last executing test programs: 2.309201708s ago: executing program 2 (id=366): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x44, 0x30, 0x1, 0x0, 0x25dfdbfe, {}, [{0x30, 0x1, [@m_ife={0x2c, 0x1, 0x0, 0x0, {{0x8}, {0x4}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x14, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000131000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a310000000054000000030a01020000000000000000010000000900030073797a320000000028000480080002400000000008000140000000051400030076657468315f6d6163767461700000000900010073797a31000000004c000000050a01020000000000000000010020000c00024000000000000000010900010073797a3100000000"], 0xe8}, 0x1, 0x0, 0x0, 0x40040000}, 0x0) 2.198823341s ago: executing program 3 (id=367): setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0) read$FUSE(0xffffffffffffffff, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0x2000000000000038, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1a00000007"], 0x50) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) syz_io_uring_setup(0x3b, 0x0, &(0x7f0000000180), &(0x7f00000001c0)) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r0}, 0x10) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) ioctl$UI_DEV_SETUP(0xffffffffffffffff, 0x405c5503, &(0x7f0000000280)={{0x5}, 'syz1\x00', 0x10}) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x16, 0xe, &(0x7f0000000c00)=ANY=[@ANYBLOB="b702000000000080bfa30000000000000703000000feffff7a0af0fff8ffff1971a4f0ff00000000b7060000080000001e6400000000000045040400010000001704000001000a00b7040000000100006a0af2fe00000000850000001a000000b70000000000000095000000000000008e17f199a68b061b93d83298a8cdda1ce784909b849d5550ad855dab54d8877a6db61d69f2ffcaa10350e11cb97ce8df1bc9a0c4eeceb9971e43405d621ffbc9b0d8ca56b50f0c010d631f6dbc8486bc5d5bf2ca8285056892db03cf1c62d57c08a90b189d190c341035de53a9a53608c10556e5734eb84049761451ce540c772e069f80cb201b2de17dfdb4b60939d5d6aed4062049b87e03e2cd18a77dda613e0c64497fcc059c062234d5595f6fbaa187b81d1106000000000f0000fd9ac3d09e29a9d542ca9d85a5c9c88474895d679838def0a83a733dc6a39b63a5ed69d32394c53361d7480884bd8000000000000000b91c61bd99dc89f12907af7dccd106cb937b450f859ce8292a79c3e40000b59b0fc46d6cec3c080a882add4e1179bd4a44f231a2d73148be4248cdc138408ba953df4aece69311687f4122073a236c3a32efa04137d46f0247d2638da3261c8162bb7c7824be6195a66d2e17e122040e11001131ce319045e5b3334e68475ac3f46aa2837f9004600daded9b19b35eebe52613c346e255421b23a278fd00004270b1cd5fc9aa2286ccca37db965d9dd366598f5ec993cb0cf127e2a46cfbdf63eea190d86a4d1b75ae98480100bd5828954a7d093a54f7e75b3753508ca3c41685d1e407315e59d626c23b3f89a926e9382966853774e7dd1f1a2177cdf2802237c177d543e8da47a01f05e113e53518270239b69c117e2637c31085f4d8a596b6edab26afaf6605b231199f38a6fc7eb83714387450ea18eafbace8eec18a4b2c442e7b88a7611c1283bec84e1715fb9f4fcaf52c08058fc4f21c0ad71adabdd850aed3eeec6eaab347bdf474e17b9aa345d1e6e3bb83f90230bdf53e7d0e5c3f914d905422b83f30936674ba8f0bffaf2305c0972df71fe5f4e01506471e897bced7798509e64df360d95f9a4099f86438ac2bbcbdbd1d9db21a1d5c065567fd70aae68096827fa5c2d9bd20292344c7dcf6241447cfbb05b5d0fdb4e08afbac5397b64aa369922ed7ed8918f97294b6854210d2b93aaf92159dbaa2f186d4a420c68d6baf1c31de4f0bf478bfd51bb1e96ea849a80ae5a89be7e38474c7aade344d68324f9e12a6b9770e6bd12ae69efffaee58040753701af84c2924c1b5aea1650f42c9ae9820a33095f062fb88313d035ea405515a61a4be64f9fa0985c5be592090cc48291004609fdac2ab6100000000000000a84570c7c00d647daf8af334050b61e9b2d3f0adad1d1ff47be19b8da2799e9ecef8efabe73f92dbd0760f8bbd9c590bd1371e2b5d9a2ea2190f5e4f5cd641cdfe5d89f84a368ef7e6ff1eacdc0ec9e97b8f9c9e314661ea0aa8a104008d188b66b3a4aedeed9df4238a08fc2fb1007233cc2c87fcaa0cccd8ec03444471c1dd660c87acc17bff740d199a7c0c52c63c0408b5158e0000000c275eedb02f141113cf2c55b2c08c2c68cc99d2bb5840fba332e1c82862ec9b90106248f81d32a47ac94ddee815dba8aeb5d3121cf247a81aef7805b020e9eec44cbe3055be69fe066824ba2292b9cdce41635fc00df96fb10a3a8cc60c4a76c65ebbb0640e0a29de94edf5cbefac1c5fa96e7080af804b22cabce10ea52f1018527f4aa39cdafa3eff63de2a7f50d042667820f6f86f276afb2b8134301e031351ee13013137e9d5cec0c84d7e3f82c6fd12eb98f9ea654bcb9ce59a2015183c6e65bb0537e611b830d74c30fb8207fca0990acdbb51e4e234026e00000000b3ebae3eb52c140953a350fcf0124b1a30b1afc29ea56f8413686d912eb8118d73ef9c6d3843ebcb555301c0205dd3bd9b1d742e334319c8979c322e92"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000340), 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x42) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000008c0)={r4, 0x0, 0xe, 0x0, &(0x7f0000000080)="3a173357f297c605804ab3828443", 0x0, 0x3800, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 2.001299745s ago: executing program 0 (id=369): socket$nl_route(0x10, 0x3, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0xa07, &(0x7f0000000200)={0x0, 0xcc75, 0x0, 0x3}, &(0x7f0000000140)=0x0, &(0x7f0000000280)=0x0) socket$kcm(0x11, 0x3, 0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_setup(0x5b06, &(0x7f00000003c0)={0x0, 0xef71, 0x800, 0xffffffff, 0x2f1}, &(0x7f00000001c0)=0x0, &(0x7f0000000440)) syz_io_uring_submit(r5, r4, &(0x7f00000002c0)=@IORING_OP_ASYNC_CANCEL={0xe, 0x40, 0x0, 0x0, 0x0, 0x12345, 0x0, 0x0, 0x1}) io_uring_enter(r2, 0x3516, 0x0, 0x0, 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) (async) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async) syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) (async) dup(r0) (async) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) (async) syz_io_uring_setup(0xa07, &(0x7f0000000200)={0x0, 0xcc75, 0x0, 0x3}, &(0x7f0000000140), &(0x7f0000000280)) (async) socket$kcm(0x11, 0x3, 0x0) (async) syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) (async) syz_io_uring_setup(0x5b06, &(0x7f00000003c0)={0x0, 0xef71, 0x800, 0xffffffff, 0x2f1}, &(0x7f00000001c0), &(0x7f0000000440)) (async) syz_io_uring_submit(r5, r4, &(0x7f00000002c0)=@IORING_OP_ASYNC_CANCEL={0xe, 0x40, 0x0, 0x0, 0x0, 0x12345, 0x0, 0x0, 0x1}) (async) io_uring_enter(r2, 0x3516, 0x0, 0x0, 0x0, 0x0) (async) 1.829169066s ago: executing program 0 (id=370): capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)) r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = shmget$private(0x0, 0x3000, 0x4, &(0x7f0000ffd000/0x3000)=nil) shmat(r1, &(0x7f0000ffc000/0x4000)=nil, 0x2000) ioctl$sock_SIOCADDRT(r0, 0x890c, &(0x7f0000000040)={0x0, @l2tp={0x2, 0x0, @empty}, @tipc=@id={0x1e, 0x3, 0x1, {0x4e23, 0x4}}, @llc={0x1a, 0x205, 0xa9, 0xe, 0x7, 0xf3, @multicast}, 0x0, 0x0, 0x0, 0x0, 0x3}) 1.828304665s ago: executing program 0 (id=371): r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0) recvmsg$unix(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r2, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000440)=ANY=[@ANYBLOB="3c00000010001fff000000000100000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800900010076657468000000000400028008000a00", @ANYRES32=r2, @ANYBLOB="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"], 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket(0x1, 0x803, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14) r5 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'veth1\x00'}) r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/icmp\x00') preadv(r6, &(0x7f0000000400)=[{&(0x7f0000000880)=""/175, 0xaf}], 0x1, 0x5, 0x0) sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000011c0)=ANY=[], 0x4c}, 0x1, 0x0, 0x0, 0x600}, 0x0) 1.667117087s ago: executing program 0 (id=372): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x3) ioctl$TIOCSTI(r0, 0x5412, 0x0) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000001680)=0x7e) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000200)=0x7e) socket$inet_smc(0x2b, 0x1, 0x0) syz_open_dev$vbi(0x0, 0x0, 0x2) socket$nl_route(0x10, 0x3, 0x0) setsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x8008000000010, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_open_procfs(0x0, 0x0) r4 = socket$netlink(0x10, 0x3, 0x15) writev(r4, &(0x7f0000000280)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff06000000010000004500a6ff25", 0x1d}, {&(0x7f0000000580)="fa21bd2b5c40cc420740358ffc7f9f4b6e68fc8d1aa2597e7b484f301f", 0x1d}], 0x2) r5 = socket$rxrpc(0x21, 0x2, 0xa) syz_emit_vhci(&(0x7f0000000000)=ANY=[], 0x4) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000071000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10) bind$rxrpc(r5, &(0x7f0000000000)=@in6={0x21, 0x1, 0x2, 0x1c, {0xa, 0x4e20, 0x3, @empty, 0xd}}, 0x24) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) 1.269099296s ago: executing program 2 (id=374): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f0000002340)=ANY=[@ANYRES16], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000180)={@cgroup=r0, r0, 0x2f, 0x2000, 0x4, @value}, 0x20) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x8c, 0x30, 0x1, 0x0, 0x0, {}, [{0x78, 0x1, [@m_ct={0x2c, 0x2, 0x0, 0x0, {{0x7}, {0x4}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x6, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x10000000, 0x9}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x8c}, 0x1, 0x0, 0x0, 0x20000005}, 0x0) prlimit64(0x0, 0xe, 0x0, 0x0) r1 = syz_io_uring_setup(0x881, &(0x7f0000000480)={0x0, 0xe7ae, 0x0, 0x2, 0x4}, &(0x7f0000000440)=0x0, 0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x3, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x0, 0xffffffff, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0x7, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x0, 0x7fffffff}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r3 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000003c0)=0x20000002) sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r3, 0x9336, &(0x7f0000000280)=""/227) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_io_uring_submit(r2, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x40, 0x2004, @fd_index, 0x0, 0x0, 0x0, 0x8, 0x0, {0x3}}) io_uring_enter(r1, 0x47ba, 0x0, 0x0, 0x0, 0x0) 1.268788693s ago: executing program 1 (id=375): socket$inet(0x2, 0x2, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) setresgid(0xee00, 0xee01, 0x0) r0 = openat$yama_ptrace_scope(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) setresuid(0x0, 0xee00, 0x0) read(r0, 0x0, 0x0) 1.218581087s ago: executing program 1 (id=376): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = syz_io_uring_setup(0x497, &(0x7f0000000200)={0x0, 0xba7b, 0x0, 0x4, 0x2c}, &(0x7f0000000340)=0x0, &(0x7f0000000280)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) ioprio_set$uid(0x3, 0x0, 0x0) syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0}) io_uring_enter(r0, 0x3516, 0x0, 0x0, 0x0, 0x0) 1.218337331s ago: executing program 3 (id=377): r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x0) syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0xf, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9, 0x11e41e7a, 0xffffffffffffffff, 0xfffffffc, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0) socket$kcm(0x10, 0x2, 0x0) sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r6 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r6, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4) bind$inet(r6, &(0x7f0000000080)={0x2, 0x4e23, @empty}, 0x10) setsockopt$SO_ATTACH_FILTER(r6, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0xe5}]}, 0x8) sendto$inet(r6, 0x0, 0x218, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) sendto$inet(r6, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27) sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000010008000900010073797a30000000006c000000090a010400000000000000000100000008000a40000000000900020000087a32000000000900010073797a3000000000080005400000003d300011800b00010074617267657400002000028005000300c400000008000240000000000a00010041"], 0xb4}, 0x1, 0x0, 0x0, 0x890}, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240), &(0x7f0000000280)=0x5) r7 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0104000000000000"], 0x50}}, 0x0) 1.149017731s ago: executing program 1 (id=378): r0 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$IPT_SO_GET_ENTRIES(r0, 0x0, 0x41, 0x0, &(0x7f0000000040)=0x24) syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) r2 = socket$inet6(0xa, 0x3, 0x5) setsockopt$inet6_IPV6_DSTOPTS(r2, 0x29, 0x3b, &(0x7f00000002c0), 0x8) setsockopt$inet6_IPV6_RTHDRDSTOPTS(r2, 0x29, 0x37, &(0x7f0000000280)={0x24}, 0x8) close_range(r1, 0xffffffffffffffff, 0x0) sendmsg$NFT_BATCH(r1, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000240)={&(0x7f0000000780)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [@NFT_MSG_NEWFLOWTABLE={0x108, 0x16, 0xa, 0x201, 0x0, 0x0, {0x2, 0x0, 0x1}, [@NFTA_FLOWTABLE_HANDLE={0xffffffffffffffc6, 0x5, 0x1, 0x0, 0x3}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x2}, @NFTA_FLOWTABLE_HOOK={0xc, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x401}]}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x1}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x1}, @NFTA_FLOWTABLE_HOOK={0xa4, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x1, 'nr0\x00'}]}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_DEVS={0x68, 0x3, 0x0, 0x1, [{0x14, 0x1, 'caif0\x00'}, {0x14, 0x1, 'bond_slave_1\x00'}, {0x14, 0x1, 'veth0\x00'}, {0x14, 0x1, 'pimreg0\x00'}, {0x14, 0x1, 'veth1_to_bond\x00'}]}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x7f}]}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_DELTABLE={0x2c, 0x2, 0xa, 0x201, 0x0, 0x0, {0x5, 0x0, 0x9}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x5}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x3}}}, 0x15c}}, 0x4008854) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r3) socket(0x2b, 0x1, 0x1) bind$inet6(r3, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c) r4 = socket$alg(0x26, 0x5, 0x0) bind$alg(r4, &(0x7f0000000600)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-aesni\x00'}, 0x58) setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000140)="2c385aa3d49100dc6626c892b6bc436a", 0x10) r5 = accept4(r4, 0x0, 0x0, 0x80000) syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r5) sendmmsg$alg(r5, &(0x7f0000000080)=[{0x0, 0x0, &(0x7f0000000980)=[{&(0x7f0000000680)="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", 0xfb}, {&(0x7f0000000380)="89c0ab1b85c9ef4a36fd10069be59028743c6b68d12d5c10dcb9e2c6af7147f83c76bc061a60f87b18f1507c39b037c402b568903691d56fcd5b6967b4803276dc1594406aee6749e277978b67ee34a52662faf91dfc3f8cda4d66f8b028ad3ab8b28b661bbf6e362132a2510df433cc38bd2dede832b04b91f8dbdd272160ca156a97bc8259fd4d86b26b4870308bf55e155824135109b4d97acd78c9b56f78faa0555ad0b4cdc37ece0346f572f5967ba36281cd974cab06399c52264a0cb0920c4d2dc007ca7fdb7e8c27ff54a9f1eaf25f332963673cc7fb330514991d", 0xdf}, {&(0x7f0000000480)="cddd188b06a274f32944961ce2054b5a328a03357ae4a997a3bc593eb79be2124010acbc2815", 0x26}], 0x3, 0x0, 0x0, 0x80}], 0x1, 0x0) write$sndseq(r1, &(0x7f00000000c0)=[{0x6f, 0x0, 0x10, 0xd3, @time={0x6, 0xaf0}, {0x4, 0x3}, {0xa, 0x1}, @time=@tick=0xb}, {0x4, 0x6, 0x2, 0x3, @tick=0x81, {0x12, 0x3}, {0x5, 0x6}, @ext={0x12, &(0x7f0000000080)="a72975413c2e794776a2024647b8d69b6d76"}}, {0x3, 0xf, 0x0, 0x7, @time={0x7, 0xfef7}, {0x2, 0x8}, {}, @raw32={[0xf, 0x6, 0x3]}}], 0x54) listen(r3, 0x0) syz_emit_ethernet(0x52, &(0x7f0000000940)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x1c, 0x3c, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @local, {[@hopopts={0x33}], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0) r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000300), 0x208002, 0x0) syz_extract_tcp_res$synack(&(0x7f0000000340)={0x41424344}, 0x1, 0x0) syz_extract_tcp_res$synack(&(0x7f0000000380)={0x41424344}, 0x1, 0x0) write$tun(r6, &(0x7f00000003c0)={@void, @void, @ipv6=@tcp={0xa, 0x6, "03eb81", 0x315, 0x6, 0xff, @mcast2, @dev={0xfe, 0x80, '\x00', 0x10}, {[@fragment={0x87, 0x0, 0x2, 0x1, 0x0, 0xa, 0x68}, @routing={0x84, 0x10, 0x2, 0x2, 0x0, [@dev={0xfe, 0x80, '\x00', 0x1b}, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @loopback, @local, @local, @mcast1, @mcast1, @dev={0xfe, 0x80, '\x00', 0x2d}]}, @srh={0x2b, 0xe, 0x4, 0x7, 0xe4, 0x38, 0x2, [@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @mcast1, @private1, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @empty, @ipv4={'\x00', '\xff\xff', @remote}, @mcast1]}, @hopopts={0x54323c1f20e3a388, 0x0, '\x00', [@pad1, @padn={0x1, 0x2, [0x0, 0x0]}]}, @fragment={0x3b, 0x0, 0xff, 0x1, 0x0, 0x7, 0x68}, @hopopts={0x2c, 0x12, '\x00', [@hao={0xc9, 0x10, @dev={0xfe, 0x80, '\x00', 0xd}}, @generic={0x6, 0x58, "f219334c87713c2c13d03e91e1a46845508681515e8d7ec3fe036861db7af39cc109222c5ecf4a8b37aab5796753aedd5e0d238538606158d84bc5968d7464a792ea0162c6d10d11a5ce67e79b8ca2c49c794dd4c07a7a50"}, @calipso={0x7, 0x10, {0x2, 0x2, 0x4, 0x8, [0x6]}}, @hao={0xc9, 0x10, @mcast1}]}, @routing={0x32, 0x6, 0x0, 0x2, 0x0, [@empty, @dev={0xfe, 0x80, '\x00', 0xa}, @private1]}, @srh={0x9a, 0x2, 0x4, 0x1, 0x6, 0x0, 0x5, [@private1={0xfc, 0x1, '\x00', 0x1}]}, @hopopts={0x2, 0x0, '\x00', [@padn={0x1, 0x1, [0x0]}]}], {{0x4e21, 0x4e21, r7, r8, 0x1, 0x0, 0x18, 0x1, 0x3, 0x0, 0x5, {[@generic={0x13, 0x10, "b66c79674669ca7908d3f1bceead"}, @generic={0x1c, 0x5, "3c52db"}, @window={0x3, 0x3, 0x3}, @mptcp=@ack={0x1e, 0xa, 0xb, 0x4, "5411207e7a11"}, @mss={0x2, 0x4, 0x3}, @exp_smc={0xfe, 0x6}, @sack_perm={0x4, 0x2}, @mptcp=@synack={0x1e, 0x10, 0x3, 0x2, 0x9, 0x7, 0x5af9}, @timestamp={0x8, 0xa, 0x8, 0x72900000}, @nop]}}, {"119629b3e8d5ef4d065628d05f83f9e85508e2c43d42fabecaace1bd4a73a06e4f26c1868f7584e8d930fade728296354b33de32cf67ee47bd82e7c4417e36268fb97257d1db853d856d3b62ffab1c1b9f5e01f6c81d28c600133c3b702e76a049e7dfcef0f45b671a293e2c901be16dd3281fdbbff70a83ce52ab21672de5541a53465d2e1751e3660213286f927b1fc99db48f28034e96cc9d7a2c86"}}}}}, 0x33d) syz_emit_ethernet(0x4a, &(0x7f0000000140)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "2a8435", 0x14, 0x6, 0x0, @local, @local, {[], {{0x4e20, 0x4e22, 0x41424344, r8, 0x0, 0x4, 0x5, 0xc2}}}}}}}, 0x0) r9 = syz_init_net_socket$llc(0x1a, 0x2, 0x0) recvmsg(r9, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x40) bind$bt_sco(r1, 0x0, 0xfffffe14) 1.105830216s ago: executing program 1 (id=379): bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000180)={@cgroup, 0xffffffffffffffff, 0x2f, 0x2000, 0x4, @value}, 0x20) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000003c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) prlimit64(0x0, 0xe, 0x0, 0x0) r0 = syz_io_uring_setup(0x881, &(0x7f0000000480)={0x0, 0xe7ae, 0x0, 0x2, 0x4}, &(0x7f0000000440)=0x0, &(0x7f0000000080)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x14, 0x30, 0x1}, 0x14}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r3 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000003c0)=0x20000002) sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r3, 0x9336, &(0x7f0000000280)=""/227) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x40, 0x2004, @fd_index, 0x0, 0x0, 0x0, 0x8, 0x0, {0x3}}) io_uring_enter(r0, 0x47ba, 0x0, 0x0, 0x0, 0x0) 401.149573ms ago: executing program 0 (id=380): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) ioperm(0x0, 0x8, 0x4) r2 = syz_io_uring_setup(0x2ddd, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000000), &(0x7f0000000380)=0x0) syz_io_uring_setup(0x5e2, &(0x7f00000003c0), &(0x7f0000000040)=0x0, &(0x7f0000000180)) syz_io_uring_submit(r4, r3, &(0x7f00000001c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x4}) io_uring_enter(r2, 0xa3d, 0x0, 0x0, 0x0, 0x0) r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0xe, 0x4, 0x4, 0x3, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000680)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0x1c, &(0x7f00000004c0)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0xc0}, {{0x18, 0x1, 0x1, 0x0, r5}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0x0, 0x8}}, {{0x5, 0x0, 0x3}, {0x95, 0x0, 0x0, 0x700}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9, 0xfe00}, {0x6, 0x0, 0x6, 0x9}, {0x3, 0x3, 0x6, 0xa, 0xa, 0xfff0, 0x50}, {0x7, 0x1, 0xb, 0x6, 0x8, 0x20}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {0x7, 0x0, 0x7, 0x0}, {0x18, 0x2, 0x2, 0x0, r6}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0x0, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r7 = mq_open(&(0x7f000084dff0)='!sali\x1cqxte&\xac\xe87x\x00', 0x6e93ebbbcc0884f2, 0x12e, &(0x7f0000000300)={0x0, 0x1, 0x7}) mq_timedsend(r7, 0x0, 0x0, 0x0, 0x0) mq_timedsend(r7, 0x0, 0x0, 0x0, 0x0) r8 = socket$nl_netfilter(0x10, 0x3, 0xc) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000001000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008180000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1603000000000000040000000100000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r10 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r10}, 0x18) r11 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r11, &(0x7f0000000140)={0x28, 0x0, 0x0, @host}, 0x10) sendmsg$IPSET_CMD_CREATE(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB], 0x54}, 0x1, 0x0, 0x0, 0x24004010}, 0x4000) r12 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r12, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=@gettaction={0x34, 0x32, 0x9408f9ce2610ee65, 0xfffffffd, 0x0, {}, [@action_dump_flags=@TCA_ROOT_FLAGS={0xc, 0x2, {0x1, 0x1}}, @action_gd=@TCA_ACT_TAB={0x14, 0x1, [{0x10, 0x1, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'vlan\x00'}}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x14040800}, 0x0) ioctl$FIOCLEX(r12, 0x5451) syz_emit_ethernet(0x2a, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffff77aaaaaaaabb080600010800060400010180"], 0x0) 310.82456ms ago: executing program 2 (id=381): bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) r0 = creat(&(0x7f0000000080)='./file0\x00', 0xa) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e21, 0x0, @mcast1, 0x10}, 0x1c) r1 = socket(0x40000000015, 0x5, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="050000007f000000e00ef80e8000000000000000a40907035f17e86289cb690aa11238529a34fe848a306ba32dacfd173abdbc5dfeecafbe49ead70a586f0545750d218b7d21b842af5fd9c99d038acb50ff4ecd9d8d5d32ac62f7ffc6149b19a7e3e434e3ed5c08f9b8ea9dadf861fdc447482ce9c21a846448f757e51b49960df5af38c00c338b94a7753682d4724782b683e92ed842be25cae317a7e14d1e906b128bfb2c632aeacb79aa2053dd06309c7135f8", @ANYRESHEX=r0, @ANYBLOB='\x00'/20, @ANYRES32=r1, @ANYBLOB="000000000200"/25], 0x50) r2 = socket$kcm(0x10, 0x2, 0x0) openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0x0) r3 = syz_open_dev$vim2m(0x0, 0x0, 0x2) socket$inet_tcp(0x2, 0x1, 0x0) writev(r2, &(0x7f0000000200)=[{&(0x7f00000000c0)="c841826c28", 0x5}], 0x1) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r4 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x10b121) r5 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) writev(r5, &(0x7f0000000b00)=[{&(0x7f0000000940)}], 0x1) r6 = dup(r4) write$6lowpan_enable(r6, &(0x7f0000000000)='0', 0x1) r7 = syz_io_uring_setup(0x200048be, &(0x7f0000000380)={0x0, 0x37b0, 0x8000, 0x0, 0x2, 0x0, r6}, &(0x7f0000000180), &(0x7f00000001c0)) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a5"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r8 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) bind$bt_hci(r6, &(0x7f0000000000)={0x27, 0x0, 0x3}, 0x6) sendmmsg$unix(r8, &(0x7f0000000b00)=[{{&(0x7f00000000c0)=@file={0x0, './file0\x00'}, 0x6e, 0x0}}, {{&(0x7f0000000e80)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000740)=[{0x0}, {0x0}], 0x2}}, {{&(0x7f0000000580)=@file={0x0, './file0/file0\x00'}, 0x6e, &(0x7f00000006c0)}}], 0x3, 0x0) io_uring_enter(r7, 0x2def, 0x4000, 0x0, 0x0, 0x0) r9 = gettid() timer_create(0x5, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r9}, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff) r10 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000140)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_NEW_KEY(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000340)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES8=r3, @ANYRES64, @ANYRES32=r11], 0x44}, 0x1, 0x0, 0x0, 0x20000880}, 0x0) timer_settime(0x0, 0x1, 0x0, 0x0) syz_init_net_socket$llc(0x1a, 0x1, 0x0) 302.984701ms ago: executing program 3 (id=382): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000040)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8) setpriority(0x0, 0x0, 0x10000) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000340)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000000080)=0xffffffffffffffff) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)={0x58, 0x2, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x0}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_TYPENAME={0x12, 0x3, 'hash:net,port\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x58}, 0x1, 0x0, 0x0, 0x4011}, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x2c, 0xffffffffffbffff8) dup2(r1, r2) fcntl$setown(r1, 0x8, r0) tkill(r0, 0x13) syz_open_dev$mouse(&(0x7f00000000c0), 0x0, 0x2042) link(0x0, &(0x7f0000000200)='./file0\x00') 219.251933ms ago: executing program 2 (id=383): r0 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r0, &(0x7f0000000100)=[{&(0x7f0000000280)="580000001400192340834b80040d8c5602067fffffff81000a00010000dca8f76d8ea513dfb08e00940005891550f4a8000000006700008000f0000200002b02462efff5dd00000010000100000c0100fcff0000040e2da5", 0x58}], 0x1) 218.985693ms ago: executing program 2 (id=384): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) setresgid(0xee00, 0xee01, 0x0) r0 = openat$yama_ptrace_scope(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) setresuid(0x0, 0xee00, 0x0) read(r0, 0x0, 0x0) 168.999948ms ago: executing program 2 (id=385): setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0) read$FUSE(0xffffffffffffffff, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0x2000000000000038, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1a00000007"], 0x50) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) syz_io_uring_setup(0x3b, 0x0, &(0x7f0000000180), &(0x7f00000001c0)) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r0}, 0x10) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) ioctl$UI_DEV_SETUP(0xffffffffffffffff, 0x405c5503, &(0x7f0000000280)={{0x5}, 'syz1\x00', 0x10}) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x16, 0xe, &(0x7f0000000c00)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000340), 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x42) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000008c0)={r4, 0x0, 0xe, 0x0, &(0x7f0000000080)="3a173357f297c605804ab3828443", 0x0, 0x3800, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 168.737952ms ago: executing program 3 (id=386): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = syz_io_uring_setup(0x497, &(0x7f0000000200)={0x0, 0xba7b, 0x0, 0x4, 0x2c}, &(0x7f0000000340)=0x0, &(0x7f0000000280)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) ioprio_set$uid(0x3, 0x0, 0x0) syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0}) io_uring_enter(r0, 0x3516, 0x0, 0x0, 0x0, 0x0) 127.624424ms ago: executing program 3 (id=387): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000004c0)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000003f000005"], 0x38}}, 0x0) 124.245303ms ago: executing program 1 (id=388): mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x100) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000240)='devtmpfs\x00', 0x0, 0x0) mount$tmpfs(0xf9fdffff, &(0x7f00000000c0)='./file0\x00', 0x0, 0x21, &(0x7f0000000000)={[{@nr_inodes={'nr_inodes', 0x3d, [0x38]}}]}) 44.200046ms ago: executing program 0 (id=389): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f0000002340)=ANY=[@ANYRES16], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000180)={@cgroup=r0, r0, 0x2f, 0x2000, 0x4, @value}, 0x20) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x8c, 0x30, 0x1, 0x0, 0x0, {}, [{0x78, 0x1, [@m_ct={0x2c, 0x2, 0x0, 0x0, {{0x7}, {0x4}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x6, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x10000000, 0x9}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x8c}, 0x1, 0x0, 0x0, 0x20000005}, 0x0) prlimit64(0x0, 0xe, 0x0, 0x0) r1 = syz_io_uring_setup(0x881, &(0x7f0000000480)={0x0, 0xe7ae, 0x0, 0x2, 0x4}, &(0x7f0000000440)=0x0, 0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x3, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x0, 0xffffffff, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0x7, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x0, 0x7fffffff}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r3 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000003c0)=0x20000002) sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r3, 0x9336, &(0x7f0000000280)=""/227) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_io_uring_submit(r2, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x40, 0x2004, @fd_index, 0x0, 0x0, 0x0, 0x8, 0x0, {0x3}}) io_uring_enter(r1, 0x47ba, 0x0, 0x0, 0x0, 0x0) 1.032765ms ago: executing program 3 (id=390): ioctl$CEC_DQEVENT(0xffffffffffffffff, 0xc0506107, &(0x7f0000000340)) socket$alg(0x26, 0x5, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=@newtaction={0x3e8, 0x30, 0x1, 0x0, 0x0, {}, [{0x5c, 0x1, [@m_ct={0x2c, 0xf, 0x0, 0x0, {{0x7}, {0x4}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0x2c, 0x1, 0x0, 0x0, {{0x8}, {0x4}, {0x4}, {0xc}, {0xc}}}]}, {0x378, 0x1, [@m_mirred={0x118, 0xa, 0x0, 0x0, {{0xb}, {0x84, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x3, 0xc, 0x20000000, 0xa0b, 0x5}, 0x4}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x5, 0xffffffff, 0x5, 0x10, 0x2}, 0x4}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x4025, 0x4, 0x0, 0x4, 0x3}, 0x4}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x8, 0x0, 0x1, 0x8, 0x98}, 0x2}}]}, {0x69, 0x6, "81fd7f5398bfbebe6fcd1282066eb59a3d981812a53509375216fcedb360cbafe0009a4cc17050a46fc99b7e05991d614182c5ba8327eebff9dc0a1c1934be66ddef4dedf0d188073c387b1d73ddbf7caeb0f3b0c133fc267ee9cdb4925881867318709197"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1, 0x1}}}}, @m_skbedit={0xdc, 0x20, 0x0, 0x0, {{0xc}, {0x1c, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PARMS={0x18, 0x2, {0x0, 0x1, 0x1, 0x3, 0x7fffffff}}]}, {0x95, 0x6, "e0aea23d6eebeeab55912fc34eaa42db9e333843f06623eebc400332e1193f0aa2ca3bde15a5339fd5c84031b447623e46e977dc90ae5093fbcc0c980afee0982f29e31cd2a86384c5da3fe8e2d0c745e465d5c34d02cc44c9ca17414f1501a3c89b1eadfc2035c01d6134a3da1eb9bfb036f8450b6ecf93ea651e257d49666dc1035d3a661455eba1476b5308c35c116f"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3, 0x2}}}}, @m_skbmod={0xdc, 0x9, 0x0, 0x0, {{0xb}, {0x38, 0x2, 0x0, 0x1, [@TCA_SKBMOD_ETYPE={0x6, 0x5, 0x8}, @TCA_SKBMOD_SMAC={0xa, 0x4, @random="6bcf3fc8c357"}, @TCA_SKBMOD_PARMS={0x20, 0x2, {{0xe, 0x4, 0xffffffffffffffff, 0x7ff, 0x9}, 0x3}}]}, {0x7a, 0x6, "522985827af6e448d0ee1889d67807a62a4b0a2e4282a8c09880f2ecbf907e86bcc64e1140e832eaf239b7ba544ce383a23b0a703fbfc80ec13bdf6ce002fc3cf3db701b28efeedcdc5dc98da6c1877afb2cf58ff7505f0d31a5e4a9fce97e859f3686eb173b1239beb131d8467f652dc3a7990fe028"}, {0xc}, {0xc}}}, @m_skbmod={0xa4, 0x2, 0x0, 0x0, {{0xb}, {0x44, 0x2, 0x0, 0x1, [@TCA_SKBMOD_DMAC={0xa, 0x3, @broadcast}, @TCA_SKBMOD_PARMS={0x20, 0x2, {{0x0, 0x1, 0x20000000, 0x81, 0xfff}, 0xe}}, @TCA_SKBMOD_ETYPE={0x6, 0x5, 0xe}, @TCA_SKBMOD_SMAC={0xa, 0x4, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3c}}]}, {0x38, 0x6, "1df7fae888e399ecc544ec606f851a15649ab37bcc2c845126e771876bead725b2265d1ec677460307225c138c15dadc032eac3d"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x3}}}}]}]}, 0x3e8}, 0x1, 0x0, 0x0, 0x804}, 0x0) ustat(0x6, &(0x7f0000000080)) r0 = socket$inet6_sctp(0xa, 0x1, 0x84) munmap(&(0x7f0000901000/0x3000)=nil, 0x3000) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000240)={0x0, 0x0, 0x10}, 0xc) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x40, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x3ffa, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) gettid() socket$nl_route(0x10, 0x3, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) ioctl$sock_ifreq(r4, 0x8910, &(0x7f0000000000)={'veth0_vlan\x00', @ifru_ivalue=0x7}) ioctl$sock_netdev_private(r4, 0x8949, &(0x7f0000000000)) 0s ago: executing program 1 (id=391): r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x0) syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0xf, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9, 0x11e41e7a, 0xffffffffffffffff, 0xfffffffc, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0) socket$kcm(0x10, 0x2, 0x0) sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r6 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r6, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4) bind$inet(r6, &(0x7f0000000080)={0x2, 0x4e23, @empty}, 0x10) setsockopt$SO_ATTACH_FILTER(r6, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0xe5}]}, 0x8) sendto$inet(r6, 0x0, 0x218, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) sendto$inet(r6, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27) sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000010008000900010073797a30000000006c000000090a010400000000000000000100000008000a40000000000900020000087a32000000000900010073797a3000000000080005400000003d300011800b00010074617267657400002000028005000300c400000008000240000000000a00010041"], 0xb4}, 0x1, 0x0, 0x0, 0x890}, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240), &(0x7f0000000280)=0x5) r7 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0104000000000000"], 0x50}}, 0x0) 0s ago: executing program 2 (id=394): ioctl$CEC_DQEVENT(0xffffffffffffffff, 0xc0506107, &(0x7f0000000340)) socket$alg(0x26, 0x5, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=@newtaction={0x3e8, 0x30, 0x1, 0x0, 0x0, {}, [{0x5c, 0x1, [@m_ct={0x2c, 0xf, 0x0, 0x0, {{0x7}, {0x4}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0x2c, 0x1, 0x0, 0x0, {{0x8}, {0x4}, {0x4}, {0xc}, {0xc}}}]}, {0x378, 0x1, [@m_mirred={0x118, 0xa, 0x0, 0x0, {{0xb}, {0x84, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x3, 0xc, 0x20000000, 0xa0b, 0x5}, 0x4}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x5, 0xffffffff, 0x5, 0x10, 0x2}, 0x4}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x4025, 0x4, 0x0, 0x4, 0x3}, 0x4}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x8, 0x0, 0x1, 0x8, 0x98}, 0x2}}]}, {0x69, 0x6, "81fd7f5398bfbebe6fcd1282066eb59a3d981812a53509375216fcedb360cbafe0009a4cc17050a46fc99b7e05991d614182c5ba8327eebff9dc0a1c1934be66ddef4dedf0d188073c387b1d73ddbf7caeb0f3b0c133fc267ee9cdb4925881867318709197"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1, 0x1}}}}, @m_skbedit={0xdc, 0x20, 0x0, 0x0, {{0xc}, {0x1c, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PARMS={0x18, 0x2, {0x0, 0x1, 0x1, 0x3, 0x7fffffff}}]}, {0x95, 0x6, "e0aea23d6eebeeab55912fc34eaa42db9e333843f06623eebc400332e1193f0aa2ca3bde15a5339fd5c84031b447623e46e977dc90ae5093fbcc0c980afee0982f29e31cd2a86384c5da3fe8e2d0c745e465d5c34d02cc44c9ca17414f1501a3c89b1eadfc2035c01d6134a3da1eb9bfb036f8450b6ecf93ea651e257d49666dc1035d3a661455eba1476b5308c35c116f"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3, 0x2}}}}, @m_skbmod={0xdc, 0x9, 0x0, 0x0, {{0xb}, {0x38, 0x2, 0x0, 0x1, [@TCA_SKBMOD_ETYPE={0x6, 0x5, 0x8}, @TCA_SKBMOD_SMAC={0xa, 0x4, @random="6bcf3fc8c357"}, @TCA_SKBMOD_PARMS={0x20, 0x2, {{0xe, 0x4, 0xffffffffffffffff, 0x7ff, 0x9}, 0x3}}]}, {0x7a, 0x6, "522985827af6e448d0ee1889d67807a62a4b0a2e4282a8c09880f2ecbf907e86bcc64e1140e832eaf239b7ba544ce383a23b0a703fbfc80ec13bdf6ce002fc3cf3db701b28efeedcdc5dc98da6c1877afb2cf58ff7505f0d31a5e4a9fce97e859f3686eb173b1239beb131d8467f652dc3a7990fe028"}, {0xc}, {0xc}}}, @m_skbmod={0xa4, 0x2, 0x0, 0x0, {{0xb}, {0x44, 0x2, 0x0, 0x1, [@TCA_SKBMOD_DMAC={0xa, 0x3, @broadcast}, @TCA_SKBMOD_PARMS={0x20, 0x2, {{0x0, 0x1, 0x20000000, 0x81, 0xfff}, 0xe}}, @TCA_SKBMOD_ETYPE={0x6, 0x5, 0xe}, @TCA_SKBMOD_SMAC={0xa, 0x4, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3c}}]}, {0x38, 0x6, "1df7fae888e399ecc544ec606f851a15649ab37bcc2c845126e771876bead725b2265d1ec677460307225c138c15dadc032eac3d"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x3}}}}]}]}, 0x3e8}, 0x1, 0x0, 0x0, 0x804}, 0x0) ustat(0x6, &(0x7f0000000080)) r0 = socket$inet6_sctp(0xa, 0x1, 0x84) munmap(&(0x7f0000901000/0x3000)=nil, 0x3000) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000240)={0x0, 0x0, 0x10}, 0xc) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x40, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x3ffa, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) gettid() socket$nl_route(0x10, 0x3, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) ioctl$sock_ifreq(r4, 0x8910, &(0x7f0000000000)={'veth0_vlan\x00', @ifru_ivalue=0x7}) ioctl$sock_netdev_private(r4, 0x8949, &(0x7f0000000000)) (fail_nth: 1) kernel console output (not intermixed with test programs): Warning: Permanently added '[localhost]:5717' (ED25519) to the list of known hosts. [ 41.160464][ T5892] cgroup: Unknown subsys name 'net' [ 41.264048][ T5892] cgroup: Unknown subsys name 'cpuset' [ 41.267559][ T5892] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 42.036691][ T5892] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 45.339830][ T5943] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 45.343712][ T5943] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 45.355404][ T5947] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 45.359441][ T5945] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 45.362490][ T5951] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 45.362571][ T5945] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 45.365969][ T5951] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 45.368196][ T5945] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 45.370848][ T5951] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 45.373691][ T5945] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 45.376463][ T5951] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 45.378558][ T5945] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 45.381823][ T5953] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 45.382967][ T5945] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 45.385363][ T5953] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 45.387206][ T5945] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 45.391422][ T5943] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 45.396268][ T5951] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 45.401648][ T5947] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 45.404440][ T5947] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 45.610660][ T5948] chnl_net:caif_netlink_parms(): no params data found [ 45.688371][ T5944] chnl_net:caif_netlink_parms(): no params data found [ 45.780543][ T5940] chnl_net:caif_netlink_parms(): no params data found [ 45.821600][ T5948] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.824121][ T5948] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.826665][ T5948] bridge_slave_0: entered allmulticast mode [ 45.829576][ T5948] bridge_slave_0: entered promiscuous mode [ 45.861413][ T5948] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.864193][ T5948] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.866945][ T5948] bridge_slave_1: entered allmulticast mode [ 45.870563][ T5948] bridge_slave_1: entered promiscuous mode [ 45.956873][ T5948] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 45.969502][ T5948] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 45.990621][ T5944] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.992934][ T5944] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.995149][ T5944] bridge_slave_0: entered allmulticast mode [ 45.997767][ T5944] bridge_slave_0: entered promiscuous mode [ 46.032252][ T5944] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.034803][ T5944] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.037043][ T5944] bridge_slave_1: entered allmulticast mode [ 46.039658][ T5944] bridge_slave_1: entered promiscuous mode [ 46.085632][ T5948] team0: Port device team_slave_0 added [ 46.087848][ T5950] chnl_net:caif_netlink_parms(): no params data found [ 46.121391][ T5948] team0: Port device team_slave_1 added [ 46.146285][ T5944] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 46.214296][ T5944] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 46.217287][ T5940] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.220336][ T5940] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.224908][ T5940] bridge_slave_0: entered allmulticast mode [ 46.228689][ T5940] bridge_slave_0: entered promiscuous mode [ 46.232482][ T5948] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 46.234707][ T5948] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.243102][ T5948] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 46.271488][ T5940] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.274199][ T5940] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.277138][ T5940] bridge_slave_1: entered allmulticast mode [ 46.280783][ T5940] bridge_slave_1: entered promiscuous mode [ 46.284708][ T5948] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 46.286878][ T5948] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.294878][ T5948] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 46.343030][ T5944] team0: Port device team_slave_0 added [ 46.377908][ T5950] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.380188][ T5950] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.383023][ T5950] bridge_slave_0: entered allmulticast mode [ 46.385807][ T5950] bridge_slave_0: entered promiscuous mode [ 46.390734][ T5944] team0: Port device team_slave_1 added [ 46.409590][ T5940] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 46.414690][ T5940] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 46.417598][ T5950] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.419842][ T5950] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.422316][ T5950] bridge_slave_1: entered allmulticast mode [ 46.424866][ T5950] bridge_slave_1: entered promiscuous mode [ 46.532226][ T5950] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 46.535356][ T5944] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 46.537464][ T5944] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.545902][ T5944] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 46.569837][ T5948] hsr_slave_0: entered promiscuous mode [ 46.572381][ T5948] hsr_slave_1: entered promiscuous mode [ 46.576570][ T5940] team0: Port device team_slave_0 added [ 46.580178][ T5950] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 46.584513][ T5944] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 46.587345][ T5944] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.598504][ T5944] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 46.617442][ T5940] team0: Port device team_slave_1 added [ 46.648240][ T5950] team0: Port device team_slave_0 added [ 46.651710][ T5950] team0: Port device team_slave_1 added [ 46.727794][ T5950] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 46.730378][ T5950] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.740930][ T5950] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 46.767417][ T5940] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 46.769627][ T5940] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.778472][ T5940] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 46.787732][ T5940] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 46.789878][ T5940] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.797974][ T5940] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 46.802072][ T5950] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 46.804263][ T5950] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.812290][ T5950] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 46.863360][ T5944] hsr_slave_0: entered promiscuous mode [ 46.865644][ T5944] hsr_slave_1: entered promiscuous mode [ 46.867675][ T5944] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 46.870095][ T5944] Cannot create hsr debugfs directory [ 46.985878][ T5950] hsr_slave_0: entered promiscuous mode [ 46.988076][ T5950] hsr_slave_1: entered promiscuous mode [ 46.990061][ T5950] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 46.992560][ T5950] Cannot create hsr debugfs directory [ 46.997712][ T5940] hsr_slave_0: entered promiscuous mode [ 46.999919][ T5940] hsr_slave_1: entered promiscuous mode [ 47.003098][ T5940] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 47.005478][ T5940] Cannot create hsr debugfs directory [ 47.258866][ T5948] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 47.265114][ T5948] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 47.274811][ T5948] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 47.281665][ T5948] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 47.300357][ T5940] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 47.305311][ T5940] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 47.312997][ T5940] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 47.317551][ T5940] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 47.363504][ T5944] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 47.368121][ T5944] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 47.375198][ T5944] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 47.380071][ T5944] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 47.427489][ T5950] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 47.435849][ T5950] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 47.440263][ T5950] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 47.445088][ T5950] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 47.452032][ T5955] Bluetooth: hci2: command tx timeout [ 47.452036][ T5294] Bluetooth: hci1: command tx timeout [ 47.452040][ T67] Bluetooth: hci3: command tx timeout [ 47.461997][ T67] Bluetooth: hci0: command tx timeout [ 47.494476][ T5940] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.499899][ T5948] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.519125][ T5944] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.531124][ T5948] 8021q: adding VLAN 0 to HW filter on device team0 [ 47.538101][ T5940] 8021q: adding VLAN 0 to HW filter on device team0 [ 47.544114][ T1143] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.546502][ T1143] bridge0: port 1(bridge_slave_0) entered forwarding state [ 47.557682][ T1143] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.559925][ T1143] bridge0: port 1(bridge_slave_0) entered forwarding state [ 47.565230][ T5944] 8021q: adding VLAN 0 to HW filter on device team0 [ 47.570759][ T1143] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.572993][ T1143] bridge0: port 1(bridge_slave_0) entered forwarding state [ 47.580858][ T1143] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.583159][ T1143] bridge0: port 2(bridge_slave_1) entered forwarding state [ 47.588526][ T1143] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.590757][ T1143] bridge0: port 2(bridge_slave_1) entered forwarding state [ 47.598840][ T1143] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.601149][ T1143] bridge0: port 2(bridge_slave_1) entered forwarding state [ 47.629758][ T5950] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.666598][ T5950] 8021q: adding VLAN 0 to HW filter on device team0 [ 47.676316][ T1143] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.678581][ T1143] bridge0: port 1(bridge_slave_0) entered forwarding state [ 47.688853][ T1137] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.691138][ T1137] bridge0: port 2(bridge_slave_1) entered forwarding state [ 47.753085][ T5948] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 47.767521][ T5944] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 47.789839][ T5940] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 47.804827][ T5948] veth0_vlan: entered promiscuous mode [ 47.816655][ T5948] veth1_vlan: entered promiscuous mode [ 47.841184][ T5950] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 47.850046][ T5940] veth0_vlan: entered promiscuous mode [ 47.860964][ T5948] veth0_macvtap: entered promiscuous mode [ 47.863812][ T5944] veth0_vlan: entered promiscuous mode [ 47.870998][ T5948] veth1_macvtap: entered promiscuous mode [ 47.879111][ T5940] veth1_vlan: entered promiscuous mode [ 47.882025][ T5944] veth1_vlan: entered promiscuous mode [ 47.888954][ T5950] veth0_vlan: entered promiscuous mode [ 47.896212][ T5948] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 47.913226][ T5948] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 47.916913][ T5940] veth0_macvtap: entered promiscuous mode [ 47.919562][ T5950] veth1_vlan: entered promiscuous mode [ 47.925807][ T5948] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.928630][ T5948] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.932698][ T5948] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.936142][ T5948] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.945558][ T5940] veth1_macvtap: entered promiscuous mode [ 47.966885][ T5944] veth0_macvtap: entered promiscuous mode [ 47.970486][ T5940] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 47.974113][ T5940] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 47.977861][ T5940] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 47.984131][ T5944] veth1_macvtap: entered promiscuous mode [ 47.992283][ T5940] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 47.995516][ T5940] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 47.999144][ T5940] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 48.004677][ T5940] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.008166][ T5940] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.012390][ T5940] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.015196][ T5940] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.038372][ T5950] veth0_macvtap: entered promiscuous mode [ 48.041141][ T5944] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 48.046656][ T5944] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.050575][ T5944] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 48.054729][ T5944] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.059348][ T5944] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 48.063652][ T5944] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 48.066915][ T5944] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.069895][ T5944] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 48.073290][ T5944] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.077929][ T5944] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 48.097290][ T5944] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.100787][ T5944] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.104943][ T5944] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.108340][ T5944] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.115380][ T5950] veth1_macvtap: entered promiscuous mode [ 48.124482][ T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.127778][ T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.155462][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.156630][ T5950] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 48.158652][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.163329][ T5950] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.170026][ T5950] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 48.174632][ T5950] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.178408][ T5950] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 48.182556][ T5950] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.186994][ T5950] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 48.201185][ T5950] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 48.204511][ T5950] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.207449][ T5950] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 48.210638][ T5950] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.213842][ T5950] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 48.217196][ T5950] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.220951][ T5950] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 48.229286][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.231933][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.237862][ T5950] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.241930][ T5950] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.245454][ T5950] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.249062][ T5950] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.272047][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.275223][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.279556][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.285360][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.303016][ T5948] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 48.304950][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.312028][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.349290][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.355483][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.382846][ T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.385914][ T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.415929][ T6009] syz.1.2 uses obsolete (PF_INET,SOCK_PACKET) [ 48.671555][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 48.691759][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 48.711563][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 49.531394][ T67] Bluetooth: hci0: command tx timeout [ 49.531658][ T5294] Bluetooth: hci3: command tx timeout [ 49.533114][ T67] Bluetooth: hci2: command tx timeout [ 49.534865][ T5955] Bluetooth: hci1: command tx timeout [ 49.877283][ T6042] netlink: 20 bytes leftover after parsing attributes in process `syz.2.10'. [ 50.062065][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 50.065359][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 50.311443][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 50.841550][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 50.857042][ T6066] netlink: 'syz.3.16': attribute type 4 has an invalid length. [ 50.934956][ T6065] netlink: 'syz.3.16': attribute type 4 has an invalid length. [ 51.369480][ T6075] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 51.417877][ T6075] netlink: 36 bytes leftover after parsing attributes in process `syz.1.19'. [ 51.537219][ T6077] netlink: 'syz.0.18': attribute type 4 has an invalid length. [ 51.614455][ T5947] Bluetooth: hci1: command tx timeout [ 51.614476][ T5955] Bluetooth: hci2: command tx timeout [ 51.614508][ T67] Bluetooth: hci3: command tx timeout [ 51.614610][ T5947] Bluetooth: hci0: command tx timeout [ 51.797799][ T6075] netlink: 4 bytes leftover after parsing attributes in process `syz.1.19'. [ 51.847602][ T6072] netlink: 'syz.0.18': attribute type 4 has an invalid length. [ 51.851454][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 51.865520][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 51.887809][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 52.343315][ T6090] netlink: 'syz.2.22': attribute type 4 has an invalid length. [ 52.352993][ T6090] netlink: 'syz.2.22': attribute type 4 has an invalid length. [ 52.619140][ T6106] netlink: 20 bytes leftover after parsing attributes in process `syz.1.27'. [ 53.415665][ T6118] FAULT_INJECTION: forcing a failure. [ 53.415665][ T6118] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 53.420036][ T6118] CPU: 0 UID: 0 PID: 6118 Comm: syz.1.31 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 53.420056][ T6118] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 53.420062][ T6118] Call Trace: [ 53.420065][ T6118] [ 53.420069][ T6118] dump_stack_lvl+0x16c/0x1f0 [ 53.420087][ T6118] should_fail_ex+0x512/0x640 [ 53.420103][ T6118] _copy_from_user+0x2e/0xd0 [ 53.420118][ T6118] get_compat_msghdr+0xa7/0x170 [ 53.420129][ T6118] ? __pfx_get_compat_msghdr+0x10/0x10 [ 53.420157][ T6118] ___sys_sendmsg+0x1ae/0x1d0 [ 53.420170][ T6118] ? __pfx____sys_sendmsg+0x10/0x10 [ 53.420196][ T6118] __sys_sendmsg+0x16d/0x220 [ 53.420207][ T6118] ? __pfx___sys_sendmsg+0x10/0x10 [ 53.420221][ T6118] ? rcu_is_watching+0x12/0xc0 [ 53.420232][ T6118] ? rcu_is_watching+0x12/0xc0 [ 53.420242][ T6118] __do_fast_syscall_32+0x73/0x120 [ 53.420257][ T6118] do_fast_syscall_32+0x32/0x80 [ 53.420270][ T6118] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 53.420282][ T6118] RIP: 0023:0xf711e579 [ 53.420290][ T6118] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 53.420299][ T6118] RSP: 002b:00000000f510e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 53.420308][ T6118] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000100 [ 53.420314][ T6118] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 53.420319][ T6118] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 53.420324][ T6118] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 53.420329][ T6118] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 53.420341][ T6118] [ 53.693511][ T67] Bluetooth: hci3: command tx timeout [ 53.693535][ T5947] Bluetooth: hci2: command tx timeout [ 53.695263][ T67] Bluetooth: hci0: command tx timeout [ 53.701355][ T67] Bluetooth: hci1: command tx timeout [ 53.936361][ T6130] netlink: 'syz.3.37': attribute type 4 has an invalid length. [ 54.215170][ T6141] syz.3.39: attempt to access beyond end of device [ 54.215170][ T6141] loop3: rw=2048, sector=2, nr_sectors = 1 limit=0 [ 54.219249][ T6141] hfsplus: unable to find HFS+ superblock [ 55.051334][ T6147] netlink: 766 bytes leftover after parsing attributes in process `syz.1.48'. [ 55.322777][ T6150] netlink: 20 bytes leftover after parsing attributes in process `syz.3.40'. [ 56.457720][ T6178] 9pnet_virtio: no channels available for device syz [ 56.459988][ T6178] 9pnet_virtio: no channels available for device syz [ 57.104334][ T6201] fuseblk: Bad value for 'fd' [ 58.330100][ T6217] netlink: 'syz.2.62': attribute type 4 has an invalid length. [ 58.338087][ T6217] netlink: 'syz.2.62': attribute type 4 has an invalid length. [ 58.644212][ T6236] fuseblk: Bad value for 'fd' [ 59.850891][ T6276] netlink: 20 bytes leftover after parsing attributes in process `syz.1.81'. [ 60.239311][ T6270] fuseblk: Bad value for 'fd' [ 61.401600][ T6313] netlink: 20 bytes leftover after parsing attributes in process `syz.3.91'. [ 62.113927][ T6325] fuseblk: Bad value for 'fd' [ 62.880255][ T6352] netlink: 20 bytes leftover after parsing attributes in process `syz.2.102'. [ 63.910811][ T6368] fuseblk: Bad value for 'fd' [ 64.681681][ T6381] netlink: 20 bytes leftover after parsing attributes in process `syz.0.111'. [ 65.283451][ T6403] lo speed is unknown, defaulting to 1000 [ 65.287750][ T6403] lo speed is unknown, defaulting to 1000 [ 65.293013][ T6403] lo speed is unknown, defaulting to 1000 [ 65.441512][ T6403] infiniband sz1: set down [ 65.443595][ T6403] infiniband sz1: added lo [ 65.449036][ T57] lo speed is unknown, defaulting to 1000 [ 65.475026][ T6403] RDS/IB: sz1: added [ 65.476546][ T6403] smc: adding ib device sz1 with port count 1 [ 65.478557][ T6403] smc: ib device sz1 port 1 has pnetid [ 65.484177][ T57] lo speed is unknown, defaulting to 1000 [ 65.493358][ T6403] lo speed is unknown, defaulting to 1000 [ 65.668358][ T6403] lo speed is unknown, defaulting to 1000 [ 65.909946][ T63] usb 8-1: new high-speed USB device number 2 using dummy_hcd [ 65.928645][ T6403] lo speed is unknown, defaulting to 1000 [ 66.006214][ T6403] lo speed is unknown, defaulting to 1000 [ 66.063649][ T63] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 66.067020][ T63] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 66.071058][ T63] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 66.073572][ T63] usb 8-1: New USB device strings: Mfr=255, Product=250, SerialNumber=0 [ 66.075938][ T63] usb 8-1: Product: syz [ 66.077246][ T63] usb 8-1: Manufacturer: syz [ 66.081702][ T6394] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 66.088859][ T63] usb 8-1: Quirk or no altset; falling back to MIDI 1.0 [ 66.136410][ T6415] fuseblk: Bad value for 'fd' [ 66.292989][ T63] usb 8-1: USB disconnect, device number 2 [ 67.282985][ T6437] netlink: 20 bytes leftover after parsing attributes in process `syz.2.127'. [ 68.080231][ T6447] overlayfs: failed to resolve './file0': -2 [ 68.876788][ T6452] netlink: 'syz.2.131': attribute type 4 has an invalid length. [ 68.884403][ T6452] netlink: 'syz.2.131': attribute type 4 has an invalid length. [ 69.104315][ T6458] fuseblk: Bad value for 'fd' [ 69.771918][ T6468] netlink: 20 bytes leftover after parsing attributes in process `syz.2.136'. [ 70.608229][ T6498] fuseblk: Bad value for 'fd' [ 70.815737][ T1415] ieee802154 phy0 wpan0: encryption failed: -22 [ 70.818376][ T1415] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.031197][ T6509] netlink: 20 bytes leftover after parsing attributes in process `syz.3.148'. [ 72.790476][ T6541] fuseblk: Bad value for 'fd' [ 73.114383][ T6547] evm: overlay not supported [ 73.207704][ T6545] netlink: 20 bytes leftover after parsing attributes in process `syz.1.160'. [ 74.130195][ T6580] fuseblk: Bad value for 'fd' [ 74.200735][ T6581] netlink: 20 bytes leftover after parsing attributes in process `syz.0.172'. [ 75.242440][ T6601] fuseblk: Bad value for 'fd' [ 76.078935][ T6619] netlink: 20 bytes leftover after parsing attributes in process `syz.3.183'. [ 76.520549][ T6631] fuseblk: Bad value for 'fd' [ 76.979269][ T6642] netlink: 36 bytes leftover after parsing attributes in process `syz.3.191'. [ 77.108031][ T6642] netlink: 4 bytes leftover after parsing attributes in process `syz.3.191'. [ 78.242788][ T6661] overlayfs: failed to resolve './file0': -2 [ 78.411495][ T6665] netlink: 'syz.1.194': attribute type 4 has an invalid length. [ 78.491171][ T6668] netlink: 'syz.1.194': attribute type 4 has an invalid length. [ 78.724943][ T6659] fuseblk: Bad value for 'fd' [ 80.115817][ T6698] lo speed is unknown, defaulting to 1000 [ 80.637040][ T6714] netlink: 'syz.3.209': attribute type 4 has an invalid length. [ 80.641646][ T6714] netlink: 'syz.3.209': attribute type 4 has an invalid length. [ 80.863614][ T5982] lo speed is unknown, defaulting to 1000 [ 80.866090][ T5982] sz1: Port: 1 Link ACTIVE [ 80.872368][ T57] lo speed is unknown, defaulting to 1000 [ 81.053282][ T10] cfg80211: failed to load regulatory.db [ 81.641357][ T1336] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 81.771351][ T1336] usb 5-1: device descriptor read/64, error -71 [ 81.941547][ T6741] FAULT_INJECTION: forcing a failure. [ 81.941547][ T6741] name failslab, interval 1, probability 0, space 0, times 1 [ 81.941571][ T6741] CPU: 2 UID: 0 PID: 6741 Comm: syz.1.220 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 81.941583][ T6741] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 81.941589][ T6741] Call Trace: [ 81.941593][ T6741] [ 81.941596][ T6741] dump_stack_lvl+0x16c/0x1f0 [ 81.941613][ T6741] should_fail_ex+0x512/0x640 [ 81.941627][ T6741] ? fs_reclaim_acquire+0xae/0x150 [ 81.941642][ T6741] ? tomoyo_encode2+0x100/0x3e0 [ 81.941655][ T6741] should_failslab+0xc2/0x120 [ 81.941667][ T6741] __kmalloc_noprof+0xd2/0x510 [ 81.941680][ T6741] tomoyo_encode2+0x100/0x3e0 [ 81.941695][ T6741] tomoyo_encode+0x29/0x50 [ 81.941707][ T6741] tomoyo_realpath_from_path+0x18f/0x6e0 [ 81.941721][ T6741] ? tomoyo_profile+0x47/0x60 [ 81.941737][ T6741] tomoyo_path_number_perm+0x245/0x580 [ 81.941747][ T6741] ? tomoyo_path_number_perm+0x237/0x580 [ 81.941759][ T6741] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 81.941783][ T6741] ? find_held_lock+0x2b/0x80 [ 81.941792][ T6741] ? hook_file_ioctl_common+0x145/0x410 [ 81.941802][ T6741] ? __fget_files+0x204/0x3c0 [ 81.941819][ T6741] ? __fget_files+0x20e/0x3c0 [ 81.941832][ T6741] ? fput+0x10/0xf0 [ 81.941851][ T6741] security_file_ioctl_compat+0x9b/0x240 [ 81.941869][ T6741] __ia32_compat_sys_ioctl+0xc3/0x360 [ 81.941890][ T6741] __do_fast_syscall_32+0x73/0x120 [ 81.941914][ T6741] do_fast_syscall_32+0x32/0x80 [ 81.941933][ T6741] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 81.941949][ T6741] RIP: 0023:0xf711e579 [ 81.941961][ T6741] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 81.941975][ T6741] RSP: 002b:00000000f510e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 81.941988][ T6741] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000000089f3 [ 81.941997][ T6741] RDX: 0000000080000080 RSI: 0000000000000000 RDI: 0000000000000000 [ 81.942004][ T6741] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 81.942012][ T6741] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 81.942020][ T6741] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 81.942040][ T6741] [ 81.942054][ T6741] ERROR: Out of memory at tomoyo_realpath_from_path. [ 82.081378][ T1336] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 82.221362][ T1336] usb 5-1: device descriptor read/64, error -71 [ 82.342210][ T1336] usb usb5-port1: attempt power cycle [ 82.642075][ T6757] netlink: 'syz.3.222': attribute type 4 has an invalid length. [ 82.650867][ T6757] netlink: 'syz.3.222': attribute type 4 has an invalid length. [ 82.663292][ T5982] lo speed is unknown, defaulting to 1000 [ 82.665237][ T5982] lo speed is unknown, defaulting to 1000 [ 82.667118][ T5982] lo speed is unknown, defaulting to 1000 [ 82.711375][ T1336] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 82.731870][ T1336] usb 5-1: device descriptor read/8, error -71 [ 82.971379][ T1336] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 83.003680][ T1336] usb 5-1: device descriptor read/8, error -71 [ 83.112319][ T1336] usb usb5-port1: unable to enumerate USB device [ 83.441713][ T6767] netlink: 20 bytes leftover after parsing attributes in process `syz.3.226'. [ 83.811030][ T6765] fuseblk: Bad value for 'fd' [ 83.853141][ T6770] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 84.583011][ T6785] overlayfs: conflicting lowerdir path [ 85.024901][ T6798] netlink: 24 bytes leftover after parsing attributes in process `syz.3.236'. [ 85.028132][ T6798] netlink: 24 bytes leftover after parsing attributes in process `syz.3.236'. [ 85.435160][ T6801] fuseblk: Bad value for 'fd' [ 85.615613][ T6813] rdma_rxe: rxe_newlink: failed to add lo [ 85.921700][ T5982] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 86.112725][ T5982] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 86.117083][ T5982] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 86.122374][ T5982] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 86.125976][ T5982] usb 5-1: New USB device strings: Mfr=255, Product=250, SerialNumber=0 [ 86.129195][ T5982] usb 5-1: Product: syz [ 86.130885][ T5982] usb 5-1: Manufacturer: syz [ 86.139385][ T6817] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 86.144309][ T5982] usb 5-1: Quirk or no altset; falling back to MIDI 1.0 [ 86.451157][ T1336] usb 5-1: USB disconnect, device number 6 [ 86.700935][ T6848] fuseblk: Bad value for 'fd' [ 87.135399][ T6867] netlink: 4 bytes leftover after parsing attributes in process `syz.1.250'. [ 87.138486][ T6867] capability: warning: `syz.1.250' uses deprecated v2 capabilities in a way that may be insecure [ 87.204364][ T6873] syz_tun: entered allmulticast mode [ 87.216336][ T6873] syz_tun: left allmulticast mode [ 87.833147][ T6903] warning: `syz.1.262' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 88.278102][ T6909] fuseblk: Bad value for 'fd' [ 88.577776][ T6921] netlink: 4 bytes leftover after parsing attributes in process `syz.3.265'. [ 88.883141][ T6930] netlink: 24 bytes leftover after parsing attributes in process `syz.0.269'. [ 89.205273][ T6944] IPVS: length: 78 != 8 [ 89.241046][ T6948] overlayfs: workdir and upperdir must be separate subtrees [ 90.020516][ T6954] rdma_rxe: rxe_newlink: failed to add lo [ 90.226333][ T63] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None [ 90.254936][ T6959] fuseblk: Bad value for 'fd' [ 90.331647][ T5982] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 90.503795][ T5982] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 90.508074][ T5982] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 90.514346][ T5982] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 90.517316][ T5982] usb 6-1: New USB device strings: Mfr=255, Product=250, SerialNumber=0 [ 90.520041][ T5982] usb 6-1: Product: syz [ 90.581640][ T5982] usb 6-1: Manufacturer: syz [ 90.586411][ T6954] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 90.590129][ T5982] usb 6-1: Quirk or no altset; falling back to MIDI 1.0 [ 90.727684][ T10] libceph: connect (1)[c::]:6789 error -101 [ 90.730388][ T10] libceph: mon0 (1)[c::]:6789 connect error [ 90.733889][ T10] libceph: connect (1)[c::]:6789 error -101 [ 90.735863][ T10] libceph: mon0 (1)[c::]:6789 connect error [ 90.796051][ T5982] usb 6-1: USB disconnect, device number 2 [ 90.932858][ T6996] netlink: 20 bytes leftover after parsing attributes in process `syz.2.284'. [ 90.993145][ T10] libceph: connect (1)[c::]:6789 error -101 [ 90.995232][ T10] libceph: mon0 (1)[c::]:6789 connect error [ 91.445174][ T6984] ceph: No mds server is up or the cluster is laggy [ 91.466183][ T7024] fuseblk: Bad value for 'fd' [ 92.042462][ T5984] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None [ 92.173054][ T7029] netlink: 20 bytes leftover after parsing attributes in process `syz.0.298'. [ 92.284837][ T7052] netlink: 4 bytes leftover after parsing attributes in process `syz.3.293'. [ 92.289177][ T7052] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 92.599113][ T7062] process 'syz.0.295' launched '/dev/fd/8' with NULL argv: empty string added [ 99.428853][ T7102] overlayfs: failed to resolve './file0': -2 [ 99.620593][ T7116] IPVS: sync thread started: state = BACKUP, mcast_ifn = lo, syncid = 5, id = 0 [ 99.784786][ T7113] fuseblk: Bad value for 'fd' [ 100.373538][ C0] vcan0: j1939_tp_rxtimer: 0xffff88806ca8b400: rx timeout, send abort [ 100.669023][ T7146] block device autoloading is deprecated and will be removed. [ 100.676993][ T7140] md: md2 stopped. [ 100.871397][ T7153] netlink: 4 bytes leftover after parsing attributes in process `syz.0.320'. [ 100.873883][ C0] vcan0: j1939_tp_rxtimer: 0xffff88806ca89800: rx timeout, send abort [ 101.376717][ C0] vcan0: j1939_tp_rxtimer: 0xffff88806ca89800: abort rx timeout. Force session deactivation [ 101.482718][ T7168] fuseblk: Bad value for 'fd' [ 102.251985][ T7187] netlink: 20 bytes leftover after parsing attributes in process `syz.1.323'. [ 102.798183][ T7200] netlink: 4 bytes leftover after parsing attributes in process `syz.2.325'. [ 103.125515][ T7211] netlink: 96 bytes leftover after parsing attributes in process `syz.1.327'. [ 103.277003][ T7211] lo speed is unknown, defaulting to 1000 [ 103.482133][ T7216] netlink: 24 bytes leftover after parsing attributes in process `syz.3.330'. [ 103.491661][ T7216] netlink: 24 bytes leftover after parsing attributes in process `syz.3.330'. [ 103.571696][ T7221] netlink: 300 bytes leftover after parsing attributes in process `syz.0.331'. [ 103.574495][ T7221] netlink: 364 bytes leftover after parsing attributes in process `syz.0.331'. [ 103.713018][ T7231] Bluetooth: MGMT ver 1.23 [ 103.789787][ T7232] fuseblk: Bad value for 'fd' [ 105.020641][ T7251] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 105.051095][ T7251] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98 [ 105.301476][ T7264] netlink: 24 bytes leftover after parsing attributes in process `syz.2.345'. [ 105.316442][ T7264] netlink: 24 bytes leftover after parsing attributes in process `syz.2.345'. [ 105.632138][ T40] audit: type=1326 audit(1746909062.457:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7268 comm="syz.0.347" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7ffc0000 [ 105.636512][ T7269] syz.0.347: vmalloc error: size 2147483264, exceeds total pages, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null) [ 105.638675][ T40] audit: type=1326 audit(1746909062.457:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7268 comm="syz.0.347" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7ffc0000 [ 105.643596][ T7269] ,cpuset=/ [ 105.649962][ T40] audit: type=1326 audit(1746909062.457:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7268 comm="syz.0.347" exe="/syz-executor" sig=0 arch=40000003 syscall=289 compat=1 ip=0xf7f72579 code=0x7ffc0000 [ 105.650065][ T7269] ,mems_allowed=0-1 [ 105.651048][ T40] audit: type=1326 audit(1746909062.457:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7268 comm="syz.0.347" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7ffc0000 [ 105.657622][ T7269] [ 105.657632][ T7269] CPU: 0 UID: 0 PID: 7269 Comm: syz.0.347 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 105.657646][ T7269] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 105.657652][ T7269] Call Trace: [ 105.657656][ T7269] [ 105.657660][ T7269] dump_stack_lvl+0x16c/0x1f0 [ 105.657679][ T7269] warn_alloc+0x248/0x3a0 [ 105.657692][ T7269] ? __pfx_warn_alloc+0x10/0x10 [ 105.657704][ T7269] ? __lock_acquire+0x5ca/0x1ba0 [ 105.657720][ T7269] ? __lock_acquire+0xaa4/0x1ba0 [ 105.657734][ T7269] ? do_replace+0x1c3/0x480 [ 105.657748][ T7269] __vmalloc_node_range_noprof+0x10ea/0x1540 [ 105.657766][ T7269] ? find_held_lock+0x2b/0x80 [ 105.657775][ T7269] ? do_replace+0x1c3/0x480 [ 105.657786][ T7269] ? __might_fault+0x13b/0x190 [ 105.657800][ T7269] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 105.657816][ T7269] ? _copy_from_user+0x59/0xd0 [ 105.657832][ T7269] ? copy_from_sockptr_offset.constprop.0+0xe5/0x170 [ 105.657845][ T7269] ? __pfx_copy_from_sockptr_offset.constprop.0+0x10/0x10 [ 105.657857][ T7269] ? copy_from_sockptr_offset.constprop.0+0xe5/0x170 [ 105.657871][ T7269] ? do_replace+0x1c3/0x480 [ 105.657883][ T7269] __vmalloc_noprof+0x6d/0x90 [ 105.657897][ T7269] ? do_replace+0x1c3/0x480 [ 105.657909][ T7269] do_replace+0x1c3/0x480 [ 105.657922][ T7269] ? __pfx_do_replace+0x10/0x10 [ 105.657940][ T7269] ? __lock_acquire+0xaa4/0x1ba0 [ 105.657954][ T7269] compat_do_replace+0x585/0x7c0 [ 105.657968][ T7269] ? __pfx_compat_do_replace+0x10/0x10 [ 105.657980][ T7269] ? aa_get_newest_label+0x375/0x680 [ 105.657991][ T7269] ? __pfx_aa_get_newest_label+0x10/0x10 [ 105.658006][ T7269] ? bpf_lsm_capable+0x9/0x10 [ 105.658016][ T7269] ? security_capable+0x7e/0x260 [ 105.658028][ T7269] do_ebt_set_ctl+0x2f5/0x3c0 [ 105.658041][ T7269] ? __pfx_do_ebt_set_ctl+0x10/0x10 [ 105.658055][ T7269] ? __pfx_do_ip_setsockopt+0x10/0x10 [ 105.658072][ T7269] ? nf_sockopt_find.constprop.0+0x222/0x290 [ 105.658086][ T7269] nf_setsockopt+0x8a/0xf0 [ 105.658098][ T7269] ip_setsockopt+0xcb/0xf0 [ 105.658113][ T7269] tcp_setsockopt+0xa4/0x100 [ 105.658122][ T7269] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 105.658136][ T7269] do_sock_setsockopt+0x221/0x470 [ 105.658149][ T7269] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 105.658169][ T7269] __sys_setsockopt+0x120/0x1a0 [ 105.658182][ T7269] __ia32_sys_setsockopt+0xbc/0x160 [ 105.658193][ T7269] ? syscall_trace_enter+0x89/0x260 [ 105.658207][ T7269] __do_fast_syscall_32+0x73/0x120 [ 105.658222][ T7269] do_fast_syscall_32+0x32/0x80 [ 105.658236][ T7269] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 105.658248][ T7269] RIP: 0023:0xf7f72579 [ 105.658257][ T7269] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 105.658266][ T7269] RSP: 002b:00000000f509655c EFLAGS: 00000296 ORIG_RAX: 000000000000016e [ 105.658275][ T7269] RAX: ffffffffffffffda RBX: 000000000000000d RCX: 0000000000000000 [ 105.658281][ T7269] RDX: 0000000000000080 RSI: 0000000080000640 RDI: 00000000000001e8 [ 105.658286][ T7269] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 105.658292][ T7269] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 105.658297][ T7269] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 105.658308][ T7269] [ 105.658312][ T7269] Mem-Info: [ 105.659686][ T40] audit: type=1326 audit(1746909062.457:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7268 comm="syz.0.347" exe="/syz-executor" sig=0 arch=40000003 syscall=145 compat=1 ip=0xf7f72579 code=0x7ffc0000 [ 105.665815][ T7269] active_anon:9168 inactive_anon:0 isolated_anon:0 [ 105.665815][ T7269] active_file:9566 inactive_file:40254 isolated_file:0 [ 105.665815][ T7269] unevictable:1796 dirty:299 writeback:0 [ 105.665815][ T7269] slab_reclaimable:10424 slab_unreclaimable:57180 [ 105.665815][ T7269] mapped:28283 shmem:5287 pagetables:783 [ 105.665815][ T7269] sec_pagetables:299 bounce:0 [ 105.665815][ T7269] kernel_misc_reclaimable:0 [ 105.665815][ T7269] free:50057 free_pcp:1532 free_cma:0 [ 105.666611][ T40] audit: type=1326 audit(1746909062.457:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7268 comm="syz.0.347" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7ffc0000 [ 105.670232][ T7269] Node 0 active_anon:3160kB inactive_anon:0kB active_file:4kB inactive_file:13156kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:7224kB dirty:0kB writeback:0kB shmem:3684kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:8912kB pagetables:688kB sec_pagetables:1108kB all_unreclaimable? yes Balloon:0kB [ 105.673626][ T40] audit: type=1326 audit(1746909062.457:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7268 comm="syz.0.347" exe="/syz-executor" sig=0 arch=40000003 syscall=365 compat=1 ip=0xf7f72579 code=0x7ffc0000 [ 105.674688][ T7269] Node 1 active_anon:33612kB inactive_anon:0kB active_file:38260kB inactive_file:147860kB unevictable:3648kB isolated(anon):0kB isolated(file):0kB mapped:105908kB dirty:1196kB writeback:0kB shmem:17464kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:3440kB pagetables:2444kB sec_pagetables:88kB all_unreclaimable? no Balloon:0kB [ 105.675637][ T40] audit: type=1326 audit(1746909062.457:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7268 comm="syz.0.347" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7ffc0000 [ 105.677119][ T7269] Node 0 [ 105.678500][ T40] audit: type=1326 audit(1746909062.457:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7268 comm="syz.0.347" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f72579 code=0x7ffc0000 [ 105.679977][ T7269] DMA free:3408kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:220kB local_pcp:0kB free_cma:0kB [ 105.681768][ T40] audit: type=1326 audit(1746909062.457:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7268 comm="syz.0.347" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7ffc0000 [ 105.683741][ T7269] lowmem_reserve[]: 0 293 293 293 293 [ 105.857226][ T7269] Node 0 DMA32 free:28688kB boost:10240kB min:23688kB low:27048kB high:30408kB reserved_highatomic:4096KB active_anon:3160kB inactive_anon:0kB active_file:4kB inactive_file:13152kB unevictable:3536kB writepending:0kB present:1032196kB managed:300236kB mlocked:0kB bounce:0kB free_pcp:2224kB local_pcp:1188kB free_cma:0kB [ 105.868175][ T7269] lowmem_reserve[]: 0 0 0 0 0 [ 105.869692][ T7269] Node 1 DMA32 free:166760kB boost:0kB min:47148kB low:58932kB high:70716kB reserved_highatomic:0KB active_anon:33640kB inactive_anon:0kB active_file:38260kB inactive_file:147868kB unevictable:3656kB writepending:1196kB present:1048432kB managed:948284kB mlocked:108kB bounce:0kB free_pcp:4256kB local_pcp:1032kB free_cma:0kB [ 105.878943][ T7269] lowmem_reserve[]: 0 0 0 0 0 [ 105.881873][ T7269] Node 0 DMA: 68*4kB (UM) 28*8kB (UM) 6*16kB (U) 22*32kB (UM) 5*64kB (U) 0*128kB 1*256kB (M) 1*512kB (M) 1*1024kB (M) 0*2048kB 0*4096kB = 3408kB [ 105.887123][ T7269] Node 0 DMA32: 554*4kB (UEH) 249*8kB (UEH) 72*16kB (UEH) 233*32kB (UMH) 74*64kB (UMH) 21*128kB (UME) 7*256kB (UMH) 7*512kB (UE) 3*1024kB (UM) 0*2048kB 0*4096kB = 28688kB [ 105.893546][ T7269] Node 1 DMA32: 304*4kB (ME) 441*8kB (ME) 293*16kB (UME) 356*32kB (UME) 214*64kB (UME) 79*128kB (UME) 32*256kB (UME) 16*512kB (UME) 15*1024kB (UM) 6*2048kB (UME) 19*4096kB (UM) = 166488kB [ 105.900725][ T7269] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 105.903911][ T7269] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 105.906968][ T7269] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 105.921487][ T7269] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 105.924489][ T7269] 54830 total pagecache pages [ 105.931477][ T7269] 0 pages in swap cache [ 105.933344][ T7269] Free swap = 124996kB [ 105.934775][ T7269] Total swap = 124996kB [ 105.936201][ T7269] 524155 pages RAM [ 105.941454][ T7269] 0 pages HighMem/MovableOnly [ 105.943046][ T7269] 208185 pages reserved [ 105.944511][ T7269] 0 pages cma reserved [ 106.135425][ T7290] netlink: 4 bytes leftover after parsing attributes in process `syz.2.354'. [ 106.180041][ T7290] netlink: 4 bytes leftover after parsing attributes in process `syz.2.354'. [ 106.183260][ T7290] netlink: 'syz.2.354': attribute type 21 has an invalid length. [ 106.185665][ T7290] netlink: 156 bytes leftover after parsing attributes in process `syz.2.354'. [ 106.367338][ T57] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 106.433246][ T7301] netlink: 24 bytes leftover after parsing attributes in process `syz.2.356'. [ 106.437791][ T7301] netlink: 24 bytes leftover after parsing attributes in process `syz.2.356'. [ 106.533433][ T57] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 106.537935][ T57] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 106.541122][ T57] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 106.545468][ T57] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 106.548557][ T57] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 106.554156][ T57] usb 6-1: config 0 descriptor?? [ 107.039503][ T57] plantronics 0003:047F:FFFF.0002: No inputs registered, leaving [ 107.045795][ T57] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0 [ 107.285839][ T7320] netlink: 4 bytes leftover after parsing attributes in process `syz.0.361'. [ 107.297015][ T7320] netlink: 4 bytes leftover after parsing attributes in process `syz.0.361'. [ 107.309417][ T7320] netlink: 4 bytes leftover after parsing attributes in process `syz.0.361'. [ 107.315198][ T7320] netlink: 4 bytes leftover after parsing attributes in process `syz.0.361'. [ 107.848258][ T7325] netlink: 20 bytes leftover after parsing attributes in process `syz.3.362'. [ 108.383906][ C0] plantronics 0003:047F:FFFF.0002: usb_submit_urb(ctrl) failed: -1 [ 108.782998][ T7352] netlink: 'syz.0.371': attribute type 1 has an invalid length. [ 108.805837][ T7352] 8021q: adding VLAN 0 to HW filter on device bond1 [ 108.850899][ T7352] bond1: (slave veth3): Enslaving as an active interface with a down link [ 109.184996][ T5984] usb 6-1: USB disconnect, device number 3 [ 111.171886][ T836] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None [ 111.214476][ T7408] __nla_validate_parse: 6 callbacks suppressed [ 111.214492][ T7408] netlink: 20 bytes leftover after parsing attributes in process `syz.1.391'. [ 111.360536][ T7427] netlink: 8 bytes leftover after parsing attributes in process `syz.2.392'. [ 111.367559][ T7427] netlink: 8 bytes leftover after parsing attributes in process `syz.2.392'. [ 111.621069][ T7445] FAULT_INJECTION: forcing a failure. [ 111.621069][ T7445] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 111.621840][ T7445] [ 111.621845][ T7445] ====================================================== [ 111.621848][ T7445] WARNING: possible circular locking dependency detected [ 111.621852][ T7445] 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 Not tainted [ 111.621858][ T7445] ------------------------------------------------------ [ 111.621861][ T7445] syz.2.394/7445 is trying to acquire lock: [ 111.621866][ T7445] ffffffff8e2cc880 (console_owner){-.-.}-{0:0}, at: console_lock_spinning_enable+0x9f/0xd0 [ 111.621895][ T7445] [ 111.621895][ T7445] but task is already holding lock: [ 111.621898][ T7445] ffff88802b339f18 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x29/0x130 [ 111.621917][ T7445] [ 111.621917][ T7445] which lock already depends on the new lock. [ 111.621917][ T7445] [ 111.621920][ T7445] [ 111.621920][ T7445] the existing dependency chain (in reverse order) is: [ 111.621923][ T7445] [ 111.621923][ T7445] -> #4 (&rq->__lock){-.-.}-{2:2}: [ 111.621934][ T7445] _raw_spin_lock_nested+0x31/0x40 [ 111.621945][ T7445] raw_spin_rq_lock_nested+0x29/0x130 [ 111.621953][ T7445] task_rq_lock+0xcf/0x490 [ 111.621960][ T7445] cgroup_move_task+0x81/0x2a0 [ 111.621969][ T7445] css_set_move_task+0x288/0x5f0 [ 111.621980][ T7445] cgroup_post_fork+0x201/0x9e0 [ 111.621992][ T7445] copy_process+0x5006/0x91a0 [ 111.622002][ T7445] kernel_clone+0xfc/0x960 [ 111.622012][ T7445] user_mode_thread+0xc7/0x110 [ 111.622023][ T7445] rest_init+0x23/0x2b0 [ 111.622030][ T7445] start_kernel+0x3e9/0x4d0 [ 111.622041][ T7445] x86_64_start_reservations+0x18/0x30 [ 111.622052][ T7445] x86_64_start_kernel+0xb0/0xc0 [ 111.622062][ T7445] common_startup_64+0x13e/0x148 [ 111.622072][ T7445] [ 111.622072][ T7445] -> #3 (&p->pi_lock){-.-.}-{2:2}: [ 111.622099][ T7445] _raw_spin_lock_irqsave+0x3a/0x60 [ 111.622109][ T7445] try_to_wake_up+0xb2/0x1680 [ 111.622117][ T7445] __wake_up_common+0x132/0x1f0 [ 111.622128][ T7445] __wake_up+0x31/0x60 [ 111.622136][ T7445] tty_port_default_wakeup+0x2a/0x40 [ 111.622148][ T7445] serial8250_tx_chars+0x68e/0x860 [ 111.622159][ T7445] serial8250_handle_irq+0x761/0xcb0 [ 111.622171][ T7445] serial8250_default_handle_irq+0x9a/0x210 [ 111.622183][ T7445] serial8250_interrupt+0x103/0x210 [ 111.622195][ T7445] __handle_irq_event_percpu+0x229/0x7d0 [ 111.622209][ T7445] handle_irq_event+0xab/0x1e0 [ 111.622216][ T7445] handle_edge_irq+0x263/0xd10 [ 111.622229][ T7445] __common_interrupt+0xdf/0x250 [ 111.622241][ T7445] common_interrupt+0xba/0xe0 [ 111.622266][ T7445] asm_common_interrupt+0x26/0x40 [ 111.622275][ T7445] pv_native_safe_halt+0xf/0x20 [ 111.622286][ T7445] default_idle+0x13/0x20 [ 111.622298][ T7445] default_idle_call+0x6d/0xb0 [ 111.622311][ T7445] do_idle+0x391/0x510 [ 111.622318][ T7445] cpu_startup_entry+0x4f/0x60 [ 111.622326][ T7445] start_secondary+0x21d/0x2b0 [ 111.622339][ T7445] common_startup_64+0x13e/0x148 [ 111.622348][ T7445] [ 111.622348][ T7445] -> #2 (&tty->write_wait){-...}-{3:3}: [ 111.622360][ T7445] _raw_spin_lock_irqsave+0x3a/0x60 [ 111.622370][ T7445] __wake_up+0x1c/0x60 [ 111.622378][ T7445] tty_port_default_wakeup+0x2a/0x40 [ 111.622388][ T7445] serial8250_tx_chars+0x68e/0x860 [ 111.622399][ T7445] __start_tx+0x3e9/0x4a0 [ 111.622409][ T7445] serial8250_start_tx+0x368/0x530 [ 111.622420][ T7445] __uart_start+0x292/0x4c0 [ 111.622432][ T7445] uart_write+0x218/0xb30 [ 111.622442][ T7445] n_tty_write+0x40f/0x1160 [ 111.622454][ T7445] file_tty_write.constprop.0+0x4ff/0x9b0 [ 111.622464][ T7445] redirected_tty_write+0xd4/0x150 [ 111.622473][ T7445] vfs_write+0x5ba/0x1180 [ 111.622481][ T7445] ksys_write+0x12a/0x240 [ 111.622488][ T7445] do_syscall_64+0xcd/0x230 [ 111.622499][ T7445] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 111.622508][ T7445] [ 111.622508][ T7445] -> #1 (&port_lock_key){-.-.}-{3:3}: [ 111.622518][ T7445] _raw_spin_lock_irqsave+0x3a/0x60 [ 111.622528][ T7445] serial8250_console_write+0x181/0x1890 [ 111.622541][ T7445] console_flush_all+0x801/0xc60 [ 111.622554][ T7445] console_unlock+0xd8/0x210 [ 111.622566][ T7445] vprintk_emit+0x418/0x6d0 [ 111.622574][ T7445] _printk+0xc7/0x100 [ 111.622584][ T7445] register_console+0xc2d/0x11b0 [ 111.622591][ T7445] univ8250_console_init+0x5f/0x90 [ 111.622601][ T7445] console_init+0x14f/0x680 [ 111.622612][ T7445] start_kernel+0x29f/0x4d0 [ 111.622622][ T7445] x86_64_start_reservations+0x18/0x30 [ 111.622632][ T7445] x86_64_start_kernel+0xb0/0xc0 [ 111.622642][ T7445] common_startup_64+0x13e/0x148 [ 111.622651][ T7445] [ 111.622651][ T7445] -> #0 (console_owner){-.-.}-{0:0}: [ 111.622664][ T7445] __lock_acquire+0x1173/0x1ba0 [ 111.622674][ T7445] lock_acquire+0x179/0x350 [ 111.622685][ T7445] console_lock_spinning_enable+0xb0/0xd0 [ 111.622698][ T7445] console_flush_all+0x7aa/0xc60 [ 111.622710][ T7445] console_unlock+0xd8/0x210 [ 111.622723][ T7445] vprintk_emit+0x418/0x6d0 [ 111.622730][ T7445] _printk+0xc7/0x100 [ 111.622740][ T7445] should_fail_ex+0x4e7/0x640 [ 111.622752][ T7445] strncpy_from_user+0x3b/0x2e0 [ 111.622762][ T7445] strncpy_from_user_nofault+0x7f/0x180 [ 111.622775][ T7445] bpf_probe_read_compat_str+0xf1/0x170 [ 111.622784][ T7445] bpf_prog_c1796171ffc7efef+0x3e/0x40 [ 111.622791][ T7445] bpf_trace_run4+0x249/0x5a0 [ 111.622801][ T7445] __bpf_trace_sched_switch+0x145/0x190 [ 111.622809][ T7445] __traceiter_sched_switch+0x6c/0xc0 [ 111.622822][ T7445] __schedule+0x1bf3/0x5de0 [ 111.622832][ T7445] preempt_schedule_common+0x44/0xc0 [ 111.622842][ T7445] preempt_schedule_thunk+0x16/0x30 [ 111.622856][ T7445] vfs_write+0xac5/0x1180 [ 111.622863][ T7445] ksys_write+0x12a/0x240 [ 111.622870][ T7445] __do_fast_syscall_32+0x73/0x120 [ 111.622882][ T7445] do_fast_syscall_32+0x32/0x80 [ 111.622894][ T7445] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 111.622905][ T7445] [ 111.622905][ T7445] other info that might help us debug this: [ 111.622905][ T7445] [ 111.622907][ T7445] Chain exists of: [ 111.622907][ T7445] console_owner --> &p->pi_lock --> &rq->__lock [ 111.622907][ T7445] [ 111.622920][ T7445] Possible unsafe locking scenario: [ 111.622920][ T7445] [ 111.622922][ T7445] CPU0 CPU1 [ 111.622925][ T7445] ---- ---- [ 111.622927][ T7445] lock(&rq->__lock); [ 111.622932][ T7445] lock(&p->pi_lock); [ 111.622938][ T7445] lock(&rq->__lock); [ 111.622943][ T7445] lock(console_owner); [ 111.622949][ T7445] [ 111.622949][ T7445] *** DEADLOCK *** [ 111.622949][ T7445] [ 111.622951][ T7445] 5 locks held by syz.2.394/7445: [ 111.622955][ T7445] #0: ffff88801c7bcb78 (&f->f_pos_lock){+.+.}-{4:4}, at: fdget_pos+0x2a2/0x370 [ 111.622975][ T7445] #1: ffff88802b339f18 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x29/0x130 [ 111.622994][ T7445] #2: ffffffff8e3bf440 (rcu_read_lock){....}-{1:3}, at: bpf_trace_run4+0x1cf/0x5a0 [ 111.623016][ T7445] #3: ffffffff8e3accc0 (console_lock){+.+.}-{0:0}, at: _printk+0xc7/0x100 [ 111.623037][ T7445] #4: ffffffff8e3acd30 (console_srcu){....}-{0:0}, at: console_flush_all+0x158/0xc60 [ 111.623062][ T7445] [ 111.623062][ T7445] stack backtrace: [ 111.623066][ T7445] CPU: 1 UID: 0 PID: 7445 Comm: syz.2.394 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 111.623077][ T7445] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 111.623083][ T7445] Call Trace: [ 111.623086][ T7445] [ 111.623090][ T7445] dump_stack_lvl+0x116/0x1f0 [ 111.623103][ T7445] print_circular_bug+0x275/0x350 [ 111.623114][ T7445] check_noncircular+0x14c/0x170 [ 111.623126][ T7445] __lock_acquire+0x1173/0x1ba0 [ 111.623140][ T7445] lock_acquire+0x179/0x350 [ 111.623151][ T7445] ? console_lock_spinning_enable+0x9f/0xd0 [ 111.623165][ T7445] ? console_lock_spinning_enable+0x88/0xd0 [ 111.623180][ T7445] console_lock_spinning_enable+0xb0/0xd0 [ 111.623194][ T7445] ? console_lock_spinning_enable+0x9f/0xd0 [ 111.623207][ T7445] console_flush_all+0x7aa/0xc60 [ 111.623222][ T7445] ? __pfx_console_flush_all+0x10/0x10 [ 111.623238][ T7445] ? is_printk_cpu_sync_owner+0x32/0x40 [ 111.623253][ T7445] console_unlock+0xd8/0x210 [ 111.623266][ T7445] ? __pfx_console_unlock+0x10/0x10 [ 111.623280][ T7445] ? do_raw_spin_unlock+0x130/0x230 [ 111.623294][ T7445] ? _printk+0xc7/0x100 [ 111.623304][ T7445] ? __down_trylock_console_sem+0xb0/0x140 [ 111.623317][ T7445] vprintk_emit+0x418/0x6d0 [ 111.623325][ T7445] ? __pfx_vprintk_emit+0x10/0x10 [ 111.623333][ T7445] ? bpf_trace_run4+0x27e/0x5a0 [ 111.623345][ T7445] _printk+0xc7/0x100 [ 111.623355][ T7445] ? __pfx__printk+0x10/0x10 [ 111.623366][ T7445] ? ___ratelimit+0x24c/0x570 [ 111.623378][ T7445] ? __pfx____ratelimit+0x10/0x10 [ 111.623390][ T7445] should_fail_ex+0x4e7/0x640 [ 111.623403][ T7445] strncpy_from_user+0x3b/0x2e0 [ 111.623415][ T7445] strncpy_from_user_nofault+0x7f/0x180 [ 111.623428][ T7445] bpf_probe_read_compat_str+0xf1/0x170 [ 111.623438][ T7445] bpf_prog_c1796171ffc7efef+0x3e/0x40 [ 111.623445][ T7445] bpf_trace_run4+0x249/0x5a0 [ 111.623455][ T7445] ? __pfx_bpf_trace_run4+0x10/0x10 [ 111.623467][ T7445] ? __lock_acquire+0xaa4/0x1ba0 [ 111.623479][ T7445] __bpf_trace_sched_switch+0x145/0x190 [ 111.623488][ T7445] ? __pfx___bpf_trace_sched_switch+0x10/0x10 [ 111.623498][ T7445] ? plist_check_head+0xa3/0x150 [ 111.623507][ T7445] ? tracing_record_taskinfo_sched_switch+0x54/0x400 [ 111.623521][ T7445] __traceiter_sched_switch+0x6c/0xc0 [ 111.623535][ T7445] __schedule+0x1bf3/0x5de0 [ 111.623546][ T7445] ? find_held_lock+0x2b/0x80 [ 111.623554][ T7445] ? __lock_acquire+0x5ca/0x1ba0 [ 111.623567][ T7445] ? __pfx___schedule+0x10/0x10 [ 111.623579][ T7445] ? mark_held_locks+0x49/0x80 [ 111.623590][ T7445] ? irqentry_exit+0x3b/0x90 [ 111.623601][ T7445] ? lockdep_hardirqs_on+0x7c/0x110 [ 111.623613][ T7445] ? preempt_schedule_thunk+0x16/0x30 [ 111.623627][ T7445] preempt_schedule_common+0x44/0xc0 [ 111.623639][ T7445] preempt_schedule_thunk+0x16/0x30 [ 111.623654][ T7445] ? vfs_write+0xab3/0x1180 [ 111.623661][ T7445] ? vfs_write+0xac0/0x1180 [ 111.623669][ T7445] vfs_write+0xac5/0x1180 [ 111.623676][ T7445] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 111.623690][ T7445] ? __pfx___mutex_lock+0x10/0x10 [ 111.623702][ T7445] ? __pfx_vfs_write+0x10/0x10 [ 111.623711][ T7445] ? __fget_files+0x20e/0x3c0 [ 111.623726][ T7445] ksys_write+0x12a/0x240 [ 111.623734][ T7445] ? __pfx_ksys_write+0x10/0x10 [ 111.623743][ T7445] ? rcu_is_watching+0x12/0xc0 [ 111.623752][ T7445] __do_fast_syscall_32+0x73/0x120 [ 111.623765][ T7445] do_fast_syscall_32+0x32/0x80 [ 111.623778][ T7445] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 111.623789][ T7445] RIP: 0023:0xf7f23579 [ 111.623796][ T7445] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 111.623804][ T7445] RSP: 002b:00000000f5004590 EFLAGS: 00000293 ORIG_RAX: 0000000000000004 [ 111.623813][ T7445] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00000000f5004610 [ 111.623818][ T7445] RDX: 0000000000000001 RSI: 00000000f73b2ff4 RDI: 0000000000000000 [ 111.623824][ T7445] RBP: 00000000f73e50a0 R08: 0000000000000000 R09: 0000000000000000 [ 111.623829][ T7445] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 111.623834][ T7445] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 111.623842][ T7445] [ 111.971592][ T7445] CPU: 1 UID: 0 PID: 7445 Comm: syz.2.394 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 111.971606][ T7445] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 111.971612][ T7445] Call Trace: [ 111.971618][ T7445] [ 111.971622][ T7445] dump_stack_lvl+0x116/0x1f0 [ 111.971638][ T7445] should_fail_ex+0x512/0x640 [ 111.971653][ T7445] strncpy_from_user+0x3b/0x2e0 [ 111.971666][ T7445] strncpy_from_user_nofault+0x7f/0x180 [ 111.971680][ T7445] bpf_probe_read_compat_str+0xf1/0x170 [ 111.971692][ T7445] bpf_prog_c1796171ffc7efef+0x3e/0x40 [ 111.971700][ T7445] bpf_trace_run4+0x249/0x5a0 [ 111.971711][ T7445] ? __pfx_bpf_trace_run4+0x10/0x10 [ 111.971723][ T7445] ? __lock_acquire+0xaa4/0x1ba0 [ 111.971736][ T7445] __bpf_trace_sched_switch+0x145/0x190 [ 111.971746][ T7445] ? __pfx___bpf_trace_sched_switch+0x10/0x10 [ 111.971756][ T7445] ? plist_check_head+0xa3/0x150 [ 111.971766][ T7445] ? tracing_record_taskinfo_sched_switch+0x54/0x400 [ 111.971779][ T7445] __traceiter_sched_switch+0x6c/0xc0 [ 111.971794][ T7445] __schedule+0x1bf3/0x5de0 [ 111.971806][ T7445] ? find_held_lock+0x2b/0x80 [ 111.971814][ T7445] ? __lock_acquire+0x5ca/0x1ba0 [ 111.971827][ T7445] ? __pfx___schedule+0x10/0x10 [ 111.971839][ T7445] ? mark_held_locks+0x49/0x80 [ 111.971850][ T7445] ? irqentry_exit+0x3b/0x90 [ 111.971862][ T7445] ? lockdep_hardirqs_on+0x7c/0x110 [ 111.971874][ T7445] ? preempt_schedule_thunk+0x16/0x30 [ 111.971890][ T7445] preempt_schedule_common+0x44/0xc0 [ 111.971901][ T7445] preempt_schedule_thunk+0x16/0x30 [ 111.971917][ T7445] ? vfs_write+0xab3/0x1180 [ 111.971925][ T7445] ? vfs_write+0xac0/0x1180 [ 111.971933][ T7445] vfs_write+0xac5/0x1180 [ 111.971940][ T7445] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 111.971954][ T7445] ? __pfx___mutex_lock+0x10/0x10 [ 111.971967][ T7445] ? __pfx_vfs_write+0x10/0x10 [ 111.971976][ T7445] ? __fget_files+0x20e/0x3c0 [ 111.971992][ T7445] ksys_write+0x12a/0x240 [ 111.972000][ T7445] ? __pfx_ksys_write+0x10/0x10 [ 111.972009][ T7445] ? rcu_is_watching+0x12/0xc0 [ 111.972018][ T7445] __do_fast_syscall_32+0x73/0x120 [ 111.972031][ T7445] do_fast_syscall_32+0x32/0x80 [ 111.972044][ T7445] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 111.972057][ T7445] RIP: 0023:0xf7f23579 [ 111.972064][ T7445] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 111.972073][ T7445] RSP: 002b:00000000f5004590 EFLAGS: 00000293 ORIG_RAX: 0000000000000004 [ 111.972083][ T7445] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00000000f5004610 [ 111.972088][ T7445] RDX: 0000000000000001 RSI: 00000000f73b2ff4 RDI: 0000000000000000 [ 111.972094][ T7445] RBP: 00000000f73e50a0 R08: 0000000000000000 R09: 0000000000000000 [ 111.972099][ T7445] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 111.972104][ T7445] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 111.972112][ T7445] [ 111.972260][ C0] vkms_vblank_simulate: vblank timer overrun [ 112.082281][ C0] vkms_vblank_simulate: vblank timer overrun [ 112.151757][ T836] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None VM DIAGNOSIS: 20:31:08 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000000 RBX=0000000000000003 RCX=ffffffff8168e4b6 RDX=ffff8880223d0000 RSI=ffffffff8169150c RDI=0000000000000000 RBP=ffff88802b339f00 RSP=ffffc900071df600 R8 =0000000000000000 R9 =0000000000000003 R10=0000000000000003 R11=ffffffff93a4df00 R12=0000000000000003 R13=0000000000000003 R14=ffff88802b23ae40 R15=ffffed10056673e0 RIP=ffffffff8169150d RFL=00000093 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880977ec000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000000000000 CR3=000000000e180000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000061 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff854c18b5 RDI=ffffffff9addfbc0 RBP=ffffffff9addfb80 RSP=ffffc9000135f330 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=722d302e35312e36 R12=0000000000000000 R13=0000000000000061 R14=ffffffff9addfb80 R15=ffffffff854c1850 RIP=ffffffff854c18df RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff8880978ec000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000000000000 CR3=0000000026e70000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000080000000 RBX=ffff888053a7e280 RCX=ffffffff8a10adff RDX=ffff88802220a440 RSI=0000000000000000 RDI=0000000000000001 RBP=ffff888053c82100 RSP=ffffc9000752f7e8 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000000 R12=0000000000000002 R13=ffff888053c82670 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff81ba9678 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff8880979ec000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000000000000 CR3=0000000026e70000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000000000000 RBX=ffff88802b53b100 RCX=ffffffff81aeb3de RDX=ffff88801d6cc880 RSI=ffffffff81aeb3b8 RDI=0000000000000005 RBP=ffffc9000044fd10 RSP=ffffc9000044fc40 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=fffffbfff1c7944e R12=1ffff92000089f8c R13=0000000000000002 R14=0000000000000001 R15=ffffed10056a7621 RIP=ffffffff81aeb3ba RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff888097aec000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000000000000 CR3=000000002539c000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000