last executing test programs: 5.3488929s ago: executing program 1 (id=428): bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x16, 0x0, 0x6, 0x4, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x1f, 0x2, &(0x7f0000001c40)=ANY=[@ANYBLOB="85000000a800000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x13, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xd, 0x4, 0x4, 0x3, 0x141, r0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) socketpair$unix(0x1, 0x3, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000380)='sched_switch\x00'}, 0x10) r3 = socket(0x10, 0x803, 0x0) sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000080)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="140001000040000000000000000000000000000014000200fe8000000000000000000000000000aa140006"], 0x54}, 0x1, 0x0, 0x0, 0x800}, 0x80) r4 = syz_init_net_socket$llc(0x1a, 0x1, 0x0) sendmmsg$sock(r4, &(0x7f0000000cc0)=[{{&(0x7f0000000100)=@l2tp={0x2, 0x0, @broadcast, 0x3}, 0x80, 0x0}}], 0x1, 0x48094) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='blkio.bfq.io_queued\x00', 0x275a, 0x0) write$cgroup_int(r5, &(0x7f0000000000), 0xffffff6a) sendfile(r4, r5, 0x0, 0xffffffff000) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000024c0), &(0x7f0000001280), 0x2, r2}, 0x27) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce6203c23c00fe80000000000000875a65969ff57b00000000000000000000000000ac1414aa2c"], 0xfdef) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000100)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5, @void, @value}, 0x94) r6 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r6, 0x5, 0xb68, 0x1300, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) 4.724829249s ago: executing program 1 (id=430): r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r2 = dup(r1) write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c) syz_io_uring_setup(0x239, 0x0, &(0x7f0000000180)=0x0, 0x0) syz_io_uring_submit(r3, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) r4 = socket$inet6_udp(0xa, 0x2, 0x0) sendmsg$inet(r4, &(0x7f0000002500)={&(0x7f0000000000)={0x2, 0x4e21, @private=0xa010100}, 0x10, 0x0, 0x0, &(0x7f0000000040)=[@ip_retopts={{0xc}}], 0xc}, 0x48800) add_key$user(&(0x7f0000000480), &(0x7f00000004c0)={'syz', 0x3}, &(0x7f0000000280), 0x0, 0x0) sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0) r5 = socket$netlink(0x10, 0x3, 0xc) bind$netlink(r5, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r5, 0x10e, 0x4, &(0x7f0000000140)=0x6, 0x4) openat$vsock(0xffffff9c, &(0x7f00000002c0), 0x80100, 0x0) setsockopt$sock_int(r5, 0x1, 0x8, &(0x7f0000000200), 0x4) r6 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="980000000001010400000000000000000a0000003c0001802c00018014000300fe8000000000000000000000000000aa14000400ff0100000000000000000000000000010c00028005000100000000003c0002802c00018014000300fe8000000000000000000000000000aa14000400fe8800000000000000000000000000010c0002800500010000000000080007"], 0x98}}, 0x0) r7 = socket$nl_netfilter(0x10, 0x3, 0xc) r8 = socket$inet6_sctp(0xa, 0x5, 0x84) sendmmsg$inet6(r8, &(0x7f0000003500)=[{{0x0, 0x0, &(0x7f0000001480)=[{&(0x7f0000001040)}], 0x1}}], 0x1, 0x4004851) setsockopt(r8, 0x84, 0x11, 0x0, 0x0) sendmsg$IPCTNL_MSG_CT_NEW(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000002800)={0x94, 0x0, 0x1, 0x401, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @loopback}, {0x14, 0x4, @local}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}]}, 0x94}, 0x1, 0x0, 0x0, 0x4}, 0x0) sendmsg$IPCTNL_MSG_CT_DELETE(r7, &(0x7f0000000100)={0x0, 0xff88, &(0x7f0000000380)={&(0x7f0000000300)={0x14, 0x2, 0x1, 0x801, 0x0, 0x0, {0x0, 0x0, 0x2}}, 0x14}, 0x1, 0x0, 0x0, 0x8094}, 0x4) 4.400464604s ago: executing program 0 (id=431): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, 0x0, 0x0) bind$inet(r0, 0x0, 0x0) sendto$inet(r0, 0x0, 0x0, 0x200007ed, &(0x7f0000008400)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x43}}, 0x10) 4.347849018s ago: executing program 0 (id=432): socket$igmp6(0xa, 0x3, 0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) init_module(&(0x7f0000000100)={{0x7f, 0x45, 0x4c, 0x46, 0x7, 0xff, 0x4, 0xfc, 0xffffffffffffffff, 0x3, 0x6, 0x8, 0x190, 0x40, 0x278, 0x10, 0x4, 0x38, 0x2, 0xe9, 0x8, 0xc}, [], "8202bdbe1aeb0f28648055f1d5740d47"}, 0xfffd8, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x1, 0xc}, &(0x7f0000001fee)='R\x10suse\x00\x00\x00\x00\x00\x00\x00dn\x00\x00\x00', 0x0) r3 = openat$fb0(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) r4 = socket$l2tp6(0xa, 0x2, 0x73) bind$inet6(r4, &(0x7f0000000000)={0xa, 0x4e20, 0x80000000, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0xf}, 0x1c) ioctl$FBIOPUT_VSCREENINFO(r3, 0x4601, &(0x7f0000000380)={0x3c0, 0x78, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, 0x8, 0x3, 0x1ff, 0x3d, 0x5, 0x3, 0x53, 0x202, 0x1, 0xc}) r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0) r6 = add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, &(0x7f00000000c0)="ff", 0x1, 0xffffffffffffffff) r7 = add_key$user(&(0x7f0000000380), &(0x7f0000000000)={'syz', 0x0}, &(0x7f0000000580)='X', 0x1, 0xfffffffffffffffe) keyctl$dh_compute(0x17, &(0x7f0000000080)={r7, 0x0, r6}, 0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000280)={'sha1-generic\x00'}}) r8 = socket$nl_generic(0x10, 0x3, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x16, 0x14, &(0x7f00000004c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x9}, {}, {}, [@ldst={0x3, 0x2, 0x0, 0x0, 0x7, 0xffffffffffffffe0, 0x4237ec21d2974be}, @map_idx_val={0x18, 0xb, 0x6, 0x0, 0x9, 0x0, 0x0, 0x0, 0x8}, @map_fd={0x18, 0xb, 0x1, 0x0, 0x1}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, 0x0, 0x415, 0x14, &(0x7f0000000440)=""/20, 0x41000, 0xd, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x8, &(0x7f0000000640)={0x0, 0x1}, 0x8, 0x10, &(0x7f0000000680)={0x3, 0x9, 0x800, 0x1000}, 0x10, 0x0, r5, 0x1, 0x0, &(0x7f0000000700)=[{0x8, 0x2, 0xf, 0x9}], 0x10, 0x250, @void, @value}, 0x94) r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="050000000000000600000600000008000300", @ANYRES32=r10, @ANYBLOB="1fc430b5ba"], 0x24}}, 0x0) socket$inet6_sctp(0xa, 0x5, 0x84) 4.062497242s ago: executing program 2 (id=434): r0 = socket(0x1, 0x3, 0x20c) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x9, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x79, 0x10, 0x30}, [@ldst={0x5}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f0000000080)=""/204, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x4f, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='new user:syz 000000000000000'], 0x2a, 0xfffffffffffffffc) add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) socket$nl_xfrm(0x10, 0x3, 0x6) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f0000000000), 0x4) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2) read$FUSE(0xffffffffffffffff, 0x0, 0x0) ioctl$BLKZEROOUT(0xffffffffffffffff, 0x127f, &(0x7f00000000c0)={0x0, 0x80600}) r5 = socket$inet_smc(0x2b, 0x1, 0x0) connect$inet(r5, &(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10) setsockopt$SO_BINDTODEVICE_wg(r5, 0x1, 0x19, &(0x7f0000000080)='wg1\x00', 0x4) sendto$inet(r5, &(0x7f0000000040)="e5", 0xffffffe4, 0x0, 0x0, 0x0) unshare(0x40020000) ioctl$F2FS_IOC_WRITE_CHECKPOINT(r0, 0xf507, 0x0) socket$pppl2tp(0x18, 0x1, 0x1) 4.044332027s ago: executing program 1 (id=435): r0 = socket(0x1, 0x3, 0x20c) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x9, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x79, 0x10, 0x30}, [@ldst={0x5}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f0000000080)=""/204, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x4f, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='new user:syz 000000000000000'], 0x2a, 0xfffffffffffffffc) add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) socket$nl_xfrm(0x10, 0x3, 0x6) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f0000000000), 0x4) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) read$FUSE(0xffffffffffffffff, 0x0, 0x0) ioctl$BLKZEROOUT(0xffffffffffffffff, 0x127f, &(0x7f00000000c0)={0x0, 0x80600}) r4 = socket$inet_smc(0x2b, 0x1, 0x0) connect$inet(r4, &(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10) setsockopt$SO_BINDTODEVICE_wg(r4, 0x1, 0x19, &(0x7f0000000080)='wg1\x00', 0x4) sendto$inet(r4, &(0x7f0000000040)="e5", 0xffffffe4, 0x0, 0x0, 0x0) unshare(0x40020000) ioctl$F2FS_IOC_WRITE_CHECKPOINT(r0, 0xf507, 0x0) socket$pppl2tp(0x18, 0x1, 0x1) 3.448790394s ago: executing program 3 (id=436): socket$igmp6(0xa, 0x3, 0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) init_module(&(0x7f0000000100)={{0x7f, 0x45, 0x4c, 0x46, 0x7, 0xff, 0x4, 0xfc, 0xffffffffffffffff, 0x3, 0x6, 0x8, 0x190, 0x40, 0x278, 0x10, 0x4, 0x38, 0x2, 0xe9, 0x8, 0xc}, [], "8202bdbe1aeb0f28648055f1d5740d47"}, 0xfffd8, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x1, 0xc}, &(0x7f0000001fee)='R\x10suse\x00\x00\x00\x00\x00\x00\x00dn\x00\x00\x00', 0x0) r3 = openat$fb0(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) r4 = socket$l2tp6(0xa, 0x2, 0x73) bind$inet6(r4, &(0x7f0000000000)={0xa, 0x4e20, 0x80000000, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0xf}, 0x1c) ioctl$FBIOPUT_VSCREENINFO(r3, 0x4601, &(0x7f0000000380)={0x3c0, 0x78, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, 0x8, 0x3, 0x1ff, 0x3d, 0x5, 0x3, 0x53, 0x202, 0x1, 0xc}) r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0) r6 = add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, &(0x7f00000000c0)="ff", 0x1, 0xffffffffffffffff) r7 = add_key$user(&(0x7f0000000380), &(0x7f0000000000)={'syz', 0x0}, &(0x7f0000000580)='X', 0x1, 0xfffffffffffffffe) r8 = add_key$user(&(0x7f0000000200), &(0x7f00000005c0), &(0x7f00000000c0), 0x390, 0xfffffffffffffffd) keyctl$dh_compute(0x17, &(0x7f0000000080)={r7, r8, r6}, 0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000280)={'sha1-generic\x00'}}) r9 = socket$nl_generic(0x10, 0x3, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x16, 0x14, &(0x7f00000004c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x9}, {}, {}, [@ldst={0x3, 0x2, 0x0, 0x0, 0x7, 0xffffffffffffffe0, 0x4237ec21d2974be}, @map_idx_val={0x18, 0xb, 0x6, 0x0, 0x9, 0x0, 0x0, 0x0, 0x8}, @map_fd={0x18, 0xb, 0x1, 0x0, 0x1}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000340)='GPL\x00', 0x415, 0x14, &(0x7f0000000440)=""/20, 0x41000, 0xd, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x8, &(0x7f0000000640)={0x0, 0x1}, 0x8, 0x10, &(0x7f0000000680)={0x3, 0x9, 0x800, 0x1000}, 0x10, 0x0, r5, 0x1, 0x0, &(0x7f0000000700)=[{0x8, 0x2, 0xf, 0x9}], 0x10, 0x250, @void, @value}, 0x94) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r9, 0x8933, &(0x7f00000000c0)={'wlan0\x00'}) sendmsg$NL80211_CMD_SET_INTERFACE(r9, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x24}}, 0x0) socket$inet6_sctp(0xa, 0x5, 0x84) 3.279749566s ago: executing program 0 (id=437): r0 = creat(&(0x7f0000000100)='./file0\x00', 0x3) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x1f00, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) write$qrtrtun(r0, &(0x7f0000000300)="ca0e808bb35bda", 0x7) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r1, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000004c0)=[0x7], &(0x7f0000000500)=[0x2], 0x0, 0x2000000000000088}}, 0x40) (fail_nth: 13) 2.897451795s ago: executing program 0 (id=438): socket$nl_generic(0x10, 0x3, 0x10) write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000140)=ANY=[], 0x15) r0 = dup(0xffffffffffffffff) chdir(&(0x7f0000000080)='./file0\x00') sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x94, 0x30, 0x1, 0x0, 0x0, {}, [{0x80, 0x1, [@m_ct={0x44, 0x12, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x80000000, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_tunnel_key={0x38, 0xf, 0x0, 0x0, {{0xf}, {0x4}, {0x6, 0x6, "ccbd"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x957d6e28f24f8add, 0x3}}}}]}]}, 0x94}, 0x1, 0x0, 0x0, 0x804}, 0x4000090) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) setpriority(0x2, 0x0, 0x17) r4 = socket$netlink(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r4, &(0x7f0000000300)={0x0, 0x500, &(0x7f0000001200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="38000000000000002dbd7000000000000900020073797a3000000000080041007369770014003300"/56], 0x38}, 0x1, 0x0, 0x0, 0x854}, 0x0) r5 = socket(0x10, 0x3, 0x0) sendto$inet6(r5, &(0x7f0000000000)="7800000018002507b9409b14ffff00000204be04020506050e0204094300080004000000040010000d0068d0bf46d32345653600648d0a0012000200000049935ade4a460c89b6ec0cff3959547f509058ba86c902000000004a32000400160005000a0000000000e000e218d1ddf66ed538f25232500000", 0x78, 0x0, 0x0, 0x0) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000280)={r0, 0x58, &(0x7f0000000340)}, 0x44) r6 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$DVD_WRITE_STRUCT(r6, 0x2284, &(0x7f0000000d40)=@manufact={0x4, 0x3, 0x800, "a14a281a5f0e56f24c413a03179ed8f7a2735f838cf59e262823a5ece84fc70e6622736e90009c9f88cf400d60069dc5307b3f2c2fee5eb5fe2b1ccf1b4f22364949561cec4439bd6d0bbd8a560571bc93e1dc0f9841db8da39c6fd778f27f3e7cab3134ad670d6f15efa5c37c4e5294b9d324b9b17d4e2f7c0cf951ff2104b750b068dd316f12f61073c27414e815f9e3cb98bc4e0607484a5b207a62e22c87d2680f5bc3ead325888529c8c3342584d313214d20f3e73b6da8e7008436719759e875412fc1ec6ba29f8752cf75947a38e862aa72321892e87ac977f5f96591a854a81e08fd3385ba9dbae6c69cf33236300ec455c505ab694a817d735fdeebff910df2b7c2ad6f8637b844296711946728dd0ea8a50cd7aa2a9c02900727a844862b0790e12e967751666fc2f3c7ac929b56efb5341ae7c40760e0c12beddeda5cc84941f7db8ad0488c77bfd0b04cc34e3489f94f2b4e25f4480622e9efffd954a3a2fad4c21e8a69886d6cff15d8e6ec54271efca69152009c5b025a47a56afd636b3fb3115d44b39106d2d74b752ee13e3923464f005b7c7f9f3af87610a8be9dd98a1d099a3de1af788383f741be5fe07483457ae4d89ec1114a7c3e4d603a923121a620c18dafcdda3a6e93820b7b5abc137c7e2804a0b67deff3069fcbf84e4632e80d96ae6dcf5a3445530e5e30a026376deac1ece803c8ac95f71cbae5676f58ac4896046bb31df5cc010445d0471e7cfa8465cc343e07b5d154399a0a3a90e16791f3e3f57d152a0462e11ec8221cae2b89c88a583bacd8216e626db0fc0e02f4b067d3940f6573b004a27175376aad22a3ae006702eea275565296eb6994974f41779060f760a4fbe0927239d7309798fbebc5305570bc340d7cfa5a5be428ba9c2f61920dfc619f1f7821a929925a9d6810886183ac56f50d94be84fd2b7d5d04bc0b1807d6a4acb50af285ce351a65abac37adb8286b02c174ecef948ddb91b490d47e613e609c11f82084f444ae6fd59ccd8701cdfc3e25e43374598c2b25728f9cc715cb6605ecea6a63b59d4d3a3057f1cee8323d61cc25766e8b63110a92724715b0c7fcd219cb30db3287623fe7b63eec6c385467635becba1177e06965260554860e7d4a4b8d22fcb4acc3f9f97a6eac6d730f8f950b35c7e72a19e1b14365443f0248cb53a5927c7451d407a019b2551182c4519c03347f68ee2c5b9129e6b8ac2b55b409be7a73fa1139a327eca22c638867cca324189d409f186384e1a0185149101842a16137c173cf284f7efad5e9f26b8a3527395814d8427d0742d0e3f30ef77aa9ac29b0541f2abf93ab8e5e9627c80add843515bf1a252781daa8614017b28a8223069070d96498a8427bf583f033f8c0cc1a505e8dd4a447b454c571ad7dd27b25ce0b1b664fc3dc1594a8083d3fbb56d46e39a1466bb534a28a8557e20fa88bef6b100827fb443b1f7906c30c542d820075650cc6a6a6e7ea6ed7477724f35f926ac7bbd1760183ea16867043e795d08fa8e73e07a1b9629df33cd6ee1e9803a39d2c690ceb9740e80e8afaecccfe1c9da5856672074fc655e2d47b9ee5e9b1c05e5d25c061fcaaeea3c8b404db78ca970ae220428d8ccaadc2ed3ab9ee949a8fb9ca78557839d2e74f5014604b05c9aa75f54627e6802df1ef700c539f8e2ee328a05a037bb7d359d8bc4c87a546bc213c8aa8b4c4259f251dc836c6bf6105c8c6656a30d75a35fdd502bc253f6d27b284999e6d3b03b82063241f164ad061d0557bd30be4c9b2dc72d9c39c2bdad63831e613f10bfc78e60819773e57a566020b1bf2c9b26e77a98e7a19e4bea15d1cc4e972478797553340fefa07bbc3031fcefd66d9c3e5cccb1de231d4a24a66ee2e31dc86377bee6d547a3b0e9021c6288176d070440285881462c73aff292a75eab3dd3009beb10c19e9bd814e0ce5d3dc91f19ec76eb221429ce5f27f4f4fd8c5b2e4333eac483710a07c61c7d4724405b74f93521c21d6e389d465d2d045def4fe097b9d448c777acbc5663453a5e35ccb07c8ec381d31256ed8fb7ffb1f58cae14c86582fc191d34cb65dc0496da9c469ed301c90c9c33ebb099ed7859078056e0582935c3bd516264ccc3d810e88e9460d6e968b81b3f54d168aa17ff89a296a541588eb0c83bf65e7ba17d48700e985063db09fa707459e413f4834299b18ca3618f13348200acf91cc6f41c564ac35c3d6df2fdad028c4ee2e007b901d6f2d8b3b7e0a9921908f90aea61e6f34f94a982c49149183165db77bc9e6f5346123bd3b2679a4100e6b44d7e38b199686f3dad87444de2a12dcf611afd10c5b38e9589845ae5821f88a130ae5dee1ba9f80845b35c1965fbe81e464f698641a2c43bef04db5ba1512b978f3fed673e20b5e0af512de2d9b0174b7926451f04a68c23e0e17b28dff05a10cbee530bb7eb6efa1ae82021e655a885191d68be0788be4ac7bbce63e8cb07975f83272154a427ec37dbb66438a262a8697d2072b847e2f6df3efc37c712302a0b619cf63203b836dcfcd5c44e53f0bed8c00d4f6c38a913aca624fc5c5cf7c6401a14efcef0082fa0d7226311d23c6f4d03996f349fd4ba2ffda98503ef447da38e60cfa532cbc897d56a11b0d3ba428c1fb999d8d9b0f202fe9015054ec6fa99d22338b2850037940a7dd7ff93a6270c9781f290de4b2d5b2f0db589fc21b7d127a7604295eb6544ccc10ec7c06bcd7232feadaf98f7485bcc1e591fcb303f3d23ecf77daf3771c284c5e96e88e14b4c3ea4684bff6069e4a24cddc5a61057dcad4d09ceb938b0d350881309a23e05bcb3a2e06d7e9196648cfe52fda78fe98debd221600"}) openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000240)) unshare(0x600) r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x12, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) r8 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r7, r8, 0x5, 0x0, 0x0, @void, @value}, 0x10) 2.896924834s ago: executing program 1 (id=439): socket$nl_generic(0x10, 0x3, 0x10) write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000140)=ANY=[], 0x15) r0 = dup(0xffffffffffffffff) chdir(&(0x7f0000000080)='./file0\x00') sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x94, 0x30, 0x1, 0x0, 0x0, {}, [{0x80, 0x1, [@m_ct={0x44, 0x12, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x80000000, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_tunnel_key={0x38, 0xf, 0x0, 0x0, {{0xf}, {0x4}, {0x6, 0x6, "ccbd"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x957d6e28f24f8add, 0x3}}}}]}]}, 0x94}, 0x1, 0x0, 0x0, 0x804}, 0x4000090) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) setpriority(0x2, 0x0, 0x17) r4 = socket$netlink(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r4, &(0x7f0000000300)={0x0, 0x500, &(0x7f0000001200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="38000000000000002dbd7000000000000900020073797a3000000000080041007369770014003300"/56], 0x38}, 0x1, 0x0, 0x0, 0x854}, 0x0) r5 = socket(0x10, 0x3, 0x0) sendto$inet6(r5, &(0x7f0000000000)="7800000018002507b9409b14ffff00000204be04020506050e0204094300080004000000040010000d0068d0bf46d32345653600648d0a0012000200000049935ade4a460c89b6ec0cff3959547f509058ba86c902000000004a32000400160005000a0000000000e000e218d1ddf66ed538f25232500000", 0x78, 0x0, 0x0, 0x0) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000280)={r0, 0x58, &(0x7f0000000340)}, 0x44) r6 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$DVD_WRITE_STRUCT(r6, 0x2284, &(0x7f0000000d40)=@manufact={0x4, 0x3, 0x800, "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"}) openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000240)) unshare(0x600) r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x12, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) r8 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r7, r8, 0x5, 0x0, 0x0, @void, @value}, 0x10) 2.895467727s ago: executing program 2 (id=440): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, 0x0, 0x0) bind$inet(r0, 0x0, 0x0) sendto$inet(r0, 0x0, 0x0, 0x200007ed, &(0x7f0000008400)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x43}}, 0x10) 2.895166817s ago: executing program 2 (id=441): r0 = syz_open_dev$vbi(&(0x7f00000000c0), 0x3, 0x2) ioctl$VIDIOC_SUBDEV_DV_TIMINGS_CAP(r0, 0xc0905664, &(0x7f0000000380)={0x0, 0x0, '\x00', @raw_data=[0x10001, 0x4, 0x9, 0x200, 0x7fffffff, 0xdb, 0x1, 0x7, 0x1, 0x9078, 0x80000001, 0x3, 0xe00, 0x0, 0x8, 0x200, 0xfffffff9, 0x2a72, 0x0, 0x1, 0xfffffffd, 0xbc7, 0x2, 0x0, 0x8, 0x9, 0x1, 0xffff, 0x2, 0x4, 0x800, 0x4]}) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="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"], 0x110}, 0x1, 0x0, 0x0, 0x1}, 0x0) 2.895001209s ago: executing program 2 (id=442): r0 = socket(0x1, 0x3, 0x20c) bpf$PROG_LOAD(0x5, 0x0, 0x0) keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='new user:syz 000000000000000'], 0x2a, 0xfffffffffffffffc) add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) socket$nl_xfrm(0x10, 0x3, 0x6) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f0000000000), 0x4) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r5 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) read$FUSE(r5, 0x0, 0x0) ioctl$BLKZEROOUT(0xffffffffffffffff, 0x127f, &(0x7f00000000c0)={0x0, 0x80600}) r6 = socket$inet_smc(0x2b, 0x1, 0x0) connect$inet(r6, &(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10) setsockopt$SO_BINDTODEVICE_wg(r6, 0x1, 0x19, &(0x7f0000000080)='wg1\x00', 0x4) sendto$inet(r6, &(0x7f0000000040)="e5", 0xffffffe4, 0x0, 0x0, 0x0) unshare(0x40020000) ioctl$F2FS_IOC_WRITE_CHECKPOINT(r0, 0xf507, 0x0) socket$pppl2tp(0x18, 0x1, 0x1) 2.159253042s ago: executing program 3 (id=443): r0 = socket$tipc(0x1e, 0x2, 0x0) bind$tipc(r0, &(0x7f0000000400)=@nameseq={0x1e, 0x1, 0x3, {0x42, 0x0, 0x2}}, 0x10) setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000000)={0x42, 0x1}, 0x10) r1 = socket$tipc(0x1e, 0x2, 0x0) bind$tipc(r1, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x1, 0x4}}, 0x10) setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000240)={0x42, 0x1}, 0x10) r2 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_RX_RING(r2, 0x11b, 0x2, &(0x7f0000000040)=0x20, 0x4) r3 = socket$netlink(0x10, 0x3, 0x400000000000004) writev(r3, &(0x7f0000019440)=[{&(0x7f0000000200)="480000001400190d7ebdeb75fd0d8c562c84d8c033ed7a80ffe0090f000060000000a2bc5603ca00000f7f89000000200000004a2471083ec6991778581acb6c0101ff0000000309", 0x48}], 0x1) r4 = dup3(r1, r0, 0x0) r5 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_TX_RING(r5, 0x11b, 0x3, &(0x7f0000000380)=0x8, 0x4) r6 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r6, 0x8933, &(0x7f0000000280)={'batadv_slave_1\x00', 0x0}) r8 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_REG(r8, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c) setsockopt$XDP_UMEM_COMPLETION_RING(r8, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4) r9 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$XDP_RX_RING(r8, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r9, 0x8933, &(0x7f0000000580)={'batadv_slave_1\x00', 0x0}) setsockopt$XDP_UMEM_FILL_RING(r8, 0x11b, 0x5, &(0x7f0000000300)=0x1, 0x4) bind$xdp(r8, &(0x7f0000000100)={0x2c, 0x0, r10}, 0x10) bind$xdp(r5, &(0x7f0000000240)={0x2c, 0x1, r7, 0x0, r8}, 0x60) sendmsg$nl_route_sched(r4, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)=@delqdisc={0x24, 0x25, 0x100, 0x70bd2d, 0x25dfdbfb, {0x0, 0x0, 0x0, r7, {0x8, 0x4}, {0x10}, {0xfff3, 0x6}}}, 0x24}, 0x1, 0x0, 0x0, 0x41}, 0x0) syz_emit_ethernet(0x9e, &(0x7f0000000000)={@local, @broadcast, @void, {@ipv4={0x800, @tipc={{0x5, 0x4, 0x0, 0x7, 0x90, 0x67, 0x0, 0xf, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote}, @name_distributor={{0x7c, 0x0, 0x0, 0x0, 0x0, 0xa, 0xb, 0x2, 0x8000, 0x0, 0x1, 0x0, 0xec, 0x2, 0x4e23, 0x4e24, 0x3, 0x1, 0x0, 0x0, 0x1}, [{0x8, 0x81, 0x3e, 0x9, 0xffffffff, 0x800, 0x9, 0x2}, {0x8, 0x4, 0xf9ca, 0xf67e, 0x3, 0x8, 0x8, 0x136}, {0x0, 0xfff, 0x8, 0x6, 0x6, 0x4, 0x1, 0x810000}]}}}}}, 0x0) 2.078013831s ago: executing program 3 (id=444): get_mempolicy(&(0x7f0000000040), &(0x7f00000001c0), 0x7e, &(0x7f0000ffc000/0x3000)=nil, 0x7) r0 = socket$nl_rdma(0x10, 0x3, 0x14) remap_file_pages(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000000, 0x40, 0x1) sendmsg$RDMA_NLDEV_CMD_STAT_DEL(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffee7, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="28000000121401"], 0x28}}, 0x4000) r1 = openat$binder_debug(0xffffff9c, &(0x7f0000000100)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) setresgid(0xee00, 0xee01, 0x0) setgroups(0x0, 0x0) r2 = openat$yama_ptrace_scope(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) setresuid(0x0, 0xee00, 0x0) read(r2, 0x0, 0x0) bind$alg(r1, &(0x7f0000000140)={0x26, 'hash\x00', 0x0, 0x0, 'sha256-avx\x00'}, 0x58) 2.077392312s ago: executing program 3 (id=445): socket$igmp6(0xa, 0x3, 0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) init_module(&(0x7f0000000100)={{0x7f, 0x45, 0x4c, 0x46, 0x7, 0xff, 0x4, 0xfc, 0xffffffffffffffff, 0x3, 0x6, 0x8, 0x190, 0x40, 0x278, 0x10, 0x4, 0x38, 0x2, 0xe9, 0x8, 0xc}, [], "8202bdbe1aeb0f28648055f1d5740d47"}, 0xfffd8, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x1, 0xc}, &(0x7f0000001fee)='R\x10suse\x00\x00\x00\x00\x00\x00\x00dn\x00\x00\x00', 0x0) r3 = openat$fb0(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) r4 = socket$l2tp6(0xa, 0x2, 0x73) bind$inet6(r4, &(0x7f0000000000)={0xa, 0x4e20, 0x80000000, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0xf}, 0x1c) ioctl$FBIOPUT_VSCREENINFO(r3, 0x4601, &(0x7f0000000380)={0x3c0, 0x78, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, 0x8, 0x3, 0x1ff, 0x3d, 0x5, 0x3, 0x53, 0x202, 0x1, 0xc}) r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0) r6 = add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, &(0x7f00000000c0)="ff", 0x1, 0xffffffffffffffff) r7 = add_key$user(&(0x7f0000000200), &(0x7f00000005c0), &(0x7f00000000c0), 0x390, 0xfffffffffffffffd) keyctl$dh_compute(0x17, &(0x7f0000000080)={0x0, r7, r6}, 0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000280)={'sha1-generic\x00'}}) r8 = socket$nl_generic(0x10, 0x3, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x16, 0x14, &(0x7f00000004c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x9}, {}, {}, [@ldst={0x3, 0x2, 0x0, 0x0, 0x7, 0xffffffffffffffe0, 0x4237ec21d2974be}, @map_idx_val={0x18, 0xb, 0x6, 0x0, 0x9, 0x0, 0x0, 0x0, 0x8}, @map_fd={0x18, 0xb, 0x1, 0x0, 0x1}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, 0x0, 0x415, 0x14, &(0x7f0000000440)=""/20, 0x41000, 0xd, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x8, &(0x7f0000000640)={0x0, 0x1}, 0x8, 0x10, &(0x7f0000000680)={0x3, 0x9, 0x800, 0x1000}, 0x10, 0x0, r5, 0x1, 0x0, &(0x7f0000000700)=[{0x8, 0x2, 0xf, 0x9}], 0x10, 0x250, @void, @value}, 0x94) r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="050000000000000600000600000008000300", @ANYRES32=r10, @ANYBLOB="1fc430b5ba"], 0x24}}, 0x0) socket$inet6_sctp(0xa, 0x5, 0x84) 1.958918828s ago: executing program 0 (id=446): socket(0x1, 0x3, 0x20c) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x9, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x79, 0x10, 0x30}, [@ldst={0x5}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f0000000080)=""/204, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x4f, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='new user:syz 000000000000000'], 0x2a, 0xfffffffffffffffc) add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) socket$nl_xfrm(0x10, 0x3, 0x6) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) openat$cuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) 1.659248926s ago: executing program 2 (id=447): syz_usb_connect(0x0, 0x2d, &(0x7f0000000080)=ANY=[@ANYBLOB="1201000041436120410e5150e8d5000000010902f98a5c01000000090401"], 0x0) r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]}) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) r2 = landlock_create_ruleset(&(0x7f00000002c0)={0x7f6e}, 0x18, 0x0) landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r2, 0x1, &(0x7f0000000000)={0x210a, r1}, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) r3 = openat$ptp1(0xffffffffffffff9c, &(0x7f0000000200), 0x101, 0x0) ioctl$PTP_PIN_SETFUNC(r3, 0x40603d07, &(0x7f0000000040)={'\x00', 0xfff, 0x2, 0x5}) openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/card3/oss_mixer\x00', 0x260601, 0x0) 948.164037ms ago: executing program 1 (id=448): r0 = socket(0x1, 0x3, 0x20c) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x9, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x79, 0x10, 0x30}, [@ldst={0x5}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f0000000080)=""/204, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x4f, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='new user:syz 000000000000000'], 0x2a, 0xfffffffffffffffc) add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) socket$nl_xfrm(0x10, 0x3, 0x6) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f0000000000), 0x4) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) read$FUSE(0xffffffffffffffff, 0x0, 0x0) ioctl$BLKZEROOUT(0xffffffffffffffff, 0x127f, &(0x7f00000000c0)={0x0, 0x80600}) r5 = socket$inet_smc(0x2b, 0x1, 0x0) connect$inet(r5, &(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10) setsockopt$SO_BINDTODEVICE_wg(r5, 0x1, 0x19, &(0x7f0000000080)='wg1\x00', 0x4) sendto$inet(r5, &(0x7f0000000040)="e5", 0xffffffe4, 0x0, 0x0, 0x0) unshare(0x40020000) ioctl$F2FS_IOC_WRITE_CHECKPOINT(r0, 0xf507, 0x0) socket$pppl2tp(0x18, 0x1, 0x1) 945.62012ms ago: executing program 0 (id=449): r0 = socket(0x1, 0x3, 0x20c) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x9, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x79, 0x10, 0x30}, [@ldst={0x5}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f0000000080)=""/204, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x4f, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='new user:syz 000000000000000'], 0x2a, 0xfffffffffffffffc) add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) socket$nl_xfrm(0x10, 0x3, 0x6) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f0000000000), 0x4) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2) read$FUSE(0xffffffffffffffff, 0x0, 0x0) ioctl$BLKZEROOUT(0xffffffffffffffff, 0x127f, &(0x7f00000000c0)={0x0, 0x80600}) r5 = socket$inet_smc(0x2b, 0x1, 0x0) connect$inet(r5, &(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10) setsockopt$SO_BINDTODEVICE_wg(r5, 0x1, 0x19, &(0x7f0000000080)='wg1\x00', 0x4) sendto$inet(r5, &(0x7f0000000040)="e5", 0xffffffe4, 0x0, 0x0, 0x0) unshare(0x40020000) ioctl$F2FS_IOC_WRITE_CHECKPOINT(r0, 0xf507, 0x0) socket$pppl2tp(0x18, 0x1, 0x1) 845.745977ms ago: executing program 3 (id=450): r0 = socket$nl_route(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$inet(r1, &(0x7f00000008c0)={0x0, 0x0, 0x0}, 0x4048010) close(r2) sendmsg$inet(r1, &(0x7f0000002800)={0x0, 0x0, 0x0}, 0x8010) sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="300000001900010000000000000000000a0000050000fd000000000014000500fe8000000000000000000000000000bb8993e74959aa75bc7990956d89df164a2255ee58"], 0x30}}, 0x0) 845.475463ms ago: executing program 3 (id=451): r0 = socket(0x1, 0x3, 0x20c) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x9, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x79, 0x10, 0x30}, [@ldst={0x5}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f0000000080)=""/204, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x4f, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='new user:syz 000000000000000'], 0x2a, 0xfffffffffffffffc) add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) socket$nl_xfrm(0x10, 0x3, 0x6) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) read$FUSE(r4, 0x0, 0x0) r5 = socket$inet_smc(0x2b, 0x1, 0x0) connect$inet(r5, &(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10) setsockopt$SO_BINDTODEVICE_wg(r5, 0x1, 0x19, &(0x7f0000000080)='wg1\x00', 0x4) sendto$inet(r5, &(0x7f0000000040)="e5", 0xffffffe4, 0x0, 0x0, 0x0) unshare(0x40020000) ioctl$F2FS_IOC_WRITE_CHECKPOINT(r0, 0xf507, 0x0) socket$pppl2tp(0x18, 0x1, 0x1) 448.766939ms ago: executing program 2 (id=452): socket$igmp6(0xa, 0x3, 0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) init_module(&(0x7f0000000100)={{0x7f, 0x45, 0x4c, 0x46, 0x7, 0xff, 0x4, 0xfc, 0xffffffffffffffff, 0x3, 0x6, 0x8, 0x190, 0x40, 0x278, 0x10, 0x4, 0x38, 0x2, 0xe9, 0x8, 0xc}, [], "8202bdbe1aeb0f28648055f1d5740d47"}, 0xfffd8, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x1, 0xc}, &(0x7f0000001fee)='R\x10suse\x00\x00\x00\x00\x00\x00\x00dn\x00\x00\x00', 0x0) r3 = openat$fb0(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) r4 = socket$l2tp6(0xa, 0x2, 0x73) bind$inet6(r4, &(0x7f0000000000)={0xa, 0x4e20, 0x80000000, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0xf}, 0x1c) ioctl$FBIOPUT_VSCREENINFO(r3, 0x4601, &(0x7f0000000380)={0x3c0, 0x78, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, 0x8, 0x3, 0x1ff, 0x3d, 0x5, 0x3, 0x53, 0x202, 0x1, 0xc}) r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0) r6 = add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, &(0x7f00000000c0)="ff", 0x1, 0xffffffffffffffff) r7 = add_key$user(&(0x7f0000000380), &(0x7f0000000000)={'syz', 0x0}, &(0x7f0000000580)='X', 0x1, 0xfffffffffffffffe) r8 = add_key$user(&(0x7f0000000200), &(0x7f00000005c0), &(0x7f00000000c0), 0x390, 0xfffffffffffffffd) keyctl$dh_compute(0x17, &(0x7f0000000080)={r7, r8, r6}, 0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000280)={'sha1-generic\x00'}}) r9 = socket$nl_generic(0x10, 0x3, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x16, 0x14, &(0x7f00000004c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x9}, {}, {}, [@ldst={0x3, 0x2, 0x0, 0x0, 0x7, 0xffffffffffffffe0, 0x4237ec21d2974be}, @map_idx_val={0x18, 0xb, 0x6, 0x0, 0x9, 0x0, 0x0, 0x0, 0x8}, @map_fd={0x18, 0xb, 0x1, 0x0, 0x1}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000340)='GPL\x00', 0x415, 0x14, &(0x7f0000000440)=""/20, 0x41000, 0xd, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x8, &(0x7f0000000640)={0x0, 0x1}, 0x8, 0x10, &(0x7f0000000680)={0x3, 0x9, 0x800, 0x1000}, 0x10, 0x0, r5, 0x1, 0x0, &(0x7f0000000700)=[{0x8, 0x2, 0xf, 0x9}], 0x10, 0x250, @void, @value}, 0x94) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r9, 0x8933, &(0x7f00000000c0)={'wlan0\x00'}) sendmsg$NL80211_CMD_SET_INTERFACE(r9, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[], 0x24}}, 0x0) socket$inet6_sctp(0xa, 0x5, 0x84) 0s ago: executing program 1 (id=453): r0 = socket$nl_route(0x10, 0x3, 0x0) openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setscheduler(0x0, 0x1, 0x0) syz_open_dev$usbfs(0x0, 0x45e, 0x101701) openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100), 0x40002, 0x0) socketpair$tipc(0x1e, 0x5, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) r1 = getpid() mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r1, 0x0, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = socket$alg(0x26, 0x5, 0x0) bind$alg(r4, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'sha512-avx\x00'}, 0x58) r5 = accept4(r4, 0x0, 0x0, 0x0) recvmmsg$unix(r5, &(0x7f0000003700)=[{{0x0, 0x700, 0x0, 0x0, 0x0, 0x500}}], 0x600, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="5c0000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000340012800e00010069703665727370616e0000002000028006000200300000001400060000000000000000000000ffff7f00000108000a00", @ANYRES32], 0x5c}}, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '[localhost]:31036' (ED25519) to the list of known hosts. [ 40.803440][ T5857] cgroup: Unknown subsys name 'net' [ 40.900987][ T5857] cgroup: Unknown subsys name 'cpuset' [ 40.906792][ T5857] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 41.885194][ T5857] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 45.270059][ T63] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 45.274690][ T5952] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 45.278477][ T5952] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 45.282630][ T5952] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 45.285916][ T5952] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 45.289441][ T5952] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 45.290799][ T5948] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 45.292322][ T5952] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 45.297410][ T5952] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 45.298645][ T5948] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 45.300643][ T5952] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 45.302455][ T5954] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 45.302919][ T5948] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 45.305789][ T5957] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 45.305894][ T5952] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 45.306150][ T5952] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 45.313934][ T5945] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 45.315310][ T5957] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 45.318717][ T5948] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 45.319580][ T5957] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 45.562532][ T5946] chnl_net:caif_netlink_parms(): no params data found [ 45.639685][ T5950] chnl_net:caif_netlink_parms(): no params data found [ 45.664294][ T5942] chnl_net:caif_netlink_parms(): no params data found [ 45.737459][ T5951] chnl_net:caif_netlink_parms(): no params data found [ 45.761505][ T5946] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.764445][ T5946] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.766802][ T5946] bridge_slave_0: entered allmulticast mode [ 45.769508][ T5946] bridge_slave_0: entered promiscuous mode [ 45.773121][ T5946] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.775409][ T5946] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.777732][ T5946] bridge_slave_1: entered allmulticast mode [ 45.780267][ T5946] bridge_slave_1: entered promiscuous mode [ 45.877341][ T5950] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.879611][ T5950] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.881928][ T5950] bridge_slave_0: entered allmulticast mode [ 45.884550][ T5950] bridge_slave_0: entered promiscuous mode [ 45.894748][ T5946] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 45.902639][ T5946] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 45.911811][ T5950] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.914084][ T5950] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.916310][ T5950] bridge_slave_1: entered allmulticast mode [ 45.919061][ T5950] bridge_slave_1: entered promiscuous mode [ 46.032453][ T5942] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.034723][ T5942] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.037063][ T5942] bridge_slave_0: entered allmulticast mode [ 46.039675][ T5942] bridge_slave_0: entered promiscuous mode [ 46.044039][ T5946] team0: Port device team_slave_0 added [ 46.046029][ T5951] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.048412][ T5951] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.050824][ T5951] bridge_slave_0: entered allmulticast mode [ 46.053798][ T5951] bridge_slave_0: entered promiscuous mode [ 46.080098][ T5950] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 46.083627][ T5942] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.085956][ T5942] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.089990][ T5942] bridge_slave_1: entered allmulticast mode [ 46.092916][ T5942] bridge_slave_1: entered promiscuous mode [ 46.111241][ T5946] team0: Port device team_slave_1 added [ 46.113202][ T5951] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.115439][ T5951] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.118641][ T5951] bridge_slave_1: entered allmulticast mode [ 46.121277][ T5951] bridge_slave_1: entered promiscuous mode [ 46.138741][ T5950] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 46.202253][ T5942] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 46.220936][ T5946] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 46.223462][ T5946] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.233892][ T5946] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 46.239589][ T5951] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 46.259890][ T5950] team0: Port device team_slave_0 added [ 46.263989][ T5942] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 46.280099][ T5946] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 46.282300][ T5946] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.291620][ T5946] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 46.296297][ T5951] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 46.300521][ T5950] team0: Port device team_slave_1 added [ 46.348401][ T5942] team0: Port device team_slave_0 added [ 46.352375][ T5942] team0: Port device team_slave_1 added [ 46.383769][ T5950] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 46.385997][ T5950] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.394343][ T5950] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 46.428373][ T5951] team0: Port device team_slave_0 added [ 46.444768][ T5950] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 46.447111][ T5950] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.455233][ T5950] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 46.459882][ T5942] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 46.462600][ T5942] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.471629][ T5942] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 46.477811][ T5951] team0: Port device team_slave_1 added [ 46.507726][ T5942] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 46.509964][ T5942] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.519236][ T5942] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 46.543886][ T5946] hsr_slave_0: entered promiscuous mode [ 46.547658][ T5946] hsr_slave_1: entered promiscuous mode [ 46.580538][ T5951] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 46.582721][ T5951] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.590856][ T5951] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 46.595399][ T5951] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 46.597748][ T5951] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.605269][ T5951] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 46.713354][ T5950] hsr_slave_0: entered promiscuous mode [ 46.716276][ T5950] hsr_slave_1: entered promiscuous mode [ 46.719410][ T5950] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 46.722522][ T5950] Cannot create hsr debugfs directory [ 46.749574][ T5942] hsr_slave_0: entered promiscuous mode [ 46.751717][ T5942] hsr_slave_1: entered promiscuous mode [ 46.753811][ T5942] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 46.756153][ T5942] Cannot create hsr debugfs directory [ 46.888113][ T5951] hsr_slave_0: entered promiscuous mode [ 46.890323][ T5951] hsr_slave_1: entered promiscuous mode [ 46.892436][ T5951] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 46.895331][ T5951] Cannot create hsr debugfs directory [ 47.124992][ T5946] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 47.137090][ T5946] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 47.146443][ T5946] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 47.156313][ T5946] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 47.169680][ T5951] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 47.174469][ T5951] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 47.179163][ T5951] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 47.186563][ T5951] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 47.217161][ T5942] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 47.222097][ T5942] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 47.226217][ T5942] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 47.230426][ T5942] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 47.285515][ T5950] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 47.290917][ T5950] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 47.295229][ T5950] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 47.300488][ T5950] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 47.349036][ T5946] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.368437][ T63] Bluetooth: hci0: command tx timeout [ 47.369880][ T5948] Bluetooth: hci2: command tx timeout [ 47.371153][ T5957] Bluetooth: hci3: command tx timeout [ 47.377443][ T5957] Bluetooth: hci1: command tx timeout [ 47.387255][ T5942] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.392630][ T5946] 8021q: adding VLAN 0 to HW filter on device team0 [ 47.403633][ T5951] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.411161][ T1179] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.414273][ T1179] bridge0: port 1(bridge_slave_0) entered forwarding state [ 47.426344][ T5951] 8021q: adding VLAN 0 to HW filter on device team0 [ 47.438899][ T1179] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.441205][ T1179] bridge0: port 2(bridge_slave_1) entered forwarding state [ 47.456265][ T5942] 8021q: adding VLAN 0 to HW filter on device team0 [ 47.461315][ T1179] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.463571][ T1179] bridge0: port 1(bridge_slave_0) entered forwarding state [ 47.466807][ T1179] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.469359][ T1179] bridge0: port 2(bridge_slave_1) entered forwarding state [ 47.494950][ T73] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.497831][ T73] bridge0: port 1(bridge_slave_0) entered forwarding state [ 47.518933][ T5950] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.534892][ T102] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.537725][ T102] bridge0: port 2(bridge_slave_1) entered forwarding state [ 47.554717][ T5950] 8021q: adding VLAN 0 to HW filter on device team0 [ 47.570738][ T102] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.572980][ T102] bridge0: port 1(bridge_slave_0) entered forwarding state [ 47.581111][ T73] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.583340][ T73] bridge0: port 2(bridge_slave_1) entered forwarding state [ 47.621299][ T5950] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 47.624562][ T5950] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 47.665599][ T5946] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 47.696417][ T5946] veth0_vlan: entered promiscuous mode [ 47.704942][ T5951] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 47.710806][ T5946] veth1_vlan: entered promiscuous mode [ 47.733474][ T5942] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 47.750244][ T5951] veth0_vlan: entered promiscuous mode [ 47.759588][ T5946] veth0_macvtap: entered promiscuous mode [ 47.764436][ T5951] veth1_vlan: entered promiscuous mode [ 47.771263][ T5950] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 47.775375][ T5946] veth1_macvtap: entered promiscuous mode [ 47.793985][ T5946] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 47.807116][ T5946] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 47.816277][ T5946] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.820746][ T5946] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.823552][ T5946] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.826227][ T5946] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.832115][ T5942] veth0_vlan: entered promiscuous mode [ 47.849594][ T5951] veth0_macvtap: entered promiscuous mode [ 47.853457][ T5942] veth1_vlan: entered promiscuous mode [ 47.860413][ T5951] veth1_macvtap: entered promiscuous mode [ 47.878510][ T5950] veth0_vlan: entered promiscuous mode [ 47.887323][ T5951] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 47.899174][ T5950] veth1_vlan: entered promiscuous mode [ 47.907363][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 47.907851][ T5951] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 47.909876][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 47.929457][ T5951] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.932850][ T5951] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.936245][ T5951] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.940068][ T5951] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.947864][ T5942] veth0_macvtap: entered promiscuous mode [ 47.956467][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 47.959695][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 47.961225][ T5942] veth1_macvtap: entered promiscuous mode [ 47.976677][ T5950] veth0_macvtap: entered promiscuous mode [ 47.981731][ T5950] veth1_macvtap: entered promiscuous mode [ 47.988598][ T5942] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 47.992902][ T5946] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 47.996269][ T5942] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 48.007636][ T5950] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 48.016383][ T5942] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.022129][ T5942] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.024840][ T5942] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.027632][ T5942] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.042701][ T5950] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 48.055451][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.055786][ T5950] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.059867][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.062665][ T5950] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.067865][ T5950] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.071393][ T5950] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.101710][ T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.107222][ T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.124560][ T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.129042][ T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.140082][ T102] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.142932][ T102] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.168390][ T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.170839][ T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.192504][ T60] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.195393][ T60] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.199303][ T6011] block device autoloading is deprecated and will be removed. [ 48.202943][ T6011] syz.1.2: attempt to access beyond end of device [ 48.202943][ T6011] md0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 48.268502][ T6016] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 48.274401][ T6017] Invalid ELF header type: 3 != 1 [ 48.400146][ T6025] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4'. [ 48.706560][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 48.789814][ T6027] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3'. [ 49.089492][ T6031] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6'. [ 49.269889][ T6037] FAULT_INJECTION: forcing a failure. [ 49.269889][ T6037] name failslab, interval 1, probability 0, space 0, times 1 [ 49.273877][ T6037] CPU: 1 UID: 0 PID: 6037 Comm: syz.1.8 Not tainted 6.15.0-syzkaller-09113-g8477ab143069 #0 PREEMPT(full) [ 49.273891][ T6037] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 49.273897][ T6037] Call Trace: [ 49.273901][ T6037] [ 49.273905][ T6037] dump_stack_lvl+0x16c/0x1f0 [ 49.273921][ T6037] should_fail_ex+0x512/0x640 [ 49.273936][ T6037] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 49.273948][ T6037] should_failslab+0xc2/0x120 [ 49.273962][ T6037] __kmalloc_cache_noprof+0x6a/0x3e0 [ 49.273972][ T6037] ? u32_init+0x3ee/0xbe0 [ 49.273985][ T6037] u32_init+0x3ee/0xbe0 [ 49.273997][ T6037] ? __pfx_u32_classify+0x10/0x10 [ 49.274007][ T6037] tc_new_tfilter+0x114a/0x2340 [ 49.274032][ T6037] ? __pfx_tc_new_tfilter+0x10/0x10 [ 49.274047][ T6037] ? kfree_skbmem+0x1a4/0x1f0 [ 49.274073][ T6037] ? find_held_lock+0x2b/0x80 [ 49.274088][ T6037] ? __pfx_tc_new_tfilter+0x10/0x10 [ 49.274101][ T6037] ? rtnetlink_rcv_msg+0x93a/0xe90 [ 49.274115][ T6037] ? __pfx_tc_new_tfilter+0x10/0x10 [ 49.274130][ T6037] rtnetlink_rcv_msg+0x95b/0xe90 [ 49.274144][ T6037] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 49.274160][ T6037] ? ref_tracker_free+0x37c/0x830 [ 49.274176][ T6037] netlink_rcv_skb+0x155/0x420 [ 49.274190][ T6037] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 49.274204][ T6037] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 49.274222][ T6037] ? netlink_deliver_tap+0x1ae/0xd30 [ 49.274238][ T6037] netlink_unicast+0x53d/0x7f0 [ 49.274254][ T6037] ? __pfx_netlink_unicast+0x10/0x10 [ 49.274271][ T6037] netlink_sendmsg+0x8d1/0xdd0 [ 49.274287][ T6037] ? __pfx_netlink_sendmsg+0x10/0x10 [ 49.274302][ T6037] ? __import_iovec+0x1dd/0x650 [ 49.274320][ T6037] ____sys_sendmsg+0xa95/0xc70 [ 49.274336][ T6037] ? __pfx_____sys_sendmsg+0x10/0x10 [ 49.274351][ T6037] ? get_compat_msghdr+0x11a/0x170 [ 49.274369][ T6037] ___sys_sendmsg+0x134/0x1d0 [ 49.274382][ T6037] ? __pfx____sys_sendmsg+0x10/0x10 [ 49.274399][ T6037] ? find_held_lock+0x2b/0x80 [ 49.274420][ T6037] __sys_sendmsg+0x16d/0x220 [ 49.274432][ T6037] ? __pfx___sys_sendmsg+0x10/0x10 [ 49.274449][ T6037] ? rcu_is_watching+0x12/0xc0 [ 49.274466][ T6037] __do_fast_syscall_32+0x7c/0x3a0 [ 49.274486][ T6037] do_fast_syscall_32+0x32/0x80 [ 49.274503][ T6037] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 49.274520][ T6037] RIP: 0023:0xf7fa3579 [ 49.274528][ T6037] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 49.274538][ T6037] RSP: 002b:00000000f50c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 49.274548][ T6037] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000080000580 [ 49.274554][ T6037] RDX: 00000000200c4004 RSI: 0000000000000000 RDI: 0000000000000000 [ 49.274560][ T6037] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 49.274565][ T6037] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 49.274571][ T6037] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 49.274583][ T6037] [ 49.369996][ C1] vkms_vblank_simulate: vblank timer overrun [ 49.427698][ T34] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 49.447273][ T5948] Bluetooth: hci3: command tx timeout [ 49.447652][ T63] Bluetooth: hci2: command tx timeout [ 49.449167][ T5948] Bluetooth: hci0: command tx timeout [ 49.452876][ T5957] Bluetooth: hci1: command tx timeout [ 49.507059][ T10] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 49.597055][ T34] usb 5-1: Using ep0 maxpacket: 8 [ 49.602089][ T34] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 49.605069][ T34] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 49.610456][ T34] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 49.615187][ T34] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 49.620749][ T34] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 49.626702][ T34] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 49.630302][ T34] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 49.634853][ T34] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 49.639816][ T34] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 49.644375][ T34] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 49.650046][ T34] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 49.653122][ T34] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 49.658021][ T34] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 49.660664][ T10] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 49.661933][ T6041] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 49.662725][ T34] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 49.666414][ T10] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 49.672695][ T34] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 49.675936][ T10] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 49.685772][ T34] usb 5-1: string descriptor 0 read error: -22 [ 49.686383][ T10] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 49.689582][ T34] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 49.696025][ T34] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 49.698637][ T6039] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22 [ 49.708921][ T10] usb 7-1: Quirk or no altset; falling back to MIDI 1.0 [ 49.711196][ T34] adutux 5-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 49.988704][ T10] usb 7-1: USB disconnect, device number 2 [ 49.990050][ T34] usb 5-1: USB disconnect, device number 2 [ 50.597710][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 50.637550][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 50.754906][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 50.901392][ T6053] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 50.917418][ T6053] netlink: 40 bytes leftover after parsing attributes in process `syz.1.13'. [ 51.019911][ T6053] ceph: No mds server is up or the cluster is laggy [ 51.049775][ T5987] libceph: connect (1)[c::]:6789 error -101 [ 51.052415][ T5987] libceph: mon0 (1)[c::]:6789 connect error [ 51.212962][ T6060] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 51.215052][ T6060] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 51.241367][ T6060] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 51.317937][ T5987] libceph: connect (1)[c::]:6789 error -101 [ 51.320704][ T5987] libceph: mon0 (1)[c::]:6789 connect error [ 51.322970][ T6060] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 51.328874][ T6060] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 51.538092][ T5306] Bluetooth: hci3: command tx timeout [ 51.540857][ T5957] Bluetooth: hci2: command tx timeout [ 51.580627][ T6060] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 51.710948][ T6066] Invalid ELF header type: 3 != 1 [ 51.717460][ T6060] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 51.720564][ T6060] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 51.818387][ T6060] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 51.822806][ T6060] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 51.830880][ T6060] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 51.884614][ T6060] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 51.912978][ T6071] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 52.418073][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 52.454039][ T6077] netlink: 8 bytes leftover after parsing attributes in process `syz.0.15'. [ 52.615661][ T6084] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 53.181535][ T6085] netlink: 'syz.3.17': attribute type 10 has an invalid length. [ 53.193574][ T6085] veth0_vlan: left promiscuous mode [ 53.198293][ T6085] veth0_vlan: entered promiscuous mode [ 53.202499][ T6085] team0: Device veth0_vlan failed to register rx_handler [ 53.217813][ T5957] Bluetooth: hci0: command 0x0419 tx timeout [ 53.371574][ T6096] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 53.377571][ T5957] Bluetooth: hci1: command 0x0419 tx timeout [ 53.407297][ T53] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 53.578437][ T53] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 53.581974][ T53] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 53.586181][ T53] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 53.588597][ T61] usb 8-1: new high-speed USB device number 2 using dummy_hcd [ 53.590164][ T53] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9 [ 53.595927][ T53] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024 [ 53.602436][ T53] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 53.606202][ T53] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 53.618007][ T53] usb 6-1: Product: syz [ 53.619741][ T53] usb 6-1: Manufacturer: syz [ 53.629581][ T53] cdc_wdm 6-1:1.0: skipping garbage [ 53.631757][ T53] cdc_wdm 6-1:1.0: skipping garbage [ 53.641656][ T53] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device [ 53.644073][ T53] cdc_wdm 6-1:1.0: Unknown control protocol [ 53.658287][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 53.687182][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 53.724209][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 53.769096][ T5957] Bluetooth: hci2: command 0x0c1a tx timeout [ 53.847874][ T5957] Bluetooth: hci3: command 0x0c1a tx timeout [ 53.850618][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 53.929901][ T5957] Bluetooth: hci3: unexpected cc 0x0c1b length: 1 < 5 [ 53.933392][ T5957] Bluetooth: hci3: unexpected event for opcode 0x0c1b [ 53.936593][ T6099] mmap: syz.2.23 (6099) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 53.947019][ T61] usb 8-1: Using ep0 maxpacket: 16 [ 53.951479][ T61] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 53.954959][ T61] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 53.958541][ T61] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 53.962580][ T61] usb 8-1: New USB device found, idVendor=1781, idProduct=0898, bcdDevice= 0.00 [ 53.966041][ T61] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 53.973015][ T61] usb 8-1: config 0 descriptor?? [ 53.980857][ T61] input: PXRC Flight Controller Adapter as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/input/input5 [ 53.991609][ T5340] pxrc 8-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 54.003165][ T5340] pxrc 8-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 54.012589][ T5340] pxrc 8-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 54.023737][ T5340] pxrc 8-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 54.030779][ T5340] pxrc 8-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 54.034854][ T61] usb 6-1: USB disconnect, device number 2 [ 54.035367][ T5959] pxrc 8-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 54.051530][ T5340] pxrc 8-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 54.056583][ T5340] pxrc 8-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 54.179673][ T6085] pxrc 8-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 54.578215][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 55.297001][ T5957] Bluetooth: hci0: command 0x0419 tx timeout [ 55.447007][ T5957] Bluetooth: hci1: command 0x0419 tx timeout [ 55.760221][ T5935] usb 8-1: USB disconnect, device number 2 [ 55.835186][ T6118] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 55.861871][ T5957] Bluetooth: hci2: command 0x0c1a tx timeout [ 55.884557][ T6124] FAULT_INJECTION: forcing a failure. [ 55.884557][ T6124] name failslab, interval 1, probability 0, space 0, times 0 [ 55.889702][ T6124] CPU: 3 UID: 0 PID: 6124 Comm: syz.1.30 Not tainted 6.15.0-syzkaller-09113-g8477ab143069 #0 PREEMPT(full) [ 55.889718][ T6124] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 55.889725][ T6124] Call Trace: [ 55.889729][ T6124] [ 55.889733][ T6124] dump_stack_lvl+0x16c/0x1f0 [ 55.889751][ T6124] should_fail_ex+0x512/0x640 [ 55.889765][ T6124] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 55.889780][ T6124] should_failslab+0xc2/0x120 [ 55.889793][ T6124] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 55.889807][ T6124] ? ethnl_default_set_doit+0x397/0xb10 [ 55.889822][ T6124] kmemdup_noprof+0x29/0x60 [ 55.889835][ T6124] ethnl_default_set_doit+0x397/0xb10 [ 55.889849][ T6124] ? __pfx_ethnl_default_set_doit+0x10/0x10 [ 55.889864][ T6124] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 55.889881][ T6124] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 55.889900][ T6124] genl_family_rcv_msg_doit+0x206/0x2f0 [ 55.889917][ T6124] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 55.889933][ T6124] ? trace_cap_capable+0x18d/0x200 [ 55.889953][ T6124] ? bpf_lsm_capable+0x9/0x10 [ 55.889962][ T6124] ? security_capable+0x7e/0x260 [ 55.889978][ T6124] ? ns_capable+0xd7/0x110 [ 55.889999][ T6124] genl_rcv_msg+0x55c/0x800 [ 55.890010][ T6124] ? __pfx_genl_rcv_msg+0x10/0x10 [ 55.890020][ T6124] ? __pfx_ethnl_default_set_doit+0x10/0x10 [ 55.890037][ T6124] netlink_rcv_skb+0x155/0x420 [ 55.890052][ T6124] ? __pfx_genl_rcv_msg+0x10/0x10 [ 55.890061][ T6124] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 55.890081][ T6124] ? netlink_deliver_tap+0x1ae/0xd30 [ 55.890096][ T6124] genl_rcv+0x28/0x40 [ 55.890110][ T6124] netlink_unicast+0x53d/0x7f0 [ 55.890126][ T6124] ? __pfx_netlink_unicast+0x10/0x10 [ 55.890144][ T6124] netlink_sendmsg+0x8d1/0xdd0 [ 55.890160][ T6124] ? __pfx_netlink_sendmsg+0x10/0x10 [ 55.890175][ T6124] ? __import_iovec+0x1dd/0x650 [ 55.890194][ T6124] ____sys_sendmsg+0xa95/0xc70 [ 55.890211][ T6124] ? __pfx_____sys_sendmsg+0x10/0x10 [ 55.890225][ T6124] ? get_compat_msghdr+0x11a/0x170 [ 55.890243][ T6124] ___sys_sendmsg+0x134/0x1d0 [ 55.890256][ T6124] ? __pfx____sys_sendmsg+0x10/0x10 [ 55.890274][ T6124] ? find_held_lock+0x2b/0x80 [ 55.890297][ T6124] __sys_sendmsg+0x16d/0x220 [ 55.890309][ T6124] ? __pfx___sys_sendmsg+0x10/0x10 [ 55.890326][ T6124] ? rcu_is_watching+0x12/0xc0 [ 55.890342][ T6124] __do_fast_syscall_32+0x7c/0x3a0 [ 55.890356][ T6124] do_fast_syscall_32+0x32/0x80 [ 55.890367][ T6124] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 55.890381][ T6124] RIP: 0023:0xf7fa3579 [ 55.890389][ T6124] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 55.890399][ T6124] RSP: 002b:00000000f50c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 55.890408][ T6124] RAX: ffffffffffffffda RBX: 0000000000000016 RCX: 0000000080000540 [ 55.890415][ T6124] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 55.890420][ T6124] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 55.890426][ T6124] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 55.890431][ T6124] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 55.890444][ T6124] [ 56.252765][ T5935] usb 8-1: new high-speed USB device number 3 using dummy_hcd [ 56.427189][ T5935] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 56.429887][ T5935] usb 8-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 56.432869][ T5935] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 56.445868][ T5935] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9 [ 56.449359][ T5935] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024 [ 56.457158][ T5935] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 56.481606][ T5935] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 56.485303][ T5935] usb 8-1: Product: syz [ 56.676957][ T5935] usb 8-1: Manufacturer: syz [ 56.717344][ T5935] cdc_wdm 8-1:1.0: skipping garbage [ 56.719043][ T5935] cdc_wdm 8-1:1.0: skipping garbage [ 56.721322][ T5935] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device [ 56.723230][ T5935] cdc_wdm 8-1:1.0: Unknown control protocol [ 56.906830][ T6147] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 56.976536][ T5957] Bluetooth: hci0: unexpected cc 0x0c1b length: 1 < 5 [ 56.978920][ T5957] Bluetooth: hci0: unexpected event for opcode 0x0c1b [ 57.054476][ T9] usb 8-1: USB disconnect, device number 3 [ 57.190705][ T40] audit: type=1326 audit(1748656244.900:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6141 comm="syz.2.33" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65579 code=0x7ffc0000 [ 57.210927][ T40] audit: type=1326 audit(1748656244.900:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6141 comm="syz.2.33" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65579 code=0x7ffc0000 [ 57.247872][ T40] audit: type=1326 audit(1748656244.900:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6141 comm="syz.2.33" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65579 code=0x7ffc0000 [ 57.280942][ T40] audit: type=1326 audit(1748656244.900:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6141 comm="syz.2.33" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65579 code=0x7ffc0000 [ 57.337456][ T40] audit: type=1326 audit(1748656244.900:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6141 comm="syz.2.33" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65579 code=0x7ffc0000 [ 57.344860][ T40] audit: type=1326 audit(1748656244.900:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6141 comm="syz.2.33" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65579 code=0x7ffc0000 [ 57.396994][ T40] audit: type=1326 audit(1748656244.900:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6141 comm="syz.2.33" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65579 code=0x7ffc0000 [ 57.423890][ T40] audit: type=1326 audit(1748656244.900:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6141 comm="syz.2.33" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65579 code=0x7ffc0000 [ 57.454308][ T40] audit: type=1326 audit(1748656244.900:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6141 comm="syz.2.33" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65579 code=0x7ffc0000 [ 57.484600][ T40] audit: type=1326 audit(1748656244.900:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6141 comm="syz.2.33" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65579 code=0x7ffc0000 [ 57.527058][ T5957] Bluetooth: hci1: command 0x0419 tx timeout [ 57.760626][ T6160] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 57.894433][ T6164] Invalid ELF header type: 3 != 1 [ 57.928546][ T5957] Bluetooth: hci2: command 0x0c1a tx timeout [ 58.017995][ T5957] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0 [ 58.020678][ T5957] Bluetooth: hci3: Injecting HCI hardware error event [ 58.024082][ T5306] Bluetooth: hci3: hardware error 0x00 [ 58.212457][ T6174] netlink: 8 bytes leftover after parsing attributes in process `syz.0.39'. [ 58.884108][ T6181] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 59.607489][ T5948] Bluetooth: hci1: command 0x0419 tx timeout [ 59.757021][ T6009] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 59.909608][ T6209] Invalid ELF header type: 3 != 1 [ 60.028127][ T6009] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 60.030875][ T6009] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 60.047214][ T6009] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 60.057128][ T6009] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9 [ 60.062130][ T6009] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024 [ 60.067573][ T6009] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 60.070582][ T6009] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 60.073232][ T6009] usb 5-1: Product: syz [ 60.074652][ T6009] usb 5-1: Manufacturer: syz [ 60.084445][ T6009] cdc_wdm 5-1:1.0: skipping garbage [ 60.086202][ T6009] cdc_wdm 5-1:1.0: skipping garbage [ 60.089849][ T6009] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device [ 60.091956][ T6009] cdc_wdm 5-1:1.0: Unknown control protocol [ 60.097136][ T5306] Bluetooth: hci3: Opcode 0x0c03 failed: -110 [ 60.174606][ T6212] Invalid ELF header type: 3 != 1 [ 60.286321][ T5306] Bluetooth: hci1: unexpected cc 0x0c1b length: 1 < 5 [ 60.288081][ T53] usb 5-1: USB disconnect, device number 3 [ 60.289934][ T5306] Bluetooth: hci1: unexpected event for opcode 0x0c1b [ 60.376373][ T6213] netlink: 8 bytes leftover after parsing attributes in process `syz.2.49'. [ 60.498829][ T6221] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 60.501650][ T6217] netlink: 8 bytes leftover after parsing attributes in process `syz.3.50'. [ 61.058857][ T5306] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0 [ 61.062299][ T5306] Bluetooth: hci0: Injecting HCI hardware error event [ 61.066315][ T5948] Bluetooth: hci0: hardware error 0x00 [ 61.777296][ T5306] Bluetooth: hci2: command 0x0c1a tx timeout [ 61.898038][ T6238] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 61.915157][ T6240] Invalid ELF header type: 3 != 1 [ 62.254611][ T6247] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 62.371639][ T6236] process 'syz.0.57' launched '/dev/fd/11' with NULL argv: empty string added [ 63.035425][ T6255] netlink: 8 bytes leftover after parsing attributes in process `syz.3.58'. [ 63.127040][ T5948] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 63.161532][ T6259] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 64.292112][ T6271] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 64.350366][ T5948] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0 [ 64.353256][ T5948] Bluetooth: hci1: Injecting HCI hardware error event [ 64.357120][ T5948] Bluetooth: hci1: hardware error 0x00 [ 65.084012][ T6283] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 65.661337][ T6294] netlink: 4 bytes leftover after parsing attributes in process `syz.0.68'. [ 65.819960][ T6301] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 65.986188][ T6304] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 66.233965][ T6311] syz.0.74 uses obsolete (PF_INET,SOCK_PACKET) [ 66.407031][ T5948] Bluetooth: hci1: Opcode 0x0c03 failed: -110 [ 66.834092][ T6321] netlink: 16 bytes leftover after parsing attributes in process `syz.0.75'. [ 67.008073][ T6328] sp0: Synchronizing with TNC [ 67.353685][ T6337] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 67.872466][ T6349] netlink: 'syz.2.83': attribute type 1 has an invalid length. [ 67.875029][ T6349] netlink: 224 bytes leftover after parsing attributes in process `syz.2.83'. [ 67.959004][ T6345] Zero length message leads to an empty skb [ 67.963803][ T6352] Invalid ELF header type: 3 != 1 [ 68.045388][ T6354] Invalid ELF header type: 3 != 1 [ 68.332964][ T6355] netlink: 8 bytes leftover after parsing attributes in process `syz.3.84'. [ 68.353505][ T6358] Invalid ELF header type: 3 != 1 [ 69.847093][ T9] usb 7-1: new high-speed USB device number 3 using dummy_hcd [ 70.011411][ T9] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 70.015363][ T9] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 70.020051][ T9] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 70.023930][ T9] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9 [ 70.031262][ T9] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024 [ 70.038167][ T9] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 70.042166][ T9] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 70.045420][ T9] usb 7-1: Product: syz [ 70.053290][ T9] usb 7-1: Manufacturer: syz [ 70.072858][ T9] cdc_wdm 7-1:1.0: skipping garbage [ 70.075080][ T9] cdc_wdm 7-1:1.0: skipping garbage [ 70.089456][ T9] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device [ 70.092043][ T9] cdc_wdm 7-1:1.0: Unknown control protocol [ 70.337479][ T5948] Bluetooth: hci2: unexpected cc 0x0c1b length: 1 < 5 [ 70.340276][ T5948] Bluetooth: hci2: unexpected event for opcode 0x0c1b [ 70.425884][ T6379] Invalid ELF header type: 3 != 1 [ 70.525794][ T5986] usb 7-1: USB disconnect, device number 3 [ 70.698161][ T6387] Invalid ELF header type: 3 != 1 [ 70.806998][ T1328] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 70.899280][ T1420] ieee802154 phy1 wpan1: encryption failed: -22 [ 70.925628][ T6389] netlink: 8 bytes leftover after parsing attributes in process `syz.3.92'. [ 70.989997][ T1328] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 70.990027][ T1328] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 70.990058][ T1328] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 70.990077][ T1328] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 70.998098][ T6384] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 71.017094][ T1328] usb 5-1: Quirk or no altset; falling back to MIDI 1.0 [ 71.019664][ T6390] netlink: 8 bytes leftover after parsing attributes in process `syz.1.95'. [ 71.337243][ T1328] usb 5-1: USB disconnect, device number 4 [ 72.317023][ T1328] usb 7-1: new high-speed USB device number 4 using dummy_hcd [ 72.335402][ T6411] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 72.499191][ T1328] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 72.502591][ T1328] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 72.505678][ T1328] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 72.508776][ T1328] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 72.512967][ T6404] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 72.517526][ T1328] usb 7-1: Quirk or no altset; falling back to MIDI 1.0 [ 73.177395][ T6429] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 73.903796][ T6441] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 74.240223][ T6446] Invalid ELF header type: 3 != 1 [ 74.418211][ T5948] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0 [ 74.420981][ T5948] Bluetooth: hci2: Injecting HCI hardware error event [ 74.427144][ T5948] Bluetooth: hci2: hardware error 0x00 [ 74.655173][ T6453] netlink: 8 bytes leftover after parsing attributes in process `syz.1.109'. [ 74.936218][ T6463] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 74.951414][ T6465] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 75.102414][ T9] usb 7-1: USB disconnect, device number 4 [ 75.291326][ T6475] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 76.105161][ T6486] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 76.424239][ T34] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 76.489202][ T5948] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 76.578253][ T34] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 76.581723][ T34] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 76.584736][ T34] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 76.609624][ T34] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 76.614531][ T6492] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 76.621821][ T34] usb 5-1: Quirk or no altset; falling back to MIDI 1.0 [ 76.990249][ T6524] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 77.919006][ T6532] Invalid ELF header type: 3 != 1 [ 78.167840][ T6541] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 78.278194][ T6542] netlink: 8 bytes leftover after parsing attributes in process `syz.3.136'. [ 78.361381][ T6546] Invalid ELF header type: 3 != 1 [ 78.714239][ T6549] netlink: 8 bytes leftover after parsing attributes in process `syz.1.142'. [ 79.058126][ T6552] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 79.219876][ T9] usb 5-1: USB disconnect, device number 5 [ 79.266460][ T6557] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 79.639230][ T6562] Invalid ELF header type: 3 != 1 [ 79.815385][ T6569] warning: `syz.2.147' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 79.825519][ T6569] random: crng reseeded on system resumption [ 80.086493][ T6571] netlink: 8 bytes leftover after parsing attributes in process `syz.1.145'. [ 80.849356][ T6584] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 81.033360][ T6591] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 81.635043][ T1021] cfg80211: failed to load regulatory.db [ 81.911231][ T6602] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 82.074720][ T6606] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 82.492145][ T6612] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 83.033945][ T6622] Invalid ELF header type: 3 != 1 [ 83.085948][ T6624] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 83.678798][ T6630] netlink: 8 bytes leftover after parsing attributes in process `syz.1.163'. [ 83.687385][ T6630] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 83.734510][ T40] kauditd_printk_skb: 261 callbacks suppressed [ 83.734521][ T40] audit: type=1326 audit(1748656271.460:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6629 comm="syz.1.163" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa3579 code=0x7ffc0000 [ 83.735001][ T40] audit: type=1326 audit(1748656271.460:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6629 comm="syz.1.163" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa3579 code=0x7ffc0000 [ 83.735058][ T40] audit: type=1326 audit(1748656271.460:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6629 comm="syz.1.163" exe="/syz-executor" sig=0 arch=40000003 syscall=394 compat=1 ip=0xf7fa3579 code=0x7ffc0000 [ 83.735437][ T40] audit: type=1326 audit(1748656271.460:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6629 comm="syz.1.163" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa3579 code=0x7ffc0000 [ 83.736725][ T40] audit: type=1326 audit(1748656271.460:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6629 comm="syz.1.163" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa3579 code=0x7ffc0000 [ 83.737384][ T40] audit: type=1326 audit(1748656271.470:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6629 comm="syz.1.163" exe="/syz-executor" sig=0 arch=40000003 syscall=294 compat=1 ip=0xf7fa3579 code=0x7ffc0000 [ 83.739368][ T40] audit: type=1326 audit(1748656271.470:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6629 comm="syz.1.163" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa3579 code=0x7ffc0000 [ 83.739546][ T40] audit: type=1326 audit(1748656271.470:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6629 comm="syz.1.163" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa3579 code=0x7ffc0000 [ 83.810200][ T6634] netlink: 8 bytes leftover after parsing attributes in process `syz.0.161'. [ 84.071125][ T6641] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 84.266856][ T6645] Invalid ELF header type: 3 != 1 [ 84.624629][ T6647] netlink: 8 bytes leftover after parsing attributes in process `syz.0.167'. [ 85.057565][ T24] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 85.207210][ T24] usb 6-1: Using ep0 maxpacket: 8 [ 85.210347][ T24] usb 6-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config [ 85.213865][ T24] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 85.216800][ T24] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 85.408573][ T6655] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 85.430168][ T6657] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 85.701848][ T6662] netlink: 4 bytes leftover after parsing attributes in process `syz.3.171'. [ 85.964845][ T6668] Invalid ELF header type: 3 != 1 [ 86.415989][ T6670] netlink: 8 bytes leftover after parsing attributes in process `syz.3.173'. [ 86.607068][ T34] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 86.769332][ T34] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7 [ 86.773480][ T34] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 86.777618][ T34] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7 [ 86.781613][ T34] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0 [ 86.788047][ T34] usb 5-1: New USB device found, idVendor=0a07, idProduct=00d0, bcdDevice=10.13 [ 86.791738][ T34] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 86.794895][ T34] usb 5-1: Product: syz [ 86.796595][ T34] usb 5-1: Manufacturer: syz [ 86.800415][ T34] usb 5-1: SerialNumber: syz [ 86.804946][ T34] usb 5-1: config 0 descriptor?? [ 86.938860][ T6685] Invalid ELF header type: 3 != 1 [ 87.012901][ T34] adutux 5-1:0.0: ADU208 now attached to /dev/usb/adutux0 [ 87.019727][ T34] usb 5-1: USB disconnect, device number 6 [ 87.261346][ T6687] netlink: 8 bytes leftover after parsing attributes in process `syz.3.178'. [ 87.448811][ T6689] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 87.916438][ T53] usb 6-1: USB disconnect, device number 3 [ 88.118411][ T6701] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 88.276666][ T6700] input: syz1 as /devices/virtual/input/input6 [ 88.352903][ T6705] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 88.594634][ T6711] Invalid ELF header type: 3 != 1 [ 88.620380][ T6708] cgroup: fork rejected by pids controller in /syz0 [ 88.781986][ T6815] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 89.339715][ T5306] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 89.340355][ T5306] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 89.340703][ T5306] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 89.341804][ T5306] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 89.342420][ T5306] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 89.415721][ T6822] netlink: 8 bytes leftover after parsing attributes in process `syz.3.185'. [ 89.456447][ T6823] chnl_net:caif_netlink_parms(): no params data found [ 89.560595][ T6823] bridge0: port 1(bridge_slave_0) entered blocking state [ 89.562879][ T6823] bridge0: port 1(bridge_slave_0) entered disabled state [ 89.566612][ T6823] bridge_slave_0: entered allmulticast mode [ 89.569685][ T6823] bridge_slave_0: entered promiscuous mode [ 89.578194][ T6823] bridge0: port 2(bridge_slave_1) entered blocking state [ 89.581116][ T6823] bridge0: port 2(bridge_slave_1) entered disabled state [ 89.586190][ T6823] bridge_slave_1: entered allmulticast mode [ 89.590610][ T6823] bridge_slave_1: entered promiscuous mode [ 89.631846][ T6823] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 89.636268][ T6823] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 89.745234][ T6823] team0: Port device team_slave_0 added [ 89.753209][ T6823] team0: Port device team_slave_1 added [ 89.777060][ T5935] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 89.816579][ T6834] netlink: 4 bytes leftover after parsing attributes in process `syz.2.190'. [ 89.816733][ T6823] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 89.823393][ T6823] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 89.833859][ T6823] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 89.863357][ T6823] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 89.866236][ T6823] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 89.877597][ T6823] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 89.915600][ T6838] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 89.939060][ T6823] hsr_slave_0: entered promiscuous mode [ 89.941444][ T6823] hsr_slave_1: entered promiscuous mode [ 89.943498][ T6823] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 89.945886][ T6823] Cannot create hsr debugfs directory [ 90.066985][ T5935] usb 6-1: Using ep0 maxpacket: 8 [ 90.069878][ T5935] usb 6-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config [ 90.073162][ T5935] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 90.076266][ T5935] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 90.082270][ T6841] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 90.128539][ T6823] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 90.260146][ T6823] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 90.381128][ T6823] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 90.531828][ T6823] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 90.718234][ T6823] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 90.729095][ T6823] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 90.737259][ T6823] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 90.769567][ T6823] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 90.901535][ T6853] netlink: 8 bytes leftover after parsing attributes in process `syz.3.195'. [ 90.910272][ T6823] 8021q: adding VLAN 0 to HW filter on device bond0 [ 90.929270][ T6823] 8021q: adding VLAN 0 to HW filter on device team0 [ 90.944267][ T1179] bridge0: port 1(bridge_slave_0) entered blocking state [ 90.946670][ T1179] bridge0: port 1(bridge_slave_0) entered forwarding state [ 90.965665][ T1249] bridge0: port 2(bridge_slave_1) entered blocking state [ 90.968770][ T1249] bridge0: port 2(bridge_slave_1) entered forwarding state [ 90.981026][ T6853] syz.3.195 (6853) used greatest stack depth: 19624 bytes left [ 91.262954][ T6823] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 91.284730][ T6864] netlink: 16 bytes leftover after parsing attributes in process `syz.3.196'. [ 91.349557][ T6823] veth0_vlan: entered promiscuous mode [ 91.367795][ T5306] Bluetooth: hci1: command tx timeout [ 91.391701][ T6823] veth1_vlan: entered promiscuous mode [ 91.430351][ T6823] veth0_macvtap: entered promiscuous mode [ 91.441765][ T6823] veth1_macvtap: entered promiscuous mode [ 91.463609][ T6823] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 91.474399][ T6823] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 91.483040][ T6823] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.485887][ T6823] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.490261][ T6823] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.493214][ T6823] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.519986][ T6869] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 91.560658][ T102] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.567729][ T102] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.591587][ T102] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.594879][ T102] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 92.231381][ T6881] Invalid ELF header type: 3 != 1 [ 92.483792][ T6885] Invalid ELF header type: 3 != 1 [ 92.499078][ T34] usb 6-1: USB disconnect, device number 4 [ 92.698367][ T6883] netlink: 8 bytes leftover after parsing attributes in process `syz.3.198'. [ 92.831789][ T6895] netlink: 8 bytes leftover after parsing attributes in process `syz.2.199'. [ 92.947768][ T6887] hid-generic 0003:0627:0001.0001: pid 6887 passed too short report [ 93.446314][ T6898] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 93.447184][ T5306] Bluetooth: hci1: command tx timeout [ 93.511925][ T6900] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 93.609813][ T6905] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 94.433396][ T6923] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 94.706863][ T6926] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 94.938122][ T6932] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 94.955008][ T6935] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 95.527375][ T5306] Bluetooth: hci1: command tx timeout [ 95.859698][ T6944] Attempt to restore checkpoint with obsolete wellknown handles [ 95.974344][ T6948] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 96.448445][ T5987] usb 7-1: new high-speed USB device number 5 using dummy_hcd [ 96.598558][ T5987] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 96.603136][ T5987] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 96.607602][ T5987] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 96.611349][ T5987] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 96.618040][ T6950] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 96.628023][ T5987] usb 7-1: Quirk or no altset; falling back to MIDI 1.0 [ 96.757236][ T61] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 96.884978][ T5986] usb 7-1: USB disconnect, device number 5 [ 96.917302][ T61] usb 6-1: Using ep0 maxpacket: 8 [ 96.963186][ T61] usb 6-1: config index 0 descriptor too short (expected 5924, got 36) [ 96.966890][ T61] usb 6-1: config 250 has an invalid interface number: 228 but max is -1 [ 96.970764][ T61] usb 6-1: config 250 has 1 interface, different from the descriptor's value: 0 [ 96.987613][ T61] usb 6-1: config 250 has no interface number 0 [ 96.990569][ T61] usb 6-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024 [ 97.007058][ T61] usb 6-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024 [ 97.010336][ T61] usb 6-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid wMaxPacketSize 0 [ 97.013729][ T61] usb 6-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 0 [ 97.016866][ T61] usb 6-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17 [ 97.021650][ T61] usb 6-1: config 250 interface 228 has no altsetting 0 [ 97.026425][ T61] usb 6-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07 [ 97.029990][ T61] usb 6-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59 [ 97.033491][ T61] usb 6-1: Product: syz [ 97.035424][ T61] usb 6-1: SerialNumber: syz [ 97.059471][ T61] hub 6-1:250.228: bad descriptor, ignoring hub [ 97.061549][ T61] hub 6-1:250.228: probe with driver hub failed with error -5 [ 97.073860][ T6972] netlink: 4 bytes leftover after parsing attributes in process `syz.0.219'. [ 97.271229][ T61] usblp 6-1:250.228: usblp0: USB Bidirectional printer dev 5 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292 [ 97.474747][ T6980] Invalid ELF header type: 3 != 1 [ 97.617167][ T5306] Bluetooth: hci1: command tx timeout [ 97.697163][ T6984] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 98.160294][ T6986] usb 2-1: USB disconnect, device number 2 [ 98.289984][ T6996] Invalid ELF header type: 3 != 1 [ 99.956009][ T7019] Invalid ELF header type: 3 != 1 [ 100.337762][ T7023] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 100.391532][ T7025] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 100.554857][ T61] usb 6-1: USB disconnect, device number 5 [ 100.559976][ T61] usblp0: removed [ 100.573442][ T7030] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 101.547245][ T7048] netlink: 16 bytes leftover after parsing attributes in process `syz.0.238'. [ 101.560812][ T7047] Invalid ELF header type: 3 != 1 [ 101.813480][ T7057] netlink: 28 bytes leftover after parsing attributes in process `syz.3.242'. [ 102.061684][ T7050] netlink: 8 bytes leftover after parsing attributes in process `syz.1.239'. [ 102.862705][ T7083] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 102.869930][ T7084] netlink: 4 bytes leftover after parsing attributes in process `syz.3.250'. [ 102.914628][ T5306] Bluetooth: hci1: unexpected cc 0x0c1b length: 1 < 5 [ 103.337199][ T5986] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 103.507040][ T5986] usb 5-1: Using ep0 maxpacket: 8 [ 103.513101][ T5986] usb 5-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config [ 103.517453][ T5986] usb 5-1: config 16 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3 [ 103.524887][ T5986] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 103.538641][ T5986] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 103.560490][ T5986] usbtmc 5-1:16.0: bulk endpoints not found [ 103.594834][ T7090] netlink: 16 bytes leftover after parsing attributes in process `syz.3.252'. [ 104.818290][ T7110] Invalid ELF header type: 3 != 1 [ 105.275898][ T7122] netlink: 8 bytes leftover after parsing attributes in process `syz.2.256'. [ 105.794083][ T7128] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 106.105370][ T838] usb 5-1: USB disconnect, device number 7 [ 106.338341][ T7135] netlink: 16 bytes leftover after parsing attributes in process `syz.3.263'. [ 106.529579][ T7142] netlink: 'syz.0.264': attribute type 4 has an invalid length. [ 106.572762][ T7142] netlink: 'syz.0.264': attribute type 4 has an invalid length. [ 106.606371][ T7147] netlink: 4 bytes leftover after parsing attributes in process `syz.2.267'. [ 106.840332][ T7157] Invalid ELF header type: 3 != 1 [ 106.968565][ T5306] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0 [ 106.976729][ T5306] Bluetooth: hci1: Injecting HCI hardware error event [ 106.982114][ T5948] Bluetooth: hci1: hardware error 0x00 [ 107.284794][ T7167] netlink: 4 bytes leftover after parsing attributes in process `syz.3.272'. [ 107.416969][ T5306] Bluetooth: hci1: unexpected cc 0x0c1b length: 1 < 5 [ 107.419811][ T5306] Bluetooth: hci1: unexpected event for opcode 0x0c1b [ 107.585896][ T7176] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 107.665149][ T7181] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 108.048941][ T7193] netlink: 16 bytes leftover after parsing attributes in process `syz.0.280'. [ 108.618513][ T7202] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 108.685861][ T7204] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 108.876774][ T5306] Bluetooth: hci1: unexpected cc 0x0c1b length: 1 < 5 [ 108.883245][ T5306] Bluetooth: hci1: unexpected event for opcode 0x0c1b [ 109.099894][ T7218] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 109.127353][ T5948] Bluetooth: hci1: Opcode 0x0c03 failed: -110 [ 109.563937][ T7223] FAULT_INJECTION: forcing a failure. [ 109.563937][ T7223] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 109.568330][ T7223] CPU: 3 UID: 0 PID: 7223 Comm: syz.1.289 Not tainted 6.15.0-syzkaller-09113-g8477ab143069 #0 PREEMPT(full) [ 109.568344][ T7223] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 109.568351][ T7223] Call Trace: [ 109.568354][ T7223] [ 109.568359][ T7223] dump_stack_lvl+0x16c/0x1f0 [ 109.568375][ T7223] should_fail_ex+0x512/0x640 [ 109.568391][ T7223] _copy_to_user+0x32/0xd0 [ 109.568407][ T7223] simple_read_from_buffer+0xcb/0x170 [ 109.568425][ T7223] proc_fail_nth_read+0x197/0x270 [ 109.568441][ T7223] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 109.568457][ T7223] ? rw_verify_area+0xcf/0x680 [ 109.568473][ T7223] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 109.568488][ T7223] vfs_read+0x1e4/0xc60 [ 109.568498][ T7223] ? fdget_pos+0x2a2/0x370 [ 109.568511][ T7223] ? __pfx_vfs_read+0x10/0x10 [ 109.568520][ T7223] ? find_held_lock+0x2b/0x80 [ 109.568537][ T7223] ? __fget_files+0x20e/0x3c0 [ 109.568550][ T7223] ksys_read+0x12a/0x250 [ 109.568560][ T7223] ? __pfx_ksys_read+0x10/0x10 [ 109.568571][ T7223] ? rcu_is_watching+0x12/0xc0 [ 109.568587][ T7223] __do_fast_syscall_32+0x7c/0x3a0 [ 109.568600][ T7223] do_fast_syscall_32+0x32/0x80 [ 109.568612][ T7223] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 109.568625][ T7223] RIP: 0023:0xf7fa3579 [ 109.568634][ T7223] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 109.568643][ T7223] RSP: 002b:00000000f50c6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 109.568653][ T7223] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f50c6620 [ 109.568659][ T7223] RDX: 000000000000000f RSI: 00000000f7432ff4 RDI: 0000000000000000 [ 109.568664][ T7223] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 109.568670][ T7223] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 109.568675][ T7223] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 109.568688][ T7223] [ 109.670322][ T7230] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 110.888557][ T7252] netlink: 16 bytes leftover after parsing attributes in process `syz.0.295'. [ 111.122387][ T7262] Invalid ELF header type: 3 != 1 [ 111.854543][ T7268] netlink: 8 bytes leftover after parsing attributes in process `syz.3.299'. [ 111.987472][ T7271] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 112.276998][ T5986] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 112.452811][ T7284] FAULT_INJECTION: forcing a failure. [ 112.452811][ T7284] name failslab, interval 1, probability 0, space 0, times 0 [ 112.457799][ T7284] CPU: 2 UID: 0 PID: 7284 Comm: syz.2.304 Not tainted 6.15.0-syzkaller-09113-g8477ab143069 #0 PREEMPT(full) [ 112.457814][ T7284] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 112.457820][ T7284] Call Trace: [ 112.457824][ T7284] [ 112.457827][ T5986] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 112.457828][ T7284] dump_stack_lvl+0x16c/0x1f0 [ 112.457844][ T7284] should_fail_ex+0x512/0x640 [ 112.457861][ T7284] should_failslab+0xc2/0x120 [ 112.457874][ T7284] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 112.457887][ T7284] ? skb_clone+0x190/0x3f0 [ 112.457902][ T7284] skb_clone+0x190/0x3f0 [ 112.457914][ T7284] netlink_deliver_tap+0xabd/0xd30 [ 112.457932][ T7284] netlink_unicast+0x6b2/0x7f0 [ 112.457947][ T7284] ? __pfx_netlink_unicast+0x10/0x10 [ 112.457965][ T7284] netlink_ack+0x696/0xb80 [ 112.457986][ T7284] netlink_rcv_skb+0x332/0x420 [ 112.458007][ T7284] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 112.458019][ T7284] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 112.458039][ T7284] ? ns_capable+0xd7/0x110 [ 112.458055][ T7284] nfnetlink_rcv+0x1b3/0x430 [ 112.458064][ T7284] ? __pfx_nfnetlink_rcv+0x10/0x10 [ 112.458077][ T7284] ? netlink_deliver_tap+0x1ae/0xd30 [ 112.458101][ T7284] netlink_unicast+0x53d/0x7f0 [ 112.458122][ T7284] ? __pfx_netlink_unicast+0x10/0x10 [ 112.458140][ T7284] netlink_sendmsg+0x8d1/0xdd0 [ 112.458161][ T7284] ? __pfx_netlink_sendmsg+0x10/0x10 [ 112.458180][ T7284] ? __import_iovec+0x1dd/0x650 [ 112.458209][ T7284] ____sys_sendmsg+0xa95/0xc70 [ 112.458233][ T7284] ? __pfx_____sys_sendmsg+0x10/0x10 [ 112.458254][ T7284] ? get_compat_msghdr+0x11a/0x170 [ 112.458278][ T7284] ___sys_sendmsg+0x134/0x1d0 [ 112.458291][ T7284] ? __pfx____sys_sendmsg+0x10/0x10 [ 112.458320][ T7284] ? find_held_lock+0x2b/0x80 [ 112.458355][ T7284] __sys_sendmsg+0x16d/0x220 [ 112.458373][ T7284] ? __pfx___sys_sendmsg+0x10/0x10 [ 112.458400][ T7284] ? rcu_is_watching+0x12/0xc0 [ 112.458422][ T7284] __do_fast_syscall_32+0x7c/0x3a0 [ 112.458442][ T7284] do_fast_syscall_32+0x32/0x80 [ 112.458460][ T7284] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 112.458479][ T7284] RIP: 0023:0xf7f65579 [ 112.458491][ T7284] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 112.458501][ T7284] RSP: 002b:00000000f506555c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 112.458516][ T7284] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000480 [ 112.458526][ T7284] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000 [ 112.458535][ T7284] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 112.458543][ T7284] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 112.458552][ T7284] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 112.458572][ T7284] [ 112.577877][ T5986] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 112.604815][ T5986] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 112.617424][ T5986] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 112.621717][ T7273] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 112.625493][ T5986] usb 5-1: Quirk or no altset; falling back to MIDI 1.0 [ 112.888646][ T5986] usb 5-1: USB disconnect, device number 8 [ 112.936071][ T7293] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 113.632717][ T7303] Invalid ELF header type: 3 != 1 [ 113.912270][ T7282] Set syz1 is full, maxelem 65536 reached [ 114.020974][ T7315] netlink: 4 bytes leftover after parsing attributes in process `syz.2.312'. [ 114.072283][ T7311] netlink: 8 bytes leftover after parsing attributes in process `syz.0.308'. [ 114.072594][ T7320] Invalid ELF header type: 3 != 1 [ 114.518763][ T7306] netlink: 16 bytes leftover after parsing attributes in process `syz.3.309'. [ 115.086164][ T7337] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 115.147077][ T10] usb 6-1: new high-speed USB device number 6 using dummy_hcd [ 115.407149][ T10] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 115.411656][ T10] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 115.415753][ T10] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 115.860535][ T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 115.871829][ T7332] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 115.875591][ T10] usb 6-1: Quirk or no altset; falling back to MIDI 1.0 [ 115.955075][ T7345] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 115.988711][ T7347] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 116.138131][ T34] usb 6-1: USB disconnect, device number 6 [ 116.226660][ T7354] netlink: 4 bytes leftover after parsing attributes in process `syz.2.321'. [ 116.310874][ T7354] team0: Port device team_slave_0 removed [ 116.876601][ T7361] Invalid ELF header type: 3 != 1 [ 117.192135][ T7372] input: syz1 as /devices/virtual/input/input8 [ 117.238951][ T40] audit: type=1326 audit(1748656304.970:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7371 comm="syz.2.326" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65579 code=0x7ffc0000 [ 117.246806][ T40] audit: type=1326 audit(1748656304.970:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7371 comm="syz.2.326" exe="/syz-executor" sig=0 arch=40000003 syscall=172 compat=1 ip=0xf7f65579 code=0x7ffc0000 [ 117.254135][ T40] audit: type=1326 audit(1748656304.970:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7371 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65579 code=0x7ffc0000 [ 117.263876][ T40] audit: type=1326 audit(1748656304.970:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7371 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65579 code=0x7ffc0000 [ 117.274340][ T40] audit: type=1326 audit(1748656304.970:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7371 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f65579 code=0x7ffc0000 [ 117.399391][ T40] audit: type=1326 audit(1748656304.970:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7371 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f65579 code=0x7ffc0000 [ 117.403226][ T7363] netlink: 16 bytes leftover after parsing attributes in process `syz.1.323'. [ 117.408006][ T40] audit: type=1326 audit(1748656304.970:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7371 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65579 code=0x7ffc0000 [ 117.420216][ T40] audit: type=1326 audit(1748656304.970:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7371 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65579 code=0x7ffc0000 [ 117.428409][ T40] audit: type=1326 audit(1748656304.970:289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7371 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7f65579 code=0x7ffc0000 [ 117.436317][ T40] audit: type=1326 audit(1748656304.990:290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7371 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65579 code=0x7ffc0000 [ 117.495130][ T7381] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 117.680674][ T7365] netlink: 8 bytes leftover after parsing attributes in process `syz.0.322'. [ 118.025354][ T7410] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 118.071084][ T7414] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 118.079370][ T7416] random: crng reseeded on system resumption [ 118.927049][ T6009] usb 7-1: new high-speed USB device number 6 using dummy_hcd [ 119.015371][ T7438] Invalid ELF header type: 3 != 1 [ 119.646441][ T6009] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 120.152924][ T6009] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 120.156005][ T6009] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 120.277697][ T6009] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 120.286334][ T7429] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 120.419532][ T6009] usb 7-1: Quirk or no altset; falling back to MIDI 1.0 [ 120.597821][ T5935] usb 7-1: USB disconnect, device number 6 [ 121.324812][ T7464] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 121.484203][ T7471] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 122.081899][ T7478] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 122.112189][ T7480] netlink: 8 bytes leftover after parsing attributes in process `syz.0.346'. [ 122.115919][ T7480] xt_SECMARK: invalid mode: 0 [ 122.312011][ T7485] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 122.585023][ T7492] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 123.250487][ T7510] Invalid ELF header type: 3 != 1 [ 123.366949][ C3] TCP: out of memory -- consider tuning tcp_mem [ 123.366951][ C1] TCP: out of memory -- consider tuning tcp_mem [ 123.367118][ C2] TCP: out of memory -- consider tuning tcp_mem [ 123.587488][ T7520] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 124.352786][ T7533] 8021q: adding VLAN 0 to HW filter on device ipvlan2 [ 124.388795][ T7538] binder: BINDER_SET_CONTEXT_MGR already set [ 124.393516][ T7538] binder: 7537:7538 ioctl 4018620d 80000040 returned -16 [ 125.637744][ T7559] Invalid ELF header type: 3 != 1 [ 126.457076][ T6009] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 126.458070][ T7578] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 126.523593][ T7580] MPI: mpi too large (126848 bits) [ 126.610095][ T6009] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 126.613635][ T6009] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 126.616706][ T6009] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 126.621073][ T6009] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 126.627624][ T7567] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 126.627752][ T7587] Invalid ELF header type: 3 != 1 [ 126.632808][ T6009] usb 5-1: Quirk or no altset; falling back to MIDI 1.0 [ 126.955464][ T6009] usb 5-1: USB disconnect, device number 9 [ 127.421774][ T7598] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 128.383910][ T7614] netlink: 16 bytes leftover after parsing attributes in process `syz.2.378'. [ 128.750851][ T7622] Invalid ELF header type: 3 != 1 [ 129.234086][ T7635] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 129.819645][ T7643] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 130.367289][ T7652] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 130.562960][ T7657] Invalid ELF header type: 3 != 1 [ 130.862514][ T7666] capability: warning: `syz.1.392' uses deprecated v2 capabilities in a way that may be insecure [ 131.797483][ T7691] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 131.819138][ T24] usb 7-1: new high-speed USB device number 7 using dummy_hcd [ 131.891037][ T7693] netlink: 16 bytes leftover after parsing attributes in process `syz.0.399'. [ 131.978730][ T24] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 131.982276][ T24] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 131.985934][ T24] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 131.989394][ T24] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 131.995086][ T7684] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 131.999146][ T24] usb 7-1: Quirk or no altset; falling back to MIDI 1.0 [ 132.210477][ T24] usb 7-1: USB disconnect, device number 7 [ 132.338684][ T1420] ieee802154 phy1 wpan1: encryption failed: -22 [ 132.499893][ T7704] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 132.517619][ T7706] netlink: 8 bytes leftover after parsing attributes in process `syz.0.405'. [ 132.521400][ T7706] netlink: 20 bytes leftover after parsing attributes in process `syz.0.405'. [ 133.882571][ T7734] gfs2: path_lookup on c::: returned error -2 [ 133.900406][ T7734] Invalid ELF header magic: != ELF [ 134.054936][ T7742] Invalid ELF header type: 3 != 1 [ 134.507343][ T7760] Invalid ELF header type: 3 != 1 [ 134.773010][ T7763] netlink: 8 bytes leftover after parsing attributes in process `syz.0.420'. [ 135.771354][ T7777] Invalid ELF header type: 3 != 1 [ 136.335804][ T7792] bridge0: entered promiscuous mode [ 136.620740][ T7797] netlink: 4 bytes leftover after parsing attributes in process `syz.1.430'. [ 136.893162][ T7801] Invalid ELF header type: 3 != 1 [ 137.006509][ T40] kauditd_printk_skb: 17 callbacks suppressed [ 137.006525][ T40] audit: type=1326 audit(1748656324.680:308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7802 comm="syz.3.433" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f41579 code=0x0 [ 137.073773][ T7808] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 137.233021][ T7810] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 137.399788][ T7812] netlink: 8 bytes leftover after parsing attributes in process `syz.0.432'. [ 137.800263][ T7821] Invalid ELF header type: 3 != 1 [ 137.921415][ T7811] TCP: out of memory -- consider tuning tcp_mem [ 137.969930][ T7824] FAULT_INJECTION: forcing a failure. [ 137.969930][ T7824] name failslab, interval 1, probability 0, space 0, times 0 [ 137.973933][ T7824] CPU: 3 UID: 0 PID: 7824 Comm: syz.0.437 Not tainted 6.15.0-syzkaller-09113-g8477ab143069 #0 PREEMPT(full) [ 137.973952][ T7824] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 137.973961][ T7824] Call Trace: [ 137.973966][ T7824] [ 137.973972][ T7824] dump_stack_lvl+0x16c/0x1f0 [ 137.973994][ T7824] should_fail_ex+0x512/0x640 [ 137.974015][ T7824] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 137.974036][ T7824] should_failslab+0xc2/0x120 [ 137.974057][ T7824] __kmalloc_cache_noprof+0x6a/0x3e0 [ 137.974075][ T7824] ? uprobe_register+0x177/0xb60 [ 137.974098][ T7824] uprobe_register+0x177/0xb60 [ 137.974124][ T7824] bpf_uprobe_multi_link_attach+0x949/0x1280 [ 137.974154][ T7824] ? __pfx_bpf_uprobe_multi_link_attach+0x10/0x10 [ 137.974179][ T7824] ? __fget_files+0x20e/0x3c0 [ 137.974201][ T7824] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 137.974218][ T7824] __sys_bpf+0x3fb6/0x4d80 [ 137.974233][ T7824] ? __pfx___sys_bpf+0x10/0x10 [ 137.974246][ T7824] ? ksys_write+0x190/0x250 [ 137.974260][ T7824] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 137.974280][ T7824] ? fput+0x70/0xf0 [ 137.974293][ T7824] ? ksys_write+0x1ac/0x250 [ 137.974303][ T7824] ? __pfx_ksys_write+0x10/0x10 [ 137.974315][ T7824] __ia32_sys_bpf+0x76/0xe0 [ 137.974329][ T7824] __do_fast_syscall_32+0x7c/0x3a0 [ 137.974343][ T7824] do_fast_syscall_32+0x32/0x80 [ 137.974355][ T7824] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 137.974368][ T7824] RIP: 0023:0xf711e579 [ 137.974376][ T7824] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 137.974386][ T7824] RSP: 002b:00000000f510e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000165 [ 137.974396][ T7824] RAX: ffffffffffffffda RBX: 000000000000001c RCX: 00000000800005c0 [ 137.974402][ T7824] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000000 [ 137.974408][ T7824] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 137.974414][ T7824] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 137.974419][ T7824] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 137.974431][ T7824] [ 138.060840][ T7813] TCP: out of memory -- consider tuning tcp_mem [ 138.086977][ C1] TCP: out of memory -- consider tuning tcp_mem [ 138.530457][ T7837] netlink: 16 bytes leftover after parsing attributes in process `syz.0.438'. [ 139.013105][ T7836] netlink: 16 bytes leftover after parsing attributes in process `syz.1.439'. [ 139.053108][ T7844] tipc: Failed to remove unknown binding: 66,1,1/0:2930982943/2930982945 [ 139.055880][ T7844] tipc: Failed to remove unknown binding: 66,1,1/0:2930982943/2930982945 [ 139.127851][ T7846] netlink: 24 bytes leftover after parsing attributes in process `syz.3.444'. [ 139.163614][ T7848] Invalid ELF header type: 3 != 1 [ 139.242663][ T7850] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 139.787073][ T1328] usb 7-1: new high-speed USB device number 8 using dummy_hcd [ 139.929935][ T7851] netlink: 8 bytes leftover after parsing attributes in process `syz.3.445'. [ 139.937005][ T1328] usb 7-1: Using ep0 maxpacket: 32 [ 139.940822][ T1328] usb 7-1: config index 0 descriptor too short (expected 35577, got 27) [ 139.943617][ T1328] usb 7-1: config 1 has too many interfaces: 92, using maximum allowed: 32 [ 139.954053][ T1328] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 139.958417][ T1328] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 92 [ 139.962135][ T1328] usb 7-1: config 1 has no interface number 0 [ 139.964682][ T1328] usb 7-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8 [ 139.972386][ T1328] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 139.975734][ T7857] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 139.997204][ T1328] snd_usb_pod 7-1:1.1: Line 6 Pocket POD found [ 140.006986][ C1] TCP: out of memory -- consider tuning tcp_mem [ 140.204200][ T1328] snd_usb_pod 7-1:1.1: set_interface failed [ 140.210395][ T1328] snd_usb_pod 7-1:1.1: Line 6 Pocket POD now disconnected [ 140.212982][ T1328] snd_usb_pod 7-1:1.1: probe with driver snd_usb_pod failed with error -71 [ 140.216839][ T1328] usb 7-1: USB disconnect, device number 8 [ 140.291310][ T7860] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 140.375579][ T7864] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 140.814963][ T7873] Invalid ELF header type: 3 != 1 [ 141.316584][ C1] ------------[ cut here ]------------ [ 141.318527][ C1] WARNING: CPU: 1 PID: 7870 at net/mptcp/subflow.c:1505 subflow_data_ready+0x40b/0x7c0 [ 141.321472][ C1] Modules linked in: [ 141.322910][ C1] CPU: 1 UID: 0 PID: 7870 Comm: syz.3.451 Not tainted 6.15.0-syzkaller-09113-g8477ab143069 #0 PREEMPT(full) [ 141.328175][ C1] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 141.331481][ C1] RIP: 0010:subflow_data_ready+0x40b/0x7c0 [ 141.333316][ C1] Code: 89 ee e8 98 f2 56 f6 40 84 ed 75 21 e8 ae f7 56 f6 44 89 fe bf 07 00 00 00 e8 e1 f2 56 f6 41 83 ff 07 74 09 e8 96 f7 56 f6 90 <0f> 0b 90 e8 8d f7 56 f6 48 89 df e8 85 b0 ff ff 31 ff 89 c5 89 c6 [ 141.339311][ C1] RSP: 0018:ffffc90000590578 EFLAGS: 00010246 [ 141.341243][ C1] RAX: 0000000000000000 RBX: ffff888070da1980 RCX: ffffffff8b645eaf [ 141.343673][ C1] RDX: ffff88802355c880 RSI: ffffffff8b645eba RDI: 0000000000000005 [ 141.346121][ C1] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000007 [ 141.348611][ C1] R10: 0000000000000004 R11: 0000000000000001 R12: ffff888061fd1700 [ 141.351018][ C1] R13: 1ffff920000b20af R14: ffff888021105400 R15: 0000000000000004 [ 141.353459][ C1] FS: 0000000000000000(0000) GS:ffff88809787b000(0000) knlGS:0000000000000000 [ 141.356414][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 141.358504][ C1] CR2: 000000002f5ceffc CR3: 000000006e807000 CR4: 0000000000352ef0 [ 141.360932][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 141.363324][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 141.365790][ C1] Call Trace: [ 141.366843][ C1] [ 141.367820][ C1] ? __pfx_subflow_data_ready+0x10/0x10 [ 141.369558][ C1] tcp_data_queue+0x13a4/0x4f50 [ 141.371244][ C1] ? tcp_urg+0x10f/0xb80 [ 141.372984][ C1] ? __pfx_tcp_data_queue+0x10/0x10 [ 141.374746][ C1] ? tcp_send_dupack+0x7c0/0x810 [ 141.376307][ C1] ? read_tsc+0x9/0x20 [ 141.377690][ C1] tcp_rcv_state_process+0xfe8/0x4ed0 [ 141.379380][ C1] ? lock_acquire+0x179/0x350 [ 141.380880][ C1] ? __pfx_tcp_rcv_state_process+0x10/0x10 [ 141.382702][ C1] ? sk_filter_trim_cap+0xeb/0xac0 [ 141.384344][ C1] ? lock_acquire+0x179/0x350 [ 141.385839][ C1] ? do_raw_spin_lock+0x12c/0x2b0 [ 141.387566][ C1] ? tcp_v4_do_rcv+0x1ad/0xa90 [ 141.389076][ C1] tcp_v4_do_rcv+0x1ad/0xa90 [ 141.390547][ C1] tcp_v4_rcv+0x3609/0x4650 [ 141.392026][ C1] ? __pfx_tcp_v4_rcv+0x10/0x10 [ 141.393558][ C1] ? __pfx_raw_local_deliver+0x10/0x10 [ 141.395275][ C1] ? __pfx_tcp_v4_rcv+0x10/0x10 [ 141.396811][ C1] ip_protocol_deliver_rcu+0xba/0x4c0 [ 141.398528][ C1] ip_local_deliver_finish+0x316/0x570 [ 141.400203][ C1] ip_local_deliver+0x18e/0x1f0 [ 141.401729][ C1] ? __pfx_ip_local_deliver+0x10/0x10 [ 141.403398][ C1] ip_rcv+0x2c3/0x5d0 [ 141.404698][ C1] ? __pfx_ip_rcv+0x10/0x10 [ 141.406134][ C1] __netif_receive_skb_one_core+0x197/0x1e0 [ 141.408021][ C1] ? __pfx___netif_receive_skb_one_core+0x10/0x10 [ 141.410012][ C1] ? lock_acquire+0x179/0x350 [ 141.411487][ C1] ? process_backlog+0x3f0/0x15e0 [ 141.413061][ C1] __netif_receive_skb+0x1d/0x160 [ 141.414661][ C1] process_backlog+0x442/0x15e0 [ 141.416189][ C1] __napi_poll.constprop.0+0xb7/0x550 [ 141.417914][ C1] net_rx_action+0xa9f/0xfe0 [ 141.419388][ C1] ? __pfx_net_rx_action+0x10/0x10 [ 141.421001][ C1] ? rcu_is_watching+0x12/0xc0 [ 141.422501][ C1] ? mark_held_locks+0x49/0x80 [ 141.424016][ C1] handle_softirqs+0x219/0x8e0 [ 141.425562][ C1] ? __pfx_handle_softirqs+0x10/0x10 [ 141.427249][ C1] __irq_exit_rcu+0x109/0x170 [ 141.428725][ C1] irq_exit_rcu+0x9/0x30 [ 141.430067][ C1] sysvec_apic_timer_interrupt+0xa4/0xc0 [ 141.431802][ C1] [ 141.432744][ C1] [ 141.433703][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 141.435559][ C1] RIP: 0010:_raw_spin_unlock_irq+0x29/0x50 [ 141.437422][ C1] Code: 90 f3 0f 1e fa 53 48 8b 74 24 08 48 89 fb 48 83 c7 18 e8 ca bc 1c f6 48 89 df e8 b2 10 1d f6 e8 8d eb 47 f6 fb bf 01 00 00 00 52 38 0d f6 65 8b 05 db 12 2f 08 85 c0 74 06 5b e9 41 4d 00 00 [ 141.443392][ C1] RSP: 0018:ffffc900079273b0 EFLAGS: 00000202 [ 141.445290][ C1] RAX: 0000000000007857 RBX: ffff88804d715f18 RCX: 0000000000000006 [ 141.447774][ C1] RDX: 0000000000000000 RSI: ffffffff8dc00788 RDI: 0000000000000001 [ 141.450230][ C1] RBP: ffff88804d715f10 R08: 0000000000000001 R09: 0000000000000001 [ 141.452644][ C1] R10: ffffffff90878157 R11: 0000000000000001 R12: ffff88804d715f18 [ 141.455107][ C1] R13: ffff88804d715f10 R14: ffffc900079276e0 R15: 000000000000001d [ 141.457590][ C1] filemap_remove_folio+0x106/0x250 [ 141.459227][ C1] truncate_inode_folio+0x49/0x70 [ 141.460795][ C1] shmem_undo_range+0x376/0x1150 [ 141.462346][ C1] ? __pfx_shmem_undo_range+0x10/0x10 [ 141.464034][ C1] ? __lock_acquire+0x622/0x1c90 [ 141.465588][ C1] ? is_bpf_text_address+0x94/0x1a0 [ 141.467242][ C1] ? kernel_text_address+0x8d/0x100 [ 141.468879][ C1] ? __kernel_text_address+0xd/0x40 [ 141.470523][ C1] ? percpu_counter_add_batch+0xb8/0x1f0 [ 141.472267][ C1] shmem_evict_inode+0x3a1/0xbe0 [ 141.473832][ C1] ? __pfx_shmem_evict_inode+0x10/0x10 [ 141.475568][ C1] ? __pfx_inode_wait_for_writeback+0x10/0x10 [ 141.477493][ C1] ? find_held_lock+0x2b/0x80 [ 141.478936][ C1] ? evict+0x3a2/0x920 [ 141.480228][ C1] ? __pfx_shmem_evict_inode+0x10/0x10 [ 141.481926][ C1] evict+0x3e3/0x920 [ 141.483161][ C1] ? __pfx_evict+0x10/0x10 [ 141.484577][ C1] ? iput+0x519/0x880 [ 141.485840][ C1] iput+0x521/0x880 [ 141.487099][ C1] ? __pfx_generic_delete_inode+0x10/0x10 [ 141.488875][ C1] dentry_unlink_inode+0x29c/0x480 [ 141.490522][ C1] __dentry_kill+0x1d0/0x600 [ 141.492019][ C1] dput.part.0+0x4b1/0x9b0 [ 141.493438][ C1] dput+0x1f/0x30 [ 141.494620][ C1] __fput+0x51c/0xb70 [ 141.495881][ C1] ? cleanup_mnt+0x262/0x450 [ 141.497382][ C1] task_work_run+0x14d/0x240 [ 141.498842][ C1] ? __pfx_task_work_run+0x10/0x10 [ 141.500439][ C1] ? switch_task_namespaces+0xeb/0x100 [ 141.502188][ C1] do_exit+0xae2/0x2c70 [ 141.503501][ C1] ? __pfx_do_exit+0x10/0x10 [ 141.504984][ C1] ? do_raw_spin_lock+0x12c/0x2b0 [ 141.506561][ C1] ? find_held_lock+0x2b/0x80 [ 141.508109][ C1] do_group_exit+0xd3/0x2a0 [ 141.509543][ C1] get_signal+0x2673/0x26d0 [ 141.510994][ C1] ? __pfx_get_signal+0x10/0x10 [ 141.512520][ C1] ? do_futex+0x122/0x350 [ 141.513906][ C1] ? __pfx_do_futex+0x10/0x10 [ 141.515406][ C1] arch_do_signal_or_restart+0x8f/0x790 [ 141.517187][ C1] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 141.519095][ C1] ? xfd_validate_state+0x61/0x180 [ 141.520696][ C1] exit_to_user_mode_loop+0x84/0x110 [ 141.522340][ C1] __do_fast_syscall_32+0x2ac/0x3a0 [ 141.523989][ C1] do_fast_syscall_32+0x32/0x80 [ 141.525551][ C1] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 141.527556][ C1] RIP: 0023:0xf7f41579 [ 141.528839][ C1] Code: Unable to access opcode bytes at 0xf7f4154f. [ 141.530903][ C1] RSP: 002b:00000000f4c0160c EFLAGS: 00000296 ORIG_RAX: 00000000000000f0 [ 141.533538][ C1] RAX: fffffffffffffe00 RBX: 00000000f7405138 RCX: 0000000000000080 [ 141.535984][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000f740513c [ 141.538530][ C1] RBP: 0000000000000081 R08: 0000000000000000 R09: 0000000000000000 [ 141.540964][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 141.543434][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 141.545930][ C1] [ 141.546980][ C1] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 141.549219][ C1] CPU: 1 UID: 0 PID: 7870 Comm: syz.3.451 Not tainted 6.15.0-syzkaller-09113-g8477ab143069 #0 PREEMPT(full) [ 141.552756][ C1] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 141.556126][ C1] Call Trace: [ 141.557214][ C1] [ 141.558404][ C1] dump_stack_lvl+0x3d/0x1f0 [ 141.559911][ C1] panic+0x71c/0x800 [ 141.561160][ C1] ? __pfx_panic+0x10/0x10 [ 141.562564][ C1] ? show_trace_log_lvl+0x29b/0x3e0 [ 141.564219][ C1] ? check_panic_on_warn+0x1f/0xb0 [ 141.565829][ C1] ? subflow_data_ready+0x40b/0x7c0 [ 141.567456][ C1] check_panic_on_warn+0xab/0xb0 [ 141.569058][ C1] __warn+0xf6/0x3c0 [ 141.570306][ C1] ? subflow_data_ready+0x40b/0x7c0 [ 141.571929][ C1] report_bug+0x3c3/0x580 [ 141.573298][ C1] ? subflow_data_ready+0x40b/0x7c0 [ 141.574945][ C1] handle_bug+0x184/0x210 [ 141.576308][ C1] exc_invalid_op+0x17/0x50 [ 141.577747][ C1] asm_exc_invalid_op+0x1a/0x20 [ 141.579278][ C1] RIP: 0010:subflow_data_ready+0x40b/0x7c0 [ 141.581157][ C1] Code: 89 ee e8 98 f2 56 f6 40 84 ed 75 21 e8 ae f7 56 f6 44 89 fe bf 07 00 00 00 e8 e1 f2 56 f6 41 83 ff 07 74 09 e8 96 f7 56 f6 90 <0f> 0b 90 e8 8d f7 56 f6 48 89 df e8 85 b0 ff ff 31 ff 89 c5 89 c6 [ 141.587060][ C1] RSP: 0018:ffffc90000590578 EFLAGS: 00010246 [ 141.588947][ C1] RAX: 0000000000000000 RBX: ffff888070da1980 RCX: ffffffff8b645eaf [ 141.591374][ C1] RDX: ffff88802355c880 RSI: ffffffff8b645eba RDI: 0000000000000005 [ 141.593844][ C1] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000007 [ 141.596277][ C1] R10: 0000000000000004 R11: 0000000000000001 R12: ffff888061fd1700 [ 141.598727][ C1] R13: 1ffff920000b20af R14: ffff888021105400 R15: 0000000000000004 [ 141.601175][ C1] ? subflow_data_ready+0x3ff/0x7c0 [ 141.603104][ C1] ? subflow_data_ready+0x40a/0x7c0 [ 141.605149][ C1] ? subflow_data_ready+0x40a/0x7c0 [ 141.606778][ C1] ? __pfx_subflow_data_ready+0x10/0x10 [ 141.608498][ C1] tcp_data_queue+0x13a4/0x4f50 [ 141.610055][ C1] ? tcp_urg+0x10f/0xb80 [ 141.611387][ C1] ? __pfx_tcp_data_queue+0x10/0x10 [ 141.613065][ C1] ? tcp_send_dupack+0x7c0/0x810 [ 141.614615][ C1] ? read_tsc+0x9/0x20 [ 141.615877][ C1] tcp_rcv_state_process+0xfe8/0x4ed0 [ 141.617505][ C1] ? lock_acquire+0x179/0x350 [ 141.618974][ C1] ? __pfx_tcp_rcv_state_process+0x10/0x10 [ 141.620792][ C1] ? sk_filter_trim_cap+0xeb/0xac0 [ 141.622247][ C1] ? lock_acquire+0x179/0x350 [ 141.623706][ C1] ? do_raw_spin_lock+0x12c/0x2b0 [ 141.625276][ C1] ? tcp_v4_do_rcv+0x1ad/0xa90 [ 141.626776][ C1] tcp_v4_do_rcv+0x1ad/0xa90 [ 141.628227][ C1] tcp_v4_rcv+0x3609/0x4650 [ 141.629670][ C1] ? __pfx_tcp_v4_rcv+0x10/0x10 [ 141.631216][ C1] ? __pfx_raw_local_deliver+0x10/0x10 [ 141.632920][ C1] ? __pfx_tcp_v4_rcv+0x10/0x10 [ 141.634462][ C1] ip_protocol_deliver_rcu+0xba/0x4c0 [ 141.636136][ C1] ip_local_deliver_finish+0x316/0x570 [ 141.637841][ C1] ip_local_deliver+0x18e/0x1f0 [ 141.639371][ C1] ? __pfx_ip_local_deliver+0x10/0x10 [ 141.641061][ C1] ip_rcv+0x2c3/0x5d0 [ 141.642327][ C1] ? __pfx_ip_rcv+0x10/0x10 [ 141.643786][ C1] __netif_receive_skb_one_core+0x197/0x1e0 [ 141.645624][ C1] ? __pfx___netif_receive_skb_one_core+0x10/0x10 [ 141.647611][ C1] ? lock_acquire+0x179/0x350 [ 141.649105][ C1] ? process_backlog+0x3f0/0x15e0 [ 141.650688][ C1] __netif_receive_skb+0x1d/0x160 [ 141.652261][ C1] process_backlog+0x442/0x15e0 [ 141.653796][ C1] __napi_poll.constprop.0+0xb7/0x550 [ 141.655428][ C1] net_rx_action+0xa9f/0xfe0 [ 141.656886][ C1] ? __pfx_net_rx_action+0x10/0x10 [ 141.658440][ C1] ? rcu_is_watching+0x12/0xc0 [ 141.659951][ C1] ? mark_held_locks+0x49/0x80 [ 141.661454][ C1] handle_softirqs+0x219/0x8e0 [ 141.662906][ C1] ? __pfx_handle_softirqs+0x10/0x10 [ 141.664570][ C1] __irq_exit_rcu+0x109/0x170 [ 141.666071][ C1] irq_exit_rcu+0x9/0x30 [ 141.667412][ C1] sysvec_apic_timer_interrupt+0xa4/0xc0 [ 141.669174][ C1] [ 141.670126][ C1] [ 141.671067][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 141.672940][ C1] RIP: 0010:_raw_spin_unlock_irq+0x29/0x50 [ 141.674774][ C1] Code: 90 f3 0f 1e fa 53 48 8b 74 24 08 48 89 fb 48 83 c7 18 e8 ca bc 1c f6 48 89 df e8 b2 10 1d f6 e8 8d eb 47 f6 fb bf 01 00 00 00 52 38 0d f6 65 8b 05 db 12 2f 08 85 c0 74 06 5b e9 41 4d 00 00 [ 141.680595][ C1] RSP: 0018:ffffc900079273b0 EFLAGS: 00000202 [ 141.682411][ C1] RAX: 0000000000007857 RBX: ffff88804d715f18 RCX: 0000000000000006 [ 141.684906][ C1] RDX: 0000000000000000 RSI: ffffffff8dc00788 RDI: 0000000000000001 [ 141.687358][ C1] RBP: ffff88804d715f10 R08: 0000000000000001 R09: 0000000000000001 [ 141.689816][ C1] R10: ffffffff90878157 R11: 0000000000000001 R12: ffff88804d715f18 [ 141.692249][ C1] R13: ffff88804d715f10 R14: ffffc900079276e0 R15: 000000000000001d [ 141.694720][ C1] filemap_remove_folio+0x106/0x250 [ 141.696349][ C1] truncate_inode_folio+0x49/0x70 [ 141.697963][ C1] shmem_undo_range+0x376/0x1150 [ 141.699594][ C1] ? __pfx_shmem_undo_range+0x10/0x10 [ 141.701285][ C1] ? __lock_acquire+0x622/0x1c90 [ 141.702839][ C1] ? is_bpf_text_address+0x94/0x1a0 [ 141.704459][ C1] ? kernel_text_address+0x8d/0x100 [ 141.706073][ C1] ? __kernel_text_address+0xd/0x40 [ 141.707689][ C1] ? percpu_counter_add_batch+0xb8/0x1f0 [ 141.709446][ C1] shmem_evict_inode+0x3a1/0xbe0 [ 141.711006][ C1] ? __pfx_shmem_evict_inode+0x10/0x10 [ 141.712707][ C1] ? __pfx_inode_wait_for_writeback+0x10/0x10 [ 141.714665][ C1] ? find_held_lock+0x2b/0x80 [ 141.716155][ C1] ? evict+0x3a2/0x920 [ 141.717457][ C1] ? __pfx_shmem_evict_inode+0x10/0x10 [ 141.719150][ C1] evict+0x3e3/0x920 [ 141.720391][ C1] ? __pfx_evict+0x10/0x10 [ 141.721801][ C1] ? iput+0x519/0x880 [ 141.723062][ C1] iput+0x521/0x880 [ 141.724293][ C1] ? __pfx_generic_delete_inode+0x10/0x10 [ 141.726069][ C1] dentry_unlink_inode+0x29c/0x480 [ 141.727671][ C1] __dentry_kill+0x1d0/0x600 [ 141.729147][ C1] dput.part.0+0x4b1/0x9b0 [ 141.730566][ C1] dput+0x1f/0x30 [ 141.731728][ C1] __fput+0x51c/0xb70 [ 141.733002][ C1] ? cleanup_mnt+0x262/0x450 [ 141.734447][ C1] task_work_run+0x14d/0x240 [ 141.735899][ C1] ? __pfx_task_work_run+0x10/0x10 [ 141.737497][ C1] ? switch_task_namespaces+0xeb/0x100 [ 141.739198][ C1] do_exit+0xae2/0x2c70 [ 141.740510][ C1] ? __pfx_do_exit+0x10/0x10 [ 141.741966][ C1] ? do_raw_spin_lock+0x12c/0x2b0 [ 141.743542][ C1] ? find_held_lock+0x2b/0x80 [ 141.745030][ C1] do_group_exit+0xd3/0x2a0 [ 141.746457][ C1] get_signal+0x2673/0x26d0 [ 141.747899][ C1] ? __pfx_get_signal+0x10/0x10 [ 141.749435][ C1] ? do_futex+0x122/0x350 [ 141.750800][ C1] ? __pfx_do_futex+0x10/0x10 [ 141.752281][ C1] arch_do_signal_or_restart+0x8f/0x790 [ 141.754047][ C1] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 141.755961][ C1] ? xfd_validate_state+0x61/0x180 [ 141.757564][ C1] exit_to_user_mode_loop+0x84/0x110 [ 141.759211][ C1] __do_fast_syscall_32+0x2ac/0x3a0 [ 141.760845][ C1] do_fast_syscall_32+0x32/0x80 [ 141.762368][ C1] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 141.764327][ C1] RIP: 0023:0xf7f41579 [ 141.765615][ C1] Code: Unable to access opcode bytes at 0xf7f4154f. [ 141.767664][ C1] RSP: 002b:00000000f4c0160c EFLAGS: 00000296 ORIG_RAX: 00000000000000f0 [ 141.770244][ C1] RAX: fffffffffffffe00 RBX: 00000000f7405138 RCX: 0000000000000080 [ 141.772670][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000f740513c [ 141.775169][ C1] RBP: 0000000000000081 R08: 0000000000000000 R09: 0000000000000000 [ 141.777615][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 141.780058][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 141.782511][ C1] [ 141.784149][ C1] Kernel Offset: disabled [ 141.785515][ C1] Rebooting in 86400 seconds.. VM DIAGNOSIS: 01:52:09 Registers: info registers vcpu 0 CPU#0 RAX=00000000001ea9f1 RBX=0000000000000000 RCX=ffffffff8b78a419 RDX=0000000000000000 RSI=ffffffff8dc00788 RDI=ffffffff8bf51b00 RBP=fffffbfff1c12ee8 RSP=ffffffff8e007e08 R8 =0000000000000001 R9 =ffffed100564663d R10=ffff88802b2331eb R11=0000000000000001 R12=0000000000000000 R13=ffffffff8e097740 R14=ffffffff90878150 R15=0000000000000000 RIP=ffffffff8b788f7f RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88809777b000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00000000f5044da4 CR3=0000000063412000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000a000000000 0000000200000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8555adc5 RDI=ffffffff9ae53d80 RBP=ffffffff9ae53d40 RSP=ffffc9000058fee0 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000001 R12=0000000000000000 R13=0000000000000020 R14=ffffffff9ae53d40 R15=ffffffff8555ad60 RIP=ffffffff8555adef RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88809787b000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000002f5ceffc CR3=000000006e807000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=00000000001cd88f RBX=0000000000000002 RCX=ffffffff8b78a419 RDX=0000000000000000 RSI=ffffffff8dc00788 RDI=ffffffff8bf51b00 RBP=ffffed1003b56910 RSP=ffffc9000047fdf8 R8 =0000000000000001 R9 =ffffed100568663d R10=ffff88802b4331eb R11=0000000000000001 R12=0000000000000002 R13=ffff88801dab4880 R14=ffffffff90878150 R15=0000000000000000 RIP=ffffffff8b788f7f RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88809797b000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000000c3b986a CR3=00000000496d9000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000001a4 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000001df8a 0000002c00000012 0004000000080024 0000000000280030 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000001cd 0000001400000000 0000000000000000 0000000000000017 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1404000003048c08 0002080014080006 006fba2a0000067a 0000001000000001 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 75742f74656e2f76 65642f01ffffffff ffffffffe5080980 0300080002080004 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 080006046fd00808 0004080020080006 026fda3808000002 0100000008060601 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 048c0e0800300300 02002e0300000000 0000000000000000 0001ffffffffffff ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffe50814030280 0200120303fc0200 100306b0aa048800 0803000484000403 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 040010c8030e0800 10c00308040010bc 0310040010b8033e 080010b003020400 ZMM25=8f551d9d8f551d9d 8f551d9d8f551d9d 8f551d9d8f551d9d 8f551d9d8f551d9d 8f551d9d8f551d9d 8f551d9d8f551d9d 8f551d9d8f551d9d 8f551d9d8f551d9d ZMM26=185b51fc185b51fc 185b51fc185b51fc 185b51fc185b51fc 185b51fc185b51fc 185b51fc185b51fc 185b51fc185b51fc 185b51fc185b51fc 185b51fc185b51fc ZMM27=01bda3d801bda3d8 01bda3d801bda3d8 01bda3d801bda3d8 01bda3d801bda3d8 01bda3d801bda3d8 01bda3d801bda3d8 01bda3d801bda3d8 01bda3d801bda3d8 ZMM28=000000200000001f 0000001e0000001d 0000001c0000001b 0000001a00000019 0000001800000017 0000001600000015 0000001400000013 0000001200000011 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=5905000059050000 5905000059050000 5905000059050000 5905000059050000 5905000059050000 5905000059050000 5905000059050000 5905000059050000 info registers vcpu 3 CPU#3 EAX=82291a69 EBX=ffffffff ECX=81b4195e EDX=f7432ff4 ESI=f7464fe8 EDI=f68cf008 EBP=f7f95610 ESP=ff9b3020 EIP=f710e44c EFL=00000202 [-------] CPL=3 II=0 A20=1 SMM=0 HLT=0 ES =002b 00000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0023 00000000 ffffffff 00c0fb00 DPL=3 CS32 [-RA] SS =002b 00000000 ffffffff 00c0f300 DPL=3 DS [-WA] DS =002b 00000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 00000000 ffffffff 00c00000 GS =0063 56de4440 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 00000000 ffffffff 00c00000 TR =0040 000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00000000f50a5da4 CR3=000000004a693000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000a000000000 0000000200000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000