last executing test programs: 44.420459333s ago: executing program 0 (id=283): r0 = socket$inet6(0xa, 0x2, 0x3a) setsockopt$inet6_int(r0, 0x29, 0x21, &(0x7f0000000880)=0x10003, 0x4) sendto$inet6(r0, &(0x7f0000000000)="800037bbfa9ba1ce", 0x8, 0x0, &(0x7f0000001100)={0xa, 0x0, 0x0, @loopback}, 0x1c) recvmmsg(r0, &(0x7f0000000380)=[{{0x0, 0x0, 0x0}, 0x3422a61a}], 0x1, 0x10102, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94) prlimit64(0x0, 0xe, 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000040)='c:::\x00', 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r5, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x20}}, 0x800) recvmmsg(r5, &(0x7f0000000780)=[{{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000001180)=""/4096}, {&(0x7f0000000440)=""/128}], 0x0, &(0x7f00000004c0)=""/193}, 0x7f}, {{&(0x7f00000005c0)=@in, 0x0, &(0x7f0000000700)=[{&(0x7f0000000640)=""/35}, {&(0x7f0000000680)=""/127}], 0x0, &(0x7f0000000740)=""/23}, 0x3}], 0x400000000000054, 0x40012100, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="2000000022000103780000000000000001"], 0x20}, 0x1, 0x0, 0x0, 0x1}, 0x0) lseek(0xffffffffffffffff, 0x8, 0x4) 42.665440386s ago: executing program 0 (id=289): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000f80)={{0x14, 0x10, 0x1, 0x0, 0x84000000}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x2000000, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}]}, @NFT_MSG_NEWSETELEM={0x30, 0xe, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x4}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0xb4}}, 0x0) 42.459763987s ago: executing program 0 (id=290): bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000140), 0x200002, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="180000000000000000000000000000006112000000000000950000000000000051fa7824c74186dc02ec0696c37b64e3b24da3180100000005165c0f63cdc2e82818254950ee03568b8809a1ff4c7c4750eabfafcb9531b31e6a86827d1010c5a909ab98e00e19644a88e95ba26d1c9eecddb2d11c541418ceeb29b9b6829c6e433822bdb3cc85244aab60c1aae1314d7381fcfeb970bea672cf1e926f6a51479343144648a07a975bd89dc398712376610f6254f12495b4658319684387f6f3543205d4bc4ce05b8b961103673dff7f158052e62b20f05fd24108d8363d44fcd0f8f3647899762a17282a1914452d11f557c28f396eebdc858558db0276d14f9035f2b5f703e5be7e4acf8b78c2834ae5805fffee38a9a0033d520bcf6b08ede50899d4b9bdf85c71c5de2503dab358f42a2624c7daa9ed44039aab46419496362e54cfad05a0004ac71a003d7b85d07191bed4e5a890826300214146f7ed569985439baa355c2766dd056f5d79e454f3d873095e7a237bc06d035a8d601f21746d886419f38b34a495040000000071c2f0cce8c93cc17e9afa314fcb2ba15d646c66b0f65021829f87d988b4e2d71753b1549fa734f0b2e56dbd21ed2e09d0cddad721971637f384eed3034597c93e1c52f42cad0ed09c395dc6e9703660fefa1c80f467367c006f25caf0cbcefd13d68839893e39c588eb032905f91cafa4996dbf0c9be9654db05fb918086cc8228d02a3092c0830b8f587a5624515298b2d4eb2bde6f9a2eb83d53f717f13fa7552d92c51dbd32ea50c490ecd085d2811a7555c538cffffff7f00000000dd872244bfa64779e0f43a9c277e2910b7ccdc3d6726d34ad2101033a623ca2a49ad344884289130bc71cee2b7de62bf48129ae1af052a2d46a61625735a9eea7f793946b3229e861d8ea49806b3f7d4295f6b000000000000f337b1ceb2d8a65dcdcd895d7ba37098d2593fdaaef445af5bee02019c00000099b13ecda2a5b37de0519e974cba92ebaf0f701611a9b027ce04340bda4594cc9049c3f101629ab028145e004209ebe71a6fe84af50804000000000000004a27213354964e250a98fe357676f94b6947383e320fbb1118f586d5b9b1b977e1e1a4490ff67703a9b5900f8a6f8a805879dd91ec5ff435b219c53680c0ae04dcc4ef69b98fcb0d6b6a03a8b71a66b4e2876dc4b610444bf10000000000b046b6ae5d68156bcbd6d8793ade9a22ac8fc7857e5bbc14adc4e12b08f350c6789283b9990c72e64372a1f79769a8bdc632fc1a0b3417855d8b7d25ca4d404c23631ad3d2f55dcd385371c86170a4bca58c2b2b4eabc365f45bd10bb45b0c5bc354456a52be18d9b44014d20a3c51c8f013dade83562e73278662829e4f5a9ac00fd91178468c737f0872d97d38d11a176be5a0d7294c51eb161eddcfefa8837c7430721851ec2a107af0df6d43e732bbc01e76c66895eb85d36798d61622773591ee21ad9f6a1b73fa9cf3ffeb8a00b63af800a81d0fb8aa29df8b8ad6fbafefb5802a23cbdeeabceda5bfc5ff2fa5c1d61d04a1324794c6ed000696d9f04010c35474e690545c3d9bd836d4cef2585ba616e01c3d000000000000000000470ebc6f3453ecbf3047e4547d7632d3ad21798e730cb5d1da059b5bdb8107815dff995c0788906790406dfb4f8ee9f24ff94233e2e6e581e6e5de33a5f254c9a8b612547473c3001df3928dac9203b744619082421a8da7c00000000000000000000000000000018a73ef40cca690fb7595c6962984f8276677be6f66cbdbccf1896433808c9c84d74ac4a7c186a04a2250972f7acb156b21f9826b6acb7db32c4e3b3ec8b59fd972975edb1da872d81a35e4fda2f5cbde6b40bea20418c6e9dad30b791eea58f53e80fee4dd7fe08373ea2784fcd3a65261de71eb866458d2c22a"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r1, r2, 0x2, 0x2, 0x0, @void, @value}, 0x10) r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r3, r4, 0x2, 0x2, 0x0, @void, @value}, 0x10) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000380)={@cgroup=r0, 0x2, 0x1, 0x0, &(0x7f0000000180)=[0x0, 0x0], 0x2, 0x0, 0x0, 0x0, 0x0}, 0x40) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000140), 0x200002, 0x0) (async) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70) (async) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r1, r2, 0x2, 0x2, 0x0, @void, @value}, 0x10) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70) (async) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r3, r4, 0x2, 0x2, 0x0, @void, @value}, 0x10) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000380)={@cgroup=r0, 0x2, 0x1, 0x0, &(0x7f0000000180)=[0x0, 0x0], 0x2, 0x0, 0x0, 0x0, 0x0}, 0x40) (async) 42.085801005s ago: executing program 0 (id=291): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0) writev(r1, &(0x7f0000000600)=[{&(0x7f00000000c0)='s', 0x1}], 0x1) r2 = openat$nullb(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0) ioctl$BLKZEROOUT(r2, 0x127f, &(0x7f0000000100)={0x0, 0xa00}) sendmsg$NFT_BATCH(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="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"], 0xb4}}, 0x0) 41.717559651s ago: executing program 0 (id=295): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) mount$afs(&(0x7f0000000040)=ANY=[@ANYBLOB='#syz1'], 0x0, 0x0, 0x0, 0x0) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$inet_buf(r0, 0x0, 0x53, 0x0, &(0x7f0000000040)=0x52) move_pages(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) 17.521705107s ago: executing program 2 (id=343): r0 = socket$nl_generic(0x10, 0x3, 0x10) mkdir(&(0x7f00000003c0)='./file0\x00', 0x0) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000800), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=0']) accept4(r0, &(0x7f0000000000)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, &(0x7f0000000080)=0x80, 0x80800) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) socket$nl_route(0x10, 0x3, 0x0) r3 = syz_open_dev$video(0x0, 0x3ff, 0x2000) ioperm(0x0, 0x9, 0x5) inotify_init1(0x0) ioctl$vim2m_VIDIOC_ENUM_FMT(0xffffffffffffffff, 0xc0405602, &(0x7f0000000140)={0x0, 0x1, 0x3, "ee070000000000ebffbc28da45f8ff7c7a00"}) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000640)=0x6) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8) syz_io_uring_setup(0x4d7, 0x0, &(0x7f0000000340)=0x0, 0x0) syz_io_uring_submit(r5, 0x0, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0}) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, 0x0) ioctl$VIDIOC_STREAMOFF(r3, 0x40045613, &(0x7f0000000200)=0xffffffff) socket$nl_netfilter(0x10, 0x3, 0xc) r6 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r6, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000300)={0x2, 0x4e23, @local}, 0x10) r7 = syz_open_dev$vim2m(&(0x7f0000005f00), 0x0, 0x2) ioctl$vim2m_VIDIOC_REQBUFS(r7, 0xc0145608, 0x0) ioctl$vim2m_VIDIOC_QBUF(r7, 0xc044560f, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000200), r2) 16.110253302s ago: executing program 0 (id=295): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) mount$afs(&(0x7f0000000040)=ANY=[@ANYBLOB='#syz1'], 0x0, 0x0, 0x0, 0x0) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$inet_buf(r0, 0x0, 0x53, 0x0, &(0x7f0000000040)=0x52) move_pages(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) 14.00992437s ago: executing program 2 (id=355): mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0) mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1/file2\x00', 0x81c0, 0x0) r0 = socket$inet6_sctp(0xa, 0x1, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_MAX_BURST(r0, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000300)=0x8) getsockopt$inet_sctp6_SCTP_STATUS(0xffffffffffffffff, 0x84, 0xe, &(0x7f0000000100)={r1, 0xa7040, 0x80000000, 0x7, 0xfe, 0x1, 0x7, 0xfffffc00, {0x0, @in6={{0xa, 0x4e22, 0x9, @private0, 0x81}}, 0xffffffff, 0xb, 0x1, 0x0, 0x2}}, 0x0) r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0x200000, 0x0) landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(0xffffffffffffffff, 0x1, &(0x7f0000000340)={0x2000, r2}, 0x0) landlock_restrict_self(0xffffffffffffffff, 0x0) r3 = socket(0x2b, 0x80801, 0x1) getsockopt$IP_VS_SO_GET_TIMEOUT(r3, 0x0, 0x486, &(0x7f0000000040), &(0x7f0000000080)=0xc) linkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1/file2\x00', 0xffffffffffffff9c, &(0x7f00000003c0)='./file0/file2\x00', 0x0) ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r2, 0x40089413, &(0x7f00000001c0)=0xff) 13.915024716s ago: executing program 2 (id=356): r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x402, 0x0) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f00000000c0)={0x1f, 0xffff}, 0x6) write(r1, &(0x7f0000000040)="05000000", 0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000007, 0x38011, r0, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000640), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_RATE_SET(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000480)=ANY=[@ANYBLOB="21f25e80620beeac41762b4a4a9892124daf991d6fd4dbc59ab62689a27d41fb309547008762e39f06163b3c42010000000000000053ecf50c01a110dd9197b5056656a37403b121fcb579", @ANYRES16=r3, @ANYBLOB="010000000000000000002c00000008005800000000000e0001006e657464657673696d0000000f0002006e657464657673696d3000000800030001000000"], 0x44}}, 0x0) remap_file_pages(&(0x7f00002ec000/0x200000)=nil, 0x200000, 0x0, 0x1, 0x2000) r4 = syz_open_dev$dri(&(0x7f0000000180), 0x2, 0x16b802) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r4, 0x4010640d, &(0x7f0000000000)={0x3, 0x2}) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_PAUSE_GET(r5, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f0000000000)={0x18, r6, 0x1, 0x70bd2a, 0x0, {0x1a}, [@HEADER={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x200408c0}, 0x240000d0) futex_waitv(&(0x7f0000001cc0)=[{0x4, &(0x7f0000000100), 0x2}], 0x1, 0x0, 0x0, 0x0) ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r4, 0xc01064b5, &(0x7f0000000140)={&(0x7f00000002c0)=[0x0], 0x1}) ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r4, 0xc01c64b9, &(0x7f0000000300)={&(0x7f0000000200), &(0x7f0000000240), 0x41, r7}) pipe2$watch_queue(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80) ioctl$KVM_CREATE_IRQCHIP(r8, 0xae60) setsockopt$MRT6_FLUSH(r8, 0x29, 0xd4, &(0x7f0000000340)=0x8, 0x4) r9 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000080)={0x1b, 0x0, 0x0, 0x2, 0x0, 0xffffffffffffffff, 0x4, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x5, 0x2, 0x0, @void, @value, @void, @value}, 0x14) bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000100)=@o_path={&(0x7f0000000040)='./file0\x00', r9, 0x4000, r0}, 0x14) getsockopt$sock_cred(r8, 0x1, 0x11, &(0x7f0000000200)={0x0, 0x0, 0x0}, &(0x7f0000000240)=0xc) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000000280)={{0x1, 0x1, 0x18, r0, {r10, r11}}, './file0\x00'}) mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x996031, &(0x7f0000000380)={'trans=fd,', {'rfdno', 0x3d, r12}, 0x2c, {'wfdno', 0x3d, r8}, 0x2c, {[{@cache_readahead}, {@version_9p2000}, {@aname={'aname', 0x3d, '\x00'}}], [{@pcr={'pcr', 0x3d, 0xa}}, {@fowner_gt={'fowner>', r13}}, {@seclabel}, {@hash}, {@smackfsroot}, {@fowner_eq={'fowner', 0x3d, r10}}]}}) mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2) mincore(&(0x7f0000054000/0x4000)=nil, 0x4000, &(0x7f0000000700)=""/4096) 13.566019768s ago: executing program 2 (id=357): unshare(0x6a040000) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000040)={0x1, 0x0, 0x0, 0x2000, &(0x7f0000fa2000/0x2000)=nil}) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000040)={0x1, 0x0, 0x1000, 0x2000, &(0x7f0000fa2000/0x2000)=nil}) r3 = socket(0x1d, 0x2, 0x6) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000380)={'vcan0\x00', 0x0}) bind$can_j1939(r3, &(0x7f0000000040)={0x1d, r4, 0x2}, 0x18) r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r4, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0xc) r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$EBT_SO_GET_INIT_INFO(r3, 0x84, 0x82, &(0x7f0000000240)={'broute\x00', 0x0, 0x0, 0x0, [0x2, 0x0, 0x9, 0x7, 0x1, 0x80000000]}, &(0x7f0000000000)=0x50) sendmsg$IEEE802154_LLSEC_SETPARAMS(r6, &(0x7f00000003c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000640)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="080027bd7000ffdbdf252500000005002b000100000005002a000100000005002e000700000008002d000200aaaaaaaaaaaa05002a00010000001fafcd995ff4ef44d511972d8c57be06000400a12cdac5"], 0x48}, 0x1, 0x0, 0x0, 0x4044000}, 0x4000) r7 = syz_genetlink_get_family_id$net_dm(&(0x7f0000000300), r6) r8 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r8, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wlan1\x00'}) sendmsg$NET_DM_CMD_START(r6, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000540)={0x14, r7, 0x1, 0x70bd25}, 0x14}}, 0x0) bpf$BPF_LINK_UPDATE(0x1d, 0x0, 0x0) r9 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0) ioctl$TUNSETIFF(r9, 0x400454ca, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000400)=@raw={'raw\x00', 0x4001, 0x3, 0x1c0, 0x98, 0xb, 0x148, 0x0, 0x148, 0x128, 0x240, 0x240, 0x128, 0x215, 0x3, 0x0, {[{{@ip={@rand_addr=0x64010101, @local, 0x0, 0xff000000, 'macvtap0\x00', 'veth0_to_bond\x00'}, 0x2e8, 0x70, 0x98, 0x0, {0xff0f000000000000}}, @common=@unspec=@MARK={0x28, 'MARK\x00', 0x2, {0x4, 0xc16}}}, {{@uncond, 0xec010000, 0x70, 0x90}, @unspec=@TRACE={0x20}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x220) r10 = syz_init_net_socket$llc(0x1a, 0x1, 0x0) connect$llc(r10, &(0x7f0000000180)={0x1a, 0x0, 0xfc, 0x8, 0x0, 0x0, @multicast}, 0x10) epoll_create1(0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0x1f, 0x0, 0x0, 0x1000, 0x51, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) ppoll(&(0x7f0000000000), 0x0, 0x0, 0x0, 0x0) 4.389928877s ago: executing program 1 (id=368): ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=@newtaction={0x14, 0x30, 0x800}, 0x14}}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000940)={{0xfffc, 0x8001}, 'syz1\x00', 0x3c}) openat$procfs(0xffffffffffffff9c, &(0x7f0000001080)='/proc/bus/input/devices\x00', 0x0, 0x0) openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) socket$inet(0x2, 0x4000000000000001, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$inet_udp(0x2, 0x2, 0x0) pselect6(0x73, &(0x7f00000001c0), 0x0, &(0x7f00000002c0)={0x3fe}, 0x0, 0x0) ioctl$UI_DEV_CREATE(r0, 0x5501) 4.002567574s ago: executing program 1 (id=369): r0 = socket$nl_generic(0x10, 0x3, 0x10) madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17) syz_clone3(&(0x7f00000003c0)={0x800200, 0x0, 0x0, 0x0, {0x5}, 0x0, 0x0, 0x0, &(0x7f0000000340)=[0x0], 0x1}, 0x58) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15) r1 = fsopen(&(0x7f0000000080)='rpc_pipefs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0) fsmount(r1, 0x0, 0x1) fsconfig$FSCONFIG_CMD_RECONFIGURE(r1, 0x7, 0x0, 0x0, 0x0) r2 = getpid() process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/43, 0x7ffff000}, {&(0x7f0000000480)=""/165, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x2aa, 0x0) r3 = socket$kcm(0x29, 0x2, 0x0) write$cgroup_pressure(r3, &(0x7f0000000140)={'full'}, 0xfffffdef) r4 = gettid() sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(0xffffffffffffffff, &(0x7f0000000f40)={0x0, 0x0, &(0x7f0000000f00)={&(0x7f0000000000)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_PID={0x8, 0x1c, r4}]}, 0x1c}}, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="2000000043000900fffffffffddbdf25010000000c0001"], 0x20}}, 0x44850) 3.084283904s ago: executing program 1 (id=370): r0 = socket(0x10, 0x803, 0x0) sendmsg$NL80211_CMD_STOP_AP(r0, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f00000028c0)={0x0, 0x28}}, 0x0) getsockname$packet(r0, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f0000000040)={'batadv0\x00', 0x0}) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000001c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="0900000000000000000002000000140001800500020001"], 0x28}}, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f0000000100)={'batadv0\x00', 0x0}) sendmsg$MPTCP_PM_CMD_SUBFLOW_CREATE(r0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000180)={&(0x7f0000000580)={0xe8, r6, 0x400, 0x70bd25, 0x25dfdbfd, {}, [@MPTCP_PM_ATTR_ADDR_REMOTE={0x14, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e23}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r4}]}, @MPTCP_PM_ATTR_ADDR_REMOTE={0x1c, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e23}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x22}}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}]}, @MPTCP_PM_ATTR_ADDR={0x30, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7f}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @dev={0xfe, 0x80, '\x00', 0x3b}}]}, @MPTCP_PM_ATTR_ADDR={0x2c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x27}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0xfffffffffffffd7a, 0x7, r7}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r1}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}]}, @MPTCP_PM_ATTR_ADDR={0x40, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @remote}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x13}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @remote}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}]}, @MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0x4}]}, 0xe8}, 0x1, 0x0, 0x0, 0x11}, 0x4) sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[], 0x48}}, 0x0) userfaultfd(0x801) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) r8 = socket$kcm(0x29, 0x2, 0x0) write$cgroup_pressure(r8, &(0x7f0000000140)={'full', 0x20, 0x3, 0x20, 0x2}, 0x2f) r9 = fanotify_init(0x8, 0x0) fanotify_mark(r9, 0x21, 0x8000019, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r10 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r11 = dup(r10) pipe(&(0x7f00000022c0)) syz_emit_ethernet(0x5e, &(0x7f0000000340)={@local, @dev, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a3ff2", 0x28, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0xa, 0x10, 0x0, 0x0, 0x0, {[@generic={0x13, 0x4, "a3da"}, @exp_smc={0xfe, 0x6}, @window={0x3, 0x3, 0xf8}, @mss={0x2, 0x4, 0x9d}]}}}}}}}}, 0x0) write$6lowpan_enable(r11, &(0x7f0000000000)='0', 0xfffffd2c) r12 = socket(0x840000000002, 0x3, 0xff) connect$inet(r12, &(0x7f0000000280)={0x2, 0x4e22, @remote}, 0x10) sendmmsg$inet(r12, &(0x7f0000005240)=[{{0x0, 0xfffffdef, 0x0, 0x0, 0x0, 0x0, 0x10}, 0xfffffdef}], 0x4000095, 0x401eb94) 3.084039257s ago: executing program 3 (id=371): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x101001) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r2, 0x4010640d, &(0x7f0000000000)={0x3, 0x2}) ioctl$DRM_IOCTL_MODE_ATOMIC(r2, 0xc03864bc, &(0x7f00000006c0)={0x0, 0x56, &(0x7f0000003b00), 0x0, 0x0, 0x0, 0x0, 0x2000000000000583}) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000240)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct={0x0, 0x0, 0x0, 0x3, 0x1}]}}, 0x0, 0x26, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000100)={'batadv0\x00', 0x0}) r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$BATADV_CMD_SET_MESH(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="090200000000000000000f000000050030000000000008000300", @ANYRES32=r3], 0x24}}, 0x0) sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=@newlink={0x54, 0x10, 0x401, 0x0, 0x1000000, {0x0, 0x0, 0x0, 0x0, 0xf0ff}, [@IFLA_LINKINFO={0x2c, 0x12, 0x0, 0x1, @ip6gretap={{0xe}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GRE_REMOTE={0x14, 0x7, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}]}}}, @IFLA_MASTER={0x8, 0xa, r3}]}, 0x54}}, 0x0) 2.711791343s ago: executing program 3 (id=372): mkdir(&(0x7f0000000040)='./file0\x00', 0x1e0) mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x1000000, &(0x7f0000000840)=ANY=[@ANYBLOB="78226e6f65786163638173733d616e792c63616368653d"]) chdir(&(0x7f0000000280)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x20c01, 0x0) pwritev(r0, &(0x7f0000000140)=[{&(0x7f0000000080)='|', 0x1}], 0x1, 0x6, 0x4) r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]}) close_range(r1, 0xffffffffffffffff, 0x0) 2.441491055s ago: executing program 3 (id=373): bind$netlink(0xffffffffffffffff, 0x0, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r2}, 0x10) ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000004700)={'team0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0x1f, 0x1f00, {0x0, 0x0, 0x74, r3, {0xb, 0xfff2}, {}, {0xe, 0xc}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x8881}, 0x0) 2.266485932s ago: executing program 1 (id=374): r0 = dup(0xffffffffffffffff) write$6lowpan_enable(r0, &(0x7f0000000000)='0', 0xfffffd2c) r1 = syz_io_uring_setup(0x239, &(0x7f0000000200)={0x0, 0x4669, 0x10100, 0x2, 0x9d}, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) io_uring_enter(r1, 0x2ded, 0x4008, 0x0, 0x0, 0x0) socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)) syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0x0) r2 = syz_io_uring_setup(0x24fa, &(0x7f0000000080)={0x0, 0x0, 0x10100, 0x3, 0x1d9}, &(0x7f0000000240)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_setup(0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x400, 0x0, r2}, 0x0, 0x0) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) write$UHID_CREATE2(r5, &(0x7f0000000300)=ANY=[@ANYBLOB='\a'], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r5, 0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_TEE) io_uring_enter(r2, 0x2d3e, 0x0, 0x0, 0x0, 0x0) 2.108881498s ago: executing program 1 (id=375): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) io_pgetevents(0x0, 0xfffffffb, 0x0, 0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)={[0xf6e8, 0x400]}, 0x8}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0) r3 = userfaultfd(0x1) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8) capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x800, 0x0, 0x81, 0xfffffdff, 0xd}) r4 = syz_open_dev$ndb(&(0x7f0000000040), 0x0, 0x101140) ioctl$IOC_PR_REGISTER(r4, 0x401870c8, 0x0) madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x15) ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f00000000c0)) ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2}) ioctl$UFFDIO_COPY(r3, 0xc028aa05, &(0x7f0000000180)={&(0x7f00002b9000/0x400000)=nil, &(0x7f00003ab000/0x2000)=nil, 0x400000, 0x2, 0x2}) r5 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'macvlan1\x00', 0x0}) sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001e00)=ANY=[@ANYBLOB="9000000010000305000000000000000000000700", @ANYRES32=0x0, @ANYBLOB="996e06004d4c0700540012800800010068737200480002800500030008000000050003000500000005000300fd00000008000200", @ANYRES32, @ANYBLOB="08000100", @ANYRES32=r6], 0x90}}, 0x40000) mmap(&(0x7f00005af000/0x2000)=nil, 0x2000, 0x4, 0x20010, r5, 0x1ca4000) ioctl$KVM_SET_IRQCHIP(0xffffffffffffffff, 0x4048aec9, &(0x7f0000001480)={0x3, 0x0, @ioapic={0x4, 0x0, 0x0, 0xffffffff, 0x0, [{}, {0xfc, 0xa9}, {}, {}, {}, {0x0, 0x0, 0x0, '\x00', 0x7}, {0x3}, {}, {}, {0x0, 0x9, 0x25}, {0x0, 0x0, 0x84}, {0x0, 0x0, 0x20}, {}, {}, {}, {}, {0x65, 0x6}, {0x0, 0x6, 0x4}, {0x0, 0xff, 0xd}, {0x0, 0x0, 0x0, '\x00', 0x6}, {}, {0x40, 0x1}, {0x0, 0x1}, {0x4, 0x0, 0x0, '\x00', 0x1}]}}) r7 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r7, 0xae80, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) r8 = signalfd4(0xffffffffffffffff, &(0x7f0000000140)={[0xfffffffffffffff5]}, 0x8, 0x0) ppoll(&(0x7f0000000000)=[{r8, 0x350b}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_CPUID(r7, 0x4008ae8a, &(0x7f0000000100)) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x2809}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @veth={{0x9}, {0x4, 0x2, 0x0, 0x1, @void}}}, @IFLA_NUM_TX_QUEUES={0x8, 0x1f, 0x3}]}, 0x3c}}, 0x0) socket$inet6_icmp(0xa, 0x2, 0x3a) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x3, 0x3, &(0x7f0000000000)=@framed={{0x7a, 0xa, 0x0, 0xff00, 0x0, 0x71, 0x10, 0xb4}}, &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000000c0)={0xffffffffffffffff, 0x58}, 0x10) 1.950019374s ago: executing program 2 (id=376): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000001280)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x17) r2 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$TIOCSWINSZ(r2, 0x5414, &(0x7f0000000100)={0xf6c8, 0xcd5a, 0x8, 0xdffc}) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3) ioctl$FS_IOC_GETFSLABEL(r3, 0x400452c9, &(0x7f0000000100)) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CAP_MSR_PLATFORM_INFO(r5, 0x4068aea3, &(0x7f0000000040)={0x9f, 0x0, 0x1}) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000)={r1}, 0x4) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000dc0)={0x6, 0x6, &(0x7f0000000640)=@framed={{}, [@map_fd={0x18, 0x0, 0x2, 0x0, r1}, @ldst={0x1, 0x2, 0x3}]}, &(0x7f0000000d40)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r6 = socket$netlink(0x10, 0x3, 0x0) r7 = socket(0x10, 0x803, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r7, &(0x7f0000000580)={0x0, 0x14, &(0x7f0000000540)={0x0, 0x1c}}, 0x0) getsockname$packet(r7, &(0x7f0000000600)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14) r9 = openat$uinput(0xffffff9c, &(0x7f0000000140), 0x802, 0x0) ioctl$UI_ABS_SETUP(r9, 0x401c5504, &(0x7f0000000200)={0x9, {0x8, 0x8000, 0x9, 0x3ff, 0x3, 0x80}}) r10 = semget(0x1, 0x3, 0x204) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000005, 0x8031, 0xffffffffffffffff, 0xe651e000) r11 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r11, 0x29, 0x20, &(0x7f0000000180)={@private0, 0x8000000, 0x0, 0xff, 0x1}, 0x20) ioperm(0x0, 0x12e, 0x8000000000008) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) syz_clone(0x20003000, 0x0, 0x0, 0x0, 0x0, 0x0) semctl$IPC_RMID(r10, 0x0, 0x0) sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB="3c0000001000850600000000ff6122314a000800", @ANYRES32=r8, @ANYBLOB="00001000252155b21c0012000c000100626f6e64000000000c0002000800010001"], 0x3c}}, 0x40000) sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x500, &(0x7f00000000c0)={&(0x7f00000001c0)=@newlink={0x3c, 0x10, 0x503, 0x0, 0xfffffffc, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bond={{0x9}, {0x4}}}, @IFLA_MASTER={0x8, 0xa, r8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x4000) ioctl$KDSETMODE(r0, 0x4b3a, 0x1) 925.292767ms ago: executing program 2 (id=377): r0 = fsopen(&(0x7f0000000140)='virtiofs\x00', 0x0) readv(r0, &(0x7f0000000400)=[{&(0x7f00000002c0)=""/231, 0xe7}], 0x1) r1 = socket$nl_crypto(0x10, 0x3, 0x15) getsockopt$SO_TIMESTAMP(r1, 0x1, 0x40, 0x0, &(0x7f0000001800)) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x0, 0x40000000, 0x0, @void, @value, @void, @value}, 0x50) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r4 = dup(r3) write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c) r5 = syz_io_uring_setup(0x235, &(0x7f00000002c0)={0x0, 0x4533, 0x80, 0x0, 0x2b1}, &(0x7f0000000180)=0x0, &(0x7f0000000340)=0x0) r8 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r8, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73772cc9f1ba1f8484300", 0x16}, {&(0x7f0000000640)="9abe48", 0x3}], 0x2}, 0x0) syz_io_uring_submit(r6, r7, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0xb0d4ec74d9abc5, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x201}, 0x1}) io_uring_enter(r5, 0x2ded, 0x4000, 0x0, 0x0, 0x0) r9 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]}) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r9, 0xc0502100, 0x0) r10 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r10}, 0x10) r11 = socket$inet6_sctp(0xa, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r11, 0x84, 0x76, &(0x7f0000000040)={r12, 0x5}, 0x8) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r4, 0x84, 0x6d, &(0x7f0000001840)={r12, 0x1000, "b4fe736825e35dc9e120b79a486f821ef5d15236899749e84eb7b96d9d6920f251676d12b353cde870d28c027cbecd6cd5270ae4f017a8c4c87c9b31d3829f64bc5deb699600a9ee755dbaf3e30bdddbcc2f4ce8728be5fe2e746eba03530ba3d5115da24e43958cb17ac24ab01465b3d2eb0ea0b269c6cae98baa999e506e2c06e2fb3b64bb4caa7c1d7eeac01892e7258fa4ad1d89594c04a98f74cbdd5035859df13ee812b55de2ce78d503dfa62d8778a52ef4fe587e8827fc28b42ff77d9f7735160b885e93543c87add66c208f76e69da8d566f22c71f5147538d898f3cfb52eb39df287469606c66c485a25c47130ab8da136046c995603707894215cbaf66074951dc9a2efd9a5c38ecde2319ac47fd3b2450acd8c822220068e6a52f2ee13e1fd9e2f7eda8a3f6d88f67e879ac916e444146b8c95b0c4881b275872827407601164af7d20c726cc5bcee79a8cae07eca48a5c546de82ca431b4096c87ed44233e114ed287a2c60271b44c2b6455d45afe64518c6845f2fc895339e22c7b6d3fb7a34d0570d7db0b6a5f76db4d19b5819690efdad6fac48d4805a927f2d48b5b0a4e9abe3d00e72f2df75a35092921d36d5b2b261d4592eb5664ec498b55e3bdf9bc648661da31ec73f9fd4a518e66869f7882b884c9ad9b244ce4d54a3c820090b7b100e8700eed5990a10039e8bf488bb879704631c9c44d6928380d06413b620a3e14470cae055b304f23f65bffbda5b4372e32b3c678aeb2347da0cf6171b6722da0cd627742fa05446a338eb8240ebaa2e4b9d34bd280004f081145175e4c7bf5bb4e2e5ff9528cc837daefa4916d5b389da41b04ba484f509c98ff162ccf01533e7424827513b3d3ff3dd923ceba88f99d89410f646c91a69e92d16788aecc4cc15ef4486ebb56bf0e0a36605d56606815820b08ae8e09c4323939824c82407e643791eea89926e076573ebdfde7ef4cc833abbaeb82389a304766cb6f1602e7dca1e08f42ffbb18bf3599f69627bf874e120b73cf3ce125042c4cc9cb42eb22ffd603b46eb3b6330a65eeea9f89e904b5aa77e5d9caaac6269e2a26a85b41155c3ebe06cda4f497afb0b335353abb88c63b4435623452aeef9a2c720a4503478c6aba619de4ce41ab643d7737d7a99f9f95e2d7b01a93f9141f61415516950039ea803f942ca6c4c139bdd3b99551e78e12529ed78e74e8822d3a6339af36fe28774ade92872a80eb6118d3c971d9cfe0c0974589037d06c6ed51ba206cea07d427c9af985bea194168a8b5ab9d1958e271227d639513c94283119772c106dd88dda8d7647d75a350e1402526d6de94eb4d6335205da29268639b61fc0f36c1d36bfaad2c9fcf64fe851cc1c9d4688f4f2293dd1996399e443ba2d9ae3974c5f725ee17dd2fb3bc731de2ce605b31c5f9fa9b90fc745dde25def04af4ee24a841b591a612d125e0cf50bffd9403866733a1d1aa5c31913e220594702ef29f42e9a16c30a85c329dff7d01b21182c8bccc56185585e9c9a48be8e63d08ef88a9870fa4cf3141bc9432fcdfaacc0e8f05476ab4448dfd55dfd2c77af936c3d3652f9bc058f908dd97dede2df709eee76431db3dc28c44bca721bac3898a3c9f7a9c4237d93f8f48e83954a575c9db0fcfc1a8739b3098aaf32b868007012692d5a710d01cd0ef5e4aa33227a204cdf9a482a3e16320b3ce113c50f86cf427291c0910cfd949d331a2d04187691c8509d34b157a5e1abd466df6cfeda56f952129ed446a01986f5647a87b9bff2f0ea18a47022e9ca5e7f3e6f5ac9f2e50a0da96fd8ae9442a2254d435649ced31e43aeddcec707d294b6b5627361b2f1497ea6308143113aa174a5074bbfb2a97ee79ed54f5143c6d898136c94c47ccf5fda5c793cf0b87093c1cd3097ad386c7f2f33e54fff57e9adb08e3325c2387050d24eb44067181e98294048f85fdaf33f14c9aa173d1238d4cb6cd320a50383d0c3674cfeb3cdaa75b86680b5e31fa6133db3e0f7f1ae8f4d3895c089a96fb8b5edb49ba41e807c8d75d6b2ce859399c520e21e7faaea8aa44d7e178de9661513acc221bcc8274ea4a34b9725423c1decdf60adca05659dcc7daf78f21fca8d6078cdefb14c412ba05d687d59f84984289ee039b10c2cd97ac3898cab9120ec136ec2a67efda931a1b8b43c736d1c5042f35c5e361bf09a2cdb5bc37d1c599fd67a60e58d69a9c1cf9af6adb44f7e4037c263a859cf14aaae3b58e8b1694aa640cb37012420df26b2046f553ab1ba72827c29ec12f6007fb671b42b2f9c4c774ec9a35f3e6a6074fbfbbd733f25ab88a8c75578d15b0cdb27ac0b60a23f62ba2d234363c0ea4797fc0e9b64b34bd62bb05c902cae841c2c470ff1150f29c3aeaeadd634eb44e4b29b067bb59e74462091b6423b46e8676051db62f33a6e190fd70b83dbda852a8b088dcb5bfa6d69f4f389ffdfd598e0eb8a7f2557335deaefd7e47934c147996e924af134c3597c583e6d64d866eb0f5ab64f8020e55a786bed45e95146c2d92bcf5f7dccaf25b16dcbadb6ece4953fa47e92dc794bfa2c5ed2e4b3ed6b33a09ddd36f86febf3be21e063af123d335b45a6366a63ac8e9677a25a5147fef9e89ba002b5e092716c4b80696fa7341dfb3da5e063ca1f3d96b4802bdc029ab738a2a503b51a64fe7f6acaed976216463d053bb15e30e4e226f4f75ef7e6bbe295be5fdca3472054e8e191bbf882c504a110301f6b3039300b25f60cc5dd2d66f4afee144088b2378632cde2831624332e92731939a187c6f4a702d07a92925ef6ff8992245b530561481490b5ab18ecce0f467550fbf10de13ac86ac6fe93a34366a3f0ffdb4a5303fe1d8bd571267fc6d697280b7aee23022235f2f908e6e7679cc08d024ea688e43d9cdf64590c214d7d793d670bb6153ad51a8ddf63a50bd3e457ba2a01cb7808193e43828de2d0c16d0b7cbffa7fa6711e9aae43506e8e5efba31eb3c45bf612bf06828412541bc3536f398f6171c36d7fba530fdea4ed4facf65a2ce7272b8de9b7dc8a021e9b41558e00d72226ce8e45d52bd324dbc007fc90225f127053325eb75b0741a5d09d33e9b8b564b07b0b39acc8cd2cb3943b6324af64a5e1e3a29d922ff8e8c32de6bb11a23f60250ebec50c7131c17094b81a8e309c78c7334fad6e68595bfdaf3a2e9b9502d69ab5bf8e7b57f476855084ca0de1ea1437d729919758977582afcf8a6695060f050df1a2abf3b0b0c61b3261ed02ed99ff3453a3e8883e3ff14e57c97823703cbccf88cb4920ab3ede36bc55fb44896169100a3e6f1a6db50c95f76e537d116d6fa667effdb77843d58c3f53a80ca17343ebfebf8c0f86ba4b6dd9054b233f992ec4520004efe3cad52d4782b2dcf63e872331292d614fe463d491be3fc2d368e1538a60ce6bc9f535bf291e9c7660b325d4e06ea9844e00582715ae32fa85fba116cae4b91892f64b8e6c3d469f9957e62cc69b930c70013abec1e143986973d388a832b96e2293a00bd08bbed6bc945e947989b293d35807ad99e3cbec61716aee2846fc564f153e936d99fb4eec333b8397514a63eac98b3660c4d97912134442fd2fae6d35b4dc875fbd9eb72dc8468b40cf952f19e4f3e4ada58b16b46560f3db5684531ad08ef84dd16bac7ed3422e07ad5bfecbb42bac35f2cb5c308a6f4a5ac2993618f1584ffc9b5f53585bc073a4856bd338aec3ac52c68bb3879f96561e34b275187da1b30a99924d71d6220301fedf7938effc129ac0c029d8ac43b2085ba70cd4e4f037b8f96859d4aee0e96cc8a440f9acc6072c348b4c60e06996f38b1cfce4bc8eb722b8cce6cee1e1b3c5c1773d2ae7121ee1db66c5f11b2b43ac70eea2db14fe8a5bb84b708f90af6162501f4370312ee1515e9c85f8d362ecda5eb585b8bf180faa2a062afee1d49d4cefa203a7f4e5dbd74752b0b3acae36bd442a1790ae5db69995644e1ef3f6f6d09f4fa745f8d2b332715fde2742d705504d30c6e08a79ac0f3bd6279f7ba8b09149ceddaf188fc916e9766e73198901bc82f550655114a06633d4b570785198ebe22b30bb9ba127da632055525d59c22640792c93fec9f60e3fd9695d86c3f9f9f6cce0a509cbf97c72bd128a3e95aade4b2f8ab81726a8689605598b41cc4df0676604b1d18ae7961c6689c7345548c96a802c94cf28f56ac4313cbfb4cc58567f8aa3a7301a67cc6debfc8feda643b3dab15b07f01459a194a86d04884e5c7cc9e22e974ee980388b8b1ed960e439c220cbd938b5f0480ffdd50d491eb8434b83d2f39600e62dbded249c16aff8af81f60844f9f37352091de6fc18a9c964c250409a18db5d2f97ed3dddc1f28caf2999fd723ae5f4b34ef1480c6285d7408f02d1141ee838138fdb1847a8fa69d0f79d900de2edabed5312285291ae9d2052f6f6e019e08775753face6c8b4bb5ec89a4f50e58812f0d5691a5e2da8e89a81bb7f830187e3779b99568ddebe7a9f507e59d7c133f209cad81f3be5cc5cad482a49eb4ed3b35cab33e245e3fa8c1710999d7f060a117772f56fced587a809ce353db8cb586b8bcbe687b8cc560aea9d18f4931148e314f15eab5dd2a1f0b8429353ea4b0412af1a61be8109484a46a813c6b7138786a279a0e55fcdba4a41027671b575febd1c7c9b3a35eda2b5bbce6880c7a024b808d67ac3e37e0863ce70f933333c0c02652d7fd3e80733fd65e5a0f32baf0755a8e7d35dbd6e7163feff48dd7db369d75601eb8740efc562b19f348899c326f7e24d95f617297d97b6b0999147f2c8b97324a5c2ebff4fd55a647d1e878e77a7211ae97dcbeacfbb8bee08319559c84b55722537319104ae38e7b272501d8b33e2b371b0e609777f0bd91f4c08e040fd18e3314682557ede09204d8aaf4c538429808fe952be459378093bca491aa721fbeaa35ac22c2f49ce4a3761c1b7854e79bba55fd53f904ff4d15a09999cdd425f97be61358c785ccf03621e0c0161bc8b352fcb49c2d5963abe1e2888989e7f2cbee02aac9412f313ab82930684aef427e0bdc7f9eaaa0b1c3b590c27f7ca8c8466b27743d1245c17a922544b334065a3f9c5dce86045806a3fc7df9a6a98978e3462f2371e52ab362fbb120623a3a1e743d6e8c06fa818be4572381eaaa944b5cf62221cc7222d19acc8de9b4b761ac2811b91eb85b8b497aab5073752dba74f1e48b73fce776ee515eb8a7c8b4e7b9a46ba31a9c778453d3bc8c6814855aec3cddbc959d063586699791d3ee69c2e403b1b93d820e29f2100273da49fc3c8f9593d76b21769945c02489cafd12d98075504f1786b04c9cb79c9ca63499b0cea0312332e93aa3f90733b31cadd9ee70d27a6ea46f1e915a4f94d5d5cefc4be57bf2765af345efcb6c45b8d2e82ba15e2121eaef0343c1cc158d94b5e6ee03ab01e6866944ff59498252fec1d70daef8dd3121049f5c1dc9ebafd1c9f4f45ef8015b856e630ba9c388e068ef321e13b112f29c2bfe16893bdac91709804e0c02e727e1cc6631563e716c639e83362a22b309355a0252ae09e02effc0a974ddb48326503991f832eaa48add0b64ea8848f227bf625a122666e2df3593dd662a48d75cdfb217f2a39e471c45299b84037ec59b3e2f2d7682a09003ac11007a00f52e5fdf78328064d03ae1eaebc1c46f4e3e2d6f95181c2f5826443ede6782c831a3c9c46927d193db18dfc29d7fe8d8db06bc3f83ca602b608afcf34120bcab7da4e6e293fb5dfe"}, &(0x7f0000000080)=0x1008) r13 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000840)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000fcae68da850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r13}, 0x10) faccessat2(0xffffffffffffffff, 0x0, 0x2, 0x1000) r14 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$GIO_SCRNMAP(r14, 0x4b40, &(0x7f0000000640)=""/4096) 852.21992ms ago: executing program 3 (id=378): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000000)={0x4800}, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000240)={0x0, 0xffffffffffffff4a, &(0x7f0000000200)={&(0x7f0000000080)={0x18, 0x16, 0xa01}, 0x78}}, 0x0) recvmmsg(r0, &(0x7f0000001a40)=[{{0x0, 0x0, 0x0}}], 0x1, 0xa00100, 0x0) 563.183825ms ago: executing program 1 (id=379): syz_emit_ethernet(0x2a, &(0x7f0000000400)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa08060001080006040001aaaaaaaaaaaaac1414bb0180c2000000ffff"], 0x0) openat$proc_mixer(0xffffff9c, &(0x7f0000000340)='/proc/asound/card3/oss_mixer\x00', 0x101200, 0x0) syz_open_dev$vim2m(&(0x7f00000001c0), 0x1f7ff6, 0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x202d8c, 0x4000, 0x20040000, 0x15}, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$IOCTL_GET_NUM_DEVICES(r0, 0x40046104, &(0x7f0000000000)) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) prctl$PR_SET_MM(0x23, 0xa, &(0x7f00005c9000/0x2000)=nil) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f0000000380)=@abs={0x1, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = socket$alg(0x26, 0x5, 0x0) bind$alg(r4, &(0x7f0000000080)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_hmac_sha256\x00'}, 0x58) setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, 0x0, 0x0) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.stat\x00', 0x275a, 0x0) write$UHID_CREATE2(r5, &(0x7f0000000200)=ANY=[@ANYBLOB='7'], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r5, 0x0) setsockopt$RDS_CONG_MONITOR(r5, 0x114, 0x6, &(0x7f0000000300), 0x4) r6 = accept4(r4, 0x0, 0x0, 0x0) read$alg(r6, &(0x7f0000000780)=""/4110, 0x100e) io_uring_setup(0x673d, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x500000}) socket(0x15, 0x5, 0x0) syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff) 537.491172ms ago: executing program 3 (id=380): r0 = openat$adsp1(0xffffff9c, &(0x7f0000000000), 0x200, 0x0) ioctl$mixer_OSS_GETVERSION(r0, 0x80044d76, &(0x7f0000000040)) r1 = syz_open_dev$mouse(&(0x7f0000000a80), 0x80000000, 0x41) ioctl$FS_IOC_RESVSP(r1, 0x402c5828, &(0x7f0000000c80)={0x0, 0x1, 0x0, 0x5}) 0s ago: executing program 3 (id=381): mkdir(&(0x7f0000000040)='./file0\x00', 0x1e0) mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x1000000, &(0x7f0000000840)=ANY=[@ANYBLOB="78226e6f65786163638173733d616e792c63616368653d66736361"]) chdir(&(0x7f0000000280)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x20c01, 0x0) pwritev(r0, &(0x7f0000000140)=[{&(0x7f0000000080)='|', 0x1}], 0x1, 0x6, 0x4) r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]}) close_range(r1, 0xffffffffffffffff, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '[localhost]:32084' (ED25519) to the list of known hosts. [ 41.640671][ T5935] cgroup: Unknown subsys name 'net' [ 41.808212][ T5935] cgroup: Unknown subsys name 'cpuset' [ 41.812198][ T5935] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 42.589081][ T5935] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 45.377144][ T5948] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 45.380643][ T5948] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 45.382978][ T5948] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 45.387407][ T5962] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 45.389791][ T5962] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 45.391982][ T5962] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 45.394473][ T5960] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 45.399913][ T5959] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 45.401539][ T5309] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 45.402497][ T5959] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 45.404137][ T5961] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 45.404347][ T5309] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 45.405141][ T5309] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 45.405647][ T5309] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 45.405755][ T5309] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 45.406327][ T5959] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 45.409547][ T5309] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 45.411394][ T5959] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 45.414433][ T5955] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 45.416568][ T5959] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 45.418815][ T5955] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 45.420226][ T5959] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 45.422789][ T5955] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 45.435302][ T5955] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 45.574684][ T5946] chnl_net:caif_netlink_parms(): no params data found [ 45.615794][ T5950] chnl_net:caif_netlink_parms(): no params data found [ 45.638042][ T5953] chnl_net:caif_netlink_parms(): no params data found [ 45.767874][ T5946] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.770237][ T5946] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.772271][ T5946] bridge_slave_0: entered allmulticast mode [ 45.774434][ T5946] bridge_slave_0: entered promiscuous mode [ 45.780058][ T5946] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.783482][ T5946] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.786510][ T5946] bridge_slave_1: entered allmulticast mode [ 45.789834][ T5946] bridge_slave_1: entered promiscuous mode [ 45.825205][ T5956] chnl_net:caif_netlink_parms(): no params data found [ 45.856040][ T5950] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.858805][ T5950] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.861277][ T5950] bridge_slave_0: entered allmulticast mode [ 45.863736][ T5950] bridge_slave_0: entered promiscuous mode [ 45.869010][ T5950] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.871118][ T5950] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.873318][ T5950] bridge_slave_1: entered allmulticast mode [ 45.875826][ T5950] bridge_slave_1: entered promiscuous mode [ 45.882814][ T5946] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 45.890760][ T5946] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 45.966918][ T5950] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 45.977889][ T5953] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.979962][ T5953] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.981994][ T5953] bridge_slave_0: entered allmulticast mode [ 45.984094][ T5953] bridge_slave_0: entered promiscuous mode [ 45.989366][ T5953] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.992153][ T5953] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.994948][ T5953] bridge_slave_1: entered allmulticast mode [ 45.998337][ T5953] bridge_slave_1: entered promiscuous mode [ 46.002788][ T5946] team0: Port device team_slave_0 added [ 46.005571][ T5950] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 46.039443][ T5946] team0: Port device team_slave_1 added [ 46.058278][ T5950] team0: Port device team_slave_0 added [ 46.099938][ T5950] team0: Port device team_slave_1 added [ 46.101781][ T5956] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.103940][ T5956] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.107053][ T5956] bridge_slave_0: entered allmulticast mode [ 46.109207][ T5956] bridge_slave_0: entered promiscuous mode [ 46.112736][ T5953] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 46.125591][ T5946] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 46.127544][ T5946] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.134258][ T5946] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 46.155314][ T5956] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.157492][ T5956] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.159493][ T5956] bridge_slave_1: entered allmulticast mode [ 46.162232][ T5956] bridge_slave_1: entered promiscuous mode [ 46.167162][ T5953] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 46.170733][ T5946] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 46.173253][ T5946] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.180362][ T5946] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 46.184444][ T5950] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 46.186650][ T5950] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.193640][ T5950] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 46.197517][ T5950] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 46.199476][ T5950] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.206631][ T5950] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 46.262309][ T5956] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 46.267766][ T5953] team0: Port device team_slave_0 added [ 46.270593][ T5953] team0: Port device team_slave_1 added [ 46.274579][ T5956] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 46.343349][ T5956] team0: Port device team_slave_0 added [ 46.349346][ T5946] hsr_slave_0: entered promiscuous mode [ 46.351246][ T5946] hsr_slave_1: entered promiscuous mode [ 46.362241][ T5950] hsr_slave_0: entered promiscuous mode [ 46.364436][ T5950] hsr_slave_1: entered promiscuous mode [ 46.366943][ T5950] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 46.369189][ T5950] Cannot create hsr debugfs directory [ 46.380310][ T5956] team0: Port device team_slave_1 added [ 46.397833][ T5953] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 46.399806][ T5953] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.407081][ T5953] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 46.419455][ T5956] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 46.421587][ T5956] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.429043][ T5956] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 46.440830][ T5953] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 46.442790][ T5953] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.450454][ T5953] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 46.458026][ T5956] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 46.459990][ T5956] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.467356][ T5956] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 46.597541][ T5953] hsr_slave_0: entered promiscuous mode [ 46.600247][ T5953] hsr_slave_1: entered promiscuous mode [ 46.602814][ T5953] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 46.606567][ T5953] Cannot create hsr debugfs directory [ 46.610109][ T5956] hsr_slave_0: entered promiscuous mode [ 46.612478][ T5956] hsr_slave_1: entered promiscuous mode [ 46.614451][ T5956] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 46.616962][ T5956] Cannot create hsr debugfs directory [ 46.710804][ T5946] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 46.736488][ T5946] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 46.741316][ T5946] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 46.755834][ T5946] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 46.775309][ T5950] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 46.779497][ T5950] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 46.783208][ T5950] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 46.793904][ T5950] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 46.810236][ T5953] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 46.814140][ T5953] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 46.819738][ T5953] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 46.830880][ T5953] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 46.846248][ T5956] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 46.849563][ T5956] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 46.856619][ T5956] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 46.859747][ T5956] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 46.911301][ T5950] 8021q: adding VLAN 0 to HW filter on device bond0 [ 46.918541][ T5946] 8021q: adding VLAN 0 to HW filter on device bond0 [ 46.933042][ T5950] 8021q: adding VLAN 0 to HW filter on device team0 [ 46.944506][ T1140] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.946741][ T1140] bridge0: port 1(bridge_slave_0) entered forwarding state [ 46.955288][ T1140] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.957321][ T1140] bridge0: port 2(bridge_slave_1) entered forwarding state [ 46.960175][ T5946] 8021q: adding VLAN 0 to HW filter on device team0 [ 46.965787][ T5953] 8021q: adding VLAN 0 to HW filter on device bond0 [ 46.968917][ T1140] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.970875][ T1140] bridge0: port 1(bridge_slave_0) entered forwarding state [ 46.980399][ T1140] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.982474][ T1140] bridge0: port 2(bridge_slave_1) entered forwarding state [ 46.990219][ T5953] 8021q: adding VLAN 0 to HW filter on device team0 [ 46.999125][ T1140] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.001137][ T1140] bridge0: port 1(bridge_slave_0) entered forwarding state [ 47.005846][ T5956] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.014726][ T1140] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.016890][ T1140] bridge0: port 2(bridge_slave_1) entered forwarding state [ 47.037806][ T5956] 8021q: adding VLAN 0 to HW filter on device team0 [ 47.048303][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.050415][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 47.062360][ T1143] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.064443][ T1143] bridge0: port 2(bridge_slave_1) entered forwarding state [ 47.083425][ T5956] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 47.086554][ T5956] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 47.128220][ T5950] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 47.142739][ T5953] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 47.171902][ T5950] veth0_vlan: entered promiscuous mode [ 47.178708][ T5950] veth1_vlan: entered promiscuous mode [ 47.186571][ T5946] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 47.200905][ T5953] veth0_vlan: entered promiscuous mode [ 47.204514][ T5956] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 47.213416][ T5953] veth1_vlan: entered promiscuous mode [ 47.216926][ T5950] veth0_macvtap: entered promiscuous mode [ 47.222094][ T5950] veth1_macvtap: entered promiscuous mode [ 47.244415][ T5950] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 47.253595][ T5953] veth0_macvtap: entered promiscuous mode [ 47.257952][ T5956] veth0_vlan: entered promiscuous mode [ 47.260712][ T5950] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 47.262860][ T5946] veth0_vlan: entered promiscuous mode [ 47.265955][ T5953] veth1_macvtap: entered promiscuous mode [ 47.270282][ T5950] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.272784][ T5950] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.275505][ T5950] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.277992][ T5950] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.286899][ T5953] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 47.289898][ T5953] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 47.294008][ T5953] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 47.297832][ T5953] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 47.300716][ T5953] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 47.304185][ T5953] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 47.306830][ T5946] veth1_vlan: entered promiscuous mode [ 47.313805][ T5956] veth1_vlan: entered promiscuous mode [ 47.327229][ T5953] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.329716][ T5953] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.332135][ T5953] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.334651][ T5953] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.352381][ T5956] veth0_macvtap: entered promiscuous mode [ 47.364899][ T1140] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 47.366164][ T5956] veth1_macvtap: entered promiscuous mode [ 47.367532][ T1140] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 47.385927][ T5946] veth0_macvtap: entered promiscuous mode [ 47.392788][ T5956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 47.396804][ T5956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 47.400079][ T5956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 47.403151][ T5956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 47.407858][ T5956] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 47.412557][ T1056] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 47.414530][ T1056] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 47.417837][ T5946] veth1_macvtap: entered promiscuous mode [ 47.431294][ T5956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 47.431404][ T449] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 47.435634][ T5956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 47.437558][ T449] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 47.440980][ T5956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 47.446076][ T5956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 47.449646][ T5956] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 47.453604][ T5956] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.456261][ T5956] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.458792][ T5956] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.461161][ T5956] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.473935][ T5946] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 47.475986][ T5955] Bluetooth: hci3: command tx timeout [ 47.477071][ T5946] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 47.477894][ T5958] Bluetooth: hci1: command tx timeout [ 47.483221][ T5946] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 47.485384][ T5955] Bluetooth: hci2: command tx timeout [ 47.486037][ T5958] Bluetooth: hci0: command tx timeout [ 47.486401][ T5946] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 47.491972][ T5946] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 47.494833][ T5946] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 47.499815][ T5946] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 47.504107][ T5946] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 47.506327][ T5950] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 47.507217][ T5946] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 47.514800][ T5946] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 47.519568][ T5946] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 47.522970][ T5946] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 47.526966][ T5946] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 47.531127][ T5946] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 47.539899][ T1140] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 47.543151][ T5946] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.543283][ T1140] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 47.546981][ T5946] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.551056][ T5946] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.554163][ T5946] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.593507][ T6011] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3'. [ 47.599393][ T77] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 47.601699][ T77] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 47.626905][ T1140] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 47.628972][ T1140] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 47.636494][ T1140] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 47.638734][ T1140] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 47.651415][ T1140] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 47.655740][ T1140] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 47.707441][ T6024] netlink: 60 bytes leftover after parsing attributes in process `syz.3.4'. [ 47.725033][ T6023] smc: net device bond0 applied user defined pnetid SYZ0 [ 47.785338][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 47.795363][ T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!! [ 47.804837][ T0] NOHZ tick-stop error: local softirq work is pending, handler #240!!! [ 48.013932][ T6035] Cannot find add_set index 3 as target [ 48.189105][ T6012] hid-generic FFF9:0C00:0203.0002: unknown main item tag 0x0 [ 48.191306][ T6012] hid-generic FFF9:0C00:0203.0002: unknown main item tag 0x0 [ 48.193399][ T6012] hid-generic FFF9:0C00:0203.0002: unknown main item tag 0x0 [ 48.195876][ T6012] hid-generic FFF9:0C00:0203.0002: unknown main item tag 0x0 [ 48.198188][ T6012] hid-generic FFF9:0C00:0203.0002: unknown main item tag 0x0 [ 48.200430][ T6012] hid-generic FFF9:0C00:0203.0002: unknown main item tag 0x0 [ 48.202586][ T6012] hid-generic FFF9:0C00:0203.0002: unknown main item tag 0x0 [ 48.204669][ T6012] hid-generic FFF9:0C00:0203.0002: unknown main item tag 0x0 [ 48.207072][ T6012] hid-generic FFF9:0C00:0203.0002: unknown main item tag 0x0 [ 48.209205][ T6012] hid-generic FFF9:0C00:0203.0002: unknown main item tag 0x0 [ 48.211455][ T6012] hid-generic FFF9:0C00:0203.0002: unknown main item tag 0x0 [ 48.213661][ T6012] hid-generic FFF9:0C00:0203.0002: unknown main item tag 0x0 [ 48.216112][ T6012] hid-generic FFF9:0C00:0203.0002: unknown main item tag 0x0 [ 48.218289][ T6012] hid-generic FFF9:0C00:0203.0002: unknown main item tag 0x0 [ 48.220418][ T6012] hid-generic FFF9:0C00:0203.0002: unknown main item tag 0x0 [ 48.235012][ T5955] Bluetooth: unknown link type 108 [ 48.237053][ T5955] Bluetooth: hci2: connection err: -111 [ 48.462751][ T6012] hid-generic FFF9:0C00:0203.0002: hidraw1: HID v0.00 Device [syz0] on syz1 [ 48.485740][ T6039] syz.1.7: attempt to access beyond end of device [ 48.485740][ T6039] nbd1: rw=0, sector=64, nr_sectors = 1 limit=0 [ 48.490237][ T6039] syz.1.7: attempt to access beyond end of device [ 48.490237][ T6039] nbd1: rw=0, sector=256, nr_sectors = 1 limit=0 [ 48.493910][ T6039] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256 [ 48.498000][ T6039] syz.1.7: attempt to access beyond end of device [ 48.498000][ T6039] nbd1: rw=0, sector=512, nr_sectors = 1 limit=0 [ 48.501547][ T6039] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512 [ 48.505391][ T6039] syz.1.7: attempt to access beyond end of device [ 48.505391][ T6039] nbd1: rw=0, sector=64, nr_sectors = 2 limit=0 [ 48.509188][ T6039] syz.1.7: attempt to access beyond end of device [ 48.509188][ T6039] nbd1: rw=0, sector=512, nr_sectors = 2 limit=0 [ 48.512634][ T6039] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256 [ 48.517098][ T6039] syz.1.7: attempt to access beyond end of device [ 48.517098][ T6039] nbd1: rw=0, sector=1024, nr_sectors = 2 limit=0 [ 48.520765][ T6039] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512 [ 48.523910][ T6039] syz.1.7: attempt to access beyond end of device [ 48.523910][ T6039] nbd1: rw=0, sector=64, nr_sectors = 4 limit=0 [ 48.531740][ T6039] syz.1.7: attempt to access beyond end of device [ 48.531740][ T6039] nbd1: rw=0, sector=1024, nr_sectors = 4 limit=0 [ 48.535691][ T6039] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256 [ 48.544657][ T6039] syz.1.7: attempt to access beyond end of device [ 48.544657][ T6039] nbd1: rw=0, sector=2048, nr_sectors = 4 limit=0 [ 48.549892][ T6039] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512 [ 48.552638][ T6039] syz.1.7: attempt to access beyond end of device [ 48.552638][ T6039] nbd1: rw=0, sector=64, nr_sectors = 8 limit=0 [ 48.556229][ T6039] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256 [ 48.558876][ T6039] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512 [ 48.561827][ T6039] UDF-fs: warning (device nbd1): udf_fill_super: No partition found (1) [ 48.606653][ T6052] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8'. [ 48.637451][ T6052] netlink: 16 bytes leftover after parsing attributes in process `syz.3.8'. [ 48.644354][ T6052] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8'. [ 49.555318][ T5955] Bluetooth: hci3: command tx timeout [ 49.555738][ T5958] Bluetooth: hci2: command tx timeout [ 49.557434][ T5959] Bluetooth: hci1: command tx timeout [ 49.559161][ T5958] Bluetooth: hci0: command tx timeout [ 49.563799][ T5958] Bluetooth: unknown link type 108 [ 49.567033][ T5958] Bluetooth: hci3: connection err: -111 [ 49.975395][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 50.286908][ T6012] hid-generic FFF9:0000:0203.0003: unknown main item tag 0x0 [ 50.289444][ T6012] hid-generic FFF9:0000:0203.0003: unknown main item tag 0x0 [ 50.292567][ T6012] hid-generic FFF9:0000:0203.0003: unknown main item tag 0x0 [ 50.298631][ T6012] hid-generic FFF9:0000:0203.0003: unknown main item tag 0x0 [ 50.301469][ T6012] hid-generic FFF9:0000:0203.0003: unknown main item tag 0x0 [ 50.304531][ T6012] hid-generic FFF9:0000:0203.0003: unknown main item tag 0x0 [ 50.307750][ T6012] hid-generic FFF9:0000:0203.0003: unknown main item tag 0x0 [ 50.310288][ T6012] hid-generic FFF9:0000:0203.0003: unknown main item tag 0x0 [ 50.316924][ T6012] hid-generic FFF9:0000:0203.0003: unknown main item tag 0x0 [ 50.320162][ T6012] hid-generic FFF9:0000:0203.0003: unknown main item tag 0x0 [ 50.331828][ T6012] hid-generic FFF9:0000:0203.0003: unknown main item tag 0x0 [ 50.342298][ T6012] hid-generic FFF9:0000:0203.0003: unknown main item tag 0x0 [ 50.344745][ T6012] hid-generic FFF9:0000:0203.0003: unknown main item tag 0x0 [ 50.566702][ T6012] hid-generic FFF9:0000:0203.0003: unknown main item tag 0x0 [ 50.568816][ T6012] hid-generic FFF9:0000:0203.0003: unknown main item tag 0x0 [ 50.615293][ T6012] hid-generic FFF9:0000:0203.0003: hidraw1: HID v0.00 Device [syz0] on syz1 [ 51.090233][ T6113] netlink: 12 bytes leftover after parsing attributes in process `syz.1.16'. [ 51.125240][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 51.127643][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 51.177999][ T5958] Bluetooth: unknown link type 108 [ 51.179606][ T5958] Bluetooth: hci1: connection err: -111 [ 51.235231][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 51.325239][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 51.463998][ T6132] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 51.635449][ T5958] Bluetooth: hci3: command tx timeout [ 51.635496][ T67] Bluetooth: hci2: command tx timeout [ 51.637613][ T5958] Bluetooth: hci1: command tx timeout [ 51.639708][ T5959] Bluetooth: hci0: command tx timeout [ 51.662397][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 52.473837][ T6189] netlink: 44 bytes leftover after parsing attributes in process `syz.0.29'. [ 52.476717][ T6189] netlink: 43 bytes leftover after parsing attributes in process `syz.0.29'. [ 52.478991][ T6189] netlink: 'syz.0.29': attribute type 5 has an invalid length. [ 52.480938][ T6189] netlink: 43 bytes leftover after parsing attributes in process `syz.0.29'. [ 52.487177][ T6192] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !寿$ûÌÌULÙvy¸ÚØ¢…D£øUDŒw˜}z [ 52.705350][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 52.979259][ T6218] overlayfs: failed to resolve './file1': -2 [ 53.718356][ T5959] Bluetooth: hci1: command tx timeout [ 53.726277][ T5955] Bluetooth: hci2: command tx timeout [ 53.728265][ T5955] Bluetooth: hci3: command tx timeout [ 53.729829][ T5959] Bluetooth: hci0: command tx timeout [ 53.995451][ T6237] netlink: 4 bytes leftover after parsing attributes in process `syz.0.34'. [ 54.065152][ T6012] hid-generic FFF9:0000:0203.0004: unknown main item tag 0x0 [ 54.067808][ T6012] hid-generic FFF9:0000:0203.0004: unknown main item tag 0x0 [ 54.069996][ T6012] hid-generic FFF9:0000:0203.0004: unknown main item tag 0x0 [ 54.072111][ T6012] hid-generic FFF9:0000:0203.0004: unknown main item tag 0x0 [ 54.074751][ T6012] hid-generic FFF9:0000:0203.0004: unknown main item tag 0x0 [ 54.077744][ T6012] hid-generic FFF9:0000:0203.0004: unknown main item tag 0x0 [ 54.080120][ T6012] hid-generic FFF9:0000:0203.0004: unknown main item tag 0x0 [ 54.082294][ T6012] hid-generic FFF9:0000:0203.0004: unknown main item tag 0x0 [ 54.084655][ T6012] hid-generic FFF9:0000:0203.0004: unknown main item tag 0x0 [ 54.087953][ T6012] hid-generic FFF9:0000:0203.0004: unknown main item tag 0x0 [ 54.091228][ T6012] hid-generic FFF9:0000:0203.0004: unknown main item tag 0x0 [ 54.093433][ T6012] hid-generic FFF9:0000:0203.0004: unknown main item tag 0x0 [ 54.094828][ T6243] 9pnet_virtio: no channels available for device syz [ 54.095851][ T6012] hid-generic FFF9:0000:0203.0004: unknown main item tag 0x0 [ 54.095873][ T6012] hid-generic FFF9:0000:0203.0004: unknown main item tag 0x0 [ 54.095885][ T6012] hid-generic FFF9:0000:0203.0004: unknown main item tag 0x0 [ 54.096771][ T6012] hid-generic FFF9:0000:0203.0004: hidraw1: HID v0.00 Device [syz0] on syz1 [ 54.282946][ T6012] libceph: connect (1)[c::]:6789 error -101 [ 54.284937][ T6012] libceph: mon0 (1)[c::]:6789 connect error [ 54.336031][ T6245] ceph: No mds server is up or the cluster is laggy [ 54.857237][ T6264] overlayfs: failed to resolve './file1': -2 [ 55.623991][ T6269] netlink: 8 bytes leftover after parsing attributes in process `syz.2.42'. [ 55.635932][ T6269] netlink: 8 bytes leftover after parsing attributes in process `syz.2.42'. [ 55.641754][ T6269] netlink: 8 bytes leftover after parsing attributes in process `syz.2.42'. [ 55.644926][ T6269] netlink: 12 bytes leftover after parsing attributes in process `syz.2.42'. [ 55.795246][ T5958] Bluetooth: hci3: command 0x0405 tx timeout [ 55.966122][ T6286] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 56.163403][ T6297] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 56.173024][ T6297] CIFS mount error: No usable UNC path provided in device string! [ 56.173024][ T6297] [ 56.177362][ T6297] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 56.647396][ T6300] overlayfs: failed to resolve './file1': -2 [ 56.929288][ T6309] netlink: 8 bytes leftover after parsing attributes in process `syz.2.54'. [ 56.932568][ T6309] netlink: 8 bytes leftover after parsing attributes in process `syz.2.54'. [ 56.944934][ T6309] netlink: 8 bytes leftover after parsing attributes in process `syz.2.54'. [ 56.948867][ T6309] netlink: 12 bytes leftover after parsing attributes in process `syz.2.54'. [ 56.979870][ T6312] FAULT_INJECTION: forcing a failure. [ 56.979870][ T6312] name failslab, interval 1, probability 0, space 0, times 1 [ 56.984876][ T6312] CPU: 1 UID: 0 PID: 6312 Comm: syz.0.55 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 56.984897][ T6312] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 56.984906][ T6312] Call Trace: [ 56.984912][ T6312] [ 56.984920][ T6312] dump_stack_lvl+0x16c/0x1f0 [ 56.984949][ T6312] should_fail_ex+0x50a/0x650 [ 56.984964][ T6312] ? fs_reclaim_acquire+0xae/0x150 [ 56.984985][ T6312] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 56.985003][ T6312] should_failslab+0xc2/0x120 [ 56.985018][ T6312] __kmalloc_noprof+0xcb/0x510 [ 56.985039][ T6312] ? __pfx___mutex_trylock_common+0x10/0x10 [ 56.985061][ T6312] ? __kernel_text_address+0xd/0x40 [ 56.985100][ T6312] ? genl_rcv_msg+0x580/0x800 [ 56.985124][ T6312] genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 56.985150][ T6312] genl_family_rcv_msg_doit+0xbf/0x2f0 [ 56.985168][ T6312] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 56.985184][ T6312] ? trace_cap_capable+0x1a2/0x210 [ 56.985208][ T6312] ? bpf_lsm_capable+0x9/0x10 [ 56.985241][ T6312] ? security_capable+0x7e/0x260 [ 56.985264][ T6312] genl_rcv_msg+0x565/0x800 [ 56.985283][ T6312] ? __pfx_genl_rcv_msg+0x10/0x10 [ 56.985300][ T6312] ? __pfx_netlbl_unlabel_staticadddef+0x10/0x10 [ 56.985324][ T6312] ? __pfx___lock_acquire+0x10/0x10 [ 56.985350][ T6312] netlink_rcv_skb+0x16b/0x440 [ 56.985383][ T6312] ? __pfx_genl_rcv_msg+0x10/0x10 [ 56.985400][ T6312] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 56.985433][ T6312] ? down_read+0xc9/0x330 [ 56.985456][ T6312] ? __pfx_down_read+0x10/0x10 [ 56.985480][ T6312] ? netlink_deliver_tap+0x1ae/0xd30 [ 56.985507][ T6312] genl_rcv+0x28/0x40 [ 56.985521][ T6312] netlink_unicast+0x53c/0x7f0 [ 56.985548][ T6312] ? __pfx_netlink_unicast+0x10/0x10 [ 56.985570][ T6312] ? __phys_addr_symbol+0x30/0x80 [ 56.985585][ T6312] ? __check_object_size+0x488/0x710 [ 56.985604][ T6312] netlink_sendmsg+0x8b8/0xd70 [ 56.985631][ T6312] ? __pfx_netlink_sendmsg+0x10/0x10 [ 56.985663][ T6312] ____sys_sendmsg+0xaaf/0xc90 [ 56.985683][ T6312] ? __pfx_____sys_sendmsg+0x10/0x10 [ 56.985700][ T6312] ? get_compat_msghdr+0x11b/0x170 [ 56.985729][ T6312] ___sys_sendmsg+0x135/0x1e0 [ 56.985755][ T6312] ? __pfx____sys_sendmsg+0x10/0x10 [ 56.985786][ T6312] ? __pfx_lock_release+0x10/0x10 [ 56.985806][ T6312] ? trace_lock_acquire+0x14e/0x1f0 [ 56.985829][ T6312] ? __fget_files+0x206/0x3a0 [ 56.985856][ T6312] __sys_sendmsg+0x16e/0x220 [ 56.985872][ T6312] ? __pfx___sys_sendmsg+0x10/0x10 [ 56.985900][ T6312] __do_fast_syscall_32+0x73/0x120 [ 56.985925][ T6312] do_fast_syscall_32+0x32/0x80 [ 56.985948][ T6312] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 56.985974][ T6312] RIP: 0023:0xf7fe8579 [ 56.985988][ T6312] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 56.986003][ T6312] RSP: 002b:00000000f510655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 56.986018][ T6312] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800002c0 [ 56.986026][ T6312] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 56.986034][ T6312] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 56.986042][ T6312] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 56.986050][ T6312] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 56.986071][ T6312] [ 57.200673][ T6319] netlink: 32 bytes leftover after parsing attributes in process `syz.2.57'. [ 57.255996][ T6326] fuse: Unknown parameter 'group_id00000000000000000000' [ 57.261033][ T6326] 9pnet_fd: Insufficient options for proto=fd [ 57.525187][ T59] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 57.548258][ T6351] FAULT_INJECTION: forcing a failure. [ 57.548258][ T6351] name failslab, interval 1, probability 0, space 0, times 0 [ 57.551848][ T6351] CPU: 2 UID: 0 PID: 6351 Comm: syz.0.66 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 57.551861][ T6351] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 57.551867][ T6351] Call Trace: [ 57.551871][ T6351] [ 57.551875][ T6351] dump_stack_lvl+0x16c/0x1f0 [ 57.551894][ T6351] should_fail_ex+0x50a/0x650 [ 57.551904][ T6351] ? fs_reclaim_acquire+0xae/0x150 [ 57.551918][ T6351] ? tomoyo_encode2+0x100/0x3e0 [ 57.551931][ T6351] should_failslab+0xc2/0x120 [ 57.551941][ T6351] __kmalloc_noprof+0xcb/0x510 [ 57.551956][ T6351] ? d_absolute_path+0x137/0x1b0 [ 57.551967][ T6351] ? rcu_is_watching+0x12/0xc0 [ 57.551979][ T6351] tomoyo_encode2+0x100/0x3e0 [ 57.551994][ T6351] tomoyo_encode+0x29/0x50 [ 57.552007][ T6351] tomoyo_realpath_from_path+0x19d/0x720 [ 57.552024][ T6351] tomoyo_path_number_perm+0x248/0x590 [ 57.552035][ T6351] ? tomoyo_path_number_perm+0x235/0x590 [ 57.552048][ T6351] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 57.552071][ T6351] ? __pfx_lock_release+0x10/0x10 [ 57.552084][ T6351] ? trace_lock_acquire+0x14e/0x1f0 [ 57.552097][ T6351] ? lock_acquire+0x2f/0xb0 [ 57.552109][ T6351] ? __fget_files+0x40/0x3a0 [ 57.552125][ T6351] ? __fget_files+0x206/0x3a0 [ 57.552141][ T6351] security_file_ioctl_compat+0x9b/0x240 [ 57.552155][ T6351] __do_compat_sys_ioctl+0x4e/0x2c0 [ 57.552169][ T6351] __do_fast_syscall_32+0x73/0x120 [ 57.552185][ T6351] do_fast_syscall_32+0x32/0x80 [ 57.552199][ T6351] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 57.552216][ T6351] RIP: 0023:0xf7fe8579 [ 57.552223][ T6351] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 57.552232][ T6351] RSP: 002b:00000000f510655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 57.552242][ T6351] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000005414 [ 57.552248][ T6351] RDX: 00000000800002c0 RSI: 0000000000000000 RDI: 0000000000000000 [ 57.552253][ T6351] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 57.552258][ T6351] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 57.552263][ T6351] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 57.552275][ T6351] [ 57.552284][ T6351] ERROR: Out of memory at tomoyo_realpath_from_path. [ 57.629915][ T6351] mmap: syz.0.66 (6351) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 57.675286][ T59] usb 7-1: Using ep0 maxpacket: 32 [ 57.690380][ T59] usb 7-1: config 1 interface 0 altsetting 1 bulk endpoint 0x1 has invalid maxpacket 1024 [ 57.693419][ T59] usb 7-1: config 1 interface 0 has no altsetting 0 [ 57.717262][ T59] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 57.720617][ T59] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 57.731273][ T59] usb 7-1: Product: Ч [ 57.732921][ T59] usb 7-1: Manufacturer: á° [ 57.734605][ T59] usb 7-1: SerialNumber: 缴쉲뫞죓㞑嚖Ѓ㽦䰶藽埿┎é ëŽ±ê·–뢱Ӛ䨃䂥ဖ⇜çªä€‘୵첉㕡腘ᄊë­å®¡åµ†â¢¶ç‹†é’è‡ï™˜â•‹â«¶å³µçŸŽâ …䘣⻂詂墴촣鯗ᆸë€æ©¤Ú±è ©î®à¯ˆä˜¤ï»¾æ ³ã“³ãº´îºŠë¶±ãº„⊸ç­äº¤é¯¥îª¯ì¢¾ç´…ïš„â¿ë²½ã“ží€…б肙ڼê¯ãš‘뺳ാ뻨ë”鳑埧廸⃼軧ᬔ괷䛌囡鄀ìºå·¶å®‚à«å¨·ê©’碼宠ᙕ堑쉠ퟓ㡇蘸䫲 [ 57.764391][ T6326] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 58.658629][ T59] usb 7-1: USB disconnect, device number 2 [ 58.723075][ T6379] block device autoloading is deprecated and will be removed. [ 59.053428][ T6402] __nla_validate_parse: 4 callbacks suppressed [ 59.053443][ T6402] netlink: 8 bytes leftover after parsing attributes in process `syz.1.74'. [ 59.060161][ T6402] netlink: 8 bytes leftover after parsing attributes in process `syz.1.74'. [ 59.064080][ T6402] netlink: 8 bytes leftover after parsing attributes in process `syz.1.74'. [ 59.067716][ T6402] netlink: 12 bytes leftover after parsing attributes in process `syz.1.74'. [ 59.309728][ T40] audit: type=1800 audit(1742804509.823:2): pid=6409 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.77" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0 [ 60.323522][ T6449] netlink: 20 bytes leftover after parsing attributes in process `syz.2.87'. [ 60.483560][ T6459] Zero length message leads to an empty skb [ 61.059283][ T6476] overlayfs: failed to resolve './file0': -2 [ 61.761634][ T6479] openvswitch: netlink: Message has 13 unknown bytes. [ 61.764310][ T6479] openvswitch: netlink: Actions may not be safe on all matching packets [ 61.818800][ T5959] Bluetooth: unknown link type 108 [ 61.820344][ T5959] Bluetooth: hci2: connection err: -111 [ 61.827803][ T6493] netlink: 32 bytes leftover after parsing attributes in process `syz.3.98'. [ 62.836770][ T6539] netlink: 8 bytes leftover after parsing attributes in process `syz.3.103'. [ 62.839427][ T6539] netlink: 8 bytes leftover after parsing attributes in process `syz.3.103'. [ 62.844947][ T6539] netlink: 8 bytes leftover after parsing attributes in process `syz.3.103'. [ 62.848742][ T6539] netlink: 12 bytes leftover after parsing attributes in process `syz.3.103'. [ 63.805227][ T6558] overlayfs: failed to resolve './file0': -2 [ 64.119289][ T6563] fuse: Unknown parameter 'group_id00000000000000000000' [ 64.123173][ T6563] 9pnet_fd: Insufficient options for proto=fd [ 64.214317][ T6565] netdevsim netdevsim2 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0 [ 64.218066][ T6565] netdevsim netdevsim2 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0 [ 64.221326][ T6565] netdevsim netdevsim2 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0 [ 64.225560][ T6565] netdevsim netdevsim2 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0 [ 64.230281][ T6565] bond1: (slave geneve2): Enslaving as an active interface with an up link [ 64.246213][ T6565] netlink: 28 bytes leftover after parsing attributes in process `syz.2.108'. [ 64.249609][ T6565] 8021q: adding VLAN 0 to HW filter on device bond1 [ 65.282490][ T6610] netlink: 8 bytes leftover after parsing attributes in process `syz.2.115'. [ 65.285196][ T6610] netlink: 8 bytes leftover after parsing attributes in process `syz.2.115'. [ 65.288373][ T6610] netlink: 8 bytes leftover after parsing attributes in process `syz.2.115'. [ 65.290911][ T6610] netlink: 12 bytes leftover after parsing attributes in process `syz.2.115'. [ 65.687649][ T6614] kernel profiling enabled (shift: 7) [ 65.793510][ T6614] ISOFS: Unable to identify CD-ROM format. [ 65.905350][ T6012] usb 7-1: new high-speed USB device number 3 using dummy_hcd [ 66.068821][ T6012] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 66.071732][ T6012] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 66.075943][ T6012] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 66.079534][ T6012] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 66.081976][ T6012] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 66.086766][ T6012] usb 7-1: config 0 descriptor?? [ 66.498188][ T6012] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0 [ 66.500968][ T6012] plantronics 0003:047F:FFFF.0005: No inputs registered, leaving [ 66.513603][ T6012] plantronics 0003:047F:FFFF.0005: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0 [ 66.612612][ T6635] loop2: detected capacity change from 0 to 7 [ 66.618373][ T6635] Dev loop2: unable to read RDB block 7 [ 66.620709][ T6635] loop2: AHDI p1 p2 p3 p4 [ 66.622514][ T6635] loop2: partition table partially beyond EOD, truncated [ 66.627212][ T6635] loop2: p1 start 1601398130 is beyond EOD, truncated [ 66.629185][ T6635] loop2: p2 start 1702059890 is beyond EOD, truncated [ 66.631117][ T6635] loop2: p3 start 512 is beyond EOD, truncated [ 66.757020][ T6616] SET target dimension over the limit! [ 67.052158][ T6648] FAULT_INJECTION: forcing a failure. [ 67.052158][ T6648] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 67.056677][ T6649] overlayfs: missing 'lowerdir' [ 67.057803][ T6648] CPU: 3 UID: 0 PID: 6648 Comm: syz.1.128 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 67.057823][ T6648] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 67.057833][ T6648] Call Trace: [ 67.057838][ T6648] [ 67.057844][ T6648] dump_stack_lvl+0x16c/0x1f0 [ 67.057874][ T6648] should_fail_ex+0x50a/0x650 [ 67.057894][ T6648] _copy_from_user+0x2e/0xd0 [ 67.057928][ T6648] copy_from_sockptr_offset.constprop.0+0x123/0x140 [ 67.057955][ T6648] ? __pfx_copy_from_sockptr_offset.constprop.0+0x10/0x10 [ 67.057983][ T6648] ? tcp_setsockopt+0xae/0x100 [ 67.058006][ T6648] smc_setsockopt+0x29a/0xa00 [ 67.058030][ T6648] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 67.058052][ T6648] ? __pfx_smc_setsockopt+0x10/0x10 [ 67.058079][ T6648] ? find_held_lock+0x2d/0x110 [ 67.058100][ T6648] ? __pfx_smc_setsockopt+0x10/0x10 [ 67.058126][ T6648] do_sock_setsockopt+0x222/0x480 [ 67.058145][ T6648] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 67.058163][ T6648] ? lock_acquire+0x2f/0xb0 [ 67.058196][ T6648] __sys_setsockopt+0x1a0/0x230 [ 67.058224][ T6648] __ia32_sys_setsockopt+0xbc/0x160 [ 67.058247][ T6648] ? lockdep_hardirqs_on+0x7c/0x110 [ 67.058268][ T6648] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 67.058291][ T6648] __do_fast_syscall_32+0x73/0x120 [ 67.058315][ T6648] do_fast_syscall_32+0x32/0x80 [ 67.058338][ T6648] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 67.058363][ T6648] RIP: 0023:0xf73ae579 [ 67.058375][ T6648] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 67.058390][ T6648] RSP: 002b:00000000f503655c EFLAGS: 00000296 ORIG_RAX: 000000000000016e [ 67.058406][ T6648] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000029 [ 67.058416][ T6648] RDX: 0000000000000010 RSI: 0000000080000300 RDI: 0000000000000004 [ 67.058425][ T6648] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 67.058434][ T6648] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 67.058443][ T6648] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 67.058464][ T6648] [ 67.100639][ T6651] FAULT_INJECTION: forcing a failure. [ 67.100639][ T6651] name failslab, interval 1, probability 0, space 0, times 0 [ 67.126360][ T6651] CPU: 2 UID: 0 PID: 6651 Comm: syz.1.129 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 67.126377][ T6651] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 67.126383][ T6651] Call Trace: [ 67.126386][ T6651] [ 67.126390][ T6651] dump_stack_lvl+0x16c/0x1f0 [ 67.126410][ T6651] should_fail_ex+0x50a/0x650 [ 67.126421][ T6651] ? fs_reclaim_acquire+0xae/0x150 [ 67.126436][ T6651] ? tomoyo_encode2+0x100/0x3e0 [ 67.126450][ T6651] should_failslab+0xc2/0x120 [ 67.126461][ T6651] __kmalloc_noprof+0xcb/0x510 [ 67.126476][ T6651] ? rcu_is_watching+0x12/0xc0 [ 67.126488][ T6651] tomoyo_encode2+0x100/0x3e0 [ 67.126503][ T6651] tomoyo_encode+0x29/0x50 [ 67.126516][ T6651] tomoyo_realpath_from_path+0x19d/0x720 [ 67.126531][ T6651] ? tomoyo_path_number_perm+0x235/0x590 [ 67.126544][ T6651] tomoyo_path_number_perm+0x248/0x590 [ 67.126555][ T6651] ? tomoyo_path_number_perm+0x235/0x590 [ 67.126568][ T6651] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 67.126593][ T6651] ? __pfx_lock_release+0x10/0x10 [ 67.126607][ T6651] ? trace_lock_acquire+0x14e/0x1f0 [ 67.126620][ T6651] ? lock_acquire+0x2f/0xb0 [ 67.126632][ T6651] ? __fget_files+0x40/0x3a0 [ 67.126652][ T6651] ? __fget_files+0x206/0x3a0 [ 67.126673][ T6651] security_file_ioctl_compat+0x9b/0x240 [ 67.126692][ T6651] __do_compat_sys_ioctl+0x4e/0x2c0 [ 67.126713][ T6651] __do_fast_syscall_32+0x73/0x120 [ 67.126734][ T6651] do_fast_syscall_32+0x32/0x80 [ 67.126755][ T6651] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 67.126776][ T6651] RIP: 0023:0xf73ae579 [ 67.126785][ T6651] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 67.126794][ T6651] RSP: 002b:00000000f503655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 67.126804][ T6651] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000894b [ 67.126810][ T6651] RDX: 0000000080000100 RSI: 0000000000000000 RDI: 0000000000000000 [ 67.126815][ T6651] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 67.126821][ T6651] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 67.126830][ T6651] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 67.126848][ T6651] [ 67.126862][ T6651] ERROR: Out of memory at tomoyo_realpath_from_path. [ 67.551337][ T6671] mkiss: ax0: crc mode is auto. [ 67.687808][ T5959] Bluetooth: unknown link type 108 [ 67.689921][ T5959] Bluetooth: hci3: connection err: -111 [ 68.547615][ T6681] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 68.549919][ T6681] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 68.562831][ T6681] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 68.568747][ T6681] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 68.570477][ T6681] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 68.575215][ T6681] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 68.580377][ T6681] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 68.582817][ T6681] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 68.589917][ T6681] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 68.594121][ T6681] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 68.596830][ T6681] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 68.612370][ T6681] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 68.663888][ T26] usb 7-1: USB disconnect, device number 3 [ 68.985206][ T3555] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 69.265490][ T3555] usb 6-1: Using ep0 maxpacket: 8 [ 69.269761][ T3555] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 69.272937][ T3555] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 69.275587][ T3555] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 69.292601][ T3555] usb 6-1: config 0 descriptor?? [ 69.593386][ T6733] netlink: 8 bytes leftover after parsing attributes in process `syz.2.150'. [ 69.597921][ T6733] netlink: 8 bytes leftover after parsing attributes in process `syz.2.150'. [ 69.600735][ T6728] netlink: 8 bytes leftover after parsing attributes in process `syz.3.149'. [ 69.602245][ T6733] netlink: 8 bytes leftover after parsing attributes in process `syz.2.150'. [ 69.609105][ T6733] netlink: 12 bytes leftover after parsing attributes in process `syz.2.150'. [ 69.743436][ T3555] iowarrior 6-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0 [ 69.759495][ T3555] usb 6-1: USB disconnect, device number 2 [ 70.116937][ T5958] Bluetooth: hci0: command 0x0c1a tx timeout [ 70.158092][ T6744] MTD: Attempt to mount non-MTD device "/dev/sr0" [ 70.263904][ T6747] kAFS: No cell specified [ 70.576898][ T6744] /dev/sr0: Can't open blockdev [ 70.593410][ T6749] program syz.1.154 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 70.596286][ T5958] Bluetooth: hci2: command 0x0c1a tx timeout [ 70.596346][ T5959] Bluetooth: hci1: command 0x0c1a tx timeout [ 70.637571][ T6743] CIFS mount error: No usable UNC path provided in device string! [ 70.637571][ T6743] [ 70.640855][ T6743] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 70.643589][ T6743] capability: warning: `syz.2.153' uses 32-bit capabilities (legacy support in use) [ 70.675946][ T5959] Bluetooth: hci3: command 0x0405 tx timeout [ 70.762680][ T1414] ieee802154 phy0 wpan0: encryption failed: -22 [ 70.765596][ T1414] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.115345][ T6768] Bluetooth: MGMT ver 1.23 [ 71.451012][ T6774] netlink: 8 bytes leftover after parsing attributes in process `syz.1.160'. [ 71.453484][ T6774] netlink: 8 bytes leftover after parsing attributes in process `syz.1.160'. [ 71.457389][ T6774] netlink: 8 bytes leftover after parsing attributes in process `syz.1.160'. [ 71.460574][ T6774] netlink: 12 bytes leftover after parsing attributes in process `syz.1.160'. [ 71.933662][ T6781] netlink: 8 bytes leftover after parsing attributes in process `syz.1.161'. [ 72.084230][ T40] audit: type=1326 audit(1742804522.593:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6783 comm="syz.3.162" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ce579 code=0x7ffc0000 [ 72.090802][ T40] audit: type=1326 audit(1742804522.593:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6783 comm="syz.3.162" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ce579 code=0x7ffc0000 [ 72.097482][ T40] audit: type=1326 audit(1742804522.593:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6783 comm="syz.3.162" exe="/syz-executor" sig=0 arch=40000003 syscall=361 compat=1 ip=0xf73ce579 code=0x7ffc0000 [ 72.103807][ T40] audit: type=1326 audit(1742804522.593:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6783 comm="syz.3.162" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ce579 code=0x7ffc0000 [ 72.111724][ T40] audit: type=1326 audit(1742804522.593:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6783 comm="syz.3.162" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ce579 code=0x7ffc0000 [ 72.119583][ T40] audit: type=1326 audit(1742804522.593:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6783 comm="syz.3.162" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf73ce579 code=0x7ffc0000 [ 72.125877][ T40] audit: type=1326 audit(1742804522.593:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6783 comm="syz.3.162" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ce579 code=0x7ffc0000 [ 72.145810][ T40] audit: type=1326 audit(1742804522.593:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6783 comm="syz.3.162" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ce579 code=0x7ffc0000 [ 72.163613][ T40] audit: type=1326 audit(1742804522.593:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6783 comm="syz.3.162" exe="/syz-executor" sig=0 arch=40000003 syscall=361 compat=1 ip=0xf73ce579 code=0x7ffc0000 [ 72.169793][ T40] audit: type=1326 audit(1742804522.593:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6783 comm="syz.3.162" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ce579 code=0x7ffc0000 [ 72.208017][ T5959] Bluetooth: hci0: command 0x0c1a tx timeout [ 72.517813][ T6798] team0: entered promiscuous mode [ 72.520070][ T6798] team_slave_0: entered promiscuous mode [ 72.522515][ T6798] team_slave_1: entered promiscuous mode [ 72.675354][ T5959] Bluetooth: hci2: command 0x0c1a tx timeout [ 72.676966][ T5958] Bluetooth: hci1: command 0x0c1a tx timeout [ 72.765262][ T5958] Bluetooth: hci3: command 0x0405 tx timeout [ 73.215250][ T6796] team0: left promiscuous mode [ 73.217808][ T6796] team_slave_0: left promiscuous mode [ 73.220480][ T6796] team_slave_1: left promiscuous mode [ 74.300851][ T5958] Bluetooth: hci0: command 0x0c1a tx timeout [ 74.469612][ T5958] Bluetooth: unknown link type 108 [ 74.482869][ T5958] Bluetooth: hci2: connection err: -111 [ 74.769830][ T5958] Bluetooth: hci2: command 0x0c1a tx timeout [ 74.769850][ T5959] Bluetooth: hci1: command 0x0c1a tx timeout [ 74.839631][ T5958] Bluetooth: hci3: command 0x0405 tx timeout [ 75.341392][ T6827] bridge1: entered promiscuous mode [ 76.571564][ T6841] input: syz1 as /devices/virtual/input/input6 [ 78.573824][ T6869] __nla_validate_parse: 4 callbacks suppressed [ 78.573841][ T6869] netlink: 8 bytes leftover after parsing attributes in process `syz.0.182'. [ 78.601885][ T6869] netlink: 8 bytes leftover after parsing attributes in process `syz.0.182'. [ 78.632177][ T6869] netlink: 8 bytes leftover after parsing attributes in process `syz.0.182'. [ 78.640707][ T6869] netlink: 12 bytes leftover after parsing attributes in process `syz.0.182'. [ 80.423260][ T6903] CIFS mount error: No usable UNC path provided in device string! [ 80.423260][ T6903] [ 80.435301][ T6903] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 80.443244][ T6903] CIFS mount error: No usable UNC path provided in device string! [ 80.443244][ T6903] [ 80.463496][ T6903] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 80.472725][ T40] kauditd_printk_skb: 13 callbacks suppressed [ 80.472741][ T40] audit: type=1804 audit(1742804528.982:26): pid=6903 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.189" name="/newroot/44/file0" dev="tmpfs" ino=256 res=1 errno=0 [ 80.526981][ T6900] netlink: 2 bytes leftover after parsing attributes in process `syz.2.187'. [ 80.771593][ T6906] usb usb8: usbfs: process 6906 (syz.3.190) did not claim interface 0 before use [ 80.829063][ T6908] fuse: Bad value for 'fd' [ 81.000360][ T835] cfg80211: failed to load regulatory.db [ 81.484052][ T6917] 9pnet_fd: Insufficient options for proto=fd [ 81.557011][ T6916] netlink: 8 bytes leftover after parsing attributes in process `syz.1.194'. [ 81.588667][ T6916] netlink: 8 bytes leftover after parsing attributes in process `syz.1.194'. [ 81.618211][ T6916] netlink: 8 bytes leftover after parsing attributes in process `syz.1.194'. [ 81.621664][ T6916] netlink: 12 bytes leftover after parsing attributes in process `syz.1.194'. [ 81.805278][ T6007] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 81.992558][ T6007] usb 5-1: Using ep0 maxpacket: 32 [ 82.002319][ T6007] usb 5-1: config 1 interface 0 altsetting 1 bulk endpoint 0x1 has invalid maxpacket 1024 [ 82.005749][ T6007] usb 5-1: config 1 interface 0 has no altsetting 0 [ 82.021700][ T6007] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 82.033690][ T6007] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 82.120542][ T6007] usb 5-1: Product: Ч [ 82.122538][ T6007] usb 5-1: Manufacturer: á° [ 82.124672][ T6007] usb 5-1: SerialNumber: 缴쉲뫞죓㞑嚖Ѓ㽦䰶藽埿┎é ëŽ±ê·–뢱Ӛ䨃䂥ဖ⇜çªä€‘୵첉㕡腘ᄊë­å®¡åµ†â¢¶ç‹†é’è‡ï™˜â•‹â«¶å³µçŸŽâ …䘣⻂詂墴촣鯗ᆸë€æ©¤Ú±è ©î®à¯ˆä˜¤ï»¾æ ³ã“³ãº´îºŠë¶±ãº„⊸ç­äº¤é¯¥îª¯ì¢¾ç´…ïš„â¿ë²½ã“ží€…б肙ڼê¯ãš‘뺳ാ뻨ë”鳑埧廸⃼軧ᬔ괷䛌囡鄀ìºå·¶å®‚à«å¨·ê©’碼宠ᙕ堑쉠ퟓ㡇蘸䫲 [ 82.148091][ T6917] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 82.702270][ T6928] netlink: 4 bytes leftover after parsing attributes in process `syz.1.196'. [ 82.873932][ T6926] bridge0: port 2(bridge_slave_1) entered disabled state [ 82.878164][ T6926] bridge0: port 1(bridge_slave_0) entered disabled state [ 83.092934][ T6926] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 83.122768][ T6926] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 83.331599][ T6007] usb 5-1: USB disconnect, device number 2 [ 83.393004][ T6926] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 83.406304][ T6926] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 83.425602][ T6926] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 83.436883][ T6926] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 83.652539][ C1] vkms_vblank_simulate: vblank timer overrun [ 83.802661][ C1] vkms_vblank_simulate: vblank timer overrun [ 83.851466][ C1] vkms_vblank_simulate: vblank timer overrun [ 83.960437][ C1] vkms_vblank_simulate: vblank timer overrun [ 84.292453][ C1] vkms_vblank_simulate: vblank timer overrun [ 84.322771][ T6948] overlayfs: missing 'lowerdir' [ 84.382292][ C1] vkms_vblank_simulate: vblank timer overrun [ 84.568447][ C1] vkms_vblank_simulate: vblank timer overrun [ 84.652472][ C1] vkms_vblank_simulate: vblank timer overrun [ 84.916421][ C1] vkms_vblank_simulate: vblank timer overrun [ 85.044934][ C1] vkms_vblank_simulate: vblank timer overrun [ 85.328960][ T6952] autofs: Unknown parameter '0x0000000000000000' [ 85.489802][ T6956] openvswitch: netlink: nsh attribute has 65532 unknown bytes. [ 85.512672][ T6956] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 85.570284][ T6956] fuse: Unknown parameter 'g‰C>_id' [ 86.003266][ T6960] netlink: 8 bytes leftover after parsing attributes in process `syz.3.204'. [ 86.008454][ T6960] netlink: 8 bytes leftover after parsing attributes in process `syz.3.204'. [ 86.012649][ C1] vkms_vblank_simulate: vblank timer overrun [ 86.014931][ T6960] netlink: 8 bytes leftover after parsing attributes in process `syz.3.204'. [ 86.022246][ T6960] netlink: 12 bytes leftover after parsing attributes in process `syz.3.204'. [ 86.140498][ C1] vkms_vblank_simulate: vblank timer overrun [ 87.286284][ T6985] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 87.311565][ C1] vkms_vblank_simulate: vblank timer overrun [ 87.314359][ T6985] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 87.488508][ C1] vkms_vblank_simulate: vblank timer overrun [ 87.779878][ C1] vkms_vblank_simulate: vblank timer overrun [ 88.451776][ T6998] 9pnet_fd: Insufficient options for proto=fd [ 88.725073][ T7008] Invalid logical block size (16128) [ 89.245074][ T7017] FAULT_INJECTION: forcing a failure. [ 89.245074][ T7017] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 89.413751][ T7017] CPU: 2 UID: 0 PID: 7017 Comm: syz.1.219 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 89.413782][ T7017] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 89.413793][ T7017] Call Trace: [ 89.413798][ T7017] [ 89.413807][ T7017] dump_stack_lvl+0x16c/0x1f0 [ 89.413840][ T7017] should_fail_ex+0x50a/0x650 [ 89.413858][ T7017] ? __pfx___might_resched+0x10/0x10 [ 89.413889][ T7017] should_fail_alloc_page+0xe7/0x130 [ 89.413909][ T7017] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 89.413939][ T7017] __alloc_frozen_pages_noprof+0x18e/0x2470 [ 89.413970][ T7017] ? hlock_class+0x4e/0x130 [ 89.413989][ T7017] ? mark_lock+0xb5/0xc60 [ 89.414014][ T7017] ? __pfx_mark_lock+0x10/0x10 [ 89.414039][ T7017] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 89.414069][ T7017] ? hlock_class+0x4e/0x130 [ 89.414086][ T7017] ? mark_lock+0xb5/0xc60 [ 89.414109][ T7017] ? hlock_class+0x4e/0x130 [ 89.414133][ T7017] ? hlock_class+0x4e/0x130 [ 89.414150][ T7017] ? __lock_acquire+0xcc5/0x3c40 [ 89.414175][ T7017] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 89.414205][ T7017] ? policy_nodemask+0xea/0x4e0 [ 89.414225][ T7017] alloc_pages_mpol+0x1fc/0x540 [ 89.414244][ T7017] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 89.414262][ T7017] ? hlock_class+0x4e/0x130 [ 89.414285][ T7017] folio_alloc_mpol_noprof+0x36/0x2f0 [ 89.414305][ T7017] vma_alloc_folio_noprof+0xee/0x1b0 [ 89.414324][ T7017] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 89.414344][ T7017] ? find_held_lock+0x2d/0x110 [ 89.414369][ T7017] do_pte_missing+0x202f/0x3e10 [ 89.414411][ T7017] __handle_mm_fault+0x103c/0x2a40 [ 89.414448][ T7017] ? __pfx___handle_mm_fault+0x10/0x10 [ 89.414471][ T7017] ? follow_page_pte+0x3ac/0x1490 [ 89.414495][ T7017] ? __pfx_lock_release+0x10/0x10 [ 89.414541][ T7017] handle_mm_fault+0x3fa/0xaa0 [ 89.414573][ T7017] __get_user_pages+0x773/0x36f0 [ 89.414609][ T7017] ? __pfx___get_user_pages+0x10/0x10 [ 89.414632][ T7017] ? down_read_killable+0xcc/0x380 [ 89.414650][ T7017] ? __pfx_down_read_killable+0x10/0x10 [ 89.414671][ T7017] ? __pfx___lock_acquire+0x10/0x10 [ 89.414698][ T7017] __gup_longterm_locked+0x212/0x1870 [ 89.414733][ T7017] ? __pfx___gup_longterm_locked+0x10/0x10 [ 89.414758][ T7017] ? gup_fast_fallback+0x84c/0x2690 [ 89.414807][ T7017] ? __pfx_lock_release+0x10/0x10 [ 89.414830][ T7017] ? lock_acquire+0x2f/0xb0 [ 89.414850][ T7017] ? ___pte_offset_map+0x42/0x540 [ 89.414870][ T7017] ? sanity_check_pinned_pages+0x23/0x11e0 [ 89.414898][ T7017] gup_fast_fallback+0x1802/0x2690 [ 89.414922][ T7017] ? blkdev_direct_IO+0xdb6/0x1c40 [ 89.414958][ T7017] ? __pfx_gup_fast_fallback+0x10/0x10 [ 89.414987][ T7017] ? hlock_class+0x4e/0x130 [ 89.415003][ T7017] ? __lock_acquire+0xcc5/0x3c40 [ 89.415029][ T7017] pin_user_pages_fast+0xa8/0x100 [ 89.415053][ T7017] ? __pfx_pin_user_pages_fast+0x10/0x10 [ 89.415081][ T7017] ? rcu_is_watching+0x12/0xc0 [ 89.415103][ T7017] iov_iter_extract_pages+0x3a5/0x2010 [ 89.415131][ T7017] ? find_held_lock+0x2d/0x110 [ 89.415152][ T7017] ? __pfx_iov_iter_extract_pages+0x10/0x10 [ 89.415172][ T7017] ? bio_associate_blkg_from_css+0x394/0x13e0 [ 89.415189][ T7017] ? __pfx_lock_release+0x10/0x10 [ 89.415209][ T7017] ? trace_lock_acquire+0x14e/0x1f0 [ 89.415228][ T7017] ? _raw_spin_unlock+0x28/0x50 [ 89.415250][ T7017] ? find_held_lock+0x2d/0x110 [ 89.415270][ T7017] ? bio_associate_blkg+0x137/0x2a0 [ 89.415289][ T7017] bio_iov_iter_get_pages+0x37c/0x1100 [ 89.415322][ T7017] ? __pfx_bio_iov_iter_get_pages+0x10/0x10 [ 89.415344][ T7017] ? __pfx_bio_alloc_bioset+0x10/0x10 [ 89.415368][ T7017] ? timestamp_truncate+0x21f/0x2e0 [ 89.415393][ T7017] ? __pfx_timestamp_truncate+0x10/0x10 [ 89.415422][ T7017] ? iov_iter_is_aligned+0xf2/0x5a0 [ 89.415443][ T7017] blkdev_direct_IO+0x110e/0x1c40 [ 89.415479][ T7017] ? __pfx_blkdev_direct_IO+0x10/0x10 [ 89.415501][ T7017] ? rcu_is_watching+0x12/0xc0 [ 89.415527][ T7017] ? touch_atime+0x2cf/0x5d0 [ 89.415550][ T7017] blkdev_read_iter+0x258/0x4b0 [ 89.415577][ T7017] do_iter_readv_writev+0x737/0x950 [ 89.415603][ T7017] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 89.415630][ T7017] ? bpf_lsm_file_permission+0x9/0x10 [ 89.415657][ T7017] ? security_file_permission+0x71/0x210 [ 89.415681][ T7017] ? rw_verify_area+0xcf/0x680 [ 89.415704][ T7017] vfs_readv+0x4d2/0x8a0 [ 89.415725][ T7017] ? __pfx___lock_acquire+0x10/0x10 [ 89.415756][ T7017] ? __pfx_vfs_readv+0x10/0x10 [ 89.415784][ T7017] ? __fget_files+0x1fc/0x3a0 [ 89.415809][ T7017] ? __pfx_lock_release+0x10/0x10 [ 89.415843][ T7017] ? __fget_files+0x206/0x3a0 [ 89.415873][ T7017] ? do_preadv+0x1b1/0x270 [ 89.415894][ T7017] do_preadv+0x1b1/0x270 [ 89.415918][ T7017] ? __pfx_do_preadv+0x10/0x10 [ 89.415941][ T7017] ? ksys_write+0x1ba/0x250 [ 89.415966][ T7017] ? __pfx_ksys_write+0x10/0x10 [ 89.415992][ T7017] __ia32_compat_sys_preadv2+0x121/0x1b0 [ 89.416019][ T7017] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 89.416049][ T7017] __do_fast_syscall_32+0x73/0x120 [ 89.416078][ T7017] do_fast_syscall_32+0x32/0x80 [ 89.416104][ T7017] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 89.416132][ T7017] RIP: 0023:0xf73ae579 [ 89.416148][ T7017] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 89.416164][ T7017] RSP: 002b:00000000f503655c EFLAGS: 00000296 ORIG_RAX: 000000000000017a [ 89.416181][ T7017] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000080 [ 89.416192][ T7017] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000000 [ 89.416202][ T7017] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 89.416211][ T7017] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 89.416221][ T7017] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 89.416244][ T7017] [ 91.230960][ T7041] overlayfs: missing 'lowerdir' [ 92.616426][ C2] vkms_vblank_simulate: vblank timer overrun [ 92.728044][ T7061] Bluetooth: hci0: Opcode 0x0401 failed: -112 [ 93.074921][ T7077] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw' [ 93.079624][ T7077] openvswitch: netlink: Flow actions attr not present in new flow. [ 93.835990][ T5959] Bluetooth: unknown link type 108 [ 93.838171][ T5959] Bluetooth: hci0: connection err: -111 [ 94.168433][ C2] vkms_vblank_simulate: vblank timer overrun [ 94.216380][ C2] vkms_vblank_simulate: vblank timer overrun [ 94.316729][ C2] vkms_vblank_simulate: vblank timer overrun [ 94.338452][ T7083] fuse: Bad value for 'fd' [ 94.406139][ T7083] 9pnet_fd: Insufficient options for proto=fd [ 94.567814][ C2] vkms_vblank_simulate: vblank timer overrun [ 94.680542][ T5959] Bluetooth: hci0: command 0x0c1a tx timeout [ 94.691305][ T5958] Bluetooth: hci0: Opcode 0x0c1a failed: -110 [ 94.735064][ T58] usb 7-1: new high-speed USB device number 4 using dummy_hcd [ 94.788412][ C2] vkms_vblank_simulate: vblank timer overrun [ 94.955747][ T58] usb 7-1: Using ep0 maxpacket: 32 [ 94.964071][ T58] usb 7-1: config 1 interface 0 altsetting 1 bulk endpoint 0x1 has invalid maxpacket 1024 [ 94.974465][ T58] usb 7-1: config 1 interface 0 has no altsetting 0 [ 94.989035][ T58] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 94.992340][ T58] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 94.996752][ T58] usb 7-1: Product: Ч [ 94.999610][ T58] usb 7-1: Manufacturer: á° [ 95.002589][ T58] usb 7-1: SerialNumber: 缴쉲뫞죓㞑嚖Ѓ㽦䰶藽埿┎é ëŽ±ê·–뢱Ӛ䨃䂥ဖ⇜çªä€‘୵첉㕡腘ᄊë­å®¡åµ†â¢¶ç‹†é’è‡ï™˜â•‹â«¶å³µçŸŽâ …䘣⻂詂墴촣鯗ᆸë€æ©¤Ú±è ©î®à¯ˆä˜¤ï»¾æ ³ã“³ãº´îºŠë¶±ãº„⊸ç­äº¤é¯¥îª¯ì¢¾ç´…ïš„â¿ë²½ã“ží€…б肙ڼê¯ãš‘뺳ാ뻨ë”鳑埧廸⃼軧ᬔ괷䛌囡鄀ìºå·¶å®‚à«å¨·ê©’碼宠ᙕ堑쉠ퟓ㡇蘸䫲 [ 95.060958][ T7083] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 95.277897][ T7093] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6) [ 95.280697][ T7093] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 95.290776][ T7093] vhci_hcd vhci_hcd.0: Device attached [ 95.465292][ T6346] vhci_hcd: vhci_device speed not set [ 95.538217][ T36] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 95.541333][ T6346] usb 37-1: new full-speed USB device number 2 using vhci_hcd [ 95.740387][ T36] usb 5-1: Using ep0 maxpacket: 8 [ 95.751142][ T36] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 95.779603][ T36] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 2 [ 95.799933][ T36] usb 5-1: New USB device found, idVendor=2040, idProduct=2950, bcdDevice=85.f1 [ 95.806198][ T36] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 95.812335][ T36] usb 5-1: Product: syz [ 95.816732][ T36] usb 5-1: Manufacturer: syz [ 95.820091][ T36] usb 5-1: SerialNumber: syz [ 95.891859][ T36] usb 5-1: config 0 descriptor?? [ 95.897614][ T58] usb 7-1: USB disconnect, device number 4 [ 96.130831][ T7100] input: syz0 as /devices/virtual/input/input7 [ 96.131921][ T26] usb 5-1: USB disconnect, device number 3 [ 96.146613][ T7094] usb 37-1: recv xbuf, -104 [ 96.174542][ C2] vkms_vblank_simulate: vblank timer overrun [ 96.201646][ T1143] vhci_hcd: stop threads [ 96.205791][ T1143] vhci_hcd: release socket [ 96.223334][ T1143] vhci_hcd: disconnect device [ 96.275456][ T6346] vhci_hcd: vhci_device speed not set [ 96.621733][ T7107] 8021q: adding VLAN 0 to HW filter on device bond0 [ 96.628576][ T7107] bond0: (slave rose0): Enslaving as an active interface with an up link [ 96.785673][ T5958] Bluetooth: hci0: command 0x0c1a tx timeout [ 97.343283][ C2] vkms_vblank_simulate: vblank timer overrun [ 97.464424][ C2] vkms_vblank_simulate: vblank timer overrun [ 98.464341][ T7137] overlayfs: missing 'workdir' [ 100.093980][ T7158] overlayfs: missing 'lowerdir' [ 103.689134][ T7207] JFS: discard option not supported on device [ 103.693652][ T7207] Mount JFS Failure: -22 [ 103.695499][ T7207] jfs_mount failed w/return code = -22 [ 104.420624][ T7218] FAULT_INJECTION: forcing a failure. [ 104.420624][ T7218] name failslab, interval 1, probability 0, space 0, times 0 [ 104.463756][ T7218] CPU: 0 UID: 0 PID: 7218 Comm: syz.3.268 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 104.463784][ T7218] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 104.463794][ T7218] Call Trace: [ 104.463800][ T7218] [ 104.463806][ T7218] dump_stack_lvl+0x16c/0x1f0 [ 104.463837][ T7218] should_fail_ex+0x50a/0x650 [ 104.463854][ T7218] ? fs_reclaim_acquire+0xae/0x150 [ 104.463876][ T7218] should_failslab+0xc2/0x120 [ 104.463890][ T7218] __kmalloc_node_noprof+0xd1/0x510 [ 104.463914][ T7218] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 104.463939][ T7218] __kvmalloc_node_noprof+0xad/0x1a0 [ 104.463962][ T7218] alloc_netdev_mqs+0x101e/0x15d0 [ 104.463986][ T7218] rtnl_create_link+0xc10/0xfa0 [ 104.464017][ T7218] rtnl_newlink+0x14c6/0x1d60 [ 104.464048][ T7218] ? __pfx_rtnl_newlink+0x10/0x10 [ 104.464080][ T7218] ? __pfx___lock_acquire+0x10/0x10 [ 104.464104][ T7218] ? kfree_skbmem+0x1a4/0x1f0 [ 104.464128][ T7218] ? aa_get_newest_label+0x376/0x680 [ 104.464151][ T7218] ? find_held_lock+0x2d/0x110 [ 104.464204][ T7218] ? rtnetlink_rcv_msg+0x93a/0xea0 [ 104.464230][ T7218] ? __pfx_lock_release+0x10/0x10 [ 104.464251][ T7218] ? trace_lock_acquire+0x14e/0x1f0 [ 104.464281][ T7218] ? __pfx_rtnl_newlink+0x10/0x10 [ 104.464306][ T7218] rtnetlink_rcv_msg+0x95b/0xea0 [ 104.464335][ T7218] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 104.464368][ T7218] netlink_rcv_skb+0x16b/0x440 [ 104.464393][ T7218] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 104.464417][ T7218] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 104.464453][ T7218] ? netlink_deliver_tap+0x1ae/0xd30 [ 104.464481][ T7218] netlink_unicast+0x53c/0x7f0 [ 104.464508][ T7218] ? __pfx_netlink_unicast+0x10/0x10 [ 104.464535][ T7218] ? __phys_addr_symbol+0x30/0x80 [ 104.464552][ T7218] ? __check_object_size+0x488/0x710 [ 104.464573][ T7218] netlink_sendmsg+0x8b8/0xd70 [ 104.464601][ T7218] ? __pfx_netlink_sendmsg+0x10/0x10 [ 104.464635][ T7218] ____sys_sendmsg+0xaaf/0xc90 [ 104.464657][ T7218] ? __pfx_____sys_sendmsg+0x10/0x10 [ 104.464676][ T7218] ? get_compat_msghdr+0x11b/0x170 [ 104.464707][ T7218] ___sys_sendmsg+0x135/0x1e0 [ 104.464734][ T7218] ? __pfx____sys_sendmsg+0x10/0x10 [ 104.464767][ T7218] ? __pfx_lock_release+0x10/0x10 [ 104.464804][ T7218] ? trace_lock_acquire+0x14e/0x1f0 [ 104.464828][ T7218] ? __fget_files+0x206/0x3a0 [ 104.464855][ T7218] __sys_sendmsg+0x16e/0x220 [ 104.464869][ T7218] ? __pfx___sys_sendmsg+0x10/0x10 [ 104.464898][ T7218] __do_fast_syscall_32+0x73/0x120 [ 104.464926][ T7218] do_fast_syscall_32+0x32/0x80 [ 104.464948][ T7218] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 104.464972][ T7218] RIP: 0023:0xf73ce579 [ 104.464985][ T7218] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 104.464998][ T7218] RSP: 002b:00000000f505655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 104.465016][ T7218] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800002c0 [ 104.465025][ T7218] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 104.465034][ T7218] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 104.465044][ T7218] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 104.465053][ T7218] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 104.465092][ T7218] [ 104.928444][ T7223] netlink: 156 bytes leftover after parsing attributes in process `syz.2.265'. [ 106.708486][ C2] vkms_vblank_simulate: vblank timer overrun [ 106.740232][ C2] vkms_vblank_simulate: vblank timer overrun [ 106.772311][ C2] vkms_vblank_simulate: vblank timer overrun [ 106.827645][ C2] vkms_vblank_simulate: vblank timer overrun [ 107.347305][ T7272] overlayfs: missing 'lowerdir' [ 107.374735][ C2] vkms_vblank_simulate: vblank timer overrun [ 107.601684][ T7275] netlink: 'syz.3.284': attribute type 3 has an invalid length. [ 108.159169][ T7284] netlink: 'syz.3.287': attribute type 7 has an invalid length. [ 108.161814][ T7284] netlink: 140 bytes leftover after parsing attributes in process `syz.3.287'. [ 108.319617][ T7287] input: syz0 as /devices/virtual/input/input8 [ 108.588276][ C2] vkms_vblank_simulate: vblank timer overrun [ 109.384503][ T7302] syz.3.293 uses obsolete (PF_INET,SOCK_PACKET) [ 109.477183][ T449] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 109.827010][ T449] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 110.022857][ T5959] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 110.058832][ T5959] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 110.074822][ T5959] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 110.121467][ T5959] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 110.125511][ T5959] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 110.130405][ T5959] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 110.151552][ T449] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 110.330950][ T7311] fuse: Unknown parameter 'ïÆ@ƒÿ' [ 110.372288][ C2] vkms_vblank_simulate: vblank timer overrun [ 110.641199][ T7319] overlayfs: missing 'lowerdir' [ 110.872298][ C2] vkms_vblank_simulate: vblank timer overrun [ 110.945813][ T449] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 111.252953][ T7308] chnl_net:caif_netlink_parms(): no params data found [ 111.288197][ C2] vkms_vblank_simulate: vblank timer overrun [ 111.444325][ T7330] syz.1.300: vmalloc error: size 2147483264, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 111.450297][ T7330] CPU: 2 UID: 0 PID: 7330 Comm: syz.1.300 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 111.450322][ T7330] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 111.450333][ T7330] Call Trace: [ 111.450338][ T7330] [ 111.450345][ T7330] dump_stack_lvl+0x16c/0x1f0 [ 111.450375][ T7330] warn_alloc+0x24d/0x3a0 [ 111.450406][ T7330] ? __pfx_warn_alloc+0x10/0x10 [ 111.450439][ T7330] ? __pfx_lock_release+0x10/0x10 [ 111.450467][ T7330] __vmalloc_node_range_noprof+0x10dc/0x1530 [ 111.450491][ T7330] ? __might_fault+0xe3/0x190 [ 111.450512][ T7330] ? compat_do_replace+0x1b1/0x7b0 [ 111.450536][ T7330] ? compat_copy_ebt_replace_from_user+0x2e9/0x420 [ 111.450561][ T7330] ? __lock_acquire+0x1580/0x3c40 [ 111.450583][ T7330] ? __pfx_compat_copy_ebt_replace_from_user+0x10/0x10 [ 111.450612][ T7330] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 111.450638][ T7330] ? __pfx___lock_acquire+0x10/0x10 [ 111.450661][ T7330] ? compat_do_replace+0x1b1/0x7b0 [ 111.450687][ T7330] vmalloc_noprof+0x6b/0x90 [ 111.450707][ T7330] ? compat_do_replace+0x1b1/0x7b0 [ 111.450733][ T7330] compat_do_replace+0x1b1/0x7b0 [ 111.450758][ T7330] ? lock_acquire.part.0+0x11b/0x380 [ 111.450780][ T7330] ? __pfx_compat_do_replace+0x10/0x10 [ 111.450803][ T7330] ? aa_get_newest_label+0x376/0x680 [ 111.450824][ T7330] ? __pfx_aa_get_newest_label+0x10/0x10 [ 111.450852][ T7330] ? bpf_lsm_capable+0x9/0x10 [ 111.450869][ T7330] ? security_capable+0x7e/0x260 [ 111.450888][ T7330] do_ebt_set_ctl+0x492/0x580 [ 111.450912][ T7330] ? sockopt_release_sock+0x52/0x60 [ 111.450930][ T7330] ? __pfx_do_ebt_set_ctl+0x10/0x10 [ 111.450956][ T7330] ? __pfx_do_ip_setsockopt+0x10/0x10 [ 111.450981][ T7330] ? nf_sockopt_find.constprop.0+0x221/0x290 [ 111.451009][ T7330] nf_setsockopt+0x8a/0xf0 [ 111.451035][ T7330] ip_setsockopt+0xcb/0xf0 [ 111.451054][ T7330] raw_setsockopt+0xb8/0x290 [ 111.451073][ T7330] ? __pfx_raw_setsockopt+0x10/0x10 [ 111.451093][ T7330] ? sock_common_setsockopt+0x2e/0xf0 [ 111.451114][ T7330] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 111.451135][ T7330] do_sock_setsockopt+0x222/0x480 [ 111.451155][ T7330] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 111.451190][ T7330] ? lock_acquire+0x2f/0xb0 [ 111.451226][ T7330] __sys_setsockopt+0x1a0/0x230 [ 111.451256][ T7330] __ia32_sys_setsockopt+0xbc/0x160 [ 111.451280][ T7330] ? lockdep_hardirqs_on+0x7c/0x110 [ 111.451306][ T7330] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 111.451331][ T7330] __do_fast_syscall_32+0x73/0x120 [ 111.451358][ T7330] do_fast_syscall_32+0x32/0x80 [ 111.451382][ T7330] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 111.451410][ T7330] RIP: 0023:0xf73ae579 [ 111.451424][ T7330] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 111.451439][ T7330] RSP: 002b:00000000f503655c EFLAGS: 00000296 ORIG_RAX: 000000000000016e [ 111.451457][ T7330] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000 [ 111.451467][ T7330] RDX: 0000000000000080 RSI: 00000000800002c0 RDI: 00000000000000e0 [ 111.451476][ T7330] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 111.451485][ T7330] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 111.451495][ T7330] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 111.451513][ T7330] [ 111.451520][ T7330] Mem-Info: [ 111.692745][ C2] vkms_vblank_simulate: vblank timer overrun [ 111.745638][ T7330] active_anon:5235 inactive_anon:0 isolated_anon:0 [ 111.745638][ T7330] active_file:14797 inactive_file:35298 isolated_file:0 [ 111.745638][ T7330] unevictable:1768 dirty:180 writeback:0 [ 111.745638][ T7330] slab_reclaimable:7980 slab_unreclaimable:56810 [ 111.745638][ T7330] mapped:24026 shmem:2100 pagetables:785 [ 111.745638][ T7330] sec_pagetables:304 bounce:0 [ 111.745638][ T7330] kernel_misc_reclaimable:0 [ 111.745638][ T7330] free:50649 free_pcp:3852 free_cma:0 [ 111.803465][ T7330] Node 0 active_anon:388kB inactive_anon:0kB active_file:740kB inactive_file:80kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:968kB dirty:0kB writeback:0kB shmem:3552kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9748kB pagetables:748kB sec_pagetables:1140kB all_unreclaimable? yes [ 111.846368][ T7330] Node 1 active_anon:20752kB inactive_anon:0kB active_file:58448kB inactive_file:141112kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:99236kB dirty:720kB writeback:0kB shmem:4848kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:2484kB pagetables:2492kB sec_pagetables:76kB all_unreclaimable? no [ 111.861502][ T7330] Node 0 DMA free:2968kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:4kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:56kB local_pcp:0kB free_cma:0kB [ 111.883402][ T7330] lowmem_reserve[]: 0 294 294 294 294 [ 111.889111][ T7330] Node 0 DMA32 free:16768kB boost:0kB min:13560kB low:16948kB high:20336kB reserved_highatomic:4096KB active_anon:388kB inactive_anon:0kB active_file:736kB inactive_file:80kB unevictable:3536kB writepending:0kB present:1032196kB managed:301724kB mlocked:0kB bounce:0kB free_pcp:2832kB local_pcp:1036kB free_cma:0kB [ 111.914024][ T7330] lowmem_reserve[]: 0 0 0 0 0 [ 111.916533][ T7330] Node 1 DMA32 free:181416kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB active_anon:20852kB inactive_anon:0kB active_file:58448kB inactive_file:141112kB unevictable:3536kB writepending:720kB present:1048432kB managed:948252kB mlocked:0kB bounce:0kB free_pcp:12668kB local_pcp:5624kB free_cma:0kB [ 111.930311][ T7330] lowmem_reserve[]: 0 0 0 0 0 [ 111.932704][ T7330] Node 0 DMA: 68*4kB (UM) 29*8kB (UM) 34*16kB (UM) 12*32kB (UM) 4*64kB (UM) 0*128kB 1*256kB (M) 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 2968kB [ 111.953696][ T7330] Node 0 DMA32: 36*4kB (UMH) 78*8kB (UMEH) 47*16kB (MEH) 75*32kB (UMEH) 42*64kB (UMEH) 13*128kB (UME) 7*256kB (M) 5*512kB (UM) 4*1024kB (M) 0*2048kB 0*4096kB = 16720kB [ 111.963722][ T7330] Node 1 DMA32: 268*4kB (UM) 544*8kB (UME) 514*16kB (UME) 485*32kB (UME) 348*64kB (UME) 62*128kB (ME) 26*256kB (M) 23*512kB (UME) 4*1024kB (UME) 7*2048kB (UME) 22*4096kB (UM) = 186352kB [ 111.973592][ T7330] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 111.979206][ T7330] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 111.984316][ T7330] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 111.989747][ T7330] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 111.989947][ T7308] bridge0: port 1(bridge_slave_0) entered blocking state [ 111.996496][ T7330] 52462 total pagecache pages [ 111.996513][ T7330] 267 pages in swap cache [ 111.996519][ T7330] Free swap = 120308kB [ 111.996525][ T7330] Total swap = 124996kB [ 111.996534][ T7330] 524155 pages RAM [ 111.996595][ T7330] 0 pages HighMem/MovableOnly [ 111.996602][ T7330] 207821 pages reserved [ 111.996608][ T7330] 0 pages cma reserved [ 112.056489][ T7308] bridge0: port 1(bridge_slave_0) entered disabled state [ 112.063735][ T7308] bridge_slave_0: entered allmulticast mode [ 112.071309][ T7308] bridge_slave_0: entered promiscuous mode [ 112.081648][ T7308] bridge0: port 2(bridge_slave_1) entered blocking state [ 112.106893][ T7308] bridge0: port 2(bridge_slave_1) entered disabled state [ 112.142128][ T7346] FAULT_INJECTION: forcing a failure. [ 112.142128][ T7346] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 112.147103][ T7308] bridge_slave_1: entered allmulticast mode [ 112.152808][ T7346] CPU: 3 UID: 0 PID: 7346 Comm: syz.1.303 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 112.152830][ T7346] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 112.152838][ T7346] Call Trace: [ 112.152843][ T7346] [ 112.152849][ T7346] dump_stack_lvl+0x16c/0x1f0 [ 112.152866][ T7308] bridge_slave_1: entered promiscuous mode [ 112.152877][ T7346] should_fail_ex+0x50a/0x650 [ 112.152894][ T7346] _copy_to_user+0x32/0xd0 [ 112.152912][ T7346] simple_read_from_buffer+0xd0/0x160 [ 112.152932][ T7346] proc_fail_nth_read+0x198/0x270 [ 112.152950][ T7346] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 112.152968][ T7346] ? rw_verify_area+0xcf/0x680 [ 112.152984][ T7346] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 112.153000][ T7346] vfs_read+0x1df/0xbf0 [ 112.153019][ T7346] ? __fget_files+0x1fc/0x3a0 [ 112.153039][ T7346] ? __pfx___mutex_lock+0x10/0x10 [ 112.153059][ T7346] ? __pfx_vfs_read+0x10/0x10 [ 112.153084][ T7346] ? __fget_files+0x206/0x3a0 [ 112.153114][ T7346] ksys_read+0x12b/0x250 [ 112.153132][ T7346] ? __pfx_ksys_read+0x10/0x10 [ 112.153157][ T7346] __do_fast_syscall_32+0x73/0x120 [ 112.153180][ T7346] do_fast_syscall_32+0x32/0x80 [ 112.153200][ T7346] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 112.153223][ T7346] RIP: 0023:0xf73ae579 [ 112.153234][ T7346] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 112.153248][ T7346] RSP: 002b:00000000f5036590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 112.153261][ T7346] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5036620 [ 112.153269][ T7346] RDX: 000000000000000f RSI: 00000000f739cff4 RDI: 0000000000000000 [ 112.153276][ T7346] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 112.153285][ T7346] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 112.153292][ T7346] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 112.153309][ T7346] [ 112.196341][ T5959] Bluetooth: hci2: command tx timeout [ 112.318602][ T7348] netlink: 8 bytes leftover after parsing attributes in process `syz.1.304'. [ 112.318649][ T7348] netlink: 8 bytes leftover after parsing attributes in process `syz.1.304'. [ 112.334525][ T7348] netlink: 8 bytes leftover after parsing attributes in process `syz.1.304'. [ 112.354395][ T7348] netlink: 12 bytes leftover after parsing attributes in process `syz.1.304'. [ 112.477119][ T7308] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 112.482438][ T7308] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 113.043420][ T7308] team0: Port device team_slave_0 added [ 113.055475][ T449] bridge_slave_1: left allmulticast mode [ 113.057561][ T449] bridge_slave_1: left promiscuous mode [ 113.061239][ T449] bridge0: port 2(bridge_slave_1) entered disabled state [ 113.136862][ T449] bridge_slave_0: left allmulticast mode [ 113.139371][ T449] bridge_slave_0: left promiscuous mode [ 113.141569][ T449] bridge0: port 1(bridge_slave_0) entered disabled state [ 113.413551][ T7358] netlink: 8 bytes leftover after parsing attributes in process `syz.3.307'. [ 113.428952][ T7358] netlink: 8 bytes leftover after parsing attributes in process `syz.3.307'. [ 114.356933][ T5959] Bluetooth: hci2: command tx timeout [ 115.296294][ T449] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 115.325620][ T449] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 115.331460][ T449] bond0 (unregistering): Released all slaves [ 115.386482][ T7308] team0: Port device team_slave_1 added [ 115.494500][ T7370] netlink: 196 bytes leftover after parsing attributes in process `syz.1.310'. [ 115.507580][ T7370] netlink: 196 bytes leftover after parsing attributes in process `syz.1.310'. [ 115.514448][ T7370] netlink: 19 bytes leftover after parsing attributes in process `syz.1.310'. [ 115.520891][ T7373] netlink: 'syz.3.311': attribute type 1 has an invalid length. [ 115.557154][ T7373] 8021q: adding VLAN 0 to HW filter on device bond1 [ 115.673747][ T7308] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 115.677355][ T7308] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 115.695482][ T7308] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 115.720484][ T40] audit: type=1800 audit(1742804564.232:27): pid=7377 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.312" name="file1" dev="tmpfs" ino=443 res=0 errno=0 [ 115.826406][ T7308] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 115.831747][ T7308] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 115.874884][ T7308] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 115.989476][ T7383] netlink: 8 bytes leftover after parsing attributes in process `syz.2.312'. [ 116.407152][ T7308] hsr_slave_0: entered promiscuous mode [ 116.436526][ T7308] hsr_slave_1: entered promiscuous mode [ 116.444688][ T7308] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 116.452439][ T5959] Bluetooth: hci2: command tx timeout [ 116.469842][ T7308] Cannot create hsr debugfs directory [ 116.633616][ T7391] input: syz1 as /devices/virtual/input/input9 [ 116.808115][ T449] hsr_slave_0: left promiscuous mode [ 116.829322][ T449] hsr_slave_1: left promiscuous mode [ 116.834653][ T449] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 116.840145][ T449] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 116.881489][ T449] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 116.897587][ T449] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 116.969761][ T449] veth1_macvtap: left promiscuous mode [ 116.993817][ T449] veth0_macvtap: left promiscuous mode [ 116.997588][ T449] veth1_vlan: left promiscuous mode [ 117.010811][ T449] veth0_vlan: left promiscuous mode [ 117.088629][ T59] usb 7-1: new high-speed USB device number 5 using dummy_hcd [ 117.249457][ T59] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 117.275364][ T59] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 117.284592][ T59] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 117.290893][ T59] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 117.299205][ T59] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 117.308197][ T59] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 117.315942][ T59] usb 7-1: config 0 descriptor?? [ 118.518769][ T5959] Bluetooth: hci2: command tx timeout [ 119.343026][ T5959] block nbd3: Receive control failed (result -32) [ 119.418611][ T7411] block nbd3: shutting down sockets [ 119.827387][ T6007] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 119.836397][ T6007] hid-generic 0000:0000:0000.0006: hidraw1: HID v0.00 Device [syz1] on syz0 [ 120.814545][ T7418] overlayfs: failed to resolve './file0': -2 [ 122.621486][ T449] team0 (unregistering): Port device team_slave_1 removed [ 122.755855][ T59] usbhid 7-1:0.0: can't add hid device: -32 [ 122.758340][ T59] usbhid 7-1:0.0: probe with driver usbhid failed with error -32 [ 123.321308][ T449] team0 (unregistering): Port device team_slave_0 removed [ 127.507809][ T7418] tipc: Started in network mode [ 127.510427][ T7418] tipc: Node identity de9981d46387, cluster identity 4711 [ 127.513253][ T7418] tipc: Enabled bearer , priority 0 [ 127.536325][ T9] usb 7-1: USB disconnect, device number 5 [ 128.748991][ T6346] tipc: Node number set to 3172893140 [ 129.439843][ T7435] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 129.448771][ T7435] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 130.165343][ T7308] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 130.229286][ T7308] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 130.239193][ T7308] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 130.278954][ T7308] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 130.353889][ T7308] 8021q: adding VLAN 0 to HW filter on device bond0 [ 130.366534][ T7308] 8021q: adding VLAN 0 to HW filter on device team0 [ 130.381051][ T449] bridge0: port 1(bridge_slave_0) entered blocking state [ 130.384858][ T449] bridge0: port 1(bridge_slave_0) entered forwarding state [ 130.393805][ T449] bridge0: port 2(bridge_slave_1) entered blocking state [ 130.409958][ T449] bridge0: port 2(bridge_slave_1) entered forwarding state [ 130.654115][ T7463] Cannot find add_set index 0 as target [ 130.710760][ T7308] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 130.738247][ T7308] veth0_vlan: entered promiscuous mode [ 130.744625][ T7308] veth1_vlan: entered promiscuous mode [ 130.772814][ T7308] veth0_macvtap: entered promiscuous mode [ 130.788712][ T7308] veth1_macvtap: entered promiscuous mode [ 130.802344][ T7308] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 130.812496][ T7308] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 130.817536][ T7459] ref_ctr_offset mismatch. inode: 0x213 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0xa [ 130.828762][ T7308] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 130.853947][ T7308] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 130.874892][ T7308] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 130.890687][ T7308] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 130.910382][ T7308] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 130.930880][ T7308] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 130.934451][ T7308] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 130.968987][ T7308] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 130.982514][ T7465] __nla_validate_parse: 1 callbacks suppressed [ 130.982527][ T7465] netlink: 8 bytes leftover after parsing attributes in process `syz.2.335'. [ 130.992832][ T7465] netlink: 8 bytes leftover after parsing attributes in process `syz.2.335'. [ 131.005966][ T7308] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 131.010921][ T7308] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 131.025185][ T7308] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 131.033167][ T7308] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 131.929709][ T449] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 132.055346][ T449] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 132.148351][ T1143] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 132.165061][ T1143] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 132.201176][ T1414] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.203679][ T1414] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.613145][ T7489] fuse: Invalid rootmode [ 133.923529][ T7499] netlink: 40 bytes leftover after parsing attributes in process `syz.1.345'. [ 133.936825][ T7499] netlink: 'syz.1.345': attribute type 7 has an invalid length. [ 133.962892][ T7499] netlink: 140 bytes leftover after parsing attributes in process `syz.1.345'. [ 133.967764][ T7499] netlink: 4 bytes leftover after parsing attributes in process `syz.1.345'. [ 134.565822][ T7508] netlink: 'syz.1.349': attribute type 7 has an invalid length. [ 134.572503][ T7508] netlink: 'syz.1.349': attribute type 1 has an invalid length. [ 134.583795][ T7508] netlink: 8 bytes leftover after parsing attributes in process `syz.1.349'. [ 134.883587][ T5959] Bluetooth: hci0: Received unexpected HCI Event 0x00 [ 135.166148][ T1138] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 135.678445][ T5958] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 135.726769][ T5958] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 135.795546][ T5958] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 135.799618][ T1138] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 135.807201][ T5958] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 135.812916][ T5958] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 135.846120][ T5958] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 135.932076][ T1138] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 136.053714][ T7518] ip6tnl0 speed is unknown, defaulting to 1000 [ 136.082656][ T7518] ip6tnl0 speed is unknown, defaulting to 1000 [ 136.087980][ T7518] ip6tnl0 speed is unknown, defaulting to 1000 [ 136.178007][ T1138] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 136.315692][ T7518] infiniband syz0: set down [ 136.319729][ T7518] infiniband syz0: added ip6tnl0 [ 136.336414][ T59] ip6tnl0 speed is unknown, defaulting to 1000 [ 136.456823][ T7518] RDS/IB: syz0: added [ 136.468607][ T7518] smc: adding ib device syz0 with port count 1 [ 136.479203][ T7518] smc: ib device syz0 port 1 has pnetid [ 136.566887][ T26] ip6tnl0 speed is unknown, defaulting to 1000 [ 136.585925][ T7518] ip6tnl0 speed is unknown, defaulting to 1000 [ 136.776577][ T1138] bridge_slave_1: left allmulticast mode [ 136.781439][ T1138] bridge_slave_1: left promiscuous mode [ 136.783676][ T1138] bridge0: port 2(bridge_slave_1) entered disabled state [ 136.817579][ T1138] bridge_slave_0: left allmulticast mode [ 136.825850][ T1138] bridge_slave_0: left promiscuous mode [ 136.837738][ T1138] bridge0: port 1(bridge_slave_0) entered disabled state [ 137.896970][ T5959] Bluetooth: hci2: command tx timeout [ 137.905739][ T1138] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 137.955722][ T1138] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 137.976769][ T1138] bond0 (unregistering): Released all slaves [ 138.010759][ T7513] chnl_net:caif_netlink_parms(): no params data found [ 138.018039][ T7518] ip6tnl0 speed is unknown, defaulting to 1000 [ 138.031769][ T7535] syzkaller1: entered promiscuous mode [ 138.085285][ T7535] syzkaller1: entered allmulticast mode [ 138.282616][ T7518] ip6tnl0 speed is unknown, defaulting to 1000 [ 138.468052][ T7518] ip6tnl0 speed is unknown, defaulting to 1000 [ 138.615244][ T7513] bridge0: port 1(bridge_slave_0) entered blocking state [ 138.618188][ T7513] bridge0: port 1(bridge_slave_0) entered disabled state [ 138.621055][ T7513] bridge_slave_0: entered allmulticast mode [ 138.624384][ T7513] bridge_slave_0: entered promiscuous mode [ 138.795545][ T7513] bridge0: port 2(bridge_slave_1) entered blocking state [ 138.804095][ T7513] bridge0: port 2(bridge_slave_1) entered disabled state [ 138.821093][ T7513] bridge_slave_1: entered allmulticast mode [ 138.825832][ T7513] bridge_slave_1: entered promiscuous mode [ 138.839782][ T7543] ip6tnl0 speed is unknown, defaulting to 1000 [ 139.078638][ T7513] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 139.090277][ T7513] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 139.120573][ T7518] ip6tnl0 speed is unknown, defaulting to 1000 [ 139.529283][ T7554] netlink: 8 bytes leftover after parsing attributes in process `syz.1.359'. [ 139.532522][ T7554] netlink: 8 bytes leftover after parsing attributes in process `syz.1.359'. [ 139.770368][ T7513] team0: Port device team_slave_0 added [ 139.778509][ T7513] team0: Port device team_slave_1 added [ 139.838465][ T1138] hsr_slave_0: left promiscuous mode [ 139.845430][ T1138] hsr_slave_1: left promiscuous mode [ 139.852864][ T1138] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 139.895498][ T1138] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 139.908039][ T1138] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 139.955856][ T5959] Bluetooth: hci2: command tx timeout [ 140.047060][ T1138] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 140.251377][ T1138] veth1_macvtap: left promiscuous mode [ 140.253997][ T1138] veth0_macvtap: left promiscuous mode [ 140.262685][ T1138] veth1_vlan: left promiscuous mode [ 140.264691][ T1138] veth0_vlan: left promiscuous mode [ 142.035340][ T5959] Bluetooth: hci2: command tx timeout [ 144.120126][ T5959] Bluetooth: hci2: command tx timeout [ 144.145311][ T1138] team0 (unregistering): Port device team_slave_1 removed [ 144.582575][ T1138] team0 (unregistering): Port device team_slave_0 removed [ 146.930754][ T7585] input: syz1 as /devices/virtual/input/input10 [ 147.531027][ T7590] netlink: 'syz.1.369': attribute type 1 has an invalid length. [ 147.823406][ T7513] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 147.850745][ T7513] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 147.864193][ T7513] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 148.011693][ T7593] netlink: 8 bytes leftover after parsing attributes in process `syz.1.370'. [ 148.016893][ T7593] netlink: 8 bytes leftover after parsing attributes in process `syz.1.370'. [ 148.047844][ T7513] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 148.059243][ T7513] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 148.074793][ T7513] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 148.253172][ T7595] batman_adv: batadv0: Adding interface: ip6gretap1 [ 148.258504][ T7595] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. If you experience problems getting traffic through try increasing the MTU to 1500. [ 148.300416][ T7595] batman_adv: batadv0: Interface activated: ip6gretap1 [ 148.473423][ T7513] hsr_slave_0: entered promiscuous mode [ 148.524652][ T7513] hsr_slave_1: entered promiscuous mode [ 148.533000][ T7513] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 148.540081][ T7513] Cannot create hsr debugfs directory [ 148.697302][ C0] vkms_vblank_simulate: vblank timer overrun [ 149.017522][ C0] vkms_vblank_simulate: vblank timer overrun [ 149.272469][ T7604] netlink: 4 bytes leftover after parsing attributes in process `syz.3.373'. [ 149.496577][ C0] vkms_vblank_simulate: vblank timer overrun [ 149.797279][ C0] vkms_vblank_simulate: vblank timer overrun [ 149.809428][ T7614] netlink: 28 bytes leftover after parsing attributes in process `syz.1.375'. [ 149.814717][ T7614] netlink: 28 bytes leftover after parsing attributes in process `syz.1.375'. [ 149.971831][ C0] vkms_vblank_simulate: vblank timer overrun [ 149.982071][ T7604] team0 (unregistering): Port device team_slave_0 removed [ 150.030931][ T7604] team0 (unregistering): Port device team_slave_1 removed [ 150.055856][ C0] vkms_vblank_simulate: vblank timer overrun [ 150.265167][ C0] vkms_vblank_simulate: vblank timer overrun [ 150.327897][ C0] vkms_vblank_simulate: vblank timer overrun [ 150.379875][ C0] vkms_vblank_simulate: vblank timer overrun [ 151.089479][ T7513] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 151.110914][ T7513] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 151.117779][ T7513] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 151.126343][ T7629] 9p: Unknown Cache mode or invalid value fsca [ 151.126372][ T7629] 9pnet: Tag 65535 still in use [ 151.139798][ C0] ------------[ cut here ]------------ [ 151.139855][ C0] refcount_t: underflow; use-after-free. [ 151.140184][ C0] WARNING: CPU: 0 PID: 7513 at lib/refcount.c:28 refcount_warn_saturate+0x14a/0x210 [ 151.140216][ C0] Modules linked in: [ 151.140227][ C0] CPU: 0 UID: 0 PID: 7513 Comm: syz-executor Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 151.140245][ C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 151.140255][ C0] RIP: 0010:refcount_warn_saturate+0x14a/0x210 [ 151.140272][ C0] Code: ff 89 de e8 58 34 f7 fc 84 db 0f 85 66 ff ff ff e8 ab 39 f7 fc c6 05 5f 62 88 0b 01 90 48 c7 c7 e0 06 d3 8b e8 97 6a b7 fc 90 <0f> 0b 90 90 e9 43 ff ff ff e8 88 39 f7 fc 0f b6 1d 3a 62 88 0b 31 [ 151.140286][ C0] RSP: 0018:ffffc90000007d90 EFLAGS: 00010082 [ 151.140299][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff817a2269 [ 151.140308][ C0] RDX: ffff8880255e8000 RSI: ffffffff817a2276 RDI: 0000000000000001 [ 151.140318][ C0] RBP: ffff888067682ff8 R08: 0000000000000001 R09: 0000000000000000 [ 151.140326][ C0] R10: 0000000000000000 R11: 0000000000000004 R12: ffff888067682ff8 [ 151.140335][ C0] R13: ffff88801f7e0400 R14: 0000000000000015 R15: 0000000000000000 [ 151.140346][ C0] FS: 0000000000000000(0000) GS:ffff88802b400000(0063) knlGS:000000005819b440 [ 151.140375][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 151.140387][ C0] CR2: 00000000f7f255c0 CR3: 000000006da2a000 CR4: 0000000000352ef0 [ 151.140397][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 151.140405][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 151.140415][ C0] Call Trace: [ 151.140421][ C0] [ 151.140428][ C0] ? __warn+0xea/0x3c0 [ 151.140445][ C0] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 151.140465][ C0] ? refcount_warn_saturate+0x14a/0x210 [ 151.140483][ C0] ? report_bug+0x3c0/0x580 [ 151.140505][ C0] ? handle_bug+0x54/0xa0 [ 151.140518][ C0] ? exc_invalid_op+0x17/0x50 [ 151.140533][ C0] ? asm_exc_invalid_op+0x1a/0x20 [ 151.140557][ C0] ? __warn_printk+0x199/0x350 [ 151.140573][ C0] ? __warn_printk+0x1a6/0x350 [ 151.140588][ C0] ? refcount_warn_saturate+0x14a/0x210 [ 151.140607][ C0] p9_req_put+0x1ec/0x250 [ 151.140627][ C0] req_done+0x1e7/0x2f0 [ 151.140645][ C0] ? __pfx_req_done+0x10/0x10 [ 151.140663][ C0] ? __pfx_req_done+0x10/0x10 [ 151.140679][ C0] vring_interrupt+0x31b/0x400 [ 151.140695][ C0] ? __pfx_vring_interrupt+0x10/0x10 [ 151.140712][ C0] __handle_irq_event_percpu+0x229/0x7d0 [ 151.140733][ C0] handle_irq_event+0xab/0x1e0 [ 151.140755][ C0] handle_edge_irq+0x263/0xd10 [ 151.140774][ C0] __common_interrupt+0xdf/0x250 [ 151.140794][ C0] common_interrupt+0xba/0xe0 [ 151.140810][ C0] [ 151.140815][ C0] [ 151.140823][ C0] asm_common_interrupt+0x26/0x40 [ 151.140843][ C0] RIP: 0010:console_flush_all+0x9a4/0xc60 [ 151.140858][ C0] Code: 00 e8 f0 00 28 00 9c 5b 81 e3 00 02 00 00 31 ff 48 89 de e8 be 43 20 00 48 85 db 0f 85 55 01 00 00 e8 80 48 20 00 fb 4c 89 e0 <48> c1 e8 03 42 80 3c 38 00 0f 84 11 ff ff ff 4c 89 e7 e8 15 86 82 [ 151.140872][ C0] RSP: 0018:ffffc9000360ec38 EFLAGS: 00000293 [ 151.140884][ C0] RAX: ffffffff8eeaeeb8 RBX: 0000000000000000 RCX: ffffffff8199a742 [ 151.140894][ C0] RDX: ffff8880255e8000 RSI: ffffffff8199a750 RDI: 0000000000000007 [ 151.140903][ C0] RBP: 0000000000000000 R08: 0000000000000007 R09: 0000000000000000 [ 151.140912][ C0] R10: 0000000000000000 R11: 0000000000000004 R12: ffffffff8eeaeeb8 [ 151.140921][ C0] R13: ffffffff8eeaee60 R14: ffffc9000360ecc8 R15: dffffc0000000000 [ 151.140937][ C0] ? console_flush_all+0x992/0xc60 [ 151.140952][ C0] ? console_flush_all+0x9a0/0xc60 [ 151.140970][ C0] ? console_flush_all+0x9a0/0xc60 [ 151.140990][ C0] ? __pfx_console_flush_all+0x10/0x10 [ 151.141013][ C0] ? is_printk_cpu_sync_owner+0x32/0x40 [ 151.141033][ C0] console_unlock+0xd9/0x210 [ 151.141047][ C0] ? __pfx_console_unlock+0x10/0x10 [ 151.141062][ C0] ? lock_acquire+0x2f/0xb0 [ 151.141083][ C0] ? dev_printk_emit+0xfb/0x140 [ 151.141102][ C0] ? __down_trylock_console_sem+0xb0/0x140 [ 151.141126][ C0] vprintk_emit+0x424/0x6f0 [ 151.141141][ C0] ? __pfx_vprintk_emit+0x10/0x10 [ 151.141156][ C0] ? sized_strscpy+0xae/0x2e0 [ 151.141177][ C0] dev_printk_emit+0xfb/0x140 [ 151.141192][ C0] ? __pfx_dev_printk_emit+0x10/0x10 [ 151.141219][ C0] ? mark_lock+0xb5/0xc60 [ 151.141242][ C0] __netdev_printk+0x1f7/0x500 [ 151.141263][ C0] netdev_info+0xe5/0x120 [ 151.141278][ C0] ? __pfx_netdev_info+0x10/0x10 [ 151.141293][ C0] ? __pfx_lock_release+0x10/0x10 [ 151.141315][ C0] ? mark_held_locks+0x9f/0xe0 [ 151.141335][ C0] ? __local_bh_enable_ip+0xa4/0x120 [ 151.141360][ C0] dev_change_name+0x734/0x920 [ 151.141381][ C0] ? is_bpf_text_address+0x94/0x1a0 [ 151.141405][ C0] ? __pfx_dev_change_name+0x10/0x10 [ 151.141425][ C0] ? __pfx_validate_linkmsg+0x10/0x10 [ 151.141449][ C0] ? __asan_memset+0x23/0x50 [ 151.141473][ C0] do_setlink.constprop.0+0x2fe9/0x3f80 [ 151.141497][ C0] ? stack_depot_save_flags+0x28/0x9c0 [ 151.141515][ C0] ? __pfx_do_setlink.constprop.0+0x10/0x10 [ 151.141538][ C0] ? lock_acquire.part.0+0x11b/0x380 [ 151.141565][ C0] ? __mutex_trylock_common+0xea/0x250 [ 151.141588][ C0] ? __pfx___mutex_trylock_common+0x10/0x10 [ 151.141611][ C0] ? rtnl_newlink+0x5d9/0x1d60 [ 151.141635][ C0] ? rcu_is_watching+0x12/0xc0 [ 151.141652][ C0] ? trace_contention_end+0xee/0x140 [ 151.141675][ C0] ? __mutex_lock+0x1cc/0xb10 [ 151.141696][ C0] ? __pfx_aa_get_newest_label+0x10/0x10 [ 151.141713][ C0] ? rcu_is_watching+0x12/0xc0 [ 151.141728][ C0] ? rtnl_newlink+0x5d9/0x1d60 [ 151.141753][ C0] ? trace_cap_capable+0x1a2/0x210 [ 151.141771][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 151.141810][ C0] rtnl_newlink+0x1306/0x1d60 [ 151.141840][ C0] ? __pfx_rtnl_newlink+0x10/0x10 [ 151.141869][ C0] ? __pfx___lock_acquire+0x10/0x10 [ 151.141891][ C0] ? aa_get_newest_label+0x376/0x680 [ 151.141913][ C0] ? find_held_lock+0x2d/0x110 [ 151.141933][ C0] ? rtnetlink_rcv_msg+0x93a/0xea0 [ 151.141956][ C0] ? __pfx_lock_release+0x10/0x10 [ 151.141976][ C0] ? trace_lock_acquire+0x14e/0x1f0 [ 151.141999][ C0] ? __pfx_rtnl_newlink+0x10/0x10 [ 151.142025][ C0] rtnetlink_rcv_msg+0x95b/0xea0 [ 151.142051][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 151.142075][ C0] ? __pfx___lock_acquire+0x10/0x10 [ 151.142097][ C0] ? __pfx___lock_acquire+0x10/0x10 [ 151.142116][ C0] ? hlock_class+0x4e/0x130 [ 151.142132][ C0] ? __lock_acquire+0xcc5/0x3c40 [ 151.142156][ C0] netlink_rcv_skb+0x16b/0x440 [ 151.142179][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 151.142204][ C0] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 151.142239][ C0] ? netlink_deliver_tap+0x1ae/0xd30 [ 151.142266][ C0] netlink_unicast+0x53c/0x7f0 [ 151.142292][ C0] ? __pfx_netlink_unicast+0x10/0x10 [ 151.142316][ C0] ? __phys_addr_symbol+0x30/0x80 [ 151.142332][ C0] ? __check_object_size+0x488/0x710 [ 151.142351][ C0] netlink_sendmsg+0x8b8/0xd70 [ 151.142377][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 151.142409][ C0] __sys_sendto+0x488/0x4f0 [ 151.142433][ C0] ? __pfx___sys_sendto+0x10/0x10 [ 151.142463][ C0] ? __might_fault+0x13b/0x190 [ 151.142495][ C0] __do_compat_sys_socketcall+0x5e2/0x700 [ 151.142517][ C0] ? kmem_cache_free+0x179/0x4d0 [ 151.142539][ C0] ? __pfx___do_compat_sys_socketcall+0x10/0x10 [ 151.142565][ C0] ? __fput+0x68d/0xb70 [ 151.142589][ C0] __do_fast_syscall_32+0x73/0x120 [ 151.142614][ C0] do_fast_syscall_32+0x32/0x80 [ 151.142636][ C0] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 151.142660][ C0] RIP: 0023:0xf7f00579 [ 151.142674][ C0] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 151.142688][ C0] RSP: 002b:00000000ffbbb330 EFLAGS: 00000293 ORIG_RAX: 0000000000000066 [ 151.142703][ C0] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00000000ffbbb344 [ 151.142713][ C0] RDX: 0000000000000000 RSI: 00000000f7ef3528 RDI: 00000000f738cff4 [ 151.142723][ C0] RBP: 00000000f7ef3528 R08: 0000000000000000 R09: 0000000000000000 [ 151.142733][ C0] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000 [ 151.142747][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 151.142767][ C0] [ 151.142775][ C0] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 151.142784][ C0] CPU: 0 UID: 0 PID: 7513 Comm: syz-executor Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0 [ 151.142801][ C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 151.142811][ C0] Call Trace: [ 151.142816][ C0] [ 151.142823][ C0] dump_stack_lvl+0x3d/0x1f0 [ 151.142845][ C0] panic+0x71d/0x800 [ 151.142862][ C0] ? __pfx_panic+0x10/0x10 [ 151.142880][ C0] ? show_trace_log_lvl+0x29d/0x3d0 [ 151.142908][ C0] ? check_panic_on_warn+0x1f/0xb0 [ 151.142927][ C0] ? refcount_warn_saturate+0x14a/0x210 [ 151.142944][ C0] check_panic_on_warn+0xab/0xb0 [ 151.142963][ C0] __warn+0xf6/0x3c0 [ 151.142978][ C0] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 151.142998][ C0] ? refcount_warn_saturate+0x14a/0x210 [ 151.143016][ C0] report_bug+0x3c0/0x580 [ 151.143038][ C0] handle_bug+0x54/0xa0 [ 151.143052][ C0] exc_invalid_op+0x17/0x50 [ 151.143067][ C0] asm_exc_invalid_op+0x1a/0x20 [ 151.143086][ C0] RIP: 0010:refcount_warn_saturate+0x14a/0x210 [ 151.143102][ C0] Code: ff 89 de e8 58 34 f7 fc 84 db 0f 85 66 ff ff ff e8 ab 39 f7 fc c6 05 5f 62 88 0b 01 90 48 c7 c7 e0 06 d3 8b e8 97 6a b7 fc 90 <0f> 0b 90 90 e9 43 ff ff ff e8 88 39 f7 fc 0f b6 1d 3a 62 88 0b 31 [ 151.143116][ C0] RSP: 0018:ffffc90000007d90 EFLAGS: 00010082 [ 151.143129][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff817a2269 [ 151.143139][ C0] RDX: ffff8880255e8000 RSI: ffffffff817a2276 RDI: 0000000000000001 [ 151.143149][ C0] RBP: ffff888067682ff8 R08: 0000000000000001 R09: 0000000000000000 [ 151.143158][ C0] R10: 0000000000000000 R11: 0000000000000004 R12: ffff888067682ff8 [ 151.143168][ C0] R13: ffff88801f7e0400 R14: 0000000000000015 R15: 0000000000000000 [ 151.143184][ C0] ? __warn_printk+0x199/0x350 [ 151.143200][ C0] ? __warn_printk+0x1a6/0x350 [ 151.143219][ C0] p9_req_put+0x1ec/0x250 [ 151.143240][ C0] req_done+0x1e7/0x2f0 [ 151.143259][ C0] ? __pfx_req_done+0x10/0x10 [ 151.143278][ C0] ? __pfx_req_done+0x10/0x10 [ 151.143294][ C0] vring_interrupt+0x31b/0x400 [ 151.143310][ C0] ? __pfx_vring_interrupt+0x10/0x10 [ 151.143327][ C0] __handle_irq_event_percpu+0x229/0x7d0 [ 151.143349][ C0] handle_irq_event+0xab/0x1e0 [ 151.143366][ C0] handle_edge_irq+0x263/0xd10 [ 151.143386][ C0] __common_interrupt+0xdf/0x250 [ 151.143407][ C0] common_interrupt+0xba/0xe0 [ 151.143422][ C0] [ 151.143427][ C0] [ 151.143435][ C0] asm_common_interrupt+0x26/0x40 [ 151.143454][ C0] RIP: 0010:console_flush_all+0x9a4/0xc60 [ 151.143470][ C0] Code: 00 e8 f0 00 28 00 9c 5b 81 e3 00 02 00 00 31 ff 48 89 de e8 be 43 20 00 48 85 db 0f 85 55 01 00 00 e8 80 48 20 00 fb 4c 89 e0 <48> c1 e8 03 42 80 3c 38 00 0f 84 11 ff ff ff 4c 89 e7 e8 15 86 82 [ 151.143484][ C0] RSP: 0018:ffffc9000360ec38 EFLAGS: 00000293 [ 151.143496][ C0] RAX: ffffffff8eeaeeb8 RBX: 0000000000000000 RCX: ffffffff8199a742 [ 151.143506][ C0] RDX: ffff8880255e8000 RSI: ffffffff8199a750 RDI: 0000000000000007 [ 151.143515][ C0] RBP: 0000000000000000 R08: 0000000000000007 R09: 0000000000000000 [ 151.143524][ C0] R10: 0000000000000000 R11: 0000000000000004 R12: ffffffff8eeaeeb8 [ 151.143534][ C0] R13: ffffffff8eeaee60 R14: ffffc9000360ecc8 R15: dffffc0000000000 [ 151.143551][ C0] ? console_flush_all+0x992/0xc60 [ 151.143567][ C0] ? console_flush_all+0x9a0/0xc60 [ 151.143586][ C0] ? console_flush_all+0x9a0/0xc60 [ 151.143606][ C0] ? __pfx_console_flush_all+0x10/0x10 [ 151.143629][ C0] ? is_printk_cpu_sync_owner+0x32/0x40 [ 151.143651][ C0] console_unlock+0xd9/0x210 [ 151.143666][ C0] ? __pfx_console_unlock+0x10/0x10 [ 151.143682][ C0] ? lock_acquire+0x2f/0xb0 [ 151.143703][ C0] ? dev_printk_emit+0xfb/0x140 [ 151.143719][ C0] ? __down_trylock_console_sem+0xb0/0x140 [ 151.143774][ C0] vprintk_emit+0x424/0x6f0 [ 151.143792][ C0] ? __pfx_vprintk_emit+0x10/0x10 [ 151.143806][ C0] ? sized_strscpy+0xae/0x2e0 [ 151.143827][ C0] dev_printk_emit+0xfb/0x140 [ 151.143842][ C0] ? __pfx_dev_printk_emit+0x10/0x10 [ 151.143871][ C0] ? mark_lock+0xb5/0xc60 [ 151.143895][ C0] __netdev_printk+0x1f7/0x500 [ 151.143915][ C0] netdev_info+0xe5/0x120 [ 151.143930][ C0] ? __pfx_netdev_info+0x10/0x10 [ 151.143946][ C0] ? __pfx_lock_release+0x10/0x10 [ 151.143968][ C0] ? mark_held_locks+0x9f/0xe0 [ 151.143990][ C0] ? __local_bh_enable_ip+0xa4/0x120 [ 151.144015][ C0] dev_change_name+0x734/0x920 [ 151.144037][ C0] ? is_bpf_text_address+0x94/0x1a0 [ 151.144060][ C0] ? __pfx_dev_change_name+0x10/0x10 [ 151.144082][ C0] ? __pfx_validate_linkmsg+0x10/0x10 [ 151.144105][ C0] ? __asan_memset+0x23/0x50 [ 151.144128][ C0] do_setlink.constprop.0+0x2fe9/0x3f80 [ 151.144154][ C0] ? stack_depot_save_flags+0x28/0x9c0 [ 151.144171][ C0] ? __pfx_do_setlink.constprop.0+0x10/0x10 [ 151.144194][ C0] ? lock_acquire.part.0+0x11b/0x380 [ 151.144219][ C0] ? __mutex_trylock_common+0xea/0x250 [ 151.144241][ C0] ? __pfx___mutex_trylock_common+0x10/0x10 [ 151.144262][ C0] ? rtnl_newlink+0x5d9/0x1d60 [ 151.144286][ C0] ? rcu_is_watching+0x12/0xc0 [ 151.144302][ C0] ? trace_contention_end+0xee/0x140 [ 151.144325][ C0] ? __mutex_lock+0x1cc/0xb10 [ 151.144344][ C0] ? __pfx_aa_get_newest_label+0x10/0x10 [ 151.144376][ C0] ? rcu_is_watching+0x12/0xc0 [ 151.144391][ C0] ? rtnl_newlink+0x5d9/0x1d60 [ 151.144412][ C0] ? trace_cap_capable+0x1a2/0x210 [ 151.144429][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 151.144464][ C0] rtnl_newlink+0x1306/0x1d60 [ 151.144492][ C0] ? __pfx_rtnl_newlink+0x10/0x10 [ 151.144520][ C0] ? __pfx___lock_acquire+0x10/0x10 [ 151.144542][ C0] ? aa_get_newest_label+0x376/0x680 [ 151.144562][ C0] ? find_held_lock+0x2d/0x110 [ 151.144581][ C0] ? rtnetlink_rcv_msg+0x93a/0xea0 [ 151.144604][ C0] ? __pfx_lock_release+0x10/0x10 [ 151.144624][ C0] ? trace_lock_acquire+0x14e/0x1f0 [ 151.144647][ C0] ? __pfx_rtnl_newlink+0x10/0x10 [ 151.144671][ C0] rtnetlink_rcv_msg+0x95b/0xea0 [ 151.144696][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 151.144721][ C0] ? __pfx___lock_acquire+0x10/0x10 [ 151.144746][ C0] ? __pfx___lock_acquire+0x10/0x10 [ 151.144766][ C0] ? hlock_class+0x4e/0x130 [ 151.144781][ C0] ? __lock_acquire+0xcc5/0x3c40 [ 151.144806][ C0] netlink_rcv_skb+0x16b/0x440 [ 151.144828][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 151.144853][ C0] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 151.144888][ C0] ? netlink_deliver_tap+0x1ae/0xd30 [ 151.144914][ C0] netlink_unicast+0x53c/0x7f0 [ 151.144939][ C0] ? __pfx_netlink_unicast+0x10/0x10 [ 151.144963][ C0] ? __phys_addr_symbol+0x30/0x80 [ 151.144978][ C0] ? __check_object_size+0x488/0x710 [ 151.144996][ C0] netlink_sendmsg+0x8b8/0xd70 [ 151.145022][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 151.145053][ C0] __sys_sendto+0x488/0x4f0 [ 151.145075][ C0] ? __pfx___sys_sendto+0x10/0x10 [ 151.145105][ C0] ? __might_fault+0x13b/0x190 [ 151.145137][ C0] __do_compat_sys_socketcall+0x5e2/0x700 [ 151.145157][ C0] ? kmem_cache_free+0x179/0x4d0 [ 151.145178][ C0] ? __pfx___do_compat_sys_socketcall+0x10/0x10 [ 151.145203][ C0] ? __fput+0x68d/0xb70 [ 151.145226][ C0] __do_fast_syscall_32+0x73/0x120 [ 151.145249][ C0] do_fast_syscall_32+0x32/0x80 [ 151.145272][ C0] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 151.145296][ C0] RIP: 0023:0xf7f00579 [ 151.145307][ C0] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 151.145320][ C0] RSP: 002b:00000000ffbbb330 EFLAGS: 00000293 ORIG_RAX: 0000000000000066 [ 151.145335][ C0] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00000000ffbbb344 [ 151.145345][ C0] RDX: 0000000000000000 RSI: 00000000f7ef3528 RDI: 00000000f738cff4 [ 151.145355][ C0] RBP: 00000000f7ef3528 R08: 0000000000000000 R09: 0000000000000000 [ 151.145364][ C0] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000 [ 151.145374][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 151.145393][ C0] [ 151.152258][ C0] Kernel Offset: disabled VM DIAGNOSIS: 08:23:21 Registers: info registers vcpu 0 CPU#0 RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd RSI=ffffffff853eab90 RDI=ffffffff9ab72ea0 RBP=ffffffff9ab72e60 RSP=ffffc90000007798 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000063666572 R12=0000000000000000 R13=0000000000000020 R14=fffffbfff356e626 R15=dffffc0000000000 RIP=ffffffff853eabb7 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802b400000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00000000f7f255c0 CR3=000000006da2a000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff00000000 ff00ff00ffffff00 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000010001 RBX=0000000000000000 RCX=ffffffff815f0b40 RDX=ffff888025ba8000 RSI=ffffffff815f0b88 RDI=ffffffff93816e60 RBP=0000000000000001 RSP=ffffc900005b0fd0 R8 =0000000000000001 R9 =fffffbfff2702dcc R10=ffffffff93816e67 R11=0000000000000001 R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff815f0b89 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802b500000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000000080001000 CR3=000000004c1d6000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000080010001 RBX=0000000000000000 RCX=ffffffff815f0b40 RDX=ffff88801d69a440 RSI=ffffffff815f0b88 RDI=ffffffff93816e60 RBP=0000000000000002 RSP=ffffc90000558fd0 R8 =0000000000000001 R9 =fffffbfff2702dcc R10=ffffffff93816e67 R11=0000000000000000 R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff815f0b89 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b600000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000081000000 CR3=000000006aa86000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000080010001 RBX=0000000000000000 RCX=ffffffff815f0b40 RDX=ffff88802213c880 RSI=ffffffff815f0b88 RDI=ffffffff93816e60 RBP=0000000000000003 RSP=ffffc90000608fd0 R8 =0000000000000001 R9 =fffffbfff2702dcc R10=ffffffff93816e67 R11=0000000000000004 R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff815f0b89 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b700000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000000c2c6bad CR3=000000006aa86000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 47bb4a7b904a1371 f3bda3e3dd660b84 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 26dbc89102e53dde 24632ff3ae7fc153 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 23b67c1215d6c074 a9416a2f27ad142c ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a702bd6f6fcfa3dc 03f22a018a6e8139 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000006c0 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 e9e6223157c873ac 005c9dfb005c9ef2 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005cb5a20000 3c6c0080005c9f1c ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005c4394bd0e 9d44f9089d30f104 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 859a008001000000 0100000076da0000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ba05c2f27aa1e4ad e9647341d94c9832 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 3687f69f7b3759aa 792939f562dfff3c ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000