last executing test programs: 2m29.28657109s ago: executing program 1 (id=2): r0 = socket$nl_route(0x10, 0x3, 0x0) openat$tun(0xffffffffffffff9c, &(0x7f0000000640), 0x80000, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) r2 = getpid() r3 = getpid() ptrace$ARCH_SHSTK_DISABLE(0x1e, r3, 0x1, 0x5002) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x3c) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) clock_adjtime(0x0, &(0x7f0000000000)={0x66b7, 0x0, 0xfffffffffffeffff, 0x7, 0x0, 0xfffffffffffffffd, 0x77, 0x0, 0x0, 0x0, 0x8, 0x248e, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x2, 0x81, 0x6, 0x5, 0x7ff, 0xf439}) r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r6) ptrace$setregs(0xd, r6, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b40000000000000079104800000000006104300000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x94) ptrace$getregset(0x4204, r6, 0x2, &(0x7f0000000740)={0x0}) r7 = socket$inet(0xa, 0x1, 0x0) setsockopt$IPT_SO_SET_REPLACE(r7, 0x0, 0x40, &(0x7f00000002c0)=@mangle={'mangle\x00', 0x44, 0x6, 0x410, 0x2d8, 0x98, 0x2d8, 0x98, 0x138, 0x378, 0x378, 0x378, 0x378, 0x378, 0x6, 0x0, {[{{@ip={@loopback, @multicast1=0xe0007600, 0x0, 0x0, 'gre0\x00', 'ip6gre0\x00', {}, {}, 0x0, 0x0, 0x11}, 0x7a00, 0x70, 0x98}, @inet=@DSCP={0x28}}, {{@ip={@multicast1, @local, 0x0, 0x0, 'wg1\x00', 'nicvf0\x00', {}, {}, 0x11}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @local}}}, {{@ip={@broadcast, @multicast2, 0x0, 0x0, 'vlan1\x00', 'nr0\x00'}, 0x0, 0xb8, 0x100, 0x0, {}, [@common=@unspec=@limit={{0x48}, {0x0, 0x28, 0x0, 0x0, 0x0, 0x1}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@private2, 'veth0_virt_wifi\x00', {0x7}}}}, {{@ip={@rand_addr, @private, 0xffffffff, 0xff, 'syzkaller0\x00', 'veth1_to_team\x00', {}, {0xff}}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @empty}}}, {{@ip={@empty, @empty, 0xff000000, 0x0, 'lo\x00', 'batadv_slave_1\x00'}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x1fb, 0x0, @loopback}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x470) sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=@ipv6_delroute={0x30, 0x19, 0x1, 0x0, 0x0, {0xa, 0x0, 0x10, 0x0, 0x0, 0x0, 0xfd}, [@RTA_GATEWAY={0x14, 0x5, @empty}]}, 0x30}}, 0x0) 2m13.058166201s ago: executing program 32 (id=2): r0 = socket$nl_route(0x10, 0x3, 0x0) openat$tun(0xffffffffffffff9c, &(0x7f0000000640), 0x80000, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) r2 = getpid() r3 = getpid() ptrace$ARCH_SHSTK_DISABLE(0x1e, r3, 0x1, 0x5002) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x3c) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) clock_adjtime(0x0, &(0x7f0000000000)={0x66b7, 0x0, 0xfffffffffffeffff, 0x7, 0x0, 0xfffffffffffffffd, 0x77, 0x0, 0x0, 0x0, 0x8, 0x248e, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x2, 0x81, 0x6, 0x5, 0x7ff, 0xf439}) r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r6) ptrace$setregs(0xd, r6, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b40000000000000079104800000000006104300000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x94) ptrace$getregset(0x4204, r6, 0x2, &(0x7f0000000740)={0x0}) r7 = socket$inet(0xa, 0x1, 0x0) setsockopt$IPT_SO_SET_REPLACE(r7, 0x0, 0x40, &(0x7f00000002c0)=@mangle={'mangle\x00', 0x44, 0x6, 0x410, 0x2d8, 0x98, 0x2d8, 0x98, 0x138, 0x378, 0x378, 0x378, 0x378, 0x378, 0x6, 0x0, {[{{@ip={@loopback, @multicast1=0xe0007600, 0x0, 0x0, 'gre0\x00', 'ip6gre0\x00', {}, {}, 0x0, 0x0, 0x11}, 0x7a00, 0x70, 0x98}, @inet=@DSCP={0x28}}, {{@ip={@multicast1, @local, 0x0, 0x0, 'wg1\x00', 'nicvf0\x00', {}, {}, 0x11}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @local}}}, {{@ip={@broadcast, @multicast2, 0x0, 0x0, 'vlan1\x00', 'nr0\x00'}, 0x0, 0xb8, 0x100, 0x0, {}, [@common=@unspec=@limit={{0x48}, {0x0, 0x28, 0x0, 0x0, 0x0, 0x1}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@private2, 'veth0_virt_wifi\x00', {0x7}}}}, {{@ip={@rand_addr, @private, 0xffffffff, 0xff, 'syzkaller0\x00', 'veth1_to_team\x00', {}, {0xff}}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @empty}}}, {{@ip={@empty, @empty, 0xff000000, 0x0, 'lo\x00', 'batadv_slave_1\x00'}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x1fb, 0x0, @loopback}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x470) sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=@ipv6_delroute={0x30, 0x19, 0x1, 0x0, 0x0, {0xa, 0x0, 0x10, 0x0, 0x0, 0x0, 0xfd}, [@RTA_GATEWAY={0x14, 0x5, @empty}]}, 0x30}}, 0x0) 20.568733128s ago: executing program 2 (id=198): r0 = socket$nl_route(0x10, 0x3, 0x0) openat$tun(0xffffffffffffff9c, &(0x7f0000000640), 0x80000, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) r2 = getpid() r3 = getpid() ptrace$ARCH_SHSTK_DISABLE(0x1e, r3, 0x1, 0x5002) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x3c) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) clock_adjtime(0x0, &(0x7f0000000000)={0x66b7, 0x0, 0xfffffffffffeffff, 0x7, 0x0, 0xfffffffffffffffd, 0x77, 0x0, 0x0, 0x0, 0x8, 0x248e, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x2, 0x81, 0x6, 0x5, 0x7ff, 0xf439}) r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r6) ptrace$setregs(0xd, r6, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610430000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=@ipv6_delroute={0x1c, 0x19, 0x1, 0x0, 0x0, {0xa, 0x0, 0x10, 0x0, 0x0, 0x0, 0xfd}}, 0x1c}}, 0x0) 19.493501773s ago: executing program 2 (id=199): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x2) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000000c0)='debugfs\x00', 0x1214040, 0x0) mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000040)={[{@xino_on}, {@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) r0 = openat(0xffffffffffffff9c, 0x0, 0x4, 0x80) getdents64(r0, &(0x7f0000000400)=""/4096, 0x1000) 19.378542296s ago: executing program 2 (id=201): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="07000000040000001800000001"], 0x50) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x1f, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x9, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000001000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b703000000000000850000001b"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x9, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000100000000000000001812", @ANYRES32=r0, @ANYBLOB="0000000000000000b70300001a"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_GET_PROG_INFO(0xa, &(0x7f0000000740)={r1, 0x0, 0x0}, 0x10) 18.293397918s ago: executing program 2 (id=202): io_uring_setup(0x667, &(0x7f0000000000)={0x0, 0xa14a, 0x1000, 0x2, 0x235}) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x800000}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) fsopen(0x0, 0x1) r3 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2) r4 = memfd_create(&(0x7f0000000140)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xcda\x9b\x11X\x0e\xa1\xcf\x1a\x98S7\xc9\x00'/47, 0x2) fcntl$addseals(r4, 0x409, 0x7) r5 = ioctl$UDMABUF_CREATE(r3, 0x40187542, &(0x7f0000000000)={r4, 0x0, 0x0, 0x8000}) ioctl$DMA_BUF_IOCTL_SYNC(r5, 0x40086200, 0x0) r6 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0) setresuid(0xffffffffffffffff, 0xee00, 0xffffffffffffffff) write(r6, 0x0, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f00000003c0)={0x0, 0x0, 0x80800}) ioctl$DMA_BUF_IOCTL_SYNC(r5, 0x40086200, &(0x7f00000000c0)=0x7) 17.193696344s ago: executing program 2 (id=204): ioctl$KVM_X86_SET_MSR_FILTER(0xffffffffffffffff, 0x4188aec6, &(0x7f0000002cc0)={0x0, [{0x3, 0x1470, 0x6, &(0x7f0000000640)="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"}, {0x2, 0x0, 0x1ff, 0x0}, {0x3, 0x0, 0x9, 0x0}, {0x0, 0x0, 0xfffffff8, 0x0}, {0x0, 0x0, 0x9, 0x0}, {0x1, 0x0, 0x40003, 0x0}, {0x2, 0x0, 0xa2d, 0x0}, {0x0, 0x0, 0x10000004, 0x0}, {0x1, 0x0, 0xf3f, 0x0}, {0x4, 0x0, 0xa3a, 0x0}, {0x3, 0x0, 0x3, 0x0}, {0x3, 0x0, 0x1000, 0x0}, {0x0, 0x0, 0x9, 0x0}, {0x0, 0x0, 0x1545, 0x0}, {0x1, 0x0, 0x9, 0x0}, {0x1, 0x0, 0x40007, 0x0}]}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6) r2 = accept4(r1, 0x0, 0x0, 0x800) sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb09587", 0x4b}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11", 0xce}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800) recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0xfffff000, 0x2000, &(0x7f0000000000/0x2000)=nil}) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 16.81110801s ago: executing program 2 (id=205): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000007c0), 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) r1 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001440)=ANY=[@ANYBLOB="1c0000005e0021a5553f"], 0x1c}, 0x1, 0x0, 0x0, 0x48050}, 0x0) r2 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0x4e20, @empty}], 0x10) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000040)=[@in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x20}}]}, &(0x7f0000000100)=0x10) setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x85, &(0x7f0000000240)={0x0, @in={{0x2, 0x0, @empty}}, 0xff, 0x3}, 0x90) r4 = fsopen(&(0x7f00000001c0)='bpf\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0) bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) fsmount(r4, 0x1, 0x0) bpf$OBJ_PIN_MAP(0x6, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f0000000840)={r3, @in6={{0xa, 0x4e20, 0x3ae, @empty, 0x129}}, 0x2, 0x2, 0x614, 0x1, 0xb5, 0x7, 0x4}, 0x9c) 3.377710679s ago: executing program 3 (id=224): ioctl$KVM_X86_SET_MSR_FILTER(0xffffffffffffffff, 0x4188aec6, &(0x7f0000002cc0)={0x0, [{0x3, 0xaa8, 0x6, &(0x7f0000000640)="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"}, {0x2, 0x0, 0x1ff, 0x0}, {0x3, 0x0, 0x9, 0x0}, {0x0, 0x0, 0xfffffff8, 0x0}, {0x0, 0x0, 0x9, 0x0}, {0x1, 0x0, 0x40003, 0x0}, {0x2, 0x0, 0xa2d, 0x0}, {0x0, 0x0, 0x10000004, 0x0}, {0x1, 0x0, 0xf3f, 0x0}, {0x4, 0x0, 0xa3a, 0x0}, {0x3, 0x0, 0x3, 0x0}, {0x3, 0x0, 0x1000, 0x0}, {0x0, 0x0, 0x9, 0x0}, {0x0, 0x0, 0x1545, 0x0}, {0x1, 0x0, 0x9, 0x0}, {0x1, 0x0, 0x40007, 0x0}]}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6) r2 = accept4(r1, 0x0, 0x0, 0x800) sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11", 0xce}], 0x2, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800) recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0xfffff000, 0x2000, &(0x7f0000000000/0x2000)=nil}) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 3.20721035s ago: executing program 3 (id=225): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="07000000040000001800000001"], 0x50) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x1f, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x9, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000001000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b703000000000000850000001b"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x9, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000010000000000000000181200", @ANYRES32=r0, @ANYBLOB="0000000000000000b70300001a"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_GET_PROG_INFO(0xa, &(0x7f0000000740)={r1, 0x0, 0x0}, 0x10) 3.146715663s ago: executing program 3 (id=226): sendmmsg$unix(0xffffffffffffffff, &(0x7f0000008740)=[{{&(0x7f0000006180)=@abs={0x0, 0x0, 0x4e24}, 0x6e, &(0x7f0000006540)=[{&(0x7f0000006200)="28c6302d25ed422ff11e9dfcc9df4a8407416461c92e9a14cfa5317f2cedcebbab378e0f970b0c51a2f8eaf0212523212e5c64af1f9a17b73b577d603c7c5e418c711a2dad7c6724cd65743025a3771f9bb25d261953d105a9f4d1e35719fb3e8977f8e457ee17", 0x67}, {&(0x7f0000006280)="8c754782d4b58c0e17be9047c09b5b3000b8502b71dd654e06b8d3e562", 0x1d}, {&(0x7f00000062c0)="dcf2d47cc7c353ef5a25e6bf668749634ac5e6a7b86996b2eba60d9ee3998cb69ff5ee6c4892c4cc59744023dab83576bc6c14f2187296598984d9b4553e05ca76933e29eee732cbec255b133da904d4b380a88ebf41ac57f80c8b1b6b6c89418b26f2e1fe2f205af62a473928d8843e06bbe7bbd7f33bc6ae2b7bb32d0addad3253235288064836dc8818eb7358612f95a9cc", 0x93}, {&(0x7f0000006380)="5b42fd093cdd72837fde17e7afa44467cd1e6170548b1014b863b5af6a973b45d9475c2d6442c5aa539a53f22d34f5a458f047a96a621063ccabad447486f0ce7c62b34a9452812451db344a0e291f7124a513cf926f6c4fb074589424387aa70549ccdc0045fd5ded660b8436440d30b1fe21d78e0b4fd9db81e8cdda810bf0970e6a", 0x83}, {&(0x7f0000006440)="26d6177d2751cec5cd454ba7f51bb1f6988a0de279e19a76a84f3f9f557ff4522320935a2ceb54ba546a14b4ff81eb2eef74ff18a73d6f456137aef3a113cfa3453260c4e3e036cae35a04e99f38e32b404d9da4f12366498041f53ecf987c9985589bb3618d4b5d34e4346fd1ec00a385fa63674d056ec48b36f46412ce45e09c5091db01e809bb5b405912eeda9e31b9a101c6ade64fbd3ffa2f780dc3091632bfd437c47b09ec01de10bfe4ad57f1cffcd05fffc890945dbbd4861634ec99532f01c9748c8ef88e3132dd2ce1e5a9212655d0072118c9d55700333c1edce312", 0xe1}], 0x5, &(0x7f00000065c0)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x68, 0x40058000}}, {{&(0x7f0000006640)=@abs={0x0, 0x0, 0x4e23}, 0x6e, &(0x7f0000006940)=[{&(0x7f00000066c0)="aa77c8fc0897521f7af50a9d42e38ceca0c74dec605426a254fd32eeb6fedbf2ac37e0e03ca5bfea606085fbadaa02b2231a189ba6f2b10e2e1f60f1b55e9672414bb67ce97330e768be572ca1056db8b7c65d30a27662a491aaec", 0x5b}, {&(0x7f0000006840)="500116f38c401e68e2cea9b862d4ee2f3fd0bcd71b296f928715004f16a461fa511b1234c799200008bc103e0adcf6db45e36b6d7e73e950ff91539fc3a92b6f174e3530f7080033da30e23ced9bb92cd0e19c6a61d0a191a517f0334b167df0a9e5fdc527a0c391f4f86afa0c410dbdfc588f55347f21020b40a26f51d2af7e1e345638fe1be462cea661de77e415fb43752fd4cee4803d3fdfd990c9e1a36d166ad191945ab1a3f4581027b5eb65082592755b2301f1368a02a535583be7d4af53e9488ee29e23be1fed828a8a6a5f683e096cc414ac76abea03e6805e14f70820e8a54e8f0a0480540fbcb083", 0xee}], 0x2, 0x0, 0x0, 0x4000000}}, {{&(0x7f00000069c0)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f0000006b00)=[{&(0x7f0000006a40)="bd6a9a", 0x3}, {&(0x7f0000006a80)="90c8e95cb4b3596de8acae4d30e4cac9e99923247ceddf1a83745eeb4fb1def415b43ce2ff4a65de9971af20e63eb49c2668", 0x32}], 0x2, &(0x7f0000006cc0)=[@cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x38, 0x4008880}}, {{0x0, 0x0, &(0x7f00000080c0)=[{&(0x7f0000006d80)="583f36633133e06d4a93743f8f22a6b3a47567a860efe8d10c8f82c66ab7e45183c2afb23ade784652d86d27b0047c62ef98f445e24a23acecc601a2f00a081f18d0572013569c2b09c26795e697c97a0a4d58c295c29b7cc50993486202b528f633fcc186d01b3db1db", 0x6a}, {&(0x7f0000006e40)="dded807f5268fa9fc5b41e8236e972a3b06aa83d64e44405cf45dcc6a76b20fd091034420e00e1ffee08d5665c401a3b573d07fab63890ca8a2212c4a384239b3c2f5d13798d67863c34e4501a3ec13c1e216d2bca143efebe07fa5ff6753a345958f6b01b96bedd2981dbf7bc3b7f6b6deef9928a1e6546de06aa1285b2f9dc211b54522f89a02af258550e9254487e0b8de173ab7c63f8aa318a27a0e2769114", 0xa1}, {&(0x7f0000006f40)="1a3ed8f59c09a18ad850b8a708deae409c27d8171a3b7622f784938a56693b636666fb87fe0d2da48b875514a9c6a65334b170bf6233d10f69db85c49c201d2e0fcd53df202d7cbe41d71cb2b09b02282799eb20a915e9ec3945eb2464aaab03f280755601bf5305e5c60288def9d81b4502b39f0f54154ccd86524bda75848e1989005efc84e95e005aec894726a20d281b90a219357587d51a7b91713dc38d31c0c5bc962cdbf589", 0xa9}], 0x3, 0x0, 0x0, 0x10}}], 0x4, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) 3.145882525s ago: executing program 3 (id=227): r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r1, 0x4008ae89, &(0x7f0000000040)={0x1, 0x0, [{0xc0010115}]}) syz_kvm_add_vcpu$x86(0x0, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x2400, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = syz_kvm_setup_syzos_vm$x86(r3, &(0x7f0000bfe000/0x400000)=nil) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r5 = syz_kvm_add_vcpu$x86(r4, &(0x7f0000000080)={0x0, 0x0}) ioctl$KVM_SET_SREGS(r5, 0x4138ae84, 0x0) ioctl$KVM_SET_LAPIC(r5, 0x4400ae8f, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) 2.433364013s ago: executing program 3 (id=228): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000000)={[0x35, 0xfff, 0xfffffffffffffffe, 0x40000000000180, 0x2, 0x6, 0xf2, 0xd, 0x7fffffffffffe, 0x7, 0x5, 0x7, 0x4, 0x5, 0x4, 0x8], 0x25000, 0x304}) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r5 = dup(r4) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil}) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f00000000c0)="c20000361e0f01c3660fd2eff30f10f1b961020000b80e000000ba000000000f30b98d0200000f320b99f3530000660f6af7c4e2f91d20", 0x37}], 0x1, 0x11, 0x0, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text32={0x20, 0x0}], 0x1, 0x50, 0x0, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) 1.35609936s ago: executing program 3 (id=229): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000007c0), 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) r1 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001440)=ANY=[@ANYBLOB="1c0000005e0021a5553f"], 0x1c}, 0x1, 0x0, 0x0, 0x48050}, 0x0) r2 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0x4e20, @empty}], 0x10) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000040)=[@in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x20}}]}, &(0x7f0000000100)=0x10) setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x85, &(0x7f0000000240)={0x0, @in={{0x2, 0x0, @empty}}, 0xff, 0x3}, 0x90) r4 = fsopen(&(0x7f00000001c0)='bpf\x00', 0x0) bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x48) fsmount(r4, 0x1, 0x0) bpf$OBJ_PIN_MAP(0x6, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f0000000840)={r3, @in6={{0xa, 0x4e20, 0x3ae, @empty, 0x129}}, 0x2, 0x2, 0x614, 0x1, 0xb5, 0x7, 0x4}, 0x9c) 0s ago: executing program 33 (id=205): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000007c0), 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) r1 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001440)=ANY=[@ANYBLOB="1c0000005e0021a5553f"], 0x1c}, 0x1, 0x0, 0x0, 0x48050}, 0x0) r2 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0x4e20, @empty}], 0x10) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000040)=[@in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x20}}]}, &(0x7f0000000100)=0x10) setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x85, &(0x7f0000000240)={0x0, @in={{0x2, 0x0, @empty}}, 0xff, 0x3}, 0x90) r4 = fsopen(&(0x7f00000001c0)='bpf\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0) bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) fsmount(r4, 0x1, 0x0) bpf$OBJ_PIN_MAP(0x6, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f0000000840)={r3, @in6={{0xa, 0x4e20, 0x3ae, @empty, 0x129}}, 0x2, 0x2, 0x614, 0x1, 0xb5, 0x7, 0x4}, 0x9c) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.85' (ED25519) to the list of known hosts. [ 73.556554][ T5806] cgroup: Unknown subsys name 'net' [ 73.796885][ T5806] cgroup: Unknown subsys name 'cpuset' [ 73.851068][ T5806] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 75.455186][ T5806] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 77.752317][ T5828] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 77.763827][ T5828] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 77.768069][ T5828] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 77.776668][ T5828] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 77.786569][ T5828] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 77.794822][ T5828] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 77.804686][ T5828] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 77.804971][ T5836] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 77.806686][ T5836] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 77.807183][ T5836] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 77.812382][ T5831] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 77.827909][ T5828] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 77.828596][ T5828] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 77.839777][ T60] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 77.849158][ T5828] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 77.851607][ T5828] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 77.863256][ T60] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 77.907014][ T5828] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 77.915258][ T5836] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 77.935966][ T5831] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 77.991191][ T5131] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 78.011260][ T5839] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 78.026128][ T5131] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 78.028017][ T5131] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 78.030892][ T5131] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 78.754626][ T5821] chnl_net:caif_netlink_parms(): no params data found [ 78.973583][ T5822] chnl_net:caif_netlink_parms(): no params data found [ 79.026488][ T5825] chnl_net:caif_netlink_parms(): no params data found [ 79.077688][ T5820] chnl_net:caif_netlink_parms(): no params data found [ 79.106195][ T5826] chnl_net:caif_netlink_parms(): no params data found [ 79.153218][ T5821] bridge0: port 1(bridge_slave_0) entered blocking state [ 79.154305][ T5821] bridge0: port 1(bridge_slave_0) entered disabled state [ 79.154616][ T5821] bridge_slave_0: entered allmulticast mode [ 79.156410][ T5821] bridge_slave_0: entered promiscuous mode [ 79.209915][ T5821] bridge0: port 2(bridge_slave_1) entered blocking state [ 79.209979][ T5821] bridge0: port 2(bridge_slave_1) entered disabled state [ 79.210239][ T5821] bridge_slave_1: entered allmulticast mode [ 79.214725][ T5821] bridge_slave_1: entered promiscuous mode [ 79.346776][ T5821] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 79.358597][ T5822] bridge0: port 1(bridge_slave_0) entered blocking state [ 79.358704][ T5822] bridge0: port 1(bridge_slave_0) entered disabled state [ 79.359133][ T5822] bridge_slave_0: entered allmulticast mode [ 79.362182][ T5822] bridge_slave_0: entered promiscuous mode [ 79.395278][ T5821] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 79.408562][ T5822] bridge0: port 2(bridge_slave_1) entered blocking state [ 79.408668][ T5822] bridge0: port 2(bridge_slave_1) entered disabled state [ 79.408802][ T5822] bridge_slave_1: entered allmulticast mode [ 79.412008][ T5822] bridge_slave_1: entered promiscuous mode [ 79.418517][ T5825] bridge0: port 1(bridge_slave_0) entered blocking state [ 79.418666][ T5825] bridge0: port 1(bridge_slave_0) entered disabled state [ 79.419083][ T5825] bridge_slave_0: entered allmulticast mode [ 79.422306][ T5825] bridge_slave_0: entered promiscuous mode [ 79.483164][ T5825] bridge0: port 2(bridge_slave_1) entered blocking state [ 79.483271][ T5825] bridge0: port 2(bridge_slave_1) entered disabled state [ 79.483549][ T5825] bridge_slave_1: entered allmulticast mode [ 79.484822][ T5825] bridge_slave_1: entered promiscuous mode [ 79.518410][ T5820] bridge0: port 1(bridge_slave_0) entered blocking state [ 79.518521][ T5820] bridge0: port 1(bridge_slave_0) entered disabled state [ 79.518943][ T5820] bridge_slave_0: entered allmulticast mode [ 79.521807][ T5820] bridge_slave_0: entered promiscuous mode [ 79.556925][ T5826] bridge0: port 1(bridge_slave_0) entered blocking state [ 79.557028][ T5826] bridge0: port 1(bridge_slave_0) entered disabled state [ 79.557124][ T5826] bridge_slave_0: entered allmulticast mode [ 79.558410][ T5826] bridge_slave_0: entered promiscuous mode [ 79.564454][ T5821] team0: Port device team_slave_0 added [ 79.565523][ T5820] bridge0: port 2(bridge_slave_1) entered blocking state [ 79.565634][ T5820] bridge0: port 2(bridge_slave_1) entered disabled state [ 79.566943][ T5820] bridge_slave_1: entered allmulticast mode [ 79.569158][ T5820] bridge_slave_1: entered promiscuous mode [ 79.581981][ T5822] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 79.626335][ T5826] bridge0: port 2(bridge_slave_1) entered blocking state [ 79.626454][ T5826] bridge0: port 2(bridge_slave_1) entered disabled state [ 79.626903][ T5826] bridge_slave_1: entered allmulticast mode [ 79.630989][ T5826] bridge_slave_1: entered promiscuous mode [ 79.634755][ T5821] team0: Port device team_slave_1 added [ 79.655184][ T5822] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 79.804018][ T5825] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 79.852486][ T5825] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 79.870235][ T5831] Bluetooth: hci1: command tx timeout [ 79.885599][ T5820] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 79.914238][ T5826] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 79.915306][ T5821] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 79.915319][ T5821] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 79.915340][ T5821] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 79.919977][ T5820] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 79.932583][ T5822] team0: Port device team_slave_0 added [ 79.961724][ T5826] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 79.962464][ T5821] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 79.962474][ T5821] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 79.962496][ T5821] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 79.982712][ T5822] team0: Port device team_slave_1 added [ 79.988418][ T5825] team0: Port device team_slave_0 added [ 80.020930][ T5831] Bluetooth: hci0: command tx timeout [ 80.021007][ T5831] Bluetooth: hci2: command tx timeout [ 80.021069][ T5831] Bluetooth: hci3: command tx timeout [ 80.063781][ T5825] team0: Port device team_slave_1 added [ 80.088779][ T5820] team0: Port device team_slave_0 added [ 80.100952][ T5131] Bluetooth: hci4: command tx timeout [ 80.127684][ T5826] team0: Port device team_slave_0 added [ 80.129940][ T5820] team0: Port device team_slave_1 added [ 80.131145][ T5822] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 80.131157][ T5822] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 80.131179][ T5822] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 80.173379][ T5826] team0: Port device team_slave_1 added [ 80.174434][ T5822] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 80.174446][ T5822] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 80.174466][ T5822] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 80.175766][ T5825] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 80.175777][ T5825] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 80.175798][ T5825] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 80.246525][ T5825] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 80.246540][ T5825] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 80.246562][ T5825] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 80.277447][ T5821] hsr_slave_0: entered promiscuous mode [ 80.279219][ T5821] hsr_slave_1: entered promiscuous mode [ 80.320195][ T5820] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 80.320210][ T5820] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 80.320231][ T5820] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 80.325393][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 80.325407][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 80.325428][ T5826] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 80.352656][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 80.352672][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 80.352693][ T5826] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 80.354545][ T5820] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 80.354556][ T5820] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 80.354578][ T5820] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 80.460611][ T5822] hsr_slave_0: entered promiscuous mode [ 80.461804][ T5822] hsr_slave_1: entered promiscuous mode [ 80.462733][ T5822] debugfs: 'hsr0' already exists in 'hsr' [ 80.462834][ T5822] Cannot create hsr debugfs directory [ 80.552090][ T5825] hsr_slave_0: entered promiscuous mode [ 80.552820][ T5825] hsr_slave_1: entered promiscuous mode [ 80.553311][ T5825] debugfs: 'hsr0' already exists in 'hsr' [ 80.553328][ T5825] Cannot create hsr debugfs directory [ 80.634559][ T5820] hsr_slave_0: entered promiscuous mode [ 80.635298][ T5820] hsr_slave_1: entered promiscuous mode [ 80.635823][ T5820] debugfs: 'hsr0' already exists in 'hsr' [ 80.635839][ T5820] Cannot create hsr debugfs directory [ 80.657086][ T5826] hsr_slave_0: entered promiscuous mode [ 80.658279][ T5826] hsr_slave_1: entered promiscuous mode [ 80.659092][ T5826] debugfs: 'hsr0' already exists in 'hsr' [ 80.659113][ T5826] Cannot create hsr debugfs directory [ 81.624021][ T10] cfg80211: failed to load regulatory.db [ 81.940688][ T5131] Bluetooth: hci1: command tx timeout [ 81.989908][ T5821] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 82.046240][ T5821] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 82.049319][ T5821] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 82.074614][ T5821] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 82.075533][ T5821] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 82.110510][ T5831] Bluetooth: hci2: command tx timeout [ 82.110536][ T5831] Bluetooth: hci0: command tx timeout [ 82.110636][ T5131] Bluetooth: hci3: command tx timeout [ 82.117298][ T5821] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 82.144517][ T5821] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 82.180208][ T5839] Bluetooth: hci4: command tx timeout [ 82.195021][ T5821] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 82.315185][ T5825] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 82.354176][ T5825] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 82.366815][ T5825] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 82.408257][ T5825] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 82.418666][ T5825] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 82.445791][ T5825] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 82.475813][ T5825] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 82.505196][ T5825] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 82.604023][ T5820] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 82.629262][ T5820] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 82.645508][ T5820] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 82.666593][ T5820] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 82.672883][ T5820] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 82.703579][ T5820] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 82.727556][ T5820] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 82.763392][ T5820] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 82.878275][ T5826] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 82.903227][ T5826] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 82.912448][ T5826] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 82.935939][ T5826] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 82.949766][ T5826] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 82.993417][ T5826] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 83.012998][ T5826] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 83.054375][ T5826] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 83.058181][ T5821] 8021q: adding VLAN 0 to HW filter on device bond0 [ 83.173398][ T5822] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 83.216770][ T5822] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 83.227312][ T5821] 8021q: adding VLAN 0 to HW filter on device team0 [ 83.234587][ T5822] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 83.263106][ T5822] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 83.266019][ T5822] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 83.292917][ T5822] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 83.299728][ T5822] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 83.342819][ T5822] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 83.368753][ T1719] bridge0: port 1(bridge_slave_0) entered blocking state [ 83.369196][ T1719] bridge0: port 1(bridge_slave_0) entered forwarding state [ 83.416109][ T1719] bridge0: port 2(bridge_slave_1) entered blocking state [ 83.416307][ T1719] bridge0: port 2(bridge_slave_1) entered forwarding state [ 83.438429][ T5825] 8021q: adding VLAN 0 to HW filter on device bond0 [ 83.524359][ T5825] 8021q: adding VLAN 0 to HW filter on device team0 [ 83.564448][ T40] bridge0: port 1(bridge_slave_0) entered blocking state [ 83.564790][ T40] bridge0: port 1(bridge_slave_0) entered forwarding state [ 83.595454][ T5820] 8021q: adding VLAN 0 to HW filter on device bond0 [ 83.598803][ T40] bridge0: port 2(bridge_slave_1) entered blocking state [ 83.603369][ T40] bridge0: port 2(bridge_slave_1) entered forwarding state [ 83.692869][ T5820] 8021q: adding VLAN 0 to HW filter on device team0 [ 83.729804][ T5826] 8021q: adding VLAN 0 to HW filter on device bond0 [ 83.752135][ T2317] bridge0: port 1(bridge_slave_0) entered blocking state [ 83.752328][ T2317] bridge0: port 1(bridge_slave_0) entered forwarding state [ 83.805339][ T40] bridge0: port 2(bridge_slave_1) entered blocking state [ 83.805443][ T40] bridge0: port 2(bridge_slave_1) entered forwarding state [ 83.906522][ T5826] 8021q: adding VLAN 0 to HW filter on device team0 [ 83.932204][ T5822] 8021q: adding VLAN 0 to HW filter on device bond0 [ 83.965009][ T1413] bridge0: port 1(bridge_slave_0) entered blocking state [ 83.965130][ T1413] bridge0: port 1(bridge_slave_0) entered forwarding state [ 84.032217][ T5839] Bluetooth: hci1: command tx timeout [ 84.063591][ T1719] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.063780][ T1719] bridge0: port 2(bridge_slave_1) entered forwarding state [ 84.143126][ T5822] 8021q: adding VLAN 0 to HW filter on device team0 [ 84.180888][ T5839] Bluetooth: hci3: command tx timeout [ 84.180921][ T5839] Bluetooth: hci2: command tx timeout [ 84.181018][ T5131] Bluetooth: hci0: command tx timeout [ 84.183811][ T155] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.189045][ T155] bridge0: port 1(bridge_slave_0) entered forwarding state [ 84.257157][ T2317] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.257299][ T2317] bridge0: port 2(bridge_slave_1) entered forwarding state [ 84.260615][ T5131] Bluetooth: hci4: command tx timeout [ 84.267729][ T5821] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 84.423776][ T5825] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 84.597745][ T5821] veth0_vlan: entered promiscuous mode [ 84.658316][ T5821] veth1_vlan: entered promiscuous mode [ 84.693016][ T5825] veth0_vlan: entered promiscuous mode [ 84.703392][ T5820] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 84.754337][ T5825] veth1_vlan: entered promiscuous mode [ 84.889917][ T5821] veth0_macvtap: entered promiscuous mode [ 84.919421][ T5821] veth1_macvtap: entered promiscuous mode [ 84.943101][ T5826] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 84.961284][ T5825] veth0_macvtap: entered promiscuous mode [ 84.993471][ T5825] veth1_macvtap: entered promiscuous mode [ 85.009289][ T5820] veth0_vlan: entered promiscuous mode [ 85.046355][ T5821] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 85.080681][ T5822] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 85.085302][ T5821] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 85.114817][ T5820] veth1_vlan: entered promiscuous mode [ 85.143918][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 85.175686][ T40] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.194972][ T40] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.214509][ T40] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.215926][ T40] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.218434][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 85.327019][ T2317] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.339474][ T2317] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.347108][ T2317] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.407367][ T2317] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.778879][ T5820] veth0_macvtap: entered promiscuous mode [ 85.968287][ T5820] veth1_macvtap: entered promiscuous mode [ 85.978320][ T5822] veth0_vlan: entered promiscuous mode [ 86.017031][ T4465] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 86.017057][ T4465] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 86.089935][ T1413] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 86.089953][ T1413] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 86.091316][ T5822] veth1_vlan: entered promiscuous mode [ 86.098495][ T5826] veth0_vlan: entered promiscuous mode [ 86.100173][ T5131] Bluetooth: hci1: command tx timeout [ 86.132676][ T5820] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 86.178730][ T4465] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 86.178757][ T4465] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 86.197340][ T5820] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 86.198411][ T5826] veth1_vlan: entered promiscuous mode [ 86.250460][ T1413] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 86.250479][ T1413] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 86.261564][ T5831] Bluetooth: hci3: command tx timeout [ 86.261612][ T5131] Bluetooth: hci0: command tx timeout [ 86.262672][ T5131] Bluetooth: hci2: command tx timeout [ 86.341895][ T5131] Bluetooth: hci4: command tx timeout [ 86.378903][ T4465] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.395182][ T4465] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.409905][ T4465] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.427702][ T4465] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.490462][ T5822] veth0_macvtap: entered promiscuous mode [ 86.547578][ T5822] veth1_macvtap: entered promiscuous mode [ 86.673254][ T5826] veth0_macvtap: entered promiscuous mode [ 86.776082][ T5826] veth1_macvtap: entered promiscuous mode [ 86.899179][ T5822] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 86.935285][ T5822] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 86.936288][ T2317] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 86.936305][ T2317] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 86.977604][ T40] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.987916][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 86.994983][ T40] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.007599][ T40] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.056923][ T40] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.159738][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 87.218748][ T5943] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 87.260672][ T4465] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 87.260691][ T4465] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 87.284712][ T4465] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.375379][ T1413] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.396232][ T1413] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.397277][ T1413] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.459101][ T5831] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 104.481906][ T5831] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 104.482715][ T5831] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 104.483675][ T5831] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 104.484871][ T5831] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 106.201612][ T6053] overlayfs: missing 'lowerdir' [ 106.938884][ T5131] Bluetooth: hci5: command tx timeout [ 107.454955][ T6059] netlink: 36 bytes leftover after parsing attributes in process `syz.2.34'. [ 109.154876][ T5131] Bluetooth: hci5: command tx timeout [ 111.379066][ T5131] Bluetooth: hci5: command tx timeout [ 113.610982][ T5131] Bluetooth: hci5: command tx timeout [ 118.446817][ T6153] Bluetooth: MGMT ver 1.23 [ 136.103196][ T1333] ieee802154 phy0 wpan0: encryption failed: -22 [ 136.103287][ T1333] ieee802154 phy1 wpan1: encryption failed: -22 [ 141.445200][ T5831] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 141.464785][ T5831] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 141.465943][ T5831] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 141.472315][ T5831] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 141.474892][ T5831] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 142.013531][ T5131] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 142.045612][ T5131] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 142.058799][ T5131] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 142.067504][ T5131] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 142.068822][ T5131] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 143.697174][ T5831] Bluetooth: hci6: command tx timeout [ 144.290661][ T5831] Bluetooth: hci7: command tx timeout [ 145.926395][ T5831] Bluetooth: hci6: command tx timeout [ 146.995068][ T5831] Bluetooth: hci7: command tx timeout [ 148.321194][ T5831] Bluetooth: hci6: command tx timeout [ 153.655139][ T5131] Bluetooth: hci6: command tx timeout [ 153.655183][ T5831] Bluetooth: hci7: command tx timeout [ 155.831587][ T5831] Bluetooth: hci7: command tx timeout [ 158.842297][ T6377] syz.2.116 (6377): drop_caches: 0 [ 160.511975][ T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!! [ 160.533356][ T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!! [ 160.544037][ T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!! [ 160.554719][ T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!! [ 160.565404][ T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!! [ 161.863868][ T6401] ======================================================= [ 161.863868][ T6401] WARNING: The mand mount option has been deprecated and [ 161.863868][ T6401] and is ignored by this kernel. Remove the mand [ 161.863868][ T6401] option from the mount to silence this warning. [ 161.863868][ T6401] ======================================================= [ 161.865517][ T6401] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 162.027708][ T6401] overlayfs: failed lookup in lower (/, name='tracing', err=-66): unsupported object type [ 162.027921][ T6401] overlayfs: failed to look up (tracing) for ino (-66) [ 168.565753][ T5131] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1 [ 168.583400][ T5131] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9 [ 168.585491][ T5131] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9 [ 169.316326][ T5131] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4 [ 169.354721][ T5131] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2 [ 171.577034][ T5131] Bluetooth: hci8: command tx timeout [ 171.961059][ T6464] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7) [ 171.961086][ T6464] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus) [ 172.002114][ T6464] vhci_hcd vhci_hcd.0: Device attached [ 172.018976][ T6465] vhci_hcd: connection closed [ 172.050541][ T6464] evm: overlay not supported [ 172.080478][ T40] vhci_hcd vhci_hcd.2: stop threads [ 172.081125][ T40] vhci_hcd vhci_hcd.2: release socket [ 172.121806][ T40] vhci_hcd vhci_hcd.2: disconnect device [ 173.944112][ T5131] Bluetooth: hci8: command tx timeout [ 176.227043][ T5131] Bluetooth: hci8: command tx timeout [ 178.685258][ T5131] Bluetooth: hci8: command tx timeout [ 200.000861][ T6601] overlayfs: failed to resolve './file0': -2 [ 201.319788][ T1333] ieee802154 phy0 wpan0: encryption failed: -22 [ 201.319856][ T1333] ieee802154 phy1 wpan1: encryption failed: -22 [ 205.611222][ T5831] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1 [ 205.632171][ T5831] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9 [ 205.636062][ T5831] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9 [ 205.637091][ T5831] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4 [ 205.637773][ T5831] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2 [ 206.578427][ T5831] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1 [ 206.602640][ T5831] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9 [ 206.604245][ T5831] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9 [ 206.605922][ T5831] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4 [ 206.607628][ T5831] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2 [ 208.363298][ T5836] Bluetooth: hci9: command tx timeout [ 208.749062][ T5836] Bluetooth: hci10: command tx timeout [ 210.343124][ T5832] Bluetooth: hci2: command 0x0406 tx timeout [ 210.361220][ T5832] Bluetooth: hci0: command 0x0406 tx timeout [ 210.361250][ T5836] Bluetooth: hci3: command 0x0406 tx timeout [ 210.361274][ T5836] Bluetooth: hci4: command 0x0406 tx timeout [ 210.424376][ T5836] Bluetooth: hci1: command 0x0406 tx timeout [ 213.264737][ T6661] Bluetooth: hci10: command tx timeout [ 213.264842][ T5832] Bluetooth: hci9: command tx timeout [ 215.429751][ T5828] Bluetooth: hci9: command tx timeout [ 215.429781][ T5828] Bluetooth: hci10: command tx timeout [ 217.686997][ T5828] Bluetooth: hci9: command tx timeout [ 217.687047][ T5839] Bluetooth: hci10: command tx timeout [ 217.821937][ T6697] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 228.556629][ T6797] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 228.599775][ T6797] overlayfs: failed lookup in lower (/, name='tracing', err=-66): unsupported object type [ 228.599819][ T6797] overlayfs: failed to look up (tracing) for ino (-66) [ 233.598023][ T5828] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1 [ 233.620737][ T5828] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9 [ 233.624773][ T5828] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9 [ 233.625798][ T5828] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4 [ 233.626877][ T5828] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2 [ 235.848893][ T5839] Bluetooth: hci11: command tx timeout [ 236.375265][ T5839] Bluetooth: hci5: command 0x0406 tx timeout [ 237.447975][ T5839] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1 [ 237.450353][ T5839] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9 [ 237.451249][ T5839] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9 [ 237.487972][ T5839] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4 [ 237.488623][ T5839] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2 [ 238.071425][ T5828] Bluetooth: hci11: command tx timeout [ 239.696238][ T5828] Bluetooth: hci12: command tx timeout [ 240.294225][ T5828] Bluetooth: hci11: command tx timeout [ 241.929150][ T5828] Bluetooth: hci12: command tx timeout [ 242.517004][ T5828] Bluetooth: hci11: command tx timeout [ 244.141114][ T5828] Bluetooth: hci12: command tx timeout [ 246.363873][ T5828] Bluetooth: hci12: command tx timeout [ 247.133928][ T38] INFO: task kworker/u8:11:2317 blocked for more than 143 seconds. [ 247.133950][ T38] Not tainted syzkaller #0 [ 247.133955][ T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 247.133963][ T38] task:kworker/u8:11 state:D stack:23696 pid:2317 tgid:2317 ppid:2 task_flags:0x4208060 flags:0x00080000 [ 247.133997][ T38] Workqueue: ipv6_addrconf addrconf_dad_work [ 247.134029][ T38] Call Trace: [ 247.134033][ T38] [ 247.134040][ T38] __schedule+0x1681/0x54c0 [ 247.134069][ T38] ? __pfx___schedule+0x10/0x10 [ 247.134091][ T38] rt_mutex_schedule+0x76/0xf0 [ 247.134106][ T38] rt_mutex_slowlock_block+0x508/0x680 [ 247.134131][ T38] rt_mutex_slowlock+0x2dc/0x780 [ 247.134145][ T38] ? rt_mutex_slowlock+0x1fd/0x780 [ 247.134159][ T38] ? __pfx_rt_mutex_slowlock+0x10/0x10 [ 247.134182][ T38] ? _raw_spin_unlock_irqrestore+0x30/0x80 [ 247.134195][ T38] ? addrconf_dad_work+0x124/0x1680 [ 247.134207][ T38] mutex_lock_nested+0x168/0x1d0 [ 247.134220][ T38] ? addrconf_dad_work+0x124/0x1680 [ 247.134234][ T38] addrconf_dad_work+0x124/0x1680 [ 247.134248][ T38] ? lock_acquire+0x106/0x350 [ 247.134261][ T38] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 247.134273][ T38] ? __pfx_addrconf_dad_work+0x10/0x10 [ 247.134285][ T38] ? process_scheduled_works+0xa70/0x1860 [ 247.134304][ T38] ? process_scheduled_works+0xa70/0x1860 [ 247.134317][ T38] ? process_scheduled_works+0xa70/0x1860 [ 247.134332][ T38] process_scheduled_works+0xb5d/0x1860 [ 247.134361][ T38] ? __pfx_process_scheduled_works+0x10/0x10 [ 247.134379][ T38] ? assign_work+0x3d5/0x5e0 [ 247.134395][ T38] worker_thread+0xa53/0xfc0 [ 247.134417][ T38] kthread+0x388/0x470 [ 247.134429][ T38] ? __pfx_worker_thread+0x10/0x10 [ 247.134438][ T38] ? __pfx_kthread+0x10/0x10 [ 247.134450][ T38] ret_from_fork+0x514/0xb70 [ 247.134461][ T38] ? __pfx_ret_from_fork+0x10/0x10 [ 247.134471][ T38] ? __switch_to+0xc79/0x1410 [ 247.134486][ T38] ? __pfx_kthread+0x10/0x10 [ 247.134498][ T38] ret_from_fork_asm+0x1a/0x30 [ 247.134517][ T38] [ 247.136116][ T38] INFO: task syz-executor:5822 blocked for more than 143 seconds. [ 247.136129][ T38] Not tainted syzkaller #0 [ 247.136134][ T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 247.136139][ T38] task:syz-executor state:D stack:22256 pid:5822 tgid:5822 ppid:1 task_flags:0x400140 flags:0x00080002 [ 247.136169][ T38] Call Trace: [ 247.136173][ T38] [ 247.136180][ T38] __schedule+0x1681/0x54c0 [ 247.136208][ T38] ? __pfx___schedule+0x10/0x10 [ 247.136225][ T38] rt_mutex_schedule+0x76/0xf0 [ 247.136240][ T38] rt_mutex_slowlock_block+0x508/0x680 [ 247.136263][ T38] rt_mutex_slowlock+0x2dc/0x780 [ 247.136278][ T38] ? rt_mutex_slowlock+0x1fd/0x780 [ 247.136292][ T38] ? __pfx_rt_mutex_slowlock+0x10/0x10 [ 247.136310][ T38] ? devinet_ioctl+0x32b/0x1b30 [ 247.136324][ T38] ? devinet_ioctl+0x32b/0x1b30 [ 247.136337][ T38] ? devinet_ioctl+0x32b/0x1b30 [ 247.136346][ T38] mutex_lock_nested+0x168/0x1d0 [ 247.136362][ T38] devinet_ioctl+0x32b/0x1b30 [ 247.136379][ T38] ? __pfx_devinet_ioctl+0x10/0x10 [ 247.136392][ T38] ? get_user_ifreq+0x12b/0x180 [ 247.136404][ T38] inet_ioctl+0x42a/0x560 [ 247.136419][ T38] ? __pfx_inet_ioctl+0x10/0x10 [ 247.136441][ T38] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 247.136455][ T38] sock_do_ioctl+0x101/0x320 [ 247.136468][ T38] ? __pfx_sock_do_ioctl+0x10/0x10 [ 247.136481][ T38] ? __asan_memset+0x22/0x50 [ 247.136495][ T38] ? smack_file_ioctl+0x263/0x360 [ 247.136514][ T38] sock_ioctl+0x5c9/0x7f0 [ 247.136526][ T38] ? __pfx_sock_ioctl+0x10/0x10 [ 247.136538][ T38] ? fd_install+0x30c/0x3e0 [ 247.136552][ T38] ? bpf_lsm_file_ioctl+0x9/0x20 [ 247.136563][ T38] ? __pfx_sock_ioctl+0x10/0x10 [ 247.136573][ T38] __se_sys_ioctl+0xff/0x170 [ 247.136583][ T38] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 247.136595][ T38] do_syscall_64+0x15f/0xf80 [ 247.136606][ T38] ? clear_bhb_loop+0x40/0x90 [ 247.136619][ T38] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 247.136629][ T38] RIP: 0033:0x7f958f79c4ab [ 247.136643][ T38] RSP: 002b:00007fffd03c66e0 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 247.136653][ T38] RAX: ffffffffffffffda RBX: 00007fffd03c6800 RCX: 00007f958f79c4ab [ 247.136660][ T38] RDX: 00007fffd03c6760 RSI: 0000000000008914 RDI: 0000000000000005 [ 247.136667][ T38] RBP: 0000000000000025 R08: 0000000000000000 R09: 0000000000000000 [ 247.136673][ T38] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 247.136679][ T38] R13: 0000000000000047 R14: 00007f9590544620 R15: 00007fffd03c6760 [ 247.136694][ T38] [ 247.136698][ T38] INFO: task syz-executor:5826 blocked for more than 143 seconds. [ 247.136705][ T38] Not tainted syzkaller #0 [ 247.136710][ T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 247.136714][ T38] task:syz-executor state:D stack:21696 pid:5826 tgid:5826 ppid:1 task_flags:0x400140 flags:0x00080002 [ 247.136739][ T38] Call Trace: [ 247.136742][ T38] [ 247.136748][ T38] __schedule+0x1681/0x54c0 [ 247.136773][ T38] ? __pfx___schedule+0x10/0x10 [ 247.136790][ T38] rt_mutex_schedule+0x76/0xf0 [ 247.136803][ T38] rt_mutex_slowlock_block+0x508/0x680 [ 247.136831][ T38] rt_mutex_slowlock+0x2dc/0x780 [ 247.136845][ T38] ? rt_mutex_slowlock+0x1fd/0x780 [ 247.136859][ T38] ? __pfx_rt_mutex_slowlock+0x10/0x10 [ 247.136878][ T38] ? inet6_rtm_newaddr+0x65f/0xe30 [ 247.136890][ T38] ? inet6_rtm_newaddr+0x65f/0xe30 [ 247.136903][ T38] ? inet6_rtm_newaddr+0x65f/0xe30 [ 247.136912][ T38] mutex_lock_nested+0x168/0x1d0 [ 247.136928][ T38] inet6_rtm_newaddr+0x65f/0xe30 [ 247.136939][ T38] ? lockdep_hardirqs_on+0x7a/0x110 [ 247.136952][ T38] ? __pfx_inet6_rtm_newaddr+0x10/0x10 [ 247.136961][ T38] ? __dev_queue_xmit+0x1eaf/0x3900 [ 247.136975][ T38] ? rtnetlink_rcv_msg+0x1b9/0xbe0 [ 247.136995][ T38] ? __pfx_inet6_rtm_newaddr+0x10/0x10 [ 247.137004][ T38] rtnetlink_rcv_msg+0x7d5/0xbe0 [ 247.137018][ T38] ? rtnetlink_rcv_msg+0x1b9/0xbe0 [ 247.137030][ T38] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 247.137041][ T38] ? ref_tracker_free+0x673/0x820 [ 247.137055][ T38] ? __pfx_ref_tracker_free+0x10/0x10 [ 247.137067][ T38] ? __asan_memcpy+0x40/0x70 [ 247.137079][ T38] ? __skb_clone+0x63/0x7a0 [ 247.137097][ T38] netlink_rcv_skb+0x232/0x4b0 [ 247.137112][ T38] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 247.137125][ T38] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 247.137144][ T38] ? netlink_deliver_tap+0x2e/0x1b0 [ 247.137156][ T38] ? netlink_deliver_tap+0x2e/0x1b0 [ 247.137171][ T38] netlink_unicast+0x780/0x920 [ 247.137188][ T38] netlink_sendmsg+0x813/0xb40 [ 247.137206][ T38] ? __pfx_netlink_sendmsg+0x10/0x10 [ 247.137223][ T38] ? bpf_lsm_socket_sendmsg+0x9/0x20 [ 247.137238][ T38] ? __pfx_netlink_sendmsg+0x10/0x10 [ 247.137252][ T38] __sys_sendto+0x67f/0x710 [ 247.137268][ T38] ? __pfx___sys_sendto+0x10/0x10 [ 247.137293][ T38] ? fput_close_sync+0x11f/0x240 [ 247.137307][ T38] ? __pfx_fput_close_sync+0x10/0x10 [ 247.137324][ T38] __x64_sys_sendto+0xde/0x100 [ 247.137337][ T38] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 247.137348][ T38] do_syscall_64+0x15f/0xf80 [ 247.137359][ T38] ? clear_bhb_loop+0x40/0x90 [ 247.137371][ T38] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 247.137381][ T38] RIP: 0033:0x7efe998ad04e [ 247.137389][ T38] RSP: 002b:00007ffe7f778078 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 247.137398][ T38] RAX: ffffffffffffffda RBX: 0000555592ae2500 RCX: 00007efe998ad04e [ 247.137405][ T38] RDX: 0000000000000040 RSI: 00007efe9a694670 RDI: 0000000000000003 [ 247.137411][ T38] RBP: 0000000000000001 R08: 00007ffe7f7780f4 R09: 000000000000000c [ 247.137417][ T38] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 247.137423][ T38] R13: 0000000000000000 R14: 00007efe9a694670 R15: 0000000000000000 [ 247.137437][ T38] [ 247.137456][ T38] INFO: task kworker/0:5:5911 blocked for more than 143 seconds. [ 247.137463][ T38] Not tainted syzkaller #0 [ 247.137468][ T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 247.137472][ T38] task:kworker/0:5 state:D stack:21232 pid:5911 tgid:5911 ppid:2 task_flags:0x4208060 flags:0x00080000 [ 247.137498][ T38] Workqueue: events_power_efficient crda_timeout_work [ 247.137511][ T38] Call Trace: [ 247.137514][ T38] [ 247.137519][ T38] __schedule+0x1681/0x54c0 [ 247.137539][ T38] ? _raw_spin_unlock_irq+0x23/0x50 [ 247.137553][ T38] ? __pfx___schedule+0x10/0x10 [ 247.137570][ T38] rt_mutex_schedule+0x76/0xf0 [ 247.137583][ T38] rt_mutex_slowlock_block+0x508/0x680 [ 247.137605][ T38] rt_mutex_slowlock+0x2dc/0x780 [ 247.137619][ T38] ? rt_mutex_slowlock+0x1fd/0x780 [ 247.137633][ T38] ? __pfx_rt_mutex_slowlock+0x10/0x10 [ 247.137651][ T38] ? crda_timeout_work+0x16/0x80 [ 247.137664][ T38] ? crda_timeout_work+0x16/0x80 [ 247.137677][ T38] ? crda_timeout_work+0x16/0x80 [ 247.137687][ T38] mutex_lock_nested+0x168/0x1d0 [ 247.137701][ T38] ? process_scheduled_works+0xa70/0x1860 [ 247.137717][ T38] crda_timeout_work+0x16/0x80 [ 247.137727][ T38] ? process_scheduled_works+0xa70/0x1860 [ 247.137741][ T38] process_scheduled_works+0xb5d/0x1860 [ 247.137769][ T38] ? __pfx_process_scheduled_works+0x10/0x10 [ 247.137787][ T38] ? assign_work+0x3d5/0x5e0 [ 247.137803][ T38] worker_thread+0xa53/0xfc0 [ 247.137830][ T38] kthread+0x388/0x470 [ 247.137842][ T38] ? __pfx_worker_thread+0x10/0x10 [ 247.137851][ T38] ? __pfx_kthread+0x10/0x10 [ 247.137863][ T38] ret_from_fork+0x514/0xb70 [ 247.137874][ T38] ? __pfx_ret_from_fork+0x10/0x10 [ 247.137884][ T38] ? __switch_to+0xc79/0x1410 [ 247.137898][ T38] ? __pfx_kthread+0x10/0x10 [ 247.137910][ T38] ret_from_fork_asm+0x1a/0x30 [ 247.137929][ T38] [ 247.137933][ T38] INFO: task syz.1.2:5952 blocked for more than 143 seconds. [ 247.137940][ T38] Not tainted syzkaller #0 [ 247.137945][ T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 247.137953][ T38] task:syz.1.2 state:D stack:23712 pid:5952 tgid:5952 ppid:5820 task_flags:0x400040 flags:0x00080002 [ 247.137980][ T38] Call Trace: [ 247.137983][ T38] [ 247.137988][ T38] __schedule+0x1681/0x54c0 [ 247.138008][ T38] ? _raw_spin_unlock_irq+0x23/0x50 [ 247.138022][ T38] ? __pfx___schedule+0x10/0x10 [ 247.138030][ T38] ? rt_mutex_slowlock_block+0x2e9/0x680 [ 247.138051][ T38] rt_mutex_schedule+0x76/0xf0 [ 247.138064][ T38] rt_mutex_slowlock_block+0x508/0x680 [ 247.138087][ T38] ? rt_mutex_slowlock_block+0x2e9/0x680 [ 247.138101][ T38] rt_mutex_slowlock+0x2dc/0x780 [ 247.138116][ T38] ? rt_mutex_slowlock+0x1fd/0x780 [ 247.138130][ T38] ? __pfx_rt_mutex_slowlock+0x10/0x10 [ 247.138150][ T38] ? tun_chr_close+0x41/0x1c0 [ 247.138165][ T38] ? tun_chr_close+0x41/0x1c0 [ 247.138176][ T38] mutex_lock_nested+0x168/0x1d0 [ 247.138191][ T38] ? __pfx_tun_chr_close+0x10/0x10 [ 247.138203][ T38] tun_chr_close+0x41/0x1c0 [ 247.138216][ T38] __fput+0x461/0xa70 [ 247.138234][ T38] task_work_run+0x1d9/0x270 [ 247.138248][ T38] ? __pfx_task_work_run+0x10/0x10 [ 247.138263][ T38] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 247.138274][ T38] exit_to_user_mode_loop+0xed/0x480 [ 247.138285][ T38] ? rcu_is_watching+0x15/0xb0 [ 247.138317][ T38] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 247.138327][ T38] do_syscall_64+0x33e/0xf80 [ 247.138337][ T38] ? trace_irq_disable+0x3b/0x140 [ 247.138348][ T38] ? clear_bhb_loop+0x40/0x90 [ 247.138360][ T38] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 247.138370][ T38] RIP: 0033:0x7f903b19c819 [ 247.138378][ T38] RSP: 002b:00007ffedcaa5538 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 247.138388][ T38] RAX: 0000000000000000 RBX: 00007f903b417da0 RCX: 00007f903b19c819 [ 247.138394][ T38] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003 [ 247.138400][ T38] RBP: 00007f903b417da0 R08: 0000000000000006 R09: 0000000000000000 [ 247.138406][ T38] R10: 00007f903b417cb0 R11: 0000000000000246 R12: 00000000000162b2 [ 247.138412][ T38] R13: 00007f903b41609c R14: 0000000000016280 R15: 00007f903b416090 [ 247.138427][ T38] [ 247.138530][ T38] [ 247.138530][ T38] Showing all locks held in the system: [ 247.138539][ T38] 1 lock held by khungtaskd/38: [ 247.138544][ T38] #0: ffffffff8dfc80c0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180 [ 247.138582][ T38] 3 locks held by kworker/u8:10/1719: [ 247.138587][ T38] #0: ffff88801a08c138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0xa35/0x1860 [ 247.138615][ T38] #1: ffffc90007007c40 ((work_completion)(&rdev->wiphy_work)){+.+.}-{0:0}, at: process_scheduled_works+0xa70/0x1860 [ 247.138642][ T38] #2: ffff8880626108b8 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: cfg80211_wiphy_work+0xb4/0x460 [ 247.138670][ T38] 3 locks held by kworker/u8:11/2317: [ 247.138676][ T38] #0: ffff888032e49138 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0xa35/0x1860 [ 247.138702][ T38] #1: ffffc90007717c40 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0xa70/0x1860 [ 247.138729][ T38] #2: ffffffff8f36b1b8 (rtnl_mutex){+.+.}-{4:4}, at: addrconf_dad_work+0x124/0x1680 [ 247.138763][ T38] 2 locks held by getty/5566: [ 247.138768][ T38] #0: ffff888037ad30a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 247.138794][ T38] #1: ffffc90003cb62e0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x462/0x13a0 [ 247.138818][ T38] 4 locks held by kworker/0:4/5809: [ 247.138841][ T38] #0: ffff88801a04b938 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0xa35/0x1860 [ 247.138868][ T38] #1: ffffc9000434fc40 (reg_work){+.+.}-{0:0}, at: process_scheduled_works+0xa70/0x1860 [ 247.138897][ T38] #2: ffffffff8f36b1b8 (rtnl_mutex){+.+.}-{4:4}, at: reg_todo+0x1c/0xa80 [ 247.138919][ T38] #3: ffff8880626108b8 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: reg_process_self_managed_hints+0x8d/0x170 [ 247.138943][ T38] 1 lock held by syz-executor/5822: [ 247.138948][ T38] #0: ffffffff8f36b1b8 (rtnl_mutex){+.+.}-{4:4}, at: devinet_ioctl+0x32b/0x1b30 [ 247.138975][ T38] 1 lock held by syz-executor/5826: [ 247.138982][ T38] #0: ffffffff8f36b1b8 (rtnl_mutex){+.+.}-{4:4}, at: inet6_rtm_newaddr+0x65f/0xe30 [ 247.139004][ T38] 3 locks held by kworker/1:3/5830: [ 247.139009][ T38] #0: ffff88801a04a538 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_scheduled_works+0xa35/0x1860 [ 247.139037][ T38] #1: ffffc9000482fc40 ((reg_check_chans).work){+.+.}-{0:0}, at: process_scheduled_works+0xa70/0x1860 [ 247.139063][ T38] #2: ffffffff8f36b1b8 (rtnl_mutex){+.+.}-{4:4}, at: reg_check_chans_work+0xab/0x1090 [ 247.139093][ T38] 3 locks held by kworker/0:5/5911: [ 247.139099][ T38] #0: ffff88801a04a538 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_scheduled_works+0xa35/0x1860 [ 247.139126][ T38] #1: ffffc9000506fc40 ((crda_timeout).work){+.+.}-{0:0}, at: process_scheduled_works+0xa70/0x1860 [ 247.139152][ T38] #2: ffffffff8f36b1b8 (rtnl_mutex){+.+.}-{4:4}, at: crda_timeout_work+0x16/0x80 [ 247.139175][ T38] 1 lock held by syz.1.2/5952: [ 247.139180][ T38] #0: ffffffff8f36b1b8 (rtnl_mutex){+.+.}-{4:4}, at: tun_chr_close+0x41/0x1c0 [ 247.139204][ T38] 1 lock held by syz-executor/6035: [ 247.139209][ T38] #0: ffffffff8f36b1b8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x404/0x1ad0 [ 247.139233][ T38] 1 lock held by syz-executor/6295: [ 247.139239][ T38] #0: ffffffff8f36b1b8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x404/0x1ad0 [ 247.139263][ T38] 1 lock held by syz-executor/6298: [ 247.139268][ T38] #0: ffffffff8f36b1b8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x404/0x1ad0 [ 247.139292][ T38] 1 lock held by syz-executor/6444: [ 247.139302][ T38] #0: ffffffff8f36b1b8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x404/0x1ad0 [ 247.139326][ T38] 1 lock held by syz-executor/6638: [ 247.139331][ T38] #0: ffffffff8f36b1b8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x404/0x1ad0 [ 247.139355][ T38] 1 lock held by syz-executor/6643: [ 247.139360][ T38] #0: ffffffff8f36b1b8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x404/0x1ad0 [ 247.139385][ T38] 1 lock held by syz.2.198/6693: [ 247.139390][ T38] #0: ffffffff8f36b1b8 (rtnl_mutex){+.+.}-{4:4}, at: tun_chr_close+0x41/0x1c0 [ 247.139414][ T38] 2 locks held by syz.2.205/6719: [ 247.139420][ T38] #0: ffff888061612928 (nlk_cb_mutex-ROUTE){+.+.}-{4:4}, at: __netlink_dump_start+0xfe/0x7e0 [ 247.139445][ T38] #1: ffffffff8f36b1b8 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_dumpit+0x92/0x200 [ 247.139472][ T38] 1 lock held by syz-executor/6828: [ 247.139477][ T38] #0: ffffffff8f36b1b8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x404/0x1ad0 [ 247.139501][ T38] 2 locks held by syz.3.229/6852: [ 247.139507][ T38] #0: ffff8880636dc928 (nlk_cb_mutex-ROUTE){+.+.}-{4:4}, at: __netlink_dump_start+0xfe/0x7e0 [ 247.139531][ T38] #1: ffffffff8f36b1b8 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_dumpit+0x92/0x200 [ 247.139555][ T38] 1 lock held by syz-executor/6857: [ 247.139560][ T38] #0: ffffffff8f36b1b8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x404/0x1ad0 [ 247.139584][ T38] [ 247.139587][ T38] ============================================= [ 247.139587][ T38] [ 247.139598][ T38] NMI backtrace for cpu 0 [ 247.139610][ T38] CPU: 0 UID: 0 PID: 38 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT_{RT,(full)} [ 247.139621][ T38] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 247.139627][ T38] Call Trace: [ 247.139631][ T38] [ 247.139635][ T38] dump_stack_lvl+0xe8/0x150 [ 247.139651][ T38] nmi_cpu_backtrace+0x274/0x2d0 [ 247.139665][ T38] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 247.139681][ T38] nmi_trigger_cpumask_backtrace+0x17a/0x300 [ 247.139695][ T38] sys_info+0x135/0x170 [ 247.139707][ T38] watchdog+0xfd3/0x1030 [ 247.139719][ T38] ? watchdog+0x1c9/0x1030 [ 247.139731][ T38] kthread+0x388/0x470 [ 247.139742][ T38] ? __pfx_watchdog+0x10/0x10 [ 247.139750][ T38] ? __pfx_kthread+0x10/0x10 [ 247.139762][ T38] ret_from_fork+0x514/0xb70 [ 247.139772][ T38] ? __pfx_ret_from_fork+0x10/0x10 [ 247.139781][ T38] ? __switch_to+0xc79/0x1410 [ 247.139795][ T38] ? __pfx_kthread+0x10/0x10 [ 247.139806][ T38] ret_from_fork_asm+0x1a/0x30 [ 247.139828][ T38] [ 247.139832][ T38] Sending NMI from CPU 0 to CPUs 1: [ 247.139867][ C1] NMI backtrace for cpu 1 [ 247.139879][ C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted syzkaller #0 PREEMPT_{RT,(full)} [ 247.139895][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 247.139904][ C1] RIP: 0010:pv_native_safe_halt+0xf/0x20 [ 247.139921][ C1] Code: 8b 61 02 e9 43 c7 03 00 cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d 63 db 1c 00 fb f4 cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc 90 90 90 90 90 [ 247.139933][ C1] RSP: 0018:ffffc900001d7e20 EFLAGS: 00000246 [ 247.139946][ C1] RAX: 00000000003e4a05 RBX: ffffffff819980da RCX: 0000000080000001 [ 247.139957][ C1] RDX: 0000000000000001 RSI: ffffffff8d636465 RDI: ffffffff8ba73e60 [ 247.139967][ C1] RBP: ffffc900001d7f10 R08: ffff8880b8933e9b R09: 1ffff110171267d3 [ 247.139977][ C1] R10: dffffc0000000000 R11: ffffed10171267d4 R12: 0000000000000001 [ 247.139987][ C1] R13: 1ffff11003a5a000 R14: 0000000000000001 R15: 1ffff11003a5a000 [ 247.139997][ C1] FS: 0000000000000000(0000) GS:ffff8881261fe000(0000) knlGS:0000000000000000 [ 247.140009][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 247.140018][ C1] CR2: 00007f199757fc0c CR3: 000000000ddb6000 CR4: 00000000003526f0 [ 247.140032][ C1] Call Trace: [ 247.140037][ C1] [ 247.140043][ C1] default_idle+0x9/0x20 [ 247.140060][ C1] default_idle_call+0x72/0xb0 [ 247.140083][ C1] do_idle+0x36a/0x5f0 [ 247.140102][ C1] ? asm_sysvec_reschedule_ipi+0x1a/0x20 [ 247.140120][ C1] ? __pfx_do_idle+0x10/0x10 [ 247.140144][ C1] cpu_startup_entry+0x43/0x60 [ 247.140163][ C1] start_secondary+0x101/0x110 [ 247.140183][ C1] common_startup_64+0x13e/0x147 [ 247.140208][ C1] [ 247.140849][ T38] Kernel panic - not syncing: hung_task: blocked tasks [ 247.140858][ T38] CPU: 0 UID: 0 PID: 38 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT_{RT,(full)} [ 247.140869][ T38] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 247.140874][ T38] Call Trace: [ 247.140878][ T38] [ 247.140882][ T38] vpanic+0x56c/0xa60 [ 247.140894][ T38] ? __pfx_vpanic+0x10/0x10 [ 247.140908][ T38] panic+0xc5/0xd0 [ 247.140917][ T38] ? __pfx_panic+0x10/0x10 [ 247.140930][ T38] ? nmi_trigger_cpumask_backtrace+0x234/0x300 [ 247.140945][ T38] watchdog+0x102c/0x1030 [ 247.140957][ T38] ? watchdog+0x1c9/0x1030 [ 247.140969][ T38] kthread+0x388/0x470 [ 247.140980][ T38] ? __pfx_watchdog+0x10/0x10 [ 247.140988][ T38] ? __pfx_kthread+0x10/0x10 [ 247.141000][ T38] ret_from_fork+0x514/0xb70 [ 247.141010][ T38] ? __pfx_ret_from_fork+0x10/0x10 [ 247.141019][ T38] ? __switch_to+0xc79/0x1410 [ 247.141033][ T38] ? __pfx_kthread+0x10/0x10 [ 247.141044][ T38] ret_from_fork_asm+0x1a/0x30 [ 247.141061][ T38] [ 247.141644][ T38] Kernel Offset: disabled