0x10 [ 196.509457][ C1] Code: b9 20 02 c3 cc cc cc cc cc cc cc f3 0f 1e fa 0f 0b 66 2e 0f 1f 84 00 00 00 00 00 f3 0f 1e fa 66 90 0f 00 2d c3 54 41 00 fb f4 66 0f 1f 00 55 41 57 41 56 41 54 53 50 8b 2f eb 2e 41 89 de 80 [ 196.529110][ C1] RSP: 0018:ffffc90000187de0 EFLAGS: 000002c6 [ 196.535219][ C1] RAX: ce353e419ebc3f00 RBX: ffffffff8162affd RCX: ce353e419ebc3f00 [ 196.543234][ C1] RDX: 0000000000000001 RSI: ffffffff8acacbe0 RDI: ffffffff8b1c9860 [ 196.551240][ C1] RBP: ffffc90000187f20 R08: ffff8880b8f36b2b R09: 1ffff110171e6d65 [ 196.559254][ C1] R10: dffffc0000000000 R11: ffffed10171e6d66 R12: 1ffff92000030fc8 [ 196.567279][ C1] R13: dffffc0000000000 R14: 1ffff110037cc780 R15: 0000000000000000 [ 196.575301][ C1] FS: 0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 196.584267][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 196.590888][ C1] CR2: 00007f4263f63e80 CR3: 0000000077fde000 CR4: 00000000003506e0 [ 196.598892][ C1] Call Trace: [ 196.602207][ C1] [ 196.605189][ C1] default_idle+0x13/0x20 [ 196.609588][ C1] default_idle_call+0x6c/0xa0 [ 196.614411][ C1] do_idle+0x33d/0x590 [ 196.618615][ C1] ? idle_inject_timer_fn+0x60/0x60 [ 196.623931][ C1] ? _raw_spin_unlock_irqrestore+0x86/0x120 [ 196.629867][ C1] ? lockdep_hardirqs_on+0x98/0x150 [ 196.635120][ C1] ? _raw_spin_unlock_irqrestore+0xc5/0x120 [ 196.641057][ C1] ? _raw_spin_unlock+0x40/0x40 [ 196.645954][ C1] cpu_startup_entry+0x43/0x60 [ 196.650801][ C1] start_secondary+0xee/0xf0 [ 196.655439][ C1] secondary_startup_64_no_verify+0x179/0x17b [ 196.661663][ C1]