last executing test programs: 4.97815836s ago: executing program 3 (id=435): openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) syz_open_dev$sndctrl(&(0x7f0000000000), 0x10001d, 0x4841c1) syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) inotify_init() bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, 0x0, &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000100)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0) bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10) ioctl$SNDRV_PCM_IOCTL_WRITEN_FRAMES(0xffffffffffffffff, 0x4161, 0x0) r3 = socket$inet6(0xa, 0x80002, 0x0) setsockopt$inet6_mreq(r3, 0x29, 0x1b, &(0x7f0000000100)={@remote}, 0x14) 4.071680274s ago: executing program 2 (id=437): socket$pptp(0x18, 0x1, 0x2) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) munlockall() madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00003, 0x8) r0 = syz_open_procfs(0x0, &(0x7f0000001080)='smaps_rollup\x00') read$FUSE(r0, &(0x7f0000002e40)={0x2020}, 0x2020) r1 = syz_open_dev$MSR(0x0, 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x8040, 0x0) ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000040)={0x0, 0x0, 0x4, 0x0, 0x0, "ff00f7000000000000000000af88008300"}) r3 = syz_open_pts(r2, 0x141601) timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) write(r3, &(0x7f0000000000)="d5", 0xfffffedf) ioctl$TCSETSF(r3, 0x5404, &(0x7f0000000080)={0x8, 0x20000000, 0xfffffffc, 0x7fffffd, 0x5, "682341f2fd71a6a76177920ea7e60c0ac7a4a5"}) 4.018627897s ago: executing program 1 (id=439): r0 = socket$netlink(0x10, 0x3, 0xc) bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="980000000001010400000000000000000a0000003c0001802c00018014000300fe8000000000000000000000000000aa14000400ff0100000000000000000000000000010c00028005000100000000003c0002802c00018014000300fe8000000000000000000000000000aa14000400fe8800000000000000000000000000010c0002800500010000000000080007"], 0x98}}, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000200)=@newlink={0x4c, 0x10, 0x437, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x2c, 0x12, 0x0, 0x1, @bond={{0x9}, {0x1c, 0x2, 0x0, 0x1, [@IFLA_BOND_AD_ACTOR_SYS_PRIO={0x6, 0x18, 0xfff}, @IFLA_BOND_AD_LACP_RATE={0x5}, @IFLA_BOND_MODE={0x5, 0x1, 0x4}]}}}]}, 0x4c}}, 0x0) socket$kcm(0x10, 0x2, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="020800000100000000000001000000000100140003"], 0x18}}, 0x0) io_setup(0x30, &(0x7f0000000600)=0x0) pipe2$9p(&(0x7f00000000c0), 0x80000) r4 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000002740), 0x101002) io_submit(r3, 0x1, &(0x7f0000000180)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, r4, &(0x7f00000000c0)="01", 0x24}]) 3.908269286s ago: executing program 3 (id=440): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000003200)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r1, 0x1000000, 0xe, 0x0, &(0x7f0000000000)="63eced8e46dc3f0adf3389f7b986", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) 3.908015591s ago: executing program 3 (id=441): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x18, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b000000000000000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000fdffffff850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r2, 0x3f00}, 0x10) setsockopt$inet_sctp6_SCTP_INITMSG(0xffffffffffffffff, 0x84, 0x2, &(0x7f00000000c0)={0xfffc}, 0x8) 3.768931335s ago: executing program 1 (id=442): socket$nl_generic(0x10, 0x3, 0x10) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/27], 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) close(0xffffffffffffffff) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r2}, 0x10) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r3 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f0000000340)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r6 = socket$inet_tcp(0x2, 0x1, 0x0) syz_open_dev$admmidi(0x0, 0x20, 0x0) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x80383, 0x0) r7 = syz_open_dev$admmidi(&(0x7f0000000140), 0x20, 0x0) read$midi(r7, 0x0, 0x14) close_range(r6, 0xffffffffffffffff, 0x0) 3.118844988s ago: executing program 2 (id=443): r0 = socket$netlink(0x10, 0x3, 0xc) bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="980000000001010400000000000000000a0000003c0001802c00018014000300fe8000000000000000000000000000aa14000400ff0100000000000000000000000000010c00028005000100000000003c0002802c00018014000300fe8000000000000000000000000000aa14000400fe8800000000000000000000000000010c0002800500010000000000080007"], 0x98}}, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000200)=@newlink={0x4c, 0x10, 0x437, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x2c, 0x12, 0x0, 0x1, @bond={{0x9}, {0x1c, 0x2, 0x0, 0x1, [@IFLA_BOND_AD_ACTOR_SYS_PRIO={0x6, 0x18, 0xfff}, @IFLA_BOND_AD_LACP_RATE={0x5}, @IFLA_BOND_MODE={0x5, 0x1, 0x4}]}}}]}, 0x4c}}, 0x0) socket$kcm(0x10, 0x2, 0x0) openat$vcs(0xffffff9c, &(0x7f0000000100), 0x2000, 0x0) socket(0xa, 0x6, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="020800000100000000000001000000000100140003"], 0x18}}, 0x0) r3 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000002740), 0x101002) io_submit(0x0, 0x1, &(0x7f0000000180)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, r3, &(0x7f00000000c0)="01", 0x24}]) 3.068851019s ago: executing program 2 (id=444): r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r0, 0xc08c5335, &(0x7f00000001c0)={0x0, 0x80, 0x0, 'queue0\x00'}) r1 = socket$kcm(0x10, 0x2, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f00000006c0)=ANY=[@ANYBLOB="18020000000000000000000000000030850000002c00000095000000000000002b4003fe37a077ae55f52c0d80a2749baca85309be96d5a45bbb29ea06f9cbc7eea15bc1ee369d2707231280f0415df341ab76de90db5ff7ffffffd075b373f51be98db7efbbe8e04acb807fbbabc68abdcce9f672b6bb61c302dfd5c1f870adac29fd64d33a3502fbeb1ed99dd0e792f24c420bfcc2635421d339ad521d6953b1137850d9e9ebf65ee988ea2dbee528678eacb4389adbb47efb7b3f19046c7f1bd1bf56e58555d96137f95b3aacd74ed1c8a8676468cf2405e48723c6b1ff3698422f88ffed8617dd64330f4c38ba86e3b50da03f4b1e4808aa5c9e9546d7190747c6abc5beab28cec4ff7faa3fab48cdb3d64cfd5d698416752a16f32a54ccef577832e4cf684fce2cb0bab7f6a5821b26483322000000000000596c6e1ac996b8a0924948750b6e52c09d53950e5c8143db8669f8a5bf6511df822532e3c78d019149651255048aab0399e5d6e317b6f3fbc2600ffc3c66c7244b7bcf6b78b5e8c0ee04ce344ceb084b4f2ef09b59a36a92b3874edc559e5bf58a567d385ba92df9121dfa257e60655dcbff581c75107b01b5baaf29ebaf24861c538fefcaecb52a6b69fc450e10645df60a9d50131466113c6aac5abbcf9e9f2f0384da3f9892af413bd87f51f7f0cf61096fd79327fa66effe89a72d7a75d40f0c1ad299f55eafcd52a39649ab6021e30f901933f11092"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x1000, &(0x7f0000001400)=""/4106, 0x40f00, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x9d, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x18) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], &(0x7f00000003c0)='syzkaller\x00', 0x4, 0xc1, &(0x7f0000000900)=""/193, 0x40f00, 0x39, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x5, 0x4}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x38, @void, @value}, 0x94) socket$nl_route(0x10, 0x3, 0x0) r5 = fsopen(0x0, 0x0) fsconfig$FSCONFIG_SET_STRING(r5, 0x1, &(0x7f0000000b40)='source', &(0x7f0000000040)='c:::\x00', 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r6 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r7, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r8, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r6, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r7, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r9 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r9, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newtaction={0x88, 0x30, 0xffff, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x1300}, [{0x74, 0x1, [@m_mirred={0x70, 0x1, 0x0, 0x0, {{0xb}, {0x44, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x4, {{0xffdff7e9}, 0x2}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x0, 0x10000000}, 0x4}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x88}}, 0x854) sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYBLOB="34000000100001f8ffffff000000000000000000", @ANYRES32=0x0, @ANYBLOB="00000000000000000c002b8008000100", @ANYRES32=r4, @ANYBLOB="08001b"], 0x34}}, 0x4004010) sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000400)=ANY=[@ANYBLOB="340100001000010800000000040000000000", @ANYRES32=0x0, @ANYRESDEC=r9, @ANYRES32, @ANYRES64=r4], 0x34}}, 0x0) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000280)="d8000000180081064e81f782db4cb904021d0800fd027c05e8fe55a10a000b000140020203600e41b0000900ac0006031100000016000500000000000004015c3b61c1d67f6f94007134cf6efb8000a007a290457f01a7cee4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5ae24e25ccca9e00360db79826835d3a71d95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9703920723f9000000008af26c8b7b55f4d2a6823a45f28fcb1d", 0xd8}], 0x1}, 0x0) openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0) r10 = syz_open_dev$usbmon(&(0x7f00000005c0), 0x0, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x12, r10, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) 2.958892013s ago: executing program 3 (id=446): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000027c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000f000000850000005000000095"], &(0x7f0000000280)='GPL\x00', 0x2, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='sys_exit\x00', r0}, 0x10) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000340)={0xffffffffffffffff, 0x0, 0x0}, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYRESOCT, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x10000, @void, @value}, 0x94) ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x0, 0x34324152, 0x0, 0xb}}) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_DESTROY(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000400)={0x28, 0x3, 0x6, 0x201, 0x0, 0x0, {0x5}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}]}, 0x28}}, 0x20000840) bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000100)={0x5}, 0x8) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000240)='clear_refs\x00') writev(r3, 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, 0x0, 0x0) syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x81c0, 0x0) mknod$loop(&(0x7f0000000140)='./file0\x00', 0xffff8000, 0x1) r4 = syz_open_dev$usbfs(&(0x7f0000000080), 0x74, 0x101301) r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x18) ioctl$USBDEVFS_IOCTL(r4, 0xc0105512, &(0x7f0000000200)) ioctl$USBDEVFS_IOCTL(r4, 0xc0105512, &(0x7f0000000040)=@usbdevfs_connect) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x2000, 0x1) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$IPVS_CMD_GET_DEST(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000540)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="59000000000000000000080000001400018006000100020000000800050003000000ad3e39806568da0fbd3cacac32db7a86019b2cc099928c6977afbba34537b564b4b73b979210828ea4e691abb29c5c83679b1ef9d5b6efdfdab19367d799d6239f7dac3c34168f4e63c0b77409f04bae15705a5acabb94f066d335800c38f567c78faf0110dea8dbc0ede42aa02d198d24077b7660889705831df1fab57a490b4532cbef97f4ca5a0b18f4232b9bf0839685f0a1325711"], 0x28}, 0x1, 0x0, 0x0, 0x4000004}, 0x0) 2.479002493s ago: executing program 1 (id=447): getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000444ff8)={0x0, 0x7}, 0x8) setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000000)={0x0, 0xcc}, 0x8) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) sendmmsg$inet6(r0, &(0x7f0000002840)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback, 0x20}, 0x1c, &(0x7f0000000500)=[{&(0x7f0000000040)='\b', 0x1}], 0x1}}], 0x1, 0x14018891) setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000100)=ANY=[@ANYRES32=0x0, @ANYRES16=r0], 0x1000f) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0x80000000}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) r1 = socket(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000480)=@newqdisc={0x48, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r3, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_cbs={{0x8}, {0x1c, 0x2, @TCA_CBS_PARMS={0x18, 0x1, {0x0, '\x00', 0x2, 0x4, 0x4, 0x7f}}}}]}, 0x48}}, 0x44080) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) r6 = socket$inet(0x2, 0x2, 0x0) shutdown(r6, 0x0) recvmmsg(r6, &(0x7f00000066c0), 0xa0d, 0x0, 0x0) 1.929026058s ago: executing program 0 (id=448): r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r0, 0xc08c5335, &(0x7f00000001c0)={0x0, 0x80, 0x0, 'queue0\x00'}) r1 = socket$kcm(0x10, 0x2, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f00000006c0)=ANY=[@ANYBLOB="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"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x1000, &(0x7f0000001400)=""/4106, 0x40f00, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x9d, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x18) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000440)=ANY=[@ANYBLOB="020100e294000d2fdc000000000000810000008e51abe375e5256b9f00e9020000000000000036168f626c53b33be3c954dba9b4041159411aa116de57a7a6f28819c85b783a732c600314d0a2897523a2b8cdfa1c1b214715a7e57a69e5dfc6a9c32bcd28900c2bb4f219b1f1bac8aca17a3facceee3be4fa5b725e0a340085d01f25a7befa202fb16203a118887f3f448376ef7a60183c492451f0ddf3bc272da3205af94352d126d1711e3577407f63d242cc323bf87c1f827bca42cdd359d60b59c75deb3d786f49f63766c2f55cc2eb190e4d16cfe292f167222d4a6f9f7939020820a954d63289f5a75e5bf6ac104a66ce972e3188505319d22abe480b6fcb46c51eccbd8c3729a3c95374da6ec5432b765ad3cd9abe2303b3b412c9fcda08ab194461613b0b5cb91bc8b2538ad5a4377385739b43447bda58ee9b078e8dffef73a5a01a794d6f63a691516ee514d30107be56601edb3b71e979ae28e3d33b0513d031c75501942587f174e733afc5389b"], &(0x7f00000003c0)='syzkaller\x00', 0x4, 0xc1, &(0x7f0000000900)=""/193, 0x40f00, 0x39, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x5, 0x4}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x38, @void, @value}, 0x94) socket$nl_route(0x10, 0x3, 0x0) r5 = fsopen(0x0, 0x0) fsconfig$FSCONFIG_SET_STRING(r5, 0x1, 0x0, &(0x7f0000000040)='c:::\x00', 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r6 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r7, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r8, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r6, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r7, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r9 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r9, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newtaction={0x88, 0x30, 0xffff, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x1300}, [{0x74, 0x1, [@m_mirred={0x70, 0x1, 0x0, 0x0, {{0xb}, {0x44, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x4, {{0xffdff7e9}, 0x2}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x0, 0x10000000}, 0x4}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x88}}, 0x854) sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYBLOB="34000000100001f8ffffff000000000000000000", @ANYRES32=0x0, @ANYBLOB="00000000000000000c002b8008000100", @ANYRES32=r4, @ANYBLOB="08001b"], 0x34}}, 0x4004010) sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000400)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYRESDEC=r9, @ANYRES32, @ANYRES64=r4], 0x34}}, 0x0) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000280)="d8000000180081064e81f782db4cb904021d0800fd027c05e8fe55a10a000b000140020203600e41b0000900ac0006031100000016000500000000000004015c3b61c1d67f6f94007134cf6efb8000a007a290457f01a7cee4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5ae24e25ccca9e00360db79826835d3a71d95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9703920723f9000000008af26c8b7b55f4d2a6823a45f28fcb1d", 0xd8}], 0x1}, 0x0) openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0) r10 = syz_open_dev$usbmon(&(0x7f00000005c0), 0x0, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x12, r10, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) 1.706878001s ago: executing program 3 (id=449): openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) syz_open_dev$sndctrl(&(0x7f0000000000), 0x10001d, 0x4841c1) syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) inotify_init() bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], 0x0, 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000100)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0) bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10) ioctl$SNDRV_PCM_IOCTL_WRITEN_FRAMES(0xffffffffffffffff, 0x4161, 0x0) r3 = socket$inet6(0xa, 0x80002, 0x0) setsockopt$inet6_mreq(r3, 0x29, 0x1b, &(0x7f0000000100)={@remote}, 0x14) 1.549188473s ago: executing program 1 (id=450): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000003200)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r1, 0x1000000, 0xe, 0x0, &(0x7f0000000000)="63eced8e46dc3f0adf3389f7b986", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) 1.547505739s ago: executing program 1 (id=451): r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r0, 0xc08c5335, &(0x7f00000001c0)={0x0, 0x80, 0x0, 'queue0\x00'}) r1 = socket$kcm(0x10, 0x2, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f00000006c0)=ANY=[@ANYBLOB="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"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x1000, &(0x7f0000001400)=""/4106, 0x40f00, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x9d, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x18) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], &(0x7f00000003c0)='syzkaller\x00', 0x4, 0xc1, &(0x7f0000000900)=""/193, 0x40f00, 0x39, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x5, 0x4}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x38, @void, @value}, 0x94) socket$nl_route(0x10, 0x3, 0x0) r5 = fsopen(0x0, 0x0) fsconfig$FSCONFIG_SET_STRING(r5, 0x1, 0x0, &(0x7f0000000040)='c:::\x00', 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r6 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r7, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r8, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r6, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r7, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r9 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r9, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newtaction={0x88, 0x30, 0xffff, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x1300}, [{0x74, 0x1, [@m_mirred={0x70, 0x1, 0x0, 0x0, {{0xb}, {0x44, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x4, {{0xffdff7e9}, 0x2}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x0, 0x10000000}, 0x4}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x88}}, 0x854) sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYBLOB="34000000100001f8ffffff000000000000000000", @ANYRES32=0x0, @ANYBLOB="00000000000000000c002b8008000100", @ANYRES32=r4, @ANYBLOB="08001b"], 0x34}}, 0x4004010) sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000400)=ANY=[@ANYRES32=0x0, @ANYRESDEC=r9, @ANYRES32, @ANYRES64=r4], 0x34}}, 0x0) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000280)="d8000000180081064e81f782db4cb904021d0800fd027c05e8fe55a10a000b000140020203600e41b0000900ac0006031100000016000500000000000004015c3b61c1d67f6f94007134cf6efb8000a007a290457f01a7cee4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5ae24e25ccca9e00360db79826835d3a71d95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9703920723f9000000008af26c8b7b55f4d2a6823a45f28fcb1d", 0xd8}], 0x1}, 0x0) openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0) r10 = syz_open_dev$usbmon(&(0x7f00000005c0), 0x0, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x12, r10, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) 1.138715007s ago: executing program 2 (id=452): r0 = socket$netlink(0x10, 0x3, 0xc) bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="980000000001010400000000000000000a0000003c0001802c00018014000300fe8000000000000000000000000000aa14000400ff0100000000000000000000000000010c00028005000100000000003c0002802c00018014000300fe8000000000000000000000000000aa14000400fe8800000000000000000000000000010c0002800500010000000000080007"], 0x98}}, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000200)=@newlink={0x4c, 0x10, 0x437, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x2c, 0x12, 0x0, 0x1, @bond={{0x9}, {0x1c, 0x2, 0x0, 0x1, [@IFLA_BOND_AD_ACTOR_SYS_PRIO={0x6, 0x18, 0xfff}, @IFLA_BOND_AD_LACP_RATE={0x5}, @IFLA_BOND_MODE={0x5, 0x1, 0x4}]}}}]}, 0x4c}}, 0x0) socket$kcm(0x10, 0x2, 0x0) openat$vcs(0xffffff9c, &(0x7f0000000100), 0x2000, 0x0) socket(0xa, 0x6, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="020800000100000000000001000000000100140003"], 0x18}}, 0x0) r3 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000002740), 0x101002) io_submit(0x0, 0x1, &(0x7f0000000180)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, r3, &(0x7f00000000c0)="01", 0x24}]) 1.077932525s ago: executing program 2 (id=453): r0 = socket$inet6_sctp(0xa, 0x801, 0x84) sendmmsg$inet6(r0, &(0x7f0000000f00)=[{{&(0x7f0000000300)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, 0x1c, &(0x7f00000002c0)=[{&(0x7f0000000100)='k', 0x1}], 0x1}}, {{&(0x7f0000000040)={0xa, 0x4e23, 0x4, @local, 0x6}, 0x1c, &(0x7f0000000140)=[{&(0x7f0000000080)="b6", 0x1}], 0x1}}], 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r2 = dup(r1) write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c) r3 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r3, 0x1, &(0x7f0000000000)='source', &(0x7f0000000040)='c:::\x00', 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="050000000000000061110c00000000008510000002000000850000000500000095000000000000009500a5050000000077d8f3b423cdac8d80000000000000002be16ad10a48b243ccc42606d25dfd73a015e0ca7fc2506a0f7535f7866907dc0200000000000000ae669e17fd6587d452d6453559c3421eed73d56615fe6c54c3b3ffe1b4ce25d7c983c044c03bf3a48dfe47ec9dd6c091c30b93bfae76d9ebacd3ed3e26e7a23129d6606fd28a69989d552af6bda9df2c3af36effff9af2551ce896165127cb3f011a7d06602e2fc40848228567ffb400000000003ed38ae89d24e1cebfba2f87925bfacba83109751fe6c05405d027edd68149ee99eef6a6992308a4fc0b7c70bc677d6dd4aed4af7500d7900a820b6347184e9a217b5614cd50cbe43a1ed2526814bc0000e9e086ce48e90defb6670c3df2624f56da648d28ad0a97aec7291c25447c106a99893e10db21901eb397b2f5fd71400fa7a050fbbef9e326ea27e513e96068fd1e8a43e89f9c85c822a961546ed5363c17ff1432d08806bc376e3e49ee52b59d13182e1f24ed200ada10eb1affb87ba55b2d72078e9f40b4ae7d01000000d11cd22c35d32940000088dde499000000fdffffff00000000000f000000ef0000000000000000000000000c52f4ebd2c893bb97a068bd10734a83584898eccb26f7b789cfc4cd995fa3e11a5c74c85404e2df3ad37b729ac83b0dcb4f48f3c3356b9997fc455a17690b6f7f9ccbe4b1701941b18aba6b16455a66c3b84b138efc20a546d3d5227e23b03f2a834391ade2ff3e93ee296c4082ee73e7c353312c9d75711ce1623e9c54bdff59d2a69dcb7d84c235b23a4480c2461b405cfd1a38992f295ad3adc94cd07c850d1ce6d0b2fea02c24e9280333152fb794e4ddea02017a6c139b50101caecaf2abc0847a1ff2f7fc3c2b99a96fc4275ad107274e2934a87a4ddcdb112754ca5bdec0ead14b6c0f19a43a2f05c7f0be31491eb8c9ff68236c8600040000000000000000000066e034c81c3cab64e4fc8dc55ce0ada18dcbf31c6e82893add3bee3e10fc873d1d922b0877cbcd95b839d3059d5140a1f742f6e75741e39e5cb6a193e06a1043375b0f61b5d4e17c81baa31b924d84f224baf1221c15fa12313ffbfa7c2730309f66705b71e6205e7cbf3643561eabb9a63fcd604d5cc27e1317ad94cf438d71873e540be16b6ca205081173bd03c4754fc4674812daab482fd390a1c903b5d28a1eb247b5837d7603b92495d5c569f6433c3fca5206cb0000003fdbbd3892c52c2e7612e05de32322e980a3d69931e2c9312dd517c96f2ee90362476ed853c4c9b7d4ebf13cbaa795860e92a3d7d004f2c491db38eb769f094d5d48b262cc35c40682138cf13a49aa9f27abec00002f01ba1251aaf2385416ca719300"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10) fsconfig$FSCONFIG_SET_STRING(r3, 0x1, &(0x7f0000000380)='source\xcf\x87\x86\x1bY\x0f\xde\xd6\xcd\xc0\x01\xd3\x19>K\x04\xfe\x86YG\xa5\x0f\xed\xa0\x9f\x1e\x14R\x9e\x04\xfa\xed\xd0TG&\x88\xeaz\x9aD\xf8Tt\x8c\x00{\x1fm\xfe\x9c\xf6_h\x9e\xfc\'', &(0x7f00000001c0)='sou\x01ce', 0x0) r5 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r5, 0x107, 0x9, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'geneve0\x00', 0x0}) sendto$packet(r5, &(0x7f00000003c0)="0b036800e0ff64000200475400f6a13bb10000000800884848", 0x19, 0x0, &(0x7f0000000140)={0x11, 0x0, r6}, 0x14) r7 = socket$igmp(0x2, 0x3, 0x2) ioctl$sock_inet_SIOCSARP(r7, 0x8955, &(0x7f0000000340)={{0x2, 0x0, @broadcast}, {0x0, @link_local}, 0xa, {0x2, 0x800, @multicast2}, 'wg0\x00'}) r8 = gettid() fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0) syz_open_dev$cec(&(0x7f0000000140), 0x0, 0x50400) r9 = syz_open_dev$sndctrl(&(0x7f0000000040), 0x1, 0x141000) openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(r9, 0xc1105511, &(0x7f0000000140)={0xa, 0x0, 0x1, 0x0, 'syz0\x00'}) madvise(&(0x7f0000cd0000/0x4000)=nil, 0xffffffffdf32ffff, 0x16) ioctl$CEC_ADAP_S_LOG_ADDRS(r2, 0xc05c6104, &(0x7f0000000200)={"1701d517", 0x3, 0x9, 0x1, 0x200002, 0xfffffffc, "f9a927627a359827fdc4ed7cb20708", "0600000b", "314391b4", "aa04df4e", ["e4e7d0b3748a08eb4117a58f", "a42a5eb8b07a660e2a22038e", "18ba00000000001000", "d89c2b9ee90029dabfd3b81a"]}) tkill(r8, 0xb) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) 1.077536893s ago: executing program 0 (id=454): r0 = socket$kcm(0x11, 0x3, 0x0) sendmsg$kcm(r0, &(0x7f0000000200)={&(0x7f0000001340)=@hci={0x1f, 0xdd86, 0x2c}, 0x80, &(0x7f0000000040)=[{&(0x7f0000000080)='b', 0x1}], 0x1, 0x0, 0x2f}, 0x0) 988.026336ms ago: executing program 0 (id=455): socket$nl_generic(0x10, 0x3, 0x10) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/27], 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) close(0xffffffffffffffff) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r2}, 0x10) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r3 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f0000000340)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r6 = socket$inet_tcp(0x2, 0x1, 0x0) syz_open_dev$admmidi(0x0, 0x20, 0x0) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x80383, 0x0) r7 = syz_open_dev$admmidi(&(0x7f0000000140), 0x20, 0x0) read$midi(r7, 0x0, 0x14) close_range(r6, 0xffffffffffffffff, 0x0) 626.619007ms ago: executing program 3 (id=456): r0 = openat$khugepaged_scan(0xffffffffffffff9c, 0x0, 0x1, 0x0) bind$inet(0xffffffffffffffff, &(0x7f0000000680)={0x2, 0x4e1e, @private=0xa010101}, 0x10) bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f00000000c0)={0xffffffffffffffff, 0x8f92, 0x8}, 0xc) syz_open_dev$dmmidi(&(0x7f0000000200), 0x6, 0x0) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="02000000040000000800000001000000800000006ee5efeb40899c984b8075176462362584398da1d1cf6b60b598a988ecb61c717da358f213029a7dc8dc62320e2606a6974f3862d4a39660bd016ea5dad34d2740f40a00d73d13b892d8864523f3768af6feb445581bf2c5eaea52a4170aa89da7060c8967d38923c51b60d1a890", @ANYRES32=0x1, @ANYBLOB="0500"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="05000000030000000500"/28], 0x50) ioctl$FIDEDUPERANGE(r0, 0xc0189436, 0x0) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, 0x0, 0x0) socket$kcm(0x29, 0x5, 0x0) syz_usb_connect(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0000100109050b362f"], 0x0) r2 = syz_open_dev$midi(&(0x7f0000000100), 0x3ff, 0x2000) read(r2, &(0x7f0000000080)=""/128, 0x80) 186.520929ms ago: executing program 1 (id=457): mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) symlinkat(&(0x7f0000000000)='./file0\x00', r0, &(0x7f0000000080)='./file0\x00') r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)={0x24, 0x32, 0x1, 0x70bd2a, 0x25dbdbfe, {0x4}, [@typed={0x8, 0x63, 0x0, 0x0, @u32=0x2}, @typed={0x8, 0x5, 0x0, 0x0, @uid}]}, 0x24}, 0x1, 0x0, 0x0, 0x50}, 0x4000000) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r2, 0x89f1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r3 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4) socket$nl_netfilter(0x10, 0x3, 0xc) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, 0x0, 0x0) bind$netlink(0xffffffffffffffff, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) r6 = socket$inet6(0xa, 0x3, 0x7) connect$inet6(r6, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_IPV6_XFRM_POLICY(r6, 0x29, 0x23, &(0x7f0000000340)={{{@in6=@ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x2, 0x0}}, @in6=@dev={0xfe, 0x80, '\x00', 0x19}, 0x0, 0x0, 0x1, 0x4, 0xa}, {0xbd1}, {0x81, 0x2}, 0x2000000, 0x0, 0x1}, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x8000, 0x33}, 0x0, @in6=@ipv4={'\x00', '\xff\xff', @multicast2}, 0x0, 0x0, 0x2, 0x7, 0x0, 0x0, 0xf}}, 0xe4) sendmmsg(r6, &(0x7f0000000480), 0x2e9, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, 0x0) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r2, 0x89f3, &(0x7f0000000940)={'syztnl0\x00', &(0x7f00000000c0)={'erspan0\x00', 0x0, 0x20, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0xc4, 0x0, 0x0, @loopback, @loopback}}}}) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0xc2) mkdir(&(0x7f0000000400)='./file1\x00', 0x0) 16.372485ms ago: executing program 0 (id=458): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000017c0)=@newlink={0x40, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x4, 0x0, 0x0, 0x45}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @gtp={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_GTP_LOCAL={0x8, 0x7, @private=0xa010100}, @IFLA_GTP_CREATE_SOCKETS={0x5}]}}}]}, 0x40}}, 0x0) (async) r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) waitid(0x0, r1, &(0x7f0000000240), 0xa100000e, &(0x7f00000002c0)) (async) prlimit64(r1, 0x2, &(0x7f0000000000)={0x8, 0x1}, &(0x7f0000000040)) 16.183784ms ago: executing program 0 (id=459): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000003200)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r1, 0x1000000, 0xe, 0x0, &(0x7f0000000000)="63eced8e46dc3f0adf3389f7b986", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) 2.07806ms ago: executing program 2 (id=460): socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00') r4 = openat$binfmt(0xffffffffffffff9c, r3, 0x42, 0x1ff) r5 = syz_open_dev$video4linux(&(0x7f0000000000), 0x4, 0x109a00) ioctl$VIDIOC_SUBDEV_S_FMT(r5, 0xc0585605, &(0x7f0000000080)={0x0, 0x0, {0x1, 0x5, 0x1010, 0xb, 0x1, 0xc, 0x2, 0x310}}) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r6, &(0x7f0000d84000)={0xa, 0x2, 0x0, @loopback, 0x7}, 0x1c) setsockopt$inet6_tcp_int(r6, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4) sendto$inet6(r6, &(0x7f0000000640)='\x00', 0x1, 0x20000045, &(0x7f00000001c0)={0xa, 0x2, 0x398, @empty}, 0x1c) shutdown(r6, 0x1) ioctl$VT_ACTIVATE(0xffffffffffffffff, 0x4b4a, 0xffffffffffffff15) close(r4) execveat$binfmt(0xffffffffffffff9c, r3, 0x0, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0) openat$vicodec1(0xffffffffffffff9c, 0x0, 0x2, 0x0) openat$mixer(0xffffffffffffff9c, 0x0, 0x1c1140, 0x0) 0s ago: executing program 0 (id=461): timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000100)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r0 = landlock_create_ruleset(&(0x7f0000000040)={0x8034, 0x2, 0x2}, 0x18, 0x0) landlock_restrict_self(r0, 0x7) (fail_nth: 5) kernel console output (not intermixed with test programs): Warning: Permanently added '[localhost]:26084' (ED25519) to the list of known hosts. [ 41.516609][ T5936] cgroup: Unknown subsys name 'net' [ 41.655314][ T5936] cgroup: Unknown subsys name 'cpuset' [ 41.661545][ T5936] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 42.472506][ T5936] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 45.599167][ T5953] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 45.603141][ T5953] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 45.606172][ T5953] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 45.609486][ T5953] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 45.612955][ T5953] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 45.634116][ T67] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 45.645290][ T5960] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 45.647788][ T5960] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 45.650830][ T5960] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 45.653282][ T5960] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 45.655562][ T5960] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 45.660883][ T5960] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 45.663034][ T5960] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 45.664355][ T5963] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 45.667557][ T5963] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 45.669804][ T5963] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 45.672952][ T5960] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 45.675114][ T5960] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 45.685974][ T5964] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 45.689197][ T5964] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 45.799680][ T5950] chnl_net:caif_netlink_parms(): no params data found [ 45.961772][ T5950] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.963806][ T5950] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.966113][ T5950] bridge_slave_0: entered allmulticast mode [ 45.968331][ T5950] bridge_slave_0: entered promiscuous mode [ 45.972715][ T5954] chnl_net:caif_netlink_parms(): no params data found [ 45.998594][ T5950] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.003197][ T5950] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.005607][ T5950] bridge_slave_1: entered allmulticast mode [ 46.008561][ T5950] bridge_slave_1: entered promiscuous mode [ 46.043037][ T5950] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 46.048669][ T5950] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 46.051381][ T5957] chnl_net:caif_netlink_parms(): no params data found [ 46.136787][ T5950] team0: Port device team_slave_0 added [ 46.138605][ T5955] chnl_net:caif_netlink_parms(): no params data found [ 46.144501][ T5950] team0: Port device team_slave_1 added [ 46.212686][ T5954] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.214793][ T5954] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.216864][ T5954] bridge_slave_0: entered allmulticast mode [ 46.219063][ T5954] bridge_slave_0: entered promiscuous mode [ 46.230732][ T5950] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 46.232704][ T5950] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.239759][ T5950] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 46.243547][ T5954] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.245571][ T5954] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.247615][ T5954] bridge_slave_1: entered allmulticast mode [ 46.249827][ T5954] bridge_slave_1: entered promiscuous mode [ 46.291549][ T5950] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 46.293507][ T5950] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.300793][ T5950] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 46.319377][ T5954] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 46.339753][ T5957] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.341872][ T5957] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.343991][ T5957] bridge_slave_0: entered allmulticast mode [ 46.346481][ T5957] bridge_slave_0: entered promiscuous mode [ 46.353133][ T5954] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 46.366417][ T5957] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.368343][ T5957] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.370487][ T5957] bridge_slave_1: entered allmulticast mode [ 46.372676][ T5957] bridge_slave_1: entered promiscuous mode [ 46.437410][ T5954] team0: Port device team_slave_0 added [ 46.454055][ T5950] hsr_slave_0: entered promiscuous mode [ 46.456114][ T5950] hsr_slave_1: entered promiscuous mode [ 46.458360][ T5955] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.460478][ T5955] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.462580][ T5955] bridge_slave_0: entered allmulticast mode [ 46.464828][ T5955] bridge_slave_0: entered promiscuous mode [ 46.467559][ T5955] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.469555][ T5955] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.471831][ T5955] bridge_slave_1: entered allmulticast mode [ 46.474064][ T5955] bridge_slave_1: entered promiscuous mode [ 46.488810][ T5954] team0: Port device team_slave_1 added [ 46.503500][ T5957] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 46.507465][ T5957] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 46.569806][ T5954] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 46.572558][ T5954] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.581868][ T5954] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 46.587637][ T5955] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 46.617477][ T5954] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 46.619937][ T5954] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.628895][ T5954] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 46.639710][ T5955] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 46.654913][ T5957] team0: Port device team_slave_0 added [ 46.675961][ T5957] team0: Port device team_slave_1 added [ 46.694825][ T5955] team0: Port device team_slave_0 added [ 46.722035][ T5957] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 46.723881][ T5957] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.730626][ T5957] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 46.736064][ T5957] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 46.737991][ T5957] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.745838][ T5957] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 46.751837][ T5955] team0: Port device team_slave_1 added [ 46.771081][ T5954] hsr_slave_0: entered promiscuous mode [ 46.773221][ T5954] hsr_slave_1: entered promiscuous mode [ 46.775087][ T5954] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 46.777270][ T5954] Cannot create hsr debugfs directory [ 46.822584][ T5955] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 46.824567][ T5955] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.831645][ T5955] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 46.835650][ T5955] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 46.837566][ T5955] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.844470][ T5955] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 46.928592][ T5957] hsr_slave_0: entered promiscuous mode [ 46.930702][ T5957] hsr_slave_1: entered promiscuous mode [ 46.932505][ T5957] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 46.934549][ T5957] Cannot create hsr debugfs directory [ 47.038672][ T5955] hsr_slave_0: entered promiscuous mode [ 47.042219][ T5955] hsr_slave_1: entered promiscuous mode [ 47.044208][ T5955] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 47.046302][ T5955] Cannot create hsr debugfs directory [ 47.108930][ T5950] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 47.132971][ T5950] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 47.156635][ T5950] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 47.179875][ T5950] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 47.232357][ T5954] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 47.246194][ T5954] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 47.267592][ T5954] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 47.275153][ T5954] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 47.298869][ T5957] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 47.310660][ T5957] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 47.314974][ T5957] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 47.318551][ T5957] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 47.350507][ T5955] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 47.359901][ T5955] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 47.364864][ T5955] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 47.369756][ T5955] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 47.454099][ T5954] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.459983][ T5950] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.496148][ T5950] 8021q: adding VLAN 0 to HW filter on device team0 [ 47.500052][ T5954] 8021q: adding VLAN 0 to HW filter on device team0 [ 47.506008][ T5955] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.516807][ T1140] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.518825][ T1140] bridge0: port 1(bridge_slave_0) entered forwarding state [ 47.523085][ T1140] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.525618][ T1140] bridge0: port 1(bridge_slave_0) entered forwarding state [ 47.537758][ T5957] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.540439][ T1167] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.542472][ T1167] bridge0: port 2(bridge_slave_1) entered forwarding state [ 47.545701][ T1167] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.547681][ T1167] bridge0: port 2(bridge_slave_1) entered forwarding state [ 47.563278][ T5955] 8021q: adding VLAN 0 to HW filter on device team0 [ 47.586297][ T1167] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.588332][ T1167] bridge0: port 1(bridge_slave_0) entered forwarding state [ 47.593574][ T5957] 8021q: adding VLAN 0 to HW filter on device team0 [ 47.600738][ T1167] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.603291][ T1167] bridge0: port 1(bridge_slave_0) entered forwarding state [ 47.612921][ T1167] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.615488][ T1167] bridge0: port 2(bridge_slave_1) entered forwarding state [ 47.618959][ T1167] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.621537][ T1167] bridge0: port 2(bridge_slave_1) entered forwarding state [ 47.632029][ T5964] Bluetooth: hci0: command tx timeout [ 47.670960][ T5957] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 47.698794][ T5954] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 47.710264][ T5964] Bluetooth: hci1: command tx timeout [ 47.721521][ T5964] Bluetooth: hci3: command tx timeout [ 47.722217][ T5308] Bluetooth: hci2: command tx timeout [ 47.726546][ T5954] veth0_vlan: entered promiscuous mode [ 47.733733][ T5954] veth1_vlan: entered promiscuous mode [ 47.746092][ T5950] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 47.754512][ T5954] veth0_macvtap: entered promiscuous mode [ 47.759548][ T5954] veth1_macvtap: entered promiscuous mode [ 47.770445][ T5957] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 47.785382][ T5955] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 47.805416][ T5950] veth0_vlan: entered promiscuous mode [ 47.812074][ T5954] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 47.818415][ T5954] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 47.824759][ T5950] veth1_vlan: entered promiscuous mode [ 47.833370][ T5954] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.836575][ T5954] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.839641][ T5954] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.843284][ T5954] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.874625][ T5955] veth0_vlan: entered promiscuous mode [ 47.877876][ T5957] veth0_vlan: entered promiscuous mode [ 47.894632][ T5957] veth1_vlan: entered promiscuous mode [ 47.905887][ T5955] veth1_vlan: entered promiscuous mode [ 47.917520][ T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 47.918954][ T5950] veth0_macvtap: entered promiscuous mode [ 47.920535][ T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 47.937224][ T5950] veth1_macvtap: entered promiscuous mode [ 47.945132][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 47.947765][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 47.956376][ T5950] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 47.959370][ T5950] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 47.963845][ T5950] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 47.967303][ T5957] veth0_macvtap: entered promiscuous mode [ 47.974813][ T5950] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 47.977761][ T5950] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 47.982337][ T5950] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 47.986955][ T5957] veth1_macvtap: entered promiscuous mode [ 47.992732][ T5950] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.995144][ T5950] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.998153][ T5950] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.002153][ T5950] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.008023][ T5955] veth0_macvtap: entered promiscuous mode [ 48.013190][ T5955] veth1_macvtap: entered promiscuous mode [ 48.013913][ T5954] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 48.023285][ T5955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 48.026927][ T5955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.030766][ T5955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 48.033635][ T5955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.038307][ T5955] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 48.053185][ T5957] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 48.056886][ T5957] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.060633][ T5957] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 48.063649][ T5957] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.066794][ T5957] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 48.070075][ T5957] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.074406][ T5957] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 48.077195][ T5955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 48.088168][ T5955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.090974][ T5955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 48.094024][ T5955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.098630][ T5955] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 48.109189][ T5955] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.112398][ T5955] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.115113][ T5955] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.118021][ T5955] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.126016][ T5957] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 48.129717][ T5957] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.133378][ T5957] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 48.137187][ T5957] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.140467][ T5957] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 48.143292][ T5957] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.146734][ T5957] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 48.157100][ T5957] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.159696][ T5957] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.162478][ T5957] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.165059][ T5957] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.194244][ T1167] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.197470][ T1167] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.221706][ T1167] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.221761][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.224252][ T1167] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.227051][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.242029][ T1140] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.244351][ T1140] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.255237][ T1140] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.257444][ T1140] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.273512][ T1255] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.275739][ T1255] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.366683][ T6027] Zero length message leads to an empty skb [ 48.420814][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 48.422407][ T1018] libceph: connect (1)[c::]:6789 error -101 [ 48.425009][ T1018] libceph: mon0 (1)[c::]:6789 connect error [ 48.428079][ T1018] libceph: connect (1)[c::]:6789 error -101 [ 48.429095][ T6032] FAULT_INJECTION: forcing a failure. [ 48.429095][ T6032] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 48.430102][ T1018] libceph: mon0 (1)[c::]:6789 connect error [ 48.434132][ T6032] CPU: 3 UID: 0 PID: 6032 Comm: syz.0.6 Not tainted 6.14.0-syzkaller-11270-g08733088b566 #0 PREEMPT(full) [ 48.434147][ T6032] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 48.434154][ T6032] Call Trace: [ 48.434157][ T6032] [ 48.434161][ T6032] dump_stack_lvl+0x16c/0x1f0 [ 48.434176][ T6032] should_fail_ex+0x512/0x640 [ 48.434194][ T6032] _copy_to_user+0x32/0xd0 [ 48.434222][ T6032] simple_read_from_buffer+0xcb/0x170 [ 48.434235][ T6032] proc_fail_nth_read+0x197/0x270 [ 48.434247][ T6032] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 48.434260][ T6032] ? rw_verify_area+0xcf/0x680 [ 48.434269][ T6032] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 48.434281][ T6032] vfs_read+0x1de/0xc70 [ 48.434294][ T6032] ? __pfx___mutex_lock+0x10/0x10 [ 48.434305][ T6032] ? __pfx_vfs_read+0x10/0x10 [ 48.434320][ T6032] ? __fget_files+0x20e/0x3c0 [ 48.434337][ T6032] ksys_read+0x12a/0x240 [ 48.434348][ T6032] ? __pfx_ksys_read+0x10/0x10 [ 48.434360][ T6032] ? rcu_is_watching+0x12/0xc0 [ 48.434376][ T6032] __do_fast_syscall_32+0x73/0x120 [ 48.434389][ T6032] do_fast_syscall_32+0x32/0x80 [ 48.434401][ T6032] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 48.434415][ T6032] RIP: 0023:0xf7f58579 [ 48.434423][ T6032] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 48.434433][ T6032] RSP: 002b:00000000f5076590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 48.434443][ T6032] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000f5076620 [ 48.434449][ T6032] RDX: 000000000000000f RSI: 00000000f73dcff4 RDI: 0000000000000000 [ 48.434455][ T6032] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 48.434461][ T6032] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 48.434466][ T6032] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 48.434479][ T6032] [ 48.520692][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 48.611893][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 48.723929][ T6040] syz.0.7 uses obsolete (PF_INET,SOCK_PACKET) [ 48.816440][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 48.955966][ T1018] libceph: connect (1)[c::]:6789 error -101 [ 48.960695][ T1018] libceph: mon0 (1)[c::]:6789 connect error [ 49.054034][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 49.100315][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 49.123643][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 49.130365][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 49.154178][ T6028] ceph: No mds server is up or the cluster is laggy [ 49.191171][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 49.226039][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 49.245668][ T6050] bridge_slave_0: left allmulticast mode [ 49.247494][ T6050] bridge_slave_0: left promiscuous mode [ 49.249702][ T6050] bridge0: port 1(bridge_slave_0) entered disabled state [ 49.415854][ T6053] process 'syz.2.10' launched './file1' with NULL argv: empty string added [ 49.452695][ T6050] bridge_slave_1: left allmulticast mode [ 49.459545][ T6050] bridge_slave_1: left promiscuous mode [ 49.464749][ T6050] bridge0: port 2(bridge_slave_1) entered disabled state [ 49.656931][ T6050] bond0: (slave bond_slave_0): Releasing backup interface [ 49.675341][ T6050] bond0: (slave bond_slave_1): Releasing backup interface [ 49.707707][ T6050] team0: Port device team_slave_0 removed [ 49.710366][ T5308] Bluetooth: hci0: command tx timeout [ 49.716672][ T6050] team0: Port device team_slave_1 removed [ 49.727648][ T6050] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 49.739349][ T6050] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 49.762066][ T6050] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 49.790528][ T5308] Bluetooth: hci3: command tx timeout [ 49.790583][ T67] Bluetooth: hci2: command tx timeout [ 49.792798][ T5964] Bluetooth: hci1: command tx timeout [ 50.155758][ T6050] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 51.084647][ T6066] netlink: 'syz.0.14': attribute type 4 has an invalid length. [ 51.091170][ T6066] netlink: 20 bytes leftover after parsing attributes in process `syz.0.14'. [ 51.094201][ T6066] netlink: 'syz.0.14': attribute type 11 has an invalid length. [ 51.107646][ T6061] libceph: connect (1)[c::]:6789 error -101 [ 51.109318][ T6061] libceph: mon0 (1)[c::]:6789 connect error [ 51.371306][ T6061] libceph: connect (1)[c::]:6789 error -101 [ 51.373712][ T6061] libceph: mon0 (1)[c::]:6789 connect error [ 51.519958][ T6089] sp0: Synchronizing with TNC [ 51.611110][ T6070] ceph: No mds server is up or the cluster is laggy [ 51.800521][ T5964] Bluetooth: hci0: command tx timeout [ 51.870554][ T5964] Bluetooth: hci2: command tx timeout [ 51.870792][ T5308] Bluetooth: hci3: command tx timeout [ 51.874098][ T67] Bluetooth: hci1: command tx timeout [ 52.347542][ T6088] [U] è [ 52.533881][ T6110] sp0: Synchronizing with TNC [ 53.188728][ T6120] netlink: 'syz.1.27': attribute type 4 has an invalid length. [ 53.192345][ T6120] netlink: 20 bytes leftover after parsing attributes in process `syz.1.27'. [ 53.195745][ T6120] netlink: 'syz.1.27': attribute type 11 has an invalid length. [ 53.409871][ T6109] [U] è [ 53.414843][ T5958] libceph: connect (1)[c::]:6789 error -101 [ 53.416817][ T5958] libceph: mon0 (1)[c::]:6789 connect error [ 53.514405][ T6124] ceph: No mds server is up or the cluster is laggy [ 53.870663][ T5308] Bluetooth: hci0: command tx timeout [ 53.908160][ T6014] libceph: connect (1)[c::]:6789 error -101 [ 53.909919][ T6014] libceph: mon0 (1)[c::]:6789 connect error [ 53.926553][ T6014] libceph: connect (1)[c::]:6789 error -101 [ 53.931725][ T6014] libceph: mon0 (1)[c::]:6789 connect error [ 53.954199][ T5308] Bluetooth: hci3: command tx timeout [ 53.955806][ T5308] Bluetooth: hci2: command tx timeout [ 53.957434][ T67] Bluetooth: hci1: command tx timeout [ 54.013442][ T6141] ceph: No mds server is up or the cluster is laggy [ 54.035476][ T6014] libceph: connect (1)[c::]:6789 error -101 [ 54.037610][ T6014] libceph: mon0 (1)[c::]:6789 connect error [ 54.305977][ T6014] libceph: connect (1)[c::]:6789 error -101 [ 54.307772][ T6014] libceph: mon0 (1)[c::]:6789 connect error [ 54.334090][ T6136] syz.2.31 (6136) used greatest stack depth: 20696 bytes left [ 54.425562][ T6158] netlink: 12 bytes leftover after parsing attributes in process `syz.3.35'. [ 54.428716][ T6159] netlink: 'syz.1.33': attribute type 4 has an invalid length. [ 54.449453][ T6159] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 54.507102][ T6159] netlink: 'syz.1.33': attribute type 11 has an invalid length. [ 54.608917][ T6149] ceph: No mds server is up or the cluster is laggy [ 54.922994][ T6162] program syz.2.34 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 55.425207][ T6171] sp0: Synchronizing with TNC [ 56.009306][ T6170] [U] è [ 56.093340][ T6193] netlink: 'syz.1.41': attribute type 4 has an invalid length. [ 56.096055][ T6193] netlink: 20 bytes leftover after parsing attributes in process `syz.1.41'. [ 56.099222][ T6193] netlink: 'syz.1.41': attribute type 11 has an invalid length. [ 57.178195][ T6217] FAULT_INJECTION: forcing a failure. [ 57.178195][ T6217] name failslab, interval 1, probability 0, space 0, times 0 [ 57.182481][ T6217] CPU: 1 UID: 0 PID: 6217 Comm: syz.2.46 Not tainted 6.14.0-syzkaller-11270-g08733088b566 #0 PREEMPT(full) [ 57.182513][ T6217] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 57.182522][ T6217] Call Trace: [ 57.182527][ T6217] [ 57.182533][ T6217] dump_stack_lvl+0x16c/0x1f0 [ 57.182554][ T6217] should_fail_ex+0x512/0x640 [ 57.182574][ T6217] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 57.182596][ T6217] should_failslab+0xc2/0x120 [ 57.182618][ T6217] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 57.182637][ T6217] ? vma_merge_new_range+0x40a/0xbb0 [ 57.182655][ T6217] ? vm_area_alloc+0x134/0x230 [ 57.182678][ T6217] vm_area_alloc+0x134/0x230 [ 57.182695][ T6217] __mmap_region+0x10e3/0x27c0 [ 57.182716][ T6217] ? mark_held_locks+0x49/0x80 [ 57.182730][ T6217] ? __pfx___mmap_region+0x10/0x10 [ 57.182748][ T6217] ? lockdep_hardirqs_on+0x7c/0x110 [ 57.182768][ T6217] ? __schedule+0x1186/0x5de0 [ 57.182825][ T6217] ? lock_is_held_type+0x107/0x150 [ 57.182844][ T6217] mmap_region+0x32b/0x3f0 [ 57.182868][ T6217] do_mmap+0xd8e/0x11b0 [ 57.182899][ T6217] ? __pfx_do_mmap+0x10/0x10 [ 57.182915][ T6217] ? __pfx_down_write_killable+0x10/0x10 [ 57.182936][ T6217] vm_mmap_pgoff+0x281/0x450 [ 57.182958][ T6217] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 57.182980][ T6217] ? __fget_files+0x20e/0x3c0 [ 57.183003][ T6217] ksys_mmap_pgoff+0x32c/0x5c0 [ 57.183018][ T6217] ? __ia32_sys_mmap_pgoff+0x11/0x1b0 [ 57.183032][ T6217] __do_fast_syscall_32+0x73/0x120 [ 57.183049][ T6217] do_fast_syscall_32+0x32/0x80 [ 57.183066][ T6217] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 57.183083][ T6217] RIP: 0023:0xf744e579 [ 57.183095][ T6217] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 57.183110][ T6217] RSP: 002b:00000000f509455c EFLAGS: 00000296 ORIG_RAX: 00000000000000c0 [ 57.183124][ T6217] RAX: ffffffffffffffda RBX: 00000000809ff000 RCX: 0000000000600000 [ 57.183133][ T6217] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000006 [ 57.183142][ T6217] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 57.183148][ T6217] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 57.183155][ T6217] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 57.183176][ T6217] [ 57.329069][ T6213] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 57.330934][ T6213] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 57.334737][ T6213] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 57.339092][ T6213] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 57.340923][ T6213] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 57.344510][ T6213] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 57.348170][ T6213] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 57.349829][ T6213] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 57.353171][ T6213] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 57.356081][ T6213] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 57.357790][ T6213] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 57.360335][ T6213] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 57.452049][ T40] audit: type=1326 audit(1743544303.236:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6221 comm="syz.1.49" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f95579 code=0x7ffc0000 [ 57.460746][ T40] audit: type=1326 audit(1743544303.236:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6221 comm="syz.1.49" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f95579 code=0x7ffc0000 [ 57.467776][ T40] audit: type=1326 audit(1743544303.236:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6221 comm="syz.1.49" exe="/syz-executor" sig=0 arch=40000003 syscall=428 compat=1 ip=0xf7f95579 code=0x7ffc0000 [ 57.473698][ T40] audit: type=1326 audit(1743544303.236:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6221 comm="syz.1.49" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f95579 code=0x7ffc0000 [ 57.479342][ T40] audit: type=1326 audit(1743544303.236:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6221 comm="syz.1.49" exe="/syz-executor" sig=0 arch=40000003 syscall=442 compat=1 ip=0xf7f95579 code=0x7ffc0000 [ 57.482543][ T9] libceph: connect (1)[c::]:6789 error -101 [ 57.486672][ T40] audit: type=1326 audit(1743544303.236:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6221 comm="syz.1.49" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f95579 code=0x7ffc0000 [ 57.489699][ T9] libceph: mon0 (1)[c::]:6789 connect error [ 57.495673][ T40] audit: type=1326 audit(1743544303.236:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6221 comm="syz.1.49" exe="/syz-executor" sig=0 arch=40000003 syscall=431 compat=1 ip=0xf7f95579 code=0x7ffc0000 [ 57.732589][ T6229] netlink: 'syz.3.48': attribute type 4 has an invalid length. [ 57.775729][ T9] libceph: connect (1)[c::]:6789 error -101 [ 57.781549][ T9] libceph: mon0 (1)[c::]:6789 connect error [ 57.802718][ T6230] netlink: 'syz.3.48': attribute type 11 has an invalid length. [ 58.300654][ T6015] libceph: connect (1)[c::]:6789 error -101 [ 58.302522][ T6015] libceph: mon0 (1)[c::]:6789 connect error [ 58.444575][ T6222] ceph: No mds server is up or the cluster is laggy [ 59.349076][ T6014] libceph: connect (1)[c::]:6789 error -101 [ 59.351454][ T6014] libceph: mon0 (1)[c::]:6789 connect error [ 59.354036][ T6014] libceph: connect (1)[c::]:6789 error -101 [ 59.356133][ T6014] libceph: mon0 (1)[c::]:6789 connect error [ 59.390311][ T5308] Bluetooth: hci3: command 0x0c1a tx timeout [ 59.392248][ T5308] Bluetooth: hci2: command 0x0c1a tx timeout [ 59.394196][ T5308] Bluetooth: hci1: command 0x0c1a tx timeout [ 59.395945][ T5308] Bluetooth: hci0: command 0x0c1a tx timeout [ 59.618736][ T6014] libceph: connect (1)[c::]:6789 error -101 [ 59.618883][ T6014] libceph: mon0 (1)[c::]:6789 connect error [ 59.773614][ T5958] libceph: connect (1)[c::]:6789 error -101 [ 59.775449][ T5958] libceph: mon0 (1)[c::]:6789 connect error [ 59.779969][ T6270] ceph: No mds server is up or the cluster is laggy [ 59.783483][ T5958] libceph: connect (1)[c::]:6789 error -101 [ 59.785216][ T5958] libceph: mon0 (1)[c::]:6789 connect error [ 59.881569][ T6267] ceph: No mds server is up or the cluster is laggy [ 59.966726][ T6262] ceph: No mds server is up or the cluster is laggy [ 60.850689][ T6291] xt_ecn: cannot match TCP bits for non-tcp packets [ 61.326844][ T6306] netlink: 'syz.2.63': attribute type 4 has an invalid length. [ 61.345691][ T6306] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 61.356338][ T6306] netlink: 'syz.2.63': attribute type 11 has an invalid length. [ 61.470419][ T67] Bluetooth: hci1: command 0x0c1a tx timeout [ 61.472710][ T5308] Bluetooth: hci0: command 0x0c1a tx timeout [ 61.474883][ T5308] Bluetooth: hci2: command 0x0c1a tx timeout [ 61.477046][ T5308] Bluetooth: hci3: command 0x0c1a tx timeout [ 62.525878][ T34] libceph: connect (1)[c::]:6789 error -101 [ 62.528297][ T34] libceph: mon0 (1)[c::]:6789 connect error [ 62.621976][ T6321] ceph: No mds server is up or the cluster is laggy [ 62.765176][ T6327] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 62.767025][ T6327] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 62.768958][ T6327] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 62.771352][ T6327] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 63.036242][ T6334] netlink: 36 bytes leftover after parsing attributes in process `syz.3.71'. [ 63.039123][ T6334] ebtables: wrong size: *len 80, entries_size 144, replsz 144 [ 63.412680][ T6356] FAULT_INJECTION: forcing a failure. [ 63.412680][ T6356] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 63.416713][ T6356] CPU: 3 UID: 0 PID: 6356 Comm: syz.3.77 Not tainted 6.14.0-syzkaller-11270-g08733088b566 #0 PREEMPT(full) [ 63.416727][ T6356] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 63.416733][ T6356] Call Trace: [ 63.416737][ T6356] [ 63.416742][ T6356] dump_stack_lvl+0x16c/0x1f0 [ 63.416756][ T6356] should_fail_ex+0x512/0x640 [ 63.416775][ T6356] _copy_from_iter+0x2a4/0x15b0 [ 63.416793][ T6356] ? __alloc_skb+0x200/0x380 [ 63.416811][ T6356] ? __pfx__copy_from_iter+0x10/0x10 [ 63.416828][ T6356] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 63.416844][ T6356] netlink_sendmsg+0x829/0xdd0 [ 63.416858][ T6356] ? __pfx_netlink_sendmsg+0x10/0x10 [ 63.416870][ T6356] ? __import_iovec+0x1c8/0x660 [ 63.416882][ T6356] ____sys_sendmsg+0xa95/0xc70 [ 63.416897][ T6356] ? __pfx_____sys_sendmsg+0x10/0x10 [ 63.416909][ T6356] ? get_compat_msghdr+0x11a/0x170 [ 63.416931][ T6356] ___sys_sendmsg+0x134/0x1d0 [ 63.416942][ T6356] ? __pfx____sys_sendmsg+0x10/0x10 [ 63.416967][ T6356] __sys_sendmsg+0x16d/0x220 [ 63.416977][ T6356] ? __pfx___sys_sendmsg+0x10/0x10 [ 63.416992][ T6356] ? rcu_is_watching+0x12/0xc0 [ 63.417008][ T6356] __do_fast_syscall_32+0x73/0x120 [ 63.417021][ T6356] do_fast_syscall_32+0x32/0x80 [ 63.417032][ T6356] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 63.417045][ T6356] RIP: 0023:0xf743e579 [ 63.417054][ T6356] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 63.417063][ T6356] RSP: 002b:00000000f50c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 63.417073][ T6356] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800007c0 [ 63.417080][ T6356] RDX: 0000000000004000 RSI: 0000000000000000 RDI: 0000000000000000 [ 63.417086][ T6356] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 63.417091][ T6356] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 63.417097][ T6356] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 63.417113][ T6356] [ 63.498969][ T6359] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null. [ 63.509277][ T6359] overlayfs: missing 'lowerdir' [ 63.791830][ T57] libceph: connect (1)[c::]:6789 error -101 [ 63.793596][ T57] libceph: mon0 (1)[c::]:6789 connect error [ 64.050959][ T57] libceph: connect (1)[c::]:6789 error -101 [ 64.052737][ T57] libceph: mon0 (1)[c::]:6789 connect error [ 64.109346][ T6370] sp0: Synchronizing with TNC [ 64.119612][ T6354] ceph: No mds server is up or the cluster is laggy [ 64.293871][ T6376] netlink: 'syz.2.81': attribute type 25 has an invalid length. [ 64.296095][ T6376] ref_tracker: memory allocation failure, unreliable refcount tracker. [ 64.595992][ T6386] ======================================================= [ 64.595992][ T6386] WARNING: The mand mount option has been deprecated and [ 64.595992][ T6386] and is ignored by this kernel. Remove the mand [ 64.595992][ T6386] option from the mount to silence this warning. [ 64.595992][ T6386] ======================================================= [ 64.597731][ T6385] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 64.824681][ T40] audit: type=1326 audit(1743544310.606:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6391 comm="syz.0.86" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f58579 code=0x0 [ 64.830422][ T5964] Bluetooth: hci3: command 0x0c1a tx timeout [ 64.830441][ T67] Bluetooth: hci1: command 0x0c1a tx timeout [ 64.834046][ T5308] Bluetooth: hci2: command 0x0c1a tx timeout [ 65.059339][ T6400] syz.0.87: vmalloc error: size 20480, failed to allocate pages, mode:0x400dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 65.064036][ T6400] CPU: 1 UID: 0 PID: 6400 Comm: syz.0.87 Not tainted 6.14.0-syzkaller-11270-g08733088b566 #0 PREEMPT(full) [ 65.064058][ T6400] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 65.064066][ T6400] Call Trace: [ 65.064070][ T6400] [ 65.064074][ T6400] dump_stack_lvl+0x16c/0x1f0 [ 65.064089][ T6400] warn_alloc+0x248/0x3a0 [ 65.064105][ T6400] ? __pfx_warn_alloc+0x10/0x10 [ 65.064118][ T6400] ? cgroup_rstat_updated+0x2a/0xb20 [ 65.064134][ T6400] ? find_held_lock+0x2b/0x80 [ 65.064149][ T6400] ? mod_memcg_page_state.part.0.constprop.0+0x1e1/0x620 [ 65.064171][ T6400] __vmalloc_node_range_noprof+0x12d2/0x1540 [ 65.064188][ T6400] ? kvm_dev_ioctl+0x153/0x1ad0 [ 65.064205][ T6400] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 65.064216][ T6400] ? __pfx_snprintf+0x10/0x10 [ 65.064227][ T6400] ? _raw_spin_unlock+0x28/0x50 [ 65.064244][ T6400] ? alloc_fd+0x471/0x7d0 [ 65.064257][ T6400] ? kvm_dev_ioctl+0x153/0x1ad0 [ 65.064270][ T6400] __vmalloc_noprof+0x6d/0x90 [ 65.064281][ T6400] ? kvm_dev_ioctl+0x153/0x1ad0 [ 65.064295][ T6400] kvm_dev_ioctl+0x153/0x1ad0 [ 65.064311][ T6400] ? find_held_lock+0x2b/0x80 [ 65.064323][ T6400] ? hook_file_ioctl_common+0x145/0x410 [ 65.064343][ T6400] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 65.064358][ T6400] ? __fget_files+0x20e/0x3c0 [ 65.064373][ T6400] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 65.064387][ T6400] __do_compat_sys_ioctl+0x1cb/0x2c0 [ 65.064398][ T6400] __do_fast_syscall_32+0x73/0x120 [ 65.064411][ T6400] do_fast_syscall_32+0x32/0x80 [ 65.064422][ T6400] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 65.064435][ T6400] RIP: 0023:0xf7f58579 [ 65.064443][ T6400] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 65.064453][ T6400] RSP: 002b:00000000f505555c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 65.064462][ T6400] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 000000000000ae01 [ 65.064468][ T6400] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 65.064474][ T6400] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 65.064480][ T6400] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 65.064485][ T6400] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 65.064498][ T6400] [ 65.064542][ T6400] Mem-Info: [ 65.133933][ T6400] active_anon:5586 inactive_anon:0 isolated_anon:0 [ 65.133933][ T6400] active_file:1581 inactive_file:38163 isolated_file:0 [ 65.133933][ T6400] unevictable:1768 dirty:510 writeback:0 [ 65.133933][ T6400] slab_reclaimable:9725 slab_unreclaimable:53718 [ 65.133933][ T6400] mapped:25196 shmem:2475 pagetables:826 [ 65.133933][ T6400] sec_pagetables:301 bounce:0 [ 65.133933][ T6400] kernel_misc_reclaimable:0 [ 65.133933][ T6400] free:67816 free_pcp:1185 free_cma:0 [ 65.146424][ T6400] Node 0 active_anon:2316kB inactive_anon:0kB active_file:0kB inactive_file:17104kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:5312kB dirty:8kB writeback:0kB shmem:4296kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:8652kB pagetables:536kB sec_pagetables:1124kB all_unreclaimable? yes [ 65.155091][ T6400] Node 1 active_anon:20104kB inactive_anon:0kB active_file:6324kB inactive_file:135548kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:95508kB dirty:1972kB writeback:0kB shmem:5604kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:3668kB pagetables:2696kB sec_pagetables:80kB all_unreclaimable? no [ 65.170316][ T6400] Node 0 DMA free:3072kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:48kB local_pcp:48kB free_cma:0kB [ 65.177080][ T34] libceph: connect (1)[c::]:6789 error -101 [ 65.185847][ T34] libceph: mon0 (1)[c::]:6789 connect error [ 65.194042][ T6377] [U] è [ 65.195956][ T6400] lowmem_reserve[]: 0 292 292 292 292 [ 65.198910][ T6400] Node 0 DMA32 free:26176kB boost:8192kB min:21640kB low:25000kB high:28360kB reserved_highatomic:4096KB active_anon:2316kB inactive_anon:0kB active_file:0kB inactive_file:17104kB unevictable:3536kB writepending:0kB present:1032196kB managed:299980kB mlocked:0kB bounce:0kB free_pcp:1380kB local_pcp:204kB free_cma:0kB [ 65.207724][ T6400] lowmem_reserve[]: 0 0 0 0 0 [ 65.209146][ T6400] Node 1 DMA32 free:244700kB boost:0kB min:47148kB low:58932kB high:70716kB reserved_highatomic:0KB active_anon:20072kB inactive_anon:0kB active_file:6324kB inactive_file:135548kB unevictable:3536kB writepending:1972kB present:1048432kB managed:948284kB mlocked:0kB bounce:0kB free_pcp:884kB local_pcp:32kB free_cma:0kB [ 65.217445][ T6400] lowmem_reserve[]: 0 0 0 0 0 [ 65.218965][ T6400] Node 0 DMA: 50*4kB (U) 33*8kB (UE) 19*16kB (UE) 14*32kB (UE) 1*64kB (U) 0*128kB 1*256kB (E) 1*512kB (E) 1*1024kB (E) 0*2048kB 0*4096kB = 3072kB [ 65.224068][ T6400] Node 0 DMA32: 508*4kB (UMH) 218*8kB (UMEH) 102*16kB (UMEH) 227*32kB (UMEH) 83*64kB (UMH) 16*128kB (UMEH) 8*256kB (UME) 6*512kB (UME) 1*1024kB (E) 0*2048kB 0*4096kB = 26176kB [ 65.230933][ T6400] Node 1 DMA32: 205*4kB (UME) 227*8kB (UME) 190*16kB (UME) 162*32kB (UME) 125*64kB (UME) 85*128kB (UME) 52*256kB (UME) 18*512kB (UM) 12*1024kB (UME) 10*2048kB (UME) 39*4096kB (M) = 244780kB [ 65.237798][ T6400] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 65.266364][ T6400] Node 0 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB [ 65.270396][ T6400] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 65.275852][ T6400] Node 1 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 65.281369][ T6400] 42222 total pagecache pages [ 65.283792][ T6400] 0 pages in swap cache [ 65.291163][ T6400] Free swap = 124996kB [ 65.292905][ T6400] Total swap = 124996kB [ 65.295234][ T6400] 524155 pages RAM [ 65.296389][ T6400] 0 pages HighMem/MovableOnly [ 65.298086][ T6400] 208249 pages reserved [ 65.299252][ T6400] 0 pages cma reserved [ 65.440692][ T34] libceph: connect (1)[c::]:6789 error -101 [ 65.443208][ T34] libceph: mon0 (1)[c::]:6789 connect error [ 65.531917][ T6014] libceph: connect (1)[c::]:6789 error -101 [ 65.534035][ T6014] libceph: mon0 (1)[c::]:6789 connect error [ 65.536706][ T6014] libceph: connect (1)[c::]:6789 error -101 [ 65.538644][ T6014] libceph: mon0 (1)[c::]:6789 connect error [ 65.809675][ T6014] libceph: connect (1)[c::]:6789 error -101 [ 65.809763][ T6014] libceph: mon0 (1)[c::]:6789 connect error [ 65.865708][ T6403] ceph: No mds server is up or the cluster is laggy [ 66.220541][ T6411] ceph: No mds server is up or the cluster is laggy [ 66.574331][ T6437] batadv_slave_1: entered promiscuous mode [ 66.614845][ T6438] netlink: 'syz.3.93': attribute type 4 has an invalid length. [ 66.633468][ T6438] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 66.648281][ T6438] netlink: 'syz.3.93': attribute type 11 has an invalid length. [ 66.795636][ T6446] FAULT_INJECTION: forcing a failure. [ 66.795636][ T6446] name failslab, interval 1, probability 0, space 0, times 0 [ 66.799100][ T6446] CPU: 3 UID: 0 PID: 6446 Comm: syz.0.98 Not tainted 6.14.0-syzkaller-11270-g08733088b566 #0 PREEMPT(full) [ 66.799115][ T6446] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 66.799122][ T6446] Call Trace: [ 66.799125][ T6446] [ 66.799130][ T6446] dump_stack_lvl+0x16c/0x1f0 [ 66.799145][ T6446] should_fail_ex+0x512/0x640 [ 66.799160][ T6446] ? fs_reclaim_acquire+0xae/0x150 [ 66.799172][ T6446] ? tomoyo_encode2+0x100/0x3e0 [ 66.799183][ T6446] should_failslab+0xc2/0x120 [ 66.799199][ T6446] __kmalloc_noprof+0xd2/0x510 [ 66.799212][ T6446] ? d_absolute_path+0x136/0x1a0 [ 66.799231][ T6446] tomoyo_encode2+0x100/0x3e0 [ 66.799243][ T6446] tomoyo_encode+0x29/0x50 [ 66.799253][ T6446] tomoyo_realpath_from_path+0x18f/0x6e0 [ 66.799282][ T6446] tomoyo_path_number_perm+0x245/0x580 [ 66.799299][ T6446] ? tomoyo_path_number_perm+0x237/0x580 [ 66.799316][ T6446] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 66.799333][ T6446] ? find_held_lock+0x2b/0x80 [ 66.799359][ T6446] ? find_held_lock+0x2b/0x80 [ 66.799371][ T6446] ? hook_file_ioctl_common+0x145/0x410 [ 66.799389][ T6446] ? __fget_files+0x20e/0x3c0 [ 66.799404][ T6446] security_file_ioctl_compat+0x9b/0x240 [ 66.799422][ T6446] __do_compat_sys_ioctl+0x4e/0x2c0 [ 66.799434][ T6446] __do_fast_syscall_32+0x73/0x120 [ 66.799447][ T6446] do_fast_syscall_32+0x32/0x80 [ 66.799458][ T6446] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 66.799472][ T6446] RIP: 0023:0xf7f58579 [ 66.799480][ T6446] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 66.799490][ T6446] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 66.799500][ T6446] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c1205531 [ 66.799506][ T6446] RDX: 0000000080000540 RSI: 0000000000000000 RDI: 0000000000000000 [ 66.799512][ T6446] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 66.799518][ T6446] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 66.799524][ T6446] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 66.799536][ T6446] [ 66.799545][ T6446] ERROR: Out of memory at tomoyo_realpath_from_path. [ 66.899918][ T6451] netlink: 8 bytes leftover after parsing attributes in process `syz.0.100'. [ 66.920496][ T6441] batadv_slave_1: left promiscuous mode [ 66.962234][ T6451] netlink: 'syz.0.100': attribute type 1 has an invalid length. [ 66.964903][ T6451] netlink: 208 bytes leftover after parsing attributes in process `syz.0.100'. [ 67.042114][ T57] libceph: connect (1)[c::]:6789 error -101 [ 67.045593][ T57] libceph: mon0 (1)[c::]:6789 connect error [ 67.130581][ T6459] ceph: No mds server is up or the cluster is laggy [ 67.304200][ T6014] libceph: connect (1)[c::]:6789 error -101 [ 67.307000][ T6014] libceph: mon0 (1)[c::]:6789 connect error [ 67.439060][ T6014] hid-generic FFF9:0000:0203.0002: unknown main item tag 0x0 [ 67.439102][ T6014] hid-generic FFF9:0000:0203.0002: unknown main item tag 0x0 [ 67.439115][ T6014] hid-generic FFF9:0000:0203.0002: unknown main item tag 0x0 [ 67.439126][ T6014] hid-generic FFF9:0000:0203.0002: unknown main item tag 0x0 [ 67.439138][ T6014] hid-generic FFF9:0000:0203.0002: unknown main item tag 0x0 [ 67.439149][ T6014] hid-generic FFF9:0000:0203.0002: unknown main item tag 0x0 [ 67.439161][ T6014] hid-generic FFF9:0000:0203.0002: unknown main item tag 0x0 [ 67.439172][ T6014] hid-generic FFF9:0000:0203.0002: unknown main item tag 0x0 [ 67.443328][ T6014] hid-generic FFF9:0000:0203.0002: unknown main item tag 0x0 [ 67.443394][ T6014] hid-generic FFF9:0000:0203.0002: unknown main item tag 0x0 [ 67.443433][ T6014] hid-generic FFF9:0000:0203.0002: unknown main item tag 0x0 [ 67.443473][ T6014] hid-generic FFF9:0000:0203.0002: unknown main item tag 0x0 [ 67.443512][ T6014] hid-generic FFF9:0000:0203.0002: unknown main item tag 0x0 [ 67.443677][ T6014] hid-generic FFF9:0000:0203.0002: unknown main item tag 0x0 [ 67.443716][ T6014] hid-generic FFF9:0000:0203.0002: unknown main item tag 0x0 [ 67.443755][ T6014] hid-generic FFF9:0000:0203.0002: unknown main item tag 0x0 [ 67.453725][ T6014] hid-generic FFF9:0000:0203.0002: hidraw1: HID v0.00 Device [syz0] on syz1 [ 67.481617][ T5308] Bluetooth: hci3: unexpected event for opcode 0x0406 [ 67.549237][ T6473] Bluetooth: MGMT ver 1.23 [ 67.562625][ T6014] libceph: connect (1)[c::]:6789 error -101 [ 67.562748][ T6014] libceph: mon0 (1)[c::]:6789 connect error [ 67.912121][ T6465] ceph: No mds server is up or the cluster is laggy [ 67.919508][ T6478] capability: warning: `syz.1.105' uses deprecated v2 capabilities in a way that may be insecure [ 68.471079][ T6471] 9pnet_fd: p9_fd_create_tcp (6471): problem connecting socket to 127.0.0.1 [ 70.671132][ T5308] Bluetooth: hci1: unexpected event for opcode 0x0000 [ 70.753491][ T1417] ieee802154 phy0 wpan0: encryption failed: -22 [ 70.755637][ T1417] ieee802154 phy1 wpan1: encryption failed: -22 [ 70.847776][ T6534] ieee802154 phy0 wpan0: encryption failed: -22 [ 70.851219][ T6534] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 71.121927][ T6542] FAULT_INJECTION: forcing a failure. [ 71.121927][ T6542] name failslab, interval 1, probability 0, space 0, times 0 [ 71.125412][ T6542] CPU: 3 UID: 0 PID: 6542 Comm: syz.1.123 Not tainted 6.14.0-syzkaller-11270-g08733088b566 #0 PREEMPT(full) [ 71.125427][ T6542] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 71.125434][ T6542] Call Trace: [ 71.125438][ T6542] [ 71.125442][ T6542] dump_stack_lvl+0x16c/0x1f0 [ 71.125458][ T6542] should_fail_ex+0x512/0x640 [ 71.125473][ T6542] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 71.125487][ T6542] should_failslab+0xc2/0x120 [ 71.125503][ T6542] __kmalloc_cache_noprof+0x6a/0x3e0 [ 71.125515][ T6542] ? lockdep_init_map_type+0x5c/0x280 [ 71.125525][ T6542] ? legacy_init_fs_context+0x42/0xe0 [ 71.125541][ T6542] ? __pfx_legacy_init_fs_context+0x10/0x10 [ 71.125555][ T6542] legacy_init_fs_context+0x42/0xe0 [ 71.125569][ T6542] alloc_fs_context+0x54a/0x9c0 [ 71.125585][ T6542] path_mount+0xb06/0x1f30 [ 71.125600][ T6542] ? kmem_cache_free+0x2d4/0x4d0 [ 71.125613][ T6542] ? __pfx_path_mount+0x10/0x10 [ 71.125629][ T6542] ? putname+0x154/0x1a0 [ 71.125646][ T6542] __ia32_sys_mount+0x28b/0x310 [ 71.125661][ T6542] ? __pfx___ia32_sys_mount+0x10/0x10 [ 71.125675][ T6542] ? rcu_is_watching+0x12/0xc0 [ 71.125689][ T6542] ? rcu_is_watching+0x12/0xc0 [ 71.125704][ T6542] __do_fast_syscall_32+0x73/0x120 [ 71.125716][ T6542] do_fast_syscall_32+0x32/0x80 [ 71.125730][ T6542] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 71.125748][ T6542] RIP: 0023:0xf7f95579 [ 71.125758][ T6542] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 71.125772][ T6542] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000015 [ 71.125784][ T6542] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000080000040 [ 71.125790][ T6542] RDX: 0000000080000080 RSI: 0000000000000000 RDI: 0000000080000400 [ 71.125796][ T6542] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 71.125802][ T6542] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 71.125807][ T6542] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 71.125820][ T6542] [ 71.783038][ T6558] netlink: 60 bytes leftover after parsing attributes in process `syz.3.127'. [ 71.785930][ T6555] netlink: 60 bytes leftover after parsing attributes in process `syz.3.127'. [ 71.788723][ T6555] netlink: 60 bytes leftover after parsing attributes in process `syz.3.127'. [ 72.325242][ T6577] syz.3.134 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 72.390314][ T5992] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 72.550317][ T5992] usb 5-1: Using ep0 maxpacket: 16 [ 72.566637][ T5992] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 72.570839][ T5992] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 72.574675][ T5992] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 72.579165][ T5992] usb 5-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00 [ 72.582437][ T5992] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 72.591367][ T5992] usb 5-1: config 0 descriptor?? [ 72.976839][ T6585] sp0: Synchronizing with TNC [ 73.009694][ T6570] random: crng reseeded on system resumption [ 73.052585][ T5992] usbhid 5-1:0.0: can't add hid device: -71 [ 73.054384][ T5992] usbhid 5-1:0.0: probe with driver usbhid failed with error -71 [ 73.061760][ T5992] usb 5-1: USB disconnect, device number 2 [ 73.105919][ T6591] warning: `syz.3.139' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 73.414729][ T6584] [U] è [ 73.547722][ T6603] sp0: Synchronizing with TNC [ 73.660772][ T6609] netlink: 'syz.0.146': attribute type 25 has an invalid length. [ 73.914023][ T6613] netlink: 32 bytes leftover after parsing attributes in process `syz.0.146'. [ 74.346923][ T6620] netlink: 8 bytes leftover after parsing attributes in process `syz.3.148'. [ 74.430904][ T6602] [U] è [ 74.620785][ T6628] netlink: 'syz.1.149': attribute type 4 has an invalid length. [ 74.638711][ T6628] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 74.658660][ T6628] netlink: 'syz.1.149': attribute type 11 has an invalid length. [ 74.751595][ T5308] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0 [ 74.755023][ T5308] Bluetooth: hci1: Injecting HCI hardware error event [ 74.758600][ T5308] Bluetooth: hci1: hardware error 0x00 [ 74.783070][ T4453] libceph: connect (1)[c::]:6789 error -101 [ 74.784938][ T4453] libceph: mon0 (1)[c::]:6789 connect error [ 74.823117][ T6636] ceph: No mds server is up or the cluster is laggy [ 74.957681][ T6641] netlink: 'syz.3.150': attribute type 4 has an invalid length. [ 74.978625][ T6641] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 75.030671][ T6641] netlink: 'syz.3.150': attribute type 11 has an invalid length. [ 75.492619][ T6655] netlink: 12 bytes leftover after parsing attributes in process `syz.0.157'. [ 75.654775][ T6645] netlink: 'syz.1.154': attribute type 4 has an invalid length. [ 75.666117][ T6645] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 75.679358][ T6645] netlink: 'syz.1.154': attribute type 11 has an invalid length. [ 76.798749][ T65] libceph: connect (1)[c::]:6789 error -101 [ 76.804257][ T65] libceph: mon0 (1)[c::]:6789 connect error [ 76.830298][ T5308] Bluetooth: hci1: Opcode 0x0c03 failed: -110 [ 76.888264][ T6681] ceph: No mds server is up or the cluster is laggy [ 77.348598][ T6693] netlink: 'syz.0.162': attribute type 4 has an invalid length. [ 77.372827][ T6693] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 77.384587][ T6693] netlink: 'syz.0.162': attribute type 11 has an invalid length. [ 77.856223][ T6706] netlink: 'syz.3.166': attribute type 4 has an invalid length. [ 77.882559][ T6706] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 78.348968][ T6715] FAULT_INJECTION: forcing a failure. [ 78.348968][ T6715] name failslab, interval 1, probability 0, space 0, times 0 [ 78.354124][ T6715] CPU: 3 UID: 0 PID: 6715 Comm: syz.2.171 Not tainted 6.14.0-syzkaller-11270-g08733088b566 #0 PREEMPT(full) [ 78.354145][ T6715] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 78.354154][ T6715] Call Trace: [ 78.354159][ T6715] [ 78.354166][ T6715] dump_stack_lvl+0x16c/0x1f0 [ 78.354190][ T6715] should_fail_ex+0x512/0x640 [ 78.354212][ T6715] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 78.354236][ T6715] should_failslab+0xc2/0x120 [ 78.354260][ T6715] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 78.354284][ T6715] ? __alloc_skb+0x2b2/0x380 [ 78.354311][ T6715] __alloc_skb+0x2b2/0x380 [ 78.354334][ T6715] ? __pfx___alloc_skb+0x10/0x10 [ 78.354355][ T6715] ? find_held_lock+0x2b/0x80 [ 78.354378][ T6715] ? is_bpf_text_address+0x8a/0x1a0 [ 78.354393][ T6715] ? bpf_ksym_find+0x124/0x1c0 [ 78.354413][ T6715] ? aa_label_sk_perm+0x19b/0x5a0 [ 78.354440][ T6715] alloc_skb_with_frags+0xe0/0x860 [ 78.354459][ T6715] ? __pfx_aa_label_sk_perm+0x10/0x10 [ 78.354487][ T6715] sock_alloc_send_pskb+0x7fb/0x990 [ 78.354510][ T6715] ? __lock_acquire+0x5ca/0x1ba0 [ 78.354534][ T6715] ? __pfx_sock_alloc_send_pskb+0x10/0x10 [ 78.354562][ T6715] ? __pfx___might_resched+0x10/0x10 [ 78.354585][ T6715] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 78.354609][ T6715] hci_sock_sendmsg+0x1c7/0x25e0 [ 78.354635][ T6715] ? __pfx_aa_sk_perm+0x10/0x10 [ 78.354659][ T6715] ? __pfx_hci_sock_sendmsg+0x10/0x10 [ 78.354692][ T6715] sock_write_iter+0x4fc/0x5b0 [ 78.354714][ T6715] ? __pfx_sock_write_iter+0x10/0x10 [ 78.354743][ T6715] ? bpf_lsm_file_permission+0x9/0x10 [ 78.354763][ T6715] ? security_file_permission+0x71/0x210 [ 78.354779][ T6715] ? rw_verify_area+0xcf/0x680 [ 78.354796][ T6715] vfs_write+0x5ba/0x1180 [ 78.354814][ T6715] ? __pfx_sock_write_iter+0x10/0x10 [ 78.354835][ T6715] ? __pfx_vfs_write+0x10/0x10 [ 78.354849][ T6715] ? find_held_lock+0x2b/0x80 [ 78.354882][ T6715] ksys_write+0x205/0x240 [ 78.354900][ T6715] ? __pfx_ksys_write+0x10/0x10 [ 78.354918][ T6715] ? rcu_is_watching+0x12/0xc0 [ 78.354940][ T6715] __do_fast_syscall_32+0x73/0x120 [ 78.354958][ T6715] do_fast_syscall_32+0x32/0x80 [ 78.354975][ T6715] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 78.354993][ T6715] RIP: 0023:0xf744e579 [ 78.355005][ T6715] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 78.355020][ T6715] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004 [ 78.355034][ T6715] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800005c0 [ 78.355043][ T6715] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 0000000000000000 [ 78.355052][ T6715] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 78.355060][ T6715] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 78.355069][ T6715] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 78.355089][ T6715] [ 79.010319][ T6015] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 79.160376][ T6015] usb 5-1: Using ep0 maxpacket: 32 [ 79.172889][ T6015] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024 [ 79.185488][ T6015] usb 5-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79 [ 79.189046][ T6015] usb 5-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2 [ 79.192486][ T6015] usb 5-1: Product: syz [ 79.194276][ T6015] usb 5-1: Manufacturer: syz [ 79.196169][ T6015] usb 5-1: SerialNumber: syz [ 79.204521][ T6015] usb 5-1: config 0 descriptor?? [ 79.216323][ T6728] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 79.223883][ T6015] hub 5-1:0.0: bad descriptor, ignoring hub [ 79.226400][ T6015] hub 5-1:0.0: probe with driver hub failed with error -5 [ 79.330412][ T1018] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 79.469788][ T4453] libceph: connect (1)[c::]:6789 error -101 [ 79.486359][ T4453] libceph: mon0 (1)[c::]:6789 connect error [ 79.500390][ T1018] usb 6-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f [ 79.504477][ T1018] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 79.507428][ T1018] usb 6-1: Product: syz [ 79.508887][ T1018] usb 6-1: Manufacturer: syz [ 79.515081][ T1018] usb 6-1: SerialNumber: syz [ 79.518822][ T1018] usb 6-1: config 0 descriptor?? [ 79.541995][ T6736] ceph: No mds server is up or the cluster is laggy [ 79.681705][ T5992] libceph: connect (1)[c::]:6789 error -101 [ 79.684349][ T5992] libceph: mon0 (1)[c::]:6789 connect error [ 79.741956][ T6733] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 79.755966][ T6743] ceph: No mds server is up or the cluster is laggy [ 79.840296][ T6728] usb 5-1: reset high-speed USB device number 3 using dummy_hcd [ 79.959429][ T6759] input: syz0 as /devices/virtual/input/input7 [ 80.011511][ T6761] sp0: Synchronizing with TNC [ 80.017916][ T6728] usb 5-1: device firmware changed [ 80.021323][ T4453] usb 5-1: USB disconnect, device number 3 [ 80.162986][ T4453] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 80.310266][ T4453] usb 5-1: Using ep0 maxpacket: 32 [ 80.313267][ T4453] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024 [ 80.318223][ T4453] usb 5-1: string descriptor 0 read error: -22 [ 80.319944][ T4453] usb 5-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79 [ 80.322398][ T4453] usb 5-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2 [ 80.333791][ T4453] usb 5-1: config 0 descriptor?? [ 80.339027][ T6739] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 80.346766][ T4453] hub 5-1:0.0: bad descriptor, ignoring hub [ 80.349973][ T4453] hub 5-1:0.0: probe with driver hub failed with error -5 [ 80.680410][ T5992] usb 5-1: USB disconnect, device number 4 [ 80.685972][ T1018] usb 6-1: USB disconnect, device number 2 [ 80.847175][ T6760] [U] è [ 80.952232][ T6772] validate_nla: 1 callbacks suppressed [ 80.952242][ T6772] netlink: 'syz.2.187': attribute type 25 has an invalid length. [ 80.995250][ T1272] cfg80211: failed to load regulatory.db [ 81.904204][ T6801] FAULT_INJECTION: forcing a failure. [ 81.904204][ T6801] name failslab, interval 1, probability 0, space 0, times 0 [ 81.907735][ T6801] CPU: 3 UID: 0 PID: 6801 Comm: syz.1.196 Not tainted 6.14.0-syzkaller-11270-g08733088b566 #0 PREEMPT(full) [ 81.907749][ T6801] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 81.907755][ T6801] Call Trace: [ 81.907759][ T6801] [ 81.907763][ T6801] dump_stack_lvl+0x16c/0x1f0 [ 81.907779][ T6801] should_fail_ex+0x512/0x640 [ 81.907795][ T6801] ? __kvmalloc_node_noprof+0x122/0x600 [ 81.907810][ T6801] should_failslab+0xc2/0x120 [ 81.907825][ T6801] __kvmalloc_node_noprof+0x135/0x600 [ 81.907838][ T6801] ? net_generic+0xea/0x2a0 [ 81.907854][ T6801] ? nf_tables_newset+0x24f2/0x4310 [ 81.907872][ T6801] ? nf_tables_newset+0x24f2/0x4310 [ 81.907887][ T6801] nf_tables_newset+0x24f2/0x4310 [ 81.907911][ T6801] ? __pfx_nf_tables_newset+0x10/0x10 [ 81.907932][ T6801] ? __nla_validate_parse+0x600/0x2880 [ 81.907954][ T6801] ? __nla_parse+0x40/0x60 [ 81.907966][ T6801] nfnetlink_rcv_batch+0x1908/0x2350 [ 81.907987][ T6801] ? __pfx_nfnetlink_rcv_batch+0x10/0x10 [ 81.907999][ T6801] ? consume_skb+0xcc/0x100 [ 81.908011][ T6801] ? find_held_lock+0x2b/0x80 [ 81.908027][ T6801] ? __local_bh_enable_ip+0xa4/0x120 [ 81.908042][ T6801] ? lockdep_hardirqs_on+0x7c/0x110 [ 81.908060][ T6801] ? __pfx___dev_queue_xmit+0x10/0x10 [ 81.908088][ T6801] ? __nla_parse+0x40/0x60 [ 81.908100][ T6801] nfnetlink_rcv+0x3c1/0x430 [ 81.908113][ T6801] ? __pfx_nfnetlink_rcv+0x10/0x10 [ 81.908129][ T6801] netlink_unicast+0x53a/0x7f0 [ 81.908142][ T6801] ? __pfx_netlink_unicast+0x10/0x10 [ 81.908158][ T6801] netlink_sendmsg+0x8d1/0xdd0 [ 81.908171][ T6801] ? __pfx_netlink_sendmsg+0x10/0x10 [ 81.908184][ T6801] ? __import_iovec+0x1c8/0x660 [ 81.908197][ T6801] ____sys_sendmsg+0xa95/0xc70 [ 81.908212][ T6801] ? __pfx_____sys_sendmsg+0x10/0x10 [ 81.908233][ T6801] ? get_compat_msghdr+0x11a/0x170 [ 81.908258][ T6801] ___sys_sendmsg+0x134/0x1d0 [ 81.908269][ T6801] ? __pfx____sys_sendmsg+0x10/0x10 [ 81.908297][ T6801] __sys_sendmsg+0x16d/0x220 [ 81.908307][ T6801] ? __pfx___sys_sendmsg+0x10/0x10 [ 81.908323][ T6801] ? rcu_is_watching+0x12/0xc0 [ 81.908338][ T6801] __do_fast_syscall_32+0x73/0x120 [ 81.908351][ T6801] do_fast_syscall_32+0x32/0x80 [ 81.908362][ T6801] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 81.908375][ T6801] RIP: 0023:0xf7f95579 [ 81.908383][ T6801] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 81.908393][ T6801] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 81.908403][ T6801] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800000c0 [ 81.908409][ T6801] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 81.908415][ T6801] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 81.908420][ T6801] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 81.908426][ T6801] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 81.908439][ T6801] [ 82.231858][ T6814] usb 2-1: USB disconnect, device number 2 [ 82.469970][ T6823] netlink: 'syz.0.204': attribute type 25 has an invalid length. [ 82.497503][ T4453] libceph: connect (1)[c::]:6789 error -101 [ 82.501709][ T4453] libceph: mon0 (1)[c::]:6789 connect error [ 82.531449][ T6829] netlink: 'syz.3.202': attribute type 4 has an invalid length. [ 82.543725][ T6829] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 82.557054][ T6829] netlink: 'syz.3.202': attribute type 11 has an invalid length. [ 82.594096][ T6821] ceph: No mds server is up or the cluster is laggy [ 82.928269][ T6839] vlan2: entered allmulticast mode [ 82.929656][ T6839] geneve0: entered allmulticast mode [ 82.933233][ T6839] bridge0: port 3(vlan2) entered blocking state [ 82.935416][ T6839] bridge0: port 3(vlan2) entered disabled state [ 82.937677][ T6839] vlan2: entered promiscuous mode [ 82.938989][ T6839] geneve0: entered promiscuous mode [ 82.941762][ T6839] bridge0: port 3(vlan2) entered blocking state [ 82.943587][ T6839] bridge0: port 3(vlan2) entered forwarding state [ 82.949568][ T6840] bridge_slave_0: left allmulticast mode [ 82.951219][ T6840] bridge_slave_0: left promiscuous mode [ 82.952787][ T6840] bridge0: port 1(bridge_slave_0) entered disabled state [ 82.956543][ T6840] bridge_slave_1: left allmulticast mode [ 82.958078][ T6840] bridge_slave_1: left promiscuous mode [ 82.959675][ T6840] bridge0: port 2(bridge_slave_1) entered disabled state [ 82.964833][ T6840] bond0: (slave bond_slave_0): Releasing backup interface [ 82.968532][ T6840] bond0: (slave bond_slave_1): Releasing backup interface [ 82.979684][ T6840] team0: Port device team_slave_0 removed [ 82.985670][ T6840] team0: Port device team_slave_1 removed [ 82.987953][ T6840] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 82.990384][ T6840] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 82.993658][ T6840] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 82.995953][ T6840] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 83.002919][ T6840] vlan2: left promiscuous mode [ 83.004429][ T6840] geneve0: left promiscuous mode [ 83.005893][ T6840] bridge0: port 3(vlan2) entered disabled state [ 83.064262][ T6846] netlink: 8 bytes leftover after parsing attributes in process `syz.2.210'. [ 83.066821][ T6846] netlink: 12 bytes leftover after parsing attributes in process `syz.2.210'. [ 83.086944][ T6846] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 83.089403][ T6846] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 83.092026][ T6846] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 83.094824][ T6846] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 83.409447][ T6853] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 83.534647][ T6853] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 83.613836][ T6853] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 83.678003][ T4453] libceph: connect (1)[c::]:6789 error -101 [ 83.680919][ T4453] libceph: mon0 (1)[c::]:6789 connect error [ 83.721797][ T6861] ceph: No mds server is up or the cluster is laggy [ 83.723284][ T6853] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 83.909686][ T6853] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.941168][ T6853] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.965893][ T6853] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.991391][ T6853] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.301120][ T6896] netlink: 'syz.3.219': attribute type 4 has an invalid length. [ 84.343381][ T6896] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 84.388764][ T6896] netlink: 'syz.3.219': attribute type 11 has an invalid length. [ 84.389221][ C2] hpet: Lost 1 RTC interrupts [ 85.199998][ T1272] libceph: connect (1)[c::]:6789 error -101 [ 85.202416][ T1272] libceph: mon0 (1)[c::]:6789 connect error [ 85.225740][ T6914] sp0: Synchronizing with TNC [ 85.250625][ T6910] ceph: No mds server is up or the cluster is laggy [ 85.468336][ T6926] netlink: 32 bytes leftover after parsing attributes in process `syz.3.225'. [ 86.388607][ T6913] [U] è [ 86.602746][ T40] audit: type=1326 audit(1743544332.386:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6944 comm="syz.1.231" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f95579 code=0x7ffc0000 [ 86.610287][ T40] audit: type=1326 audit(1743544332.386:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6944 comm="syz.1.231" exe="/syz-executor" sig=0 arch=40000003 syscall=448 compat=1 ip=0xf7f95579 code=0x7ffc0000 [ 86.616202][ T40] audit: type=1326 audit(1743544332.386:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6944 comm="syz.1.231" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f95579 code=0x7ffc0000 [ 86.623356][ T40] audit: type=1326 audit(1743544332.386:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6944 comm="syz.1.231" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f95579 code=0x7ffc0000 [ 86.655213][ T40] audit: type=1326 audit(1743544332.436:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6949 comm="syz.1.233" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f95579 code=0x0 [ 88.239319][ T6993] netlink: 20 bytes leftover after parsing attributes in process `syz.0.244'. [ 88.334880][ T7000] netlink: 4 bytes leftover after parsing attributes in process `syz.0.247'. [ 88.690934][ T7012] block device autoloading is deprecated and will be removed. [ 89.218782][ T7021] 9pnet_fd: Insufficient options for proto=fd [ 89.220921][ T7021] netlink: 32 bytes leftover after parsing attributes in process `syz.2.252'. [ 89.358425][ T7026] netlink: 4 bytes leftover after parsing attributes in process `syz.0.254'. [ 90.637321][ T1272] IPVS: starting estimator thread 0... [ 90.643956][ T7062] netlink: 'syz.2.261': attribute type 4 has an invalid length. [ 90.712648][ T7064] netlink: 'syz.2.261': attribute type 11 has an invalid length. [ 90.751851][ T7061] IPVS: using max 45 ests per chain, 108000 per kthread [ 90.940501][ T7070] FAULT_INJECTION: forcing a failure. [ 90.940501][ T7070] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 90.944281][ T7070] CPU: 2 UID: 0 PID: 7070 Comm: syz.3.265 Not tainted 6.14.0-syzkaller-11270-g08733088b566 #0 PREEMPT(full) [ 90.944304][ T7070] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 90.944311][ T7070] Call Trace: [ 90.944315][ T7070] [ 90.944319][ T7070] dump_stack_lvl+0x16c/0x1f0 [ 90.944335][ T7070] should_fail_ex+0x512/0x640 [ 90.944352][ T7070] _copy_to_user+0x32/0xd0 [ 90.944371][ T7070] rng_dev_read+0x1ea/0x810 [ 90.944388][ T7070] ? __pfx_virtio_read+0x10/0x10 [ 90.944403][ T7070] ? __pfx_rng_dev_read+0x10/0x10 [ 90.944420][ T7070] ? bpf_lsm_file_permission+0x9/0x10 [ 90.944434][ T7070] ? security_file_permission+0x71/0x210 [ 90.944445][ T7070] ? rw_verify_area+0xcf/0x680 [ 90.944456][ T7070] ? __pfx_rng_dev_read+0x10/0x10 [ 90.944471][ T7070] vfs_readv+0x6bc/0x8a0 [ 90.944481][ T7070] ? get_pid_task+0x106/0x250 [ 90.944495][ T7070] ? __pfx_vfs_readv+0x10/0x10 [ 90.944506][ T7070] ? find_held_lock+0x2b/0x80 [ 90.944528][ T7070] ? __fget_files+0x20e/0x3c0 [ 90.944545][ T7070] ? do_preadv+0x1af/0x270 [ 90.944554][ T7070] do_preadv+0x1af/0x270 [ 90.944564][ T7070] ? __pfx_do_preadv+0x10/0x10 [ 90.944576][ T7070] ? rcu_is_watching+0x12/0xc0 [ 90.944591][ T7070] __do_fast_syscall_32+0x73/0x120 [ 90.944604][ T7070] do_fast_syscall_32+0x32/0x80 [ 90.944616][ T7070] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 90.944629][ T7070] RIP: 0023:0xf743e579 [ 90.944637][ T7070] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 90.944647][ T7070] RSP: 002b:00000000f504055c EFLAGS: 00000296 ORIG_RAX: 000000000000014d [ 90.944657][ T7070] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000080000580 [ 90.944663][ T7070] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000 [ 90.944669][ T7070] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 90.944675][ T7070] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 90.944680][ T7070] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 90.944693][ T7070] [ 91.008465][ C2] vkms_vblank_simulate: vblank timer overrun [ 91.010350][ C2] hpet: Lost 2 RTC interrupts [ 91.189420][ T7077] netlink: 24 bytes leftover after parsing attributes in process `syz.1.268'. [ 91.399600][ T40] audit: type=1326 audit(1743544337.176:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7089 comm="syz.1.273" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f95579 code=0x0 [ 91.401137][ T65] usb 7-1: new low-speed USB device number 2 using dummy_hcd [ 91.520979][ T1272] libceph: connect (1)[c::]:6789 error -101 [ 91.522726][ T1272] libceph: mon0 (1)[c::]:6789 connect error [ 91.562584][ T65] usb 7-1: Invalid ep0 maxpacket: 32 [ 91.604346][ T7096] ceph: No mds server is up or the cluster is laggy [ 91.690255][ T65] usb 7-1: new low-speed USB device number 3 using dummy_hcd [ 91.840346][ T65] usb 7-1: Invalid ep0 maxpacket: 32 [ 91.842020][ T65] usb usb7-port1: attempt power cycle [ 91.938147][ T7103] netlink: 'syz.0.275': attribute type 4 has an invalid length. [ 91.957269][ T7103] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 91.969838][ T7103] netlink: 'syz.0.275': attribute type 11 has an invalid length. [ 92.180406][ T65] usb 7-1: new low-speed USB device number 4 using dummy_hcd [ 92.200735][ T65] usb 7-1: Invalid ep0 maxpacket: 32 [ 92.330241][ T65] usb 7-1: new low-speed USB device number 5 using dummy_hcd [ 92.351665][ T65] usb 7-1: Invalid ep0 maxpacket: 32 [ 92.354181][ T65] usb usb7-port1: unable to enumerate USB device [ 92.603112][ T7119] sp0: Synchronizing with TNC [ 92.870253][ T6015] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 93.021040][ T6015] usb 5-1: too many configurations: 9, using maximum allowed: 8 [ 93.025131][ T6015] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 93.027844][ T6015] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 93.031816][ T6015] usb 5-1: config 0 interface 0 has no altsetting 0 [ 93.036054][ T6015] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 93.039333][ T6015] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 93.043494][ T6015] usb 5-1: config 0 interface 0 has no altsetting 0 [ 93.046739][ T6015] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 93.050129][ T6015] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 93.054474][ T6015] usb 5-1: config 0 interface 0 has no altsetting 0 [ 93.058110][ T6015] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 93.060925][ T6015] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 93.064046][ T6015] usb 5-1: config 0 interface 0 has no altsetting 0 [ 93.066904][ T6015] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 93.069982][ T6015] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 93.074003][ T6015] usb 5-1: config 0 interface 0 has no altsetting 0 [ 93.077533][ T6015] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 93.085851][ T6015] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 93.089960][ T6015] usb 5-1: config 0 interface 0 has no altsetting 0 [ 93.092759][ T6015] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 93.095740][ T6015] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 93.098704][ T6015] usb 5-1: config 0 interface 0 has no altsetting 0 [ 93.102729][ T6015] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 93.105659][ T6015] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 93.109599][ T6015] usb 5-1: config 0 interface 0 has no altsetting 0 [ 93.114714][ T6015] usb 5-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 93.117578][ T6015] usb 5-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 93.120141][ T6015] usb 5-1: Product: syz [ 93.121467][ T6015] usb 5-1: Manufacturer: syz [ 93.122949][ T6015] usb 5-1: SerialNumber: syz [ 93.126464][ T6015] usb 5-1: config 0 descriptor?? [ 93.131318][ T6015] yurex 5-1:0.0: USB YUREX device now attached to Yurex #0 [ 93.235673][ T7130] 9pnet_fd: Insufficient options for proto=fd [ 93.336275][ T65] usb 5-1: USB disconnect, device number 5 [ 93.339721][ T65] yurex 5-1:0.0: USB YUREX #0 now disconnected [ 93.451814][ T7118] [U] è [ 93.871493][ T7135] bridge0: port 3(syz_tun) entered blocking state [ 93.874610][ T7135] bridge0: port 3(syz_tun) entered disabled state [ 93.877392][ T7135] syz_tun: entered allmulticast mode [ 93.880682][ T7135] syz_tun: entered promiscuous mode [ 93.883423][ T7135] bridge0: port 3(syz_tun) entered blocking state [ 93.886715][ T7135] bridge0: port 3(syz_tun) entered forwarding state [ 94.055390][ T6015] libceph: connect (1)[c::]:6789 error -101 [ 94.057170][ T6015] libceph: mon0 (1)[c::]:6789 connect error [ 94.124367][ T7141] ceph: No mds server is up or the cluster is laggy [ 95.489717][ T7167] netlink: 'syz.2.293': attribute type 4 has an invalid length. [ 95.506279][ T7167] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 95.520393][ T6015] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 95.580805][ T7167] netlink: 'syz.2.293': attribute type 11 has an invalid length. [ 95.672975][ T6015] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 8 [ 95.676697][ T6015] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 64 [ 95.684334][ T6015] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 95.687858][ T6015] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 95.691182][ T6015] usb 5-1: Product: syz [ 95.692806][ T6015] usb 5-1: Manufacturer: à ‡ [ 95.694692][ T6015] usb 5-1: SerialNumber: syz [ 96.148573][ T7177] sp0: Synchronizing with TNC [ 96.969668][ T7192] overlayfs: missing 'lowerdir' [ 97.032730][ T7192] lo speed is unknown, defaulting to 1000 [ 97.035887][ T7192] lo speed is unknown, defaulting to 1000 [ 97.038128][ T7192] lo speed is unknown, defaulting to 1000 [ 97.094905][ T7192] infiniband sz1: set active [ 97.096371][ T7192] infiniband sz1: added lo [ 97.115407][ T7192] RDS/IB: sz1: added [ 97.116801][ T7192] smc: adding ib device sz1 with port count 1 [ 97.118578][ T7192] smc: ib device sz1 port 1 has pnetid [ 97.121589][ T7192] lo speed is unknown, defaulting to 1000 [ 97.141754][ T7176] [U] è [ 97.188040][ T7192] lo speed is unknown, defaulting to 1000 [ 97.247889][ T7192] lo speed is unknown, defaulting to 1000 [ 97.262359][ T6014] lo speed is unknown, defaulting to 1000 [ 97.265166][ T65] lo speed is unknown, defaulting to 1000 [ 97.350529][ T7192] lo speed is unknown, defaulting to 1000 [ 98.179503][ T6015] cdc_ncm 5-1:1.0: bind() failure [ 98.183348][ T6015] cdc_ncm 5-1:1.1: CDC Union missing and no IAD found [ 98.183801][ T4453] libceph: connect (1)[c::]:6789 error -101 [ 98.185204][ T6015] cdc_ncm 5-1:1.1: bind() failure [ 98.187114][ T6015] usb 5-1: USB disconnect, device number 6 [ 98.188350][ T4453] libceph: mon0 (1)[c::]:6789 connect error [ 98.346259][ T7212] ceph: No mds server is up or the cluster is laggy [ 98.624322][ T4453] libceph: connect (1)[c::]:6789 error -101 [ 98.626787][ T4453] libceph: mon0 (1)[c::]:6789 connect error [ 98.630475][ T4453] libceph: connect (1)[c::]:6789 error -101 [ 98.633230][ T4453] libceph: mon0 (1)[c::]:6789 connect error [ 98.684072][ T7224] ceph: No mds server is up or the cluster is laggy [ 99.759264][ T7249] netlink: 'syz.3.312': attribute type 4 has an invalid length. [ 99.774458][ T7249] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 99.929417][ T7244] netlink: 'syz.3.312': attribute type 11 has an invalid length. [ 99.951268][ T7258] netlink: 'syz.2.315': attribute type 1 has an invalid length. [ 99.953845][ T7258] netlink: 'syz.2.315': attribute type 2 has an invalid length. [ 100.629031][ T7273] mmap: syz.3.321 (7273) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 100.740605][ T7276] FAULT_INJECTION: forcing a failure. [ 100.740605][ T7276] name failslab, interval 1, probability 0, space 0, times 0 [ 100.745502][ T7276] CPU: 2 UID: 0 PID: 7276 Comm: syz.3.322 Not tainted 6.14.0-syzkaller-11270-g08733088b566 #0 PREEMPT(full) [ 100.745518][ T7276] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 100.745524][ T7276] Call Trace: [ 100.745528][ T7276] [ 100.745533][ T7276] dump_stack_lvl+0x16c/0x1f0 [ 100.745548][ T7276] should_fail_ex+0x512/0x640 [ 100.745565][ T7276] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 100.745582][ T7276] should_failslab+0xc2/0x120 [ 100.745599][ T7276] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 100.745625][ T7276] ? kasprintf+0xc7/0x100 [ 100.745639][ T7276] kvasprintf+0xbc/0x160 [ 100.745648][ T7276] ? __pfx_kvasprintf+0x10/0x10 [ 100.745664][ T7276] kasprintf+0xc7/0x100 [ 100.745673][ T7276] ? __pfx_kasprintf+0x10/0x10 [ 100.745682][ T7276] ? rcu_is_watching+0x12/0xc0 [ 100.745696][ T7276] ? __kmalloc_noprof+0x242/0x510 [ 100.745708][ T7276] ? trace_kmalloc+0x2b/0xd0 [ 100.745724][ T7276] ? __kvmalloc_node_noprof+0x296/0x600 [ 100.745738][ T7276] ? __asan_memcpy+0x3c/0x60 [ 100.745751][ T7276] nf_tables_newset+0x2b3b/0x4310 [ 100.745780][ T7276] ? __pfx_nf_tables_newset+0x10/0x10 [ 100.745809][ T7276] ? __nla_validate_parse+0x600/0x2880 [ 100.745833][ T7276] ? __nla_parse+0x40/0x60 [ 100.745846][ T7276] nfnetlink_rcv_batch+0x1908/0x2350 [ 100.745867][ T7276] ? __pfx_nfnetlink_rcv_batch+0x10/0x10 [ 100.745879][ T7276] ? consume_skb+0xcc/0x100 [ 100.745892][ T7276] ? find_held_lock+0x2b/0x80 [ 100.745906][ T7276] ? __local_bh_enable_ip+0xa4/0x120 [ 100.745921][ T7276] ? lockdep_hardirqs_on+0x7c/0x110 [ 100.745940][ T7276] ? __pfx___dev_queue_xmit+0x10/0x10 [ 100.745969][ T7276] ? __nla_parse+0x40/0x60 [ 100.745981][ T7276] nfnetlink_rcv+0x3c1/0x430 [ 100.745994][ T7276] ? __pfx_nfnetlink_rcv+0x10/0x10 [ 100.746011][ T7276] netlink_unicast+0x53a/0x7f0 [ 100.746024][ T7276] ? __pfx_netlink_unicast+0x10/0x10 [ 100.746040][ T7276] netlink_sendmsg+0x8d1/0xdd0 [ 100.746054][ T7276] ? __pfx_netlink_sendmsg+0x10/0x10 [ 100.746066][ T7276] ? __import_iovec+0x1c8/0x660 [ 100.746079][ T7276] ____sys_sendmsg+0xa95/0xc70 [ 100.746094][ T7276] ? __pfx_____sys_sendmsg+0x10/0x10 [ 100.746106][ T7276] ? get_compat_msghdr+0x11a/0x170 [ 100.746130][ T7276] ___sys_sendmsg+0x134/0x1d0 [ 100.746140][ T7276] ? __pfx____sys_sendmsg+0x10/0x10 [ 100.746168][ T7276] __sys_sendmsg+0x16d/0x220 [ 100.746178][ T7276] ? __pfx___sys_sendmsg+0x10/0x10 [ 100.746194][ T7276] ? rcu_is_watching+0x12/0xc0 [ 100.746209][ T7276] __do_fast_syscall_32+0x73/0x120 [ 100.746222][ T7276] do_fast_syscall_32+0x32/0x80 [ 100.746233][ T7276] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 100.746247][ T7276] RIP: 0023:0xf743e579 [ 100.746256][ T7276] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 100.746265][ T7276] RSP: 002b:00000000f50c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 100.746275][ T7276] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800000c0 [ 100.746282][ T7276] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 100.746287][ T7276] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 100.746293][ T7276] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 100.746299][ T7276] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 100.746312][ T7276] [ 100.863827][ C2] hpet: Lost 6 RTC interrupts [ 101.983841][ T1272] libceph: connect (1)[c::]:6789 error -101 [ 101.986968][ T1272] libceph: mon0 (1)[c::]:6789 connect error [ 101.990072][ T1272] libceph: connect (1)[c::]:6789 error -101 [ 101.992624][ T1272] libceph: mon0 (1)[c::]:6789 connect error [ 102.039257][ T7294] ceph: No mds server is up or the cluster is laggy [ 102.180330][ T7299] sp0: Synchronizing with TNC [ 102.180453][ T7282] netlink: 'syz.0.317': attribute type 4 has an invalid length. [ 102.197486][ T7282] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check. [ 102.218435][ T7282] netlink: 'syz.0.317': attribute type 11 has an invalid length. [ 102.359159][ T7310] FAULT_INJECTION: forcing a failure. [ 102.359159][ T7310] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 102.366419][ T7310] CPU: 2 UID: 0 PID: 7310 Comm: syz.1.330 Not tainted 6.14.0-syzkaller-11270-g08733088b566 #0 PREEMPT(full) [ 102.366444][ T7310] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 102.366466][ T7310] Call Trace: [ 102.366474][ T7310] [ 102.366481][ T7310] dump_stack_lvl+0x16c/0x1f0 [ 102.366504][ T7310] should_fail_ex+0x512/0x640 [ 102.366532][ T7310] _copy_to_user+0x32/0xd0 [ 102.366560][ T7310] put_user_ifreq+0xeb/0x150 [ 102.366581][ T7310] inet_ioctl+0x2d4/0x3f0 [ 102.366602][ T7310] ? __pfx_inet_ioctl+0x10/0x10 [ 102.366625][ T7310] ? kasan_quarantine_put+0x10a/0x240 [ 102.366665][ T7310] packet_ioctl+0xb3/0x280 [ 102.366685][ T7310] sock_do_ioctl+0x115/0x280 [ 102.366703][ T7310] ? do_vfs_ioctl+0x512/0x1990 [ 102.366719][ T7310] ? __pfx_sock_do_ioctl+0x10/0x10 [ 102.366737][ T7310] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 102.366767][ T7310] compat_sock_ioctl+0x301/0x7c0 [ 102.366796][ T7310] ? __pfx_compat_sock_ioctl+0x10/0x10 [ 102.366816][ T7310] ? hook_file_ioctl_common+0x145/0x410 [ 102.366845][ T7310] ? __fget_files+0x20e/0x3c0 [ 102.366869][ T7310] ? __pfx_compat_sock_ioctl+0x10/0x10 [ 102.366891][ T7310] __do_compat_sys_ioctl+0x1cb/0x2c0 [ 102.366910][ T7310] __do_fast_syscall_32+0x73/0x120 [ 102.366929][ T7310] do_fast_syscall_32+0x32/0x80 [ 102.366966][ T7310] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 102.366988][ T7310] RIP: 0023:0xf7f95579 [ 102.367001][ T7310] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 102.367015][ T7310] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 102.367031][ T7310] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000008919 [ 102.367041][ T7310] RDX: 0000000080000040 RSI: 0000000000000000 RDI: 0000000000000000 [ 102.367051][ T7310] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 102.367060][ T7310] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 102.367070][ T7310] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 102.367093][ T7310] [ 102.440436][ C2] hpet: Lost 4 RTC interrupts [ 103.013300][ T7298] [U] è [ 103.555200][ T7342] program syz.1.340 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 103.557941][ T7344] FAULT_INJECTION: forcing a failure. [ 103.557941][ T7344] name failslab, interval 1, probability 0, space 0, times 0 [ 103.561808][ T7345] program syz.1.340 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 103.564151][ T7344] CPU: 3 UID: 0 PID: 7344 Comm: syz.2.341 Not tainted 6.14.0-syzkaller-11270-g08733088b566 #0 PREEMPT(full) [ 103.564173][ T7344] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 103.564182][ T7344] Call Trace: [ 103.564188][ T7344] [ 103.564194][ T7344] dump_stack_lvl+0x16c/0x1f0 [ 103.564214][ T7344] should_fail_ex+0x512/0x640 [ 103.564236][ T7344] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 103.564260][ T7344] should_failslab+0xc2/0x120 [ 103.564282][ T7344] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 103.564304][ T7344] ? kasprintf+0xc7/0x100 [ 103.564321][ T7344] kvasprintf+0xbc/0x160 [ 103.564335][ T7344] ? __pfx_kvasprintf+0x10/0x10 [ 103.564358][ T7344] kasprintf+0xc7/0x100 [ 103.564371][ T7344] ? __pfx_kasprintf+0x10/0x10 [ 103.564384][ T7344] ? rcu_is_watching+0x12/0xc0 [ 103.564404][ T7344] ? __kmalloc_noprof+0x242/0x510 [ 103.564420][ T7344] ? trace_kmalloc+0x2b/0xd0 [ 103.564440][ T7344] ? __kvmalloc_node_noprof+0x296/0x600 [ 103.564461][ T7344] ? __asan_memcpy+0x3c/0x60 [ 103.564482][ T7344] nf_tables_newset+0x2b3b/0x4310 [ 103.564514][ T7344] ? __pfx_nf_tables_newset+0x10/0x10 [ 103.564544][ T7344] ? __nla_validate_parse+0x600/0x2880 [ 103.564577][ T7344] ? __nla_parse+0x40/0x60 [ 103.564595][ T7344] nfnetlink_rcv_batch+0x1908/0x2350 [ 103.564628][ T7344] ? __pfx_nfnetlink_rcv_batch+0x10/0x10 [ 103.564645][ T7344] ? consume_skb+0xcc/0x100 [ 103.564665][ T7344] ? find_held_lock+0x2b/0x80 [ 103.564685][ T7344] ? __local_bh_enable_ip+0xa4/0x120 [ 103.564705][ T7344] ? lockdep_hardirqs_on+0x7c/0x110 [ 103.564733][ T7344] ? __pfx___dev_queue_xmit+0x10/0x10 [ 103.564778][ T7344] ? __nla_parse+0x40/0x60 [ 103.564799][ T7344] nfnetlink_rcv+0x3c1/0x430 [ 103.564817][ T7344] ? __pfx_nfnetlink_rcv+0x10/0x10 [ 103.564844][ T7344] netlink_unicast+0x53a/0x7f0 [ 103.564864][ T7344] ? __pfx_netlink_unicast+0x10/0x10 [ 103.564889][ T7344] netlink_sendmsg+0x8d1/0xdd0 [ 103.564910][ T7344] ? __pfx_netlink_sendmsg+0x10/0x10 [ 103.564934][ T7344] ? __import_iovec+0x1c8/0x660 [ 103.564954][ T7344] ____sys_sendmsg+0xa95/0xc70 [ 103.564978][ T7344] ? __pfx_____sys_sendmsg+0x10/0x10 [ 103.564995][ T7344] ? get_compat_msghdr+0x11a/0x170 [ 103.565029][ T7344] ___sys_sendmsg+0x134/0x1d0 [ 103.565045][ T7344] ? __pfx____sys_sendmsg+0x10/0x10 [ 103.565093][ T7344] __sys_sendmsg+0x16d/0x220 [ 103.565109][ T7344] ? __pfx___sys_sendmsg+0x10/0x10 [ 103.565136][ T7344] ? rcu_is_watching+0x12/0xc0 [ 103.565159][ T7344] __do_fast_syscall_32+0x73/0x120 [ 103.565178][ T7344] do_fast_syscall_32+0x32/0x80 [ 103.565194][ T7344] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 103.565215][ T7344] RIP: 0023:0xf744e579 [ 103.565228][ T7344] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 103.565243][ T7344] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 103.565259][ T7344] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800000c0 [ 103.565268][ T7344] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 103.565276][ T7344] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 103.565284][ T7344] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 103.565293][ T7344] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 103.565314][ T7344] [ 103.732120][ T7348] netlink: 68 bytes leftover after parsing attributes in process `syz.2.342'. [ 103.757140][ T7350] sp0: Synchronizing with TNC [ 103.793325][ T7352] (unnamed net_device) (uninitialized): option active_slave: mode dependency failed, not supported in mode balance-rr(0) [ 103.802263][ T7352] (unnamed net_device) (uninitialized): option active_slave: mode dependency failed, not supported in mode balance-rr(0) [ 104.314349][ T6014] libceph: connect (1)[c::]:6789 error -101 [ 104.318854][ T6014] libceph: mon0 (1)[c::]:6789 connect error [ 104.362580][ T7364] ceph: No mds server is up or the cluster is laggy [ 104.609515][ T7349] [U] è [ 105.069485][ T1272] libceph: connect (1)[c::]:6789 error -101 [ 105.071478][ T1272] libceph: mon0 (1)[c::]:6789 connect error [ 105.073576][ T1272] libceph: connect (1)[c::]:6789 error -101 [ 105.075434][ T1272] libceph: mon0 (1)[c::]:6789 connect error [ 105.117268][ T7391] ceph: No mds server is up or the cluster is laggy [ 105.407609][ T7403] netlink: 4 bytes leftover after parsing attributes in process `syz.0.356'. [ 105.963550][ T7425] sp0: Synchronizing with TNC [ 106.331268][ T7432] do_dccp_setsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app [ 106.335582][ T7432] netlink: 9 bytes leftover after parsing attributes in process `syz.1.365'. [ 106.339828][ T7432] gretap0: entered promiscuous mode [ 106.350872][ T7432] netlink: 5 bytes leftover after parsing attributes in process `syz.1.365'. [ 106.353333][ T7432] 0ªX¹¦D: renamed from gretap0 [ 106.356359][ T7432] 0ªX¹¦D: left promiscuous mode [ 106.357691][ T7432] 0ªX¹¦D: entered allmulticast mode [ 106.360248][ T7432] A link change request failed with some changes committed already. Interface 30ªX¹¦D may have been left with an inconsistent configuration, please check. [ 106.406634][ T7434] Illegal XDP return value 4294967274 on prog (id 103) dev N/A, expect packet loss! [ 106.457767][ T7436] netlink: 4 bytes leftover after parsing attributes in process `syz.1.367'. [ 107.213387][ T7424] [U] è [ 107.644617][ T4453] libceph: connect (1)[c::]:6789 error -101 [ 107.646659][ T4453] libceph: mon0 (1)[c::]:6789 connect error [ 107.900440][ T4453] libceph: connect (1)[c::]:6789 error -101 [ 107.903152][ T4453] libceph: mon0 (1)[c::]:6789 connect error [ 108.334138][ T7465] ceph: No mds server is up or the cluster is laggy [ 108.493188][ T7476] netlink: 'syz.2.376': attribute type 4 has an invalid length. [ 108.505820][ T7476] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 108.515306][ T7476] netlink: 'syz.2.376': attribute type 11 has an invalid length. [ 108.788610][ T7492] netlink: 'syz.0.379': attribute type 4 has an invalid length. [ 108.796327][ T7492] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check. [ 108.823983][ T7492] netlink: 'syz.0.379': attribute type 11 has an invalid length. [ 109.274212][ T7498] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0) [ 110.475189][ T4453] libceph: connect (1)[c::]:6789 error -101 [ 110.476912][ T4453] libceph: mon0 (1)[c::]:6789 connect error [ 110.494229][ T7519] netlink: 'syz.0.384': attribute type 4 has an invalid length. [ 110.500836][ T7519] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check. [ 110.507450][ T7519] netlink: 'syz.0.384': attribute type 11 has an invalid length. [ 110.732261][ T4453] libceph: connect (1)[c::]:6789 error -101 [ 110.734598][ T4453] libceph: mon0 (1)[c::]:6789 connect error [ 110.772162][ T7533] netlink: 'syz.3.389': attribute type 4 has an invalid length. [ 110.784209][ T7533] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 110.793402][ T7533] netlink: 'syz.3.389': attribute type 11 has an invalid length. [ 111.027660][ T7537] netlink: 'syz.0.391': attribute type 4 has an invalid length. [ 111.036118][ T7537] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check. [ 111.057085][ T7537] netlink: 'syz.0.391': attribute type 11 has an invalid length. [ 111.127518][ T7513] ceph: No mds server is up or the cluster is laggy [ 111.552238][ T7547] netlink: 40 bytes leftover after parsing attributes in process `syz.1.395'. [ 112.198689][ T1272] libceph: connect (1)[c::]:6789 error -101 [ 112.200541][ T1272] libceph: mon0 (1)[c::]:6789 connect error [ 112.406290][ T7571] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check. [ 112.461124][ T1272] libceph: connect (1)[c::]:6789 error -101 [ 112.463562][ T1272] libceph: mon0 (1)[c::]:6789 connect error [ 112.719322][ T7582] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 112.952217][ T7564] ceph: No mds server is up or the cluster is laggy [ 112.999614][ T7585] netlink: 4 bytes leftover after parsing attributes in process `syz.0.405'. [ 113.764264][ T7607] lo speed is unknown, defaulting to 1000 [ 113.765931][ T7607] lo speed is unknown, defaulting to 1000 [ 113.768021][ T7607] lo speed is unknown, defaulting to 1000 [ 113.771250][ T7607] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 113.777200][ T7607] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98 [ 113.780229][ T4453] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 113.791384][ T7607] lo speed is unknown, defaulting to 1000 [ 113.793839][ T7607] lo speed is unknown, defaulting to 1000 [ 113.796557][ T7607] lo speed is unknown, defaulting to 1000 [ 113.798689][ T7607] lo speed is unknown, defaulting to 1000 [ 113.831773][ T6014] libceph: connect (1)[c::]:6789 error -101 [ 113.834113][ T6014] libceph: mon0 (1)[c::]:6789 connect error [ 113.837562][ T6014] libceph: connect (1)[c::]:6789 error -101 [ 113.839743][ T6014] libceph: mon0 (1)[c::]:6789 connect error [ 113.898927][ T7617] ceph: No mds server is up or the cluster is laggy [ 113.932348][ T4453] usb 6-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 113.936760][ T4453] usb 6-1: config 0 interface 0 has no altsetting 0 [ 113.943146][ T4453] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 113.948063][ T4453] usb 6-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 113.952548][ T4453] usb 6-1: Product: syz [ 113.954751][ T4453] usb 6-1: Manufacturer: syz [ 113.956709][ T4453] usb 6-1: SerialNumber: syz [ 113.980908][ T4453] usb 6-1: config 0 descriptor?? [ 113.982393][ T7622] netlink: 4 bytes leftover after parsing attributes in process `syz.3.417'. [ 113.991167][ T4453] usb 6-1: selecting invalid altsetting 0 [ 114.188115][ T4453] usb 6-1: USB disconnect, device number 3 [ 114.386959][ T7640] validate_nla: 4 callbacks suppressed [ 114.387038][ T7640] netlink: 'syz.2.420': attribute type 4 has an invalid length. [ 114.439104][ T7640] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 114.537121][ T7640] netlink: 'syz.2.420': attribute type 11 has an invalid length. [ 115.205385][ T1272] libceph: connect (1)[c::]:6789 error -101 [ 115.207172][ T1272] libceph: mon0 (1)[c::]:6789 connect error [ 115.209086][ T1272] libceph: connect (1)[c::]:6789 error -101 [ 115.210865][ T1272] libceph: mon0 (1)[c::]:6789 connect error [ 115.468134][ T65] libceph: connect (1)[c::]:6789 error -101 [ 115.473880][ T65] libceph: mon0 (1)[c::]:6789 connect error [ 115.480502][ T1272] libceph: connect (1)[c::]:6789 error -101 [ 115.482263][ T1272] libceph: mon0 (1)[c::]:6789 connect error [ 115.562402][ T7652] ceph: No mds server is up or the cluster is laggy [ 115.822444][ T6014] libceph: connect (1)[c::]:6789 error -101 [ 115.824384][ T6014] libceph: mon0 (1)[c::]:6789 connect error [ 115.827526][ T7667] ceph: No mds server is up or the cluster is laggy [ 116.245913][ T4453] libceph: connect (1)[c::]:6789 error -101 [ 116.248149][ T4453] libceph: mon0 (1)[c::]:6789 connect error [ 116.312582][ T7688] ceph: No mds server is up or the cluster is laggy [ 116.551549][ T7698] netlink: 'syz.1.432': attribute type 4 has an invalid length. [ 116.582847][ T7698] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 116.597752][ T1272] lo speed is unknown, defaulting to 1000 [ 116.618613][ T7698] netlink: 'syz.1.432': attribute type 11 has an invalid length. [ 117.109621][ T7707] netlink: 4 bytes leftover after parsing attributes in process `syz.1.439'. [ 117.287471][ T7715] FAULT_INJECTION: forcing a failure. [ 117.287471][ T7715] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 117.298297][ T7715] CPU: 0 UID: 0 PID: 7715 Comm: syz.0.438 Not tainted 6.14.0-syzkaller-11270-g08733088b566 #0 PREEMPT(full) [ 117.298313][ T7715] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 117.298319][ T7715] Call Trace: [ 117.298323][ T7715] [ 117.298328][ T7715] dump_stack_lvl+0x16c/0x1f0 [ 117.298343][ T7715] should_fail_ex+0x512/0x640 [ 117.298361][ T7715] _copy_from_user+0x2e/0xd0 [ 117.298379][ T7715] get_compat_msghdr+0xa7/0x170 [ 117.298396][ T7715] ? __pfx_get_compat_msghdr+0x10/0x10 [ 117.298414][ T7715] ? __lock_acquire+0x5ca/0x1ba0 [ 117.298426][ T7715] ___sys_recvmsg+0x191/0x1a0 [ 117.298437][ T7715] ? __pfx____sys_recvmsg+0x10/0x10 [ 117.298454][ T7715] ? get_pid_task+0x40/0x250 [ 117.298465][ T7715] ? __pfx___might_resched+0x10/0x10 [ 117.298483][ T7715] do_recvmmsg+0x568/0x740 [ 117.298495][ T7715] ? __pfx_do_recvmmsg+0x10/0x10 [ 117.298514][ T7715] ? __fget_files+0x20e/0x3c0 [ 117.298529][ T7715] __sys_recvmmsg+0x21c/0x280 [ 117.298539][ T7715] ? __pfx___sys_recvmmsg+0x10/0x10 [ 117.298550][ T7715] ? __pfx_ksys_write+0x10/0x10 [ 117.298565][ T7715] __ia32_compat_sys_recvmmsg_time32+0xc4/0x160 [ 117.298576][ T7715] ? lockdep_hardirqs_on+0x7c/0x110 [ 117.298585][ T7715] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 117.298607][ T7715] __do_fast_syscall_32+0x73/0x120 [ 117.298620][ T7715] do_fast_syscall_32+0x32/0x80 [ 117.298631][ T7715] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 117.298645][ T7715] RIP: 0023:0xf7f58579 [ 117.298653][ T7715] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 117.298662][ T7715] RSP: 002b:00000000f503455c EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 117.298673][ T7715] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000800066c0 [ 117.298679][ T7715] RDX: 0000000000000a0d RSI: 0000000000000000 RDI: 0000000000000000 [ 117.298685][ T7715] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 117.298690][ T7715] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 117.298696][ T7715] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 117.298709][ T7715] [ 117.959195][ T7726] netlink: 4 bytes leftover after parsing attributes in process `syz.2.443'. [ 118.236419][ T7735] hub 6-0:1.0: USB hub found [ 118.504379][ T7735] hub 6-0:1.0: 1 port detected [ 119.604859][ T7755] netlink: 'syz.2.444': attribute type 4 has an invalid length. [ 119.662187][ T7756] netlink: 'syz.2.444': attribute type 11 has an invalid length. [ 119.710724][ T7755] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 119.720712][ T7754] netlink: 'syz.0.448': attribute type 4 has an invalid length. [ 119.765088][ T7754] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check. [ 119.810352][ T7754] netlink: 'syz.0.448': attribute type 11 has an invalid length. [ 119.972806][ T7763] netlink: 4 bytes leftover after parsing attributes in process `syz.2.452'. [ 119.987241][ T7765] netlink: 'syz.1.451': attribute type 4 has an invalid length. [ 120.083942][ T7770] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 120.176297][ T7765] netlink: 'syz.1.451': attribute type 11 has an invalid length. [ 120.192141][ T1018] libceph: connect (1)[c::]:6789 error -101 [ 120.194570][ T1018] libceph: mon0 (1)[c::]:6789 connect error [ 120.258579][ T7773] ceph: No mds server is up or the cluster is laggy [ 120.894723][ T1018] usb 8-1: new high-speed USB device number 2 using dummy_hcd [ 120.956178][ T7785] netlink: 'syz.1.457': attribute type 5 has an invalid length. [ 121.132008][ T1018] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 121.135546][ T1018] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 121.139215][ T1018] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 121.142673][ T1018] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 121.149465][ T7782] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 121.155672][ T1018] usb 8-1: Quirk or no altset; falling back to MIDI 1.0 [ 121.158412][ T7796] FAULT_INJECTION: forcing a failure. [ 121.158412][ T7796] name failslab, interval 1, probability 0, space 0, times 0 [ 121.163074][ T7796] CPU: 2 UID: 0 PID: 7796 Comm: syz.0.461 Not tainted 6.14.0-syzkaller-11270-g08733088b566 #0 PREEMPT(full) [ 121.163096][ T7796] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 121.163106][ T7796] Call Trace: [ 121.163111][ T7796] [ 121.163117][ T7796] dump_stack_lvl+0x16c/0x1f0 [ 121.163140][ T7796] should_fail_ex+0x512/0x640 [ 121.163161][ T7796] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 121.163183][ T7796] should_failslab+0xc2/0x120 [ 121.163204][ T7796] __kmalloc_cache_noprof+0x6a/0x3e0 [ 121.163221][ T7796] ? get_mm_exe_file+0x8a/0x1a0 [ 121.163243][ T7796] ? landlock_init_hierarchy_log+0xa7/0x870 [ 121.163272][ T7796] landlock_init_hierarchy_log+0xa7/0x870 [ 121.163300][ T7796] landlock_merge_ruleset+0x6e1/0x870 [ 121.163321][ T7796] ? prepare_creds+0x554/0x750 [ 121.163341][ T7796] __do_sys_landlock_restrict_self+0x2a2/0x910 [ 121.163364][ T7796] __do_fast_syscall_32+0x73/0x120 [ 121.163382][ T7796] do_fast_syscall_32+0x32/0x80 [ 121.163400][ T7796] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 121.163418][ T7796] RIP: 0023:0xf7f58579 [ 121.163430][ T7796] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 121.163445][ T7796] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 00000000000001be [ 121.163460][ T7796] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000007 [ 121.163469][ T7796] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 121.163478][ T7796] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 121.163486][ T7796] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 121.163495][ T7796] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 121.163516][ T7796] [ 121.163841][ T7796] ------------[ cut here ]------------ [ 121.233637][ T7796] WARNING: CPU: 2 PID: 7796 at security/landlock/domain.h:133 free_ruleset+0x226/0x270 [ 121.237022][ T7796] Modules linked in: [ 121.239395][ T7796] CPU: 2 UID: 0 PID: 7796 Comm: syz.0.461 Not tainted 6.14.0-syzkaller-11270-g08733088b566 #0 PREEMPT(full) [ 121.245141][ T7796] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 121.249432][ T7796] RIP: 0010:free_ruleset+0x226/0x270 [ 121.251556][ T7796] Code: 84 61 ff ff ff 48 89 eb e9 12 ff ff ff e8 c2 d6 2e fd be 03 00 00 00 4c 89 f7 e8 05 e5 3e 00 e9 42 ff ff ff e8 ab d6 2e fd 90 <0f> 0b 90 eb af e8 b0 6e 92 fd e9 4a fe ff ff 48 89 df e8 a3 6e 92 [ 121.258421][ T7796] RSP: 0018:ffffc9000c8dfe28 EFLAGS: 00010293 [ 121.260701][ T7796] RAX: 0000000000000000 RBX: ffff888052164700 RCX: ffffffff848d52ef [ 121.264067][ T7796] RDX: ffff888022408000 RSI: ffffffff848c5bd5 RDI: 0000000000000005 [ 121.266865][ T7796] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 121.269694][ T7796] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88806a773b00 [ 121.272649][ T7796] R13: dffffc0000000000 R14: ffff888052164720 R15: fffffffffffffff4 [ 121.275466][ T7796] FS: 0000000000000000(0000) GS:ffff8880979d5000(0063) knlGS:00000000f5076b40 [ 121.279180][ T7796] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 121.281568][ T7796] CR2: 00000000f7175cb0 CR3: 000000006de04000 CR4: 0000000000352ef0 [ 121.284438][ T7796] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 121.287279][ T7796] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 121.290246][ T7796] Call Trace: [ 121.291479][ T7796] [ 121.293028][ T7796] landlock_put_ruleset+0xa5/0xb0 [ 121.294736][ T7796] landlock_merge_ruleset+0x218/0x870 [ 121.296705][ T7796] ? prepare_creds+0x554/0x750 [ 121.298459][ T7796] __do_sys_landlock_restrict_self+0x2a2/0x910 [ 121.300785][ T7796] __do_fast_syscall_32+0x73/0x120 [ 121.302658][ T7796] do_fast_syscall_32+0x32/0x80 [ 121.304463][ T7796] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 121.306751][ T7796] RIP: 0023:0xf7f58579 [ 121.308708][ T7796] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 121.316416][ T7796] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 00000000000001be [ 121.319449][ T7796] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000007 [ 121.322925][ T7796] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 121.326230][ T7796] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 121.329135][ T7796] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 121.332074][ T7796] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 121.334938][ T7796] [ 121.336036][ T7796] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 121.338608][ T7796] CPU: 2 UID: 0 PID: 7796 Comm: syz.0.461 Not tainted 6.14.0-syzkaller-11270-g08733088b566 #0 PREEMPT(full) [ 121.342804][ T7796] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 121.346667][ T7796] Call Trace: [ 121.347912][ T7796] [ 121.349017][ T7796] dump_stack_lvl+0x3d/0x1f0 [ 121.350700][ T7796] panic+0x71c/0x800 [ 121.352134][ T7796] ? __pfx_panic+0x10/0x10 [ 121.353769][ T7796] ? show_trace_log_lvl+0x29b/0x3e0 [ 121.355665][ T7796] ? check_panic_on_warn+0x1f/0xb0 [ 121.357521][ T7796] ? free_ruleset+0x226/0x270 [ 121.359248][ T7796] check_panic_on_warn+0xab/0xb0 [ 121.361053][ T7796] __warn+0xf6/0x3c0 [ 121.362495][ T7796] ? free_ruleset+0x226/0x270 [ 121.364257][ T7796] report_bug+0x3c3/0x580 [ 121.365866][ T7796] ? free_ruleset+0x226/0x270 [ 121.367620][ T7796] handle_bug+0x184/0x210 [ 121.369213][ T7796] exc_invalid_op+0x17/0x50 [ 121.370884][ T7796] asm_exc_invalid_op+0x1a/0x20 [ 121.372665][ T7796] RIP: 0010:free_ruleset+0x226/0x270 [ 121.374576][ T7796] Code: 84 61 ff ff ff 48 89 eb e9 12 ff ff ff e8 c2 d6 2e fd be 03 00 00 00 4c 89 f7 e8 05 e5 3e 00 e9 42 ff ff ff e8 ab d6 2e fd 90 <0f> 0b 90 eb af e8 b0 6e 92 fd e9 4a fe ff ff 48 89 df e8 a3 6e 92 [ 121.381384][ T7796] RSP: 0018:ffffc9000c8dfe28 EFLAGS: 00010293 [ 121.383574][ T7796] RAX: 0000000000000000 RBX: ffff888052164700 RCX: ffffffff848d52ef [ 121.386451][ T7796] RDX: ffff888022408000 RSI: ffffffff848c5bd5 RDI: 0000000000000005 [ 121.389279][ T7796] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 121.392090][ T7796] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88806a773b00 [ 121.394919][ T7796] R13: dffffc0000000000 R14: ffff888052164720 R15: fffffffffffffff4 [ 121.397737][ T7796] ? landlock_log_drop_domain+0x5f/0x1e0 [ 121.399783][ T7796] ? free_ruleset+0x225/0x270 [ 121.401487][ T7796] ? free_ruleset+0x225/0x270 [ 121.403225][ T7796] landlock_put_ruleset+0xa5/0xb0 [ 121.405146][ T7796] landlock_merge_ruleset+0x218/0x870 [ 121.407151][ T7796] ? prepare_creds+0x554/0x750 [ 121.408930][ T7796] __do_sys_landlock_restrict_self+0x2a2/0x910 [ 121.411173][ T7796] __do_fast_syscall_32+0x73/0x120 [ 121.413024][ T7796] do_fast_syscall_32+0x32/0x80 [ 121.414804][ T7796] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 121.417040][ T7796] RIP: 0023:0xf7f58579 [ 121.418518][ T7796] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 121.425376][ T7796] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 00000000000001be [ 121.428379][ T7796] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000007 [ 121.431228][ T7796] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 121.434097][ T7796] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 121.436985][ T7796] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 121.439854][ T7796] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 121.442678][ T7796] [ 121.444328][ T7796] Kernel Offset: disabled [ 121.445904][ T7796] Rebooting in 86400 seconds.. VM DIAGNOSIS: 21:52:47 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000000 RBX=ffffc9000370ff58 RCX=0000000000000814 RDX=0000000000000000 RSI=ffffffff8bf42360 RDI=0000000000000014 RBP=ffffc9000370ff48 RSP=ffffc9000370ff18 R8 =0000000000000000 R9 =fffffbfff210bdc2 R10=ffffffff9085ee17 R11=0000000000000000 R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff81687ec8 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 ffffffff 00c00000 DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff8880977d5000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000ffdafa00 CR3=000000006de04000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff00000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000001 RBX=0000000000000001 RCX=ffffffff82044fce RDX=0000000000000001 RSI=0000000000000001 RDI=0000000000000000 RBP=ffff88804d424600 RSP=ffffc9000369f6a0 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000 R12=0000000000000003 R13=ffffc9000369f9d8 R14=ffffc9000369f9d8 R15=dffffc0000000000 RIP=ffffffff81bb2d5c RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff8880978d5000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00000000f71e37f0 CR3=0000000052156000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00001bf000000000 0000000e00000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000000000044 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8549bbe5 RDI=ffffffff9adf5a00 RBP=ffffffff9adf59c0 RSP=ffffc9000c8df790 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000 R12=0000000000000000 R13=0000000000000044 R14=ffffffff9adf59c0 R15=ffffffff8549bb80 RIP=ffffffff8549bc0f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff8880979d5000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00000000f7175cb0 CR3=000000006de04000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=dffffc0000000000 RBX=ffffc900037bfda8 RCX=1ffff920006f7fb6 RDX=0000000000000010 RSI=0000000000000003 RDI=ffff88804c274880 RBP=ffffc900037bfdc0 RSP=ffffc9000236f8b0 R8 =ffff88802330b4d0 R9 =fffff5200046df15 R10=ffffffff824767d0 R11=0000000000000000 R12=0000000000000010 R13=0000000000000000 R14=ffffc900037bfdc8 R15=ffff88802330b4d0 RIP=ffffffff818b1490 RFL=00000082 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007f2a9c8ba280 ffffffff 00c00000 GS =0000 ffff888097ad5000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000564a2dbd50e0 CR3=0000000064ab6000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000fec0c1e0 Opmask01=0000000000004211 Opmask02=000000007ffeffff Opmask03=0000000000000000 Opmask04=00000000ffffffdf Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffceb0d1950 0000003000000010 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6464646464646464 6464646464646464 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ffffffff ffffff00ffffff00 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffff00 ffffffffffffff00 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0d4db997f40abbfb 6464322b2d7e6c55 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 64646464646464f5 6464646464646454 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 726f662027732527 20656c6966207325 2064657461657263 000a73253a47000a ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 574a430502560002 0540494c43055600 0541405144405746 000a56001f47000a ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 323a312d382f312d 382f386273752f33 2e6463685f796d6d 75642f6d726f6674 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000151 0000000000000000 0033647261632f64 6e756f732f302e37 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000564a2db82b40 0000564a2db98240 0000564a2dba49d0 0000564a2db94090 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000564a2dba1550 0000564a2dba14d0 0000564a2db9fd00 0000564a2db8b920 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 382433273f397b27 697a787c69303b7e 69305f474f5b647c 6930382433273f39 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000030 0000000000000030 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000030 0000000000000030 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000