last executing test programs: 1.085186791s ago: executing program 2 (id=121): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$unix(0x1, 0x2, 0x0) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000100)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={0x4c, r2, 0x1, 0x70bd28, 0x25dfdbfd, {{}, {@void, @val={0x8, 0x3, r3}, @val={0xc, 0x99, {0x7ff, 0x70}}}}, [@NL80211_ATTR_IFNAME={0x14, 0x4, 'syzkaller0\x00'}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}, @mon_options=[@NL80211_ATTR_MNTR_FLAGS={0x8, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_ACTIVE={0x4}]}]]}, 0x4c}, 0x1, 0x0, 0x0, 0x91}, 0x24044884) 1.059646624s ago: executing program 2 (id=123): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtaction={0x70, 0x30, 0x0, 0x0, 0x0, {0x9}, [{0x5c, 0x1, [@m_sample={0x58, 0x20, 0x0, 0x0, {{0xb}, {0x2c, 0x2, 0x0, 0x1, [@TCA_SAMPLE_PSAMPLE_GROUP={0x8, 0x5, 0x2}, @TCA_SAMPLE_RATE={0x8}, @TCA_SAMPLE_PARMS={0x18, 0x2, {0x0, 0x0, 0x0, 0x0, 0x80000}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x7}}}}]}]}, 0x70}}, 0x20040000) syz_io_uring_setup(0x110, &(0x7f00000003c0)={0x0, 0xfad6, 0x800, 0x1, 0x3}, 0x0, 0x0, &(0x7f0000000000)) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="9000000010000305000000000000000000000700", @ANYRES32=0x0, @ANYBLOB="996e06004d4c0700540012800800010068737200480002800500030008000000050003000500000005000300fd00000008000200", @ANYRES32=r0, @ANYBLOB="08000100", @ANYRES32=r1], 0x90}}, 0x0) 916.505949ms ago: executing program 2 (id=125): add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="380000002e00090027bd700000000000040000002400118031f9e05e2f"], 0x38}, 0x1, 0x0, 0x0, 0x42890}, 0x4004004) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x42804}, 0x4000010) 798.743626ms ago: executing program 2 (id=131): r0 = getpid() r1 = syz_pidfd_open(r0, 0x0) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) setns(r1, 0x24020000) syz_clone(0x5a280000, 0x0, 0x0, 0x0, 0x0, 0x0) 743.861742ms ago: executing program 3 (id=143): add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="380000002e00090027bd700000000000040000002400118031f9e05e2f"], 0x38}, 0x1, 0x0, 0x0, 0x42890}, 0x4004004) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x42804}, 0x4000010) 691.66014ms ago: executing program 1 (id=136): r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x20000, 0x0) ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, 0x0}) ioctl$IOMMU_TEST_OP_ADD_RESERVED(r0, 0x3ba0, &(0x7f0000000440)={0x48, 0x1, r1, 0x0, 0x97, 0x8000000}) ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f0000000140)={0x28, 0x2, r1, 0x0, &(0x7f0000ff6000/0xa000)=nil, 0xa000, 0x1}) ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(r0, 0x3ba0, &(0x7f0000000180)={0x48, 0x2, r1}) 514.873636ms ago: executing program 1 (id=138): r0 = socket$phonet(0x23, 0x2, 0x1) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000002c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x40, r1, 0x1, 0x70bd2c, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_MESH_SETUP={0x18, 0x70, [@NL80211_MESH_SETUP_AUTH_PROTOCOL={0x5, 0x8, 0x8}, @NL80211_MESH_SETUP_USERSPACE_AMPE={0x4}, @NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC={0x5, 0x6, 0x1}]}]}, 0x40}, 0x1, 0x0, 0x0, 0xc8c1}, 0x0) 501.951682ms ago: executing program 2 (id=139): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000008c0)=@delchain={0x280, 0x65, 0x400, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x2, 0x2}, {0x0, 0x4}, {0x0, 0xa}}, [@TCA_CHAIN={0x8, 0xb, 0x3745}, @TCA_CHAIN={0x8, 0xb, 0x89f}, @filter_kind_options=@f_u32={{0x8}, {0x244, 0x2, [@TCA_U32_SEL={0x14, 0x5, {0x2, 0x7, 0x2, 0x1, 0x7, 0xd, 0x94, 0x2}}, @TCA_U32_ACT={0x22c, 0x7, [@m_csum={0x128, 0x4, 0x0, 0x0, {{0x9}, {0xac, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x1c, 0x1, {{0x0, 0x0, 0xffffffffffffffff, 0x4, 0xfffffffb}, 0x48}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x100, 0x4, 0x1, 0x7, 0xb28}, 0x60}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x10001, 0x3ff, 0x10000000, 0x5, 0x3}, 0x43}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0xc, 0x0, 0x1, 0x3, 0x3}, 0x26}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x1, 0x430800, 0x4, 0x7, 0x1}, 0x80}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x7, 0x7, 0x4, 0x9, 0xb}, 0x77}}]}, {0x51, 0x6, "fd94c06764f37d74e02e47d2112b5242809e2419a3cf7f21e0a41fd7d83b6df9e9c285b3a976c4ebcd91e46a33997be265aa1e90d10cac810d688759dede90afba97f4b1c43b3b365eb86d85fb"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3, 0x2}}}}, @m_ife={0xb4, 0x1a, 0x0, 0x0, {{0x8}, {0x2c, 0x2, 0x0, 0x1, [@TCA_IFE_SMAC={0xa, 0x4, @random="dad6d78a2b85"}, @TCA_IFE_PARMS={0x1c, 0x1, {{0x1, 0x6, 0x3, 0x2, 0x2}, 0xffff}}]}, {0x61, 0x6, "59b69513e97e708c0dc836f724775dbb59b2f21e013426759c817a1bd718849baa0b9d47756ce75b26f113f5bfe81ebbf06c0a2c154843e8d984f48c206498de65a138cb2d060aa964127c922df85b876a47f2b35d8bc8e3e0ce3e4535"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1, 0x1}}}}, @m_bpf={0x4c, 0x13, 0x0, 0x0, {{0x8}, {0x24, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_PARMS={0x18, 0x2, {0x10a, 0x5, 0x10000000, 0xff, 0x1}}, @TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x2}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3}}}}]}]}}]}, 0x280}, 0x1, 0x0, 0x0, 0x91}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000040)={0x4f}) 350.156667ms ago: executing program 3 (id=140): syz_emit_ethernet(0x6e, &(0x7f0000000040)=ANY=[@ANYBLOB="0180c2000002aaaaaaaaaaaa08004500006000000000002f9078640101000000000024806558000000000000000010000800000086dd"], 0x0) sendmmsg$alg(0xffffffffffffffff, &(0x7f0000007e40)=[{0x0, 0x0, &(0x7f0000003740)=[{&(0x7f00000000c0)="4789d3aefc1a4d03345aed327be33c", 0xf}], 0x1, 0x0, 0x0, 0x20000000}], 0x1, 0x20040894) r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000040900010073797a30000000009c000000090a010400000000000000000700000308000a40000000000900020073797a30000000000900010073797a3000000000080005400000000d58001280200001800e000100636f6e6e6c696d69740000000c0002800800014000000008200001800e000100636f6e6e6c696d69740000000c00028008000140000000001400017b090001006cdbf80789f3f947dd000280080003"], 0xe4}, 0x1, 0x0, 0x0, 0x8001}, 0x20010840) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030041000b05d25a806c8c6394f90324fc60100000000a000200053582c137153e3704020180fc5409000c00", 0x33fe0}], 0x1}, 0x0) 309.144993ms ago: executing program 1 (id=142): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x74, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {{{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @default, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_AUTH_TYPE={0x8}, @NL80211_ATTR_EXTERNAL_AUTH_SUPPORT={0x4}]}, 0x74}}, 0x0) 307.013033ms ago: executing program 3 (id=150): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000200)={@dev}, 0x14) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f0000000140)={@dev={0xfe, 0x80, '\x00', 0xf}}, 0x14) syz_emit_ethernet(0x52, &(0x7f0000000840)={@local, @local, @val={@val={0x88a8, 0x0, 0x0, 0x2}}, {@ipv6={0x86dd, @udp={0x2, 0x6, "35831e", 0x14, 0x11, 0x0, @empty, @initdev={0xfe, 0x88, '\x00', 0x41, 0x0}, {[@hopopts={0x6c}], {0x4e20, 0x4e20, 0xc, 0x0, @gue={{0x1, 0x1, 0x2, 0xfd, 0x100, @void}}}}}}}}, 0x0) 258.249327ms ago: executing program 0 (id=144): bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000004c0)=@bpf_tracing={0x1a, 0xf, &(0x7f0000000000)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x4}, {}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, 0x0, 0x5, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x782d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xbec5}, 0x94) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x0, 0x0, &(0x7f0000000200)='syzkaller\x00', 0x1000d, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3c}, 0x94) r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, &(0x7f0000000040)={'virt_wifi0\x00', 0x4}) ioctl(r0, 0x8b1a, &(0x7f0000000040)) 255.189489ms ago: executing program 2 (id=145): prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ff0000/0x10000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff6000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x400c804) r0 = io_uring_setup(0x1cf8, &(0x7f0000000040)={0x0, 0xc8a3, 0xc000, 0x2000008, 0xc1}) pselect6(0x40, &(0x7f0000000380)={0xff, 0x0, 0x0, 0x8000000000008, 0x0, 0x0, 0x0, 0x1}, &(0x7f0000000000)={0x2100000001f, 0x0, 0x0, 0x3, 0x0, 0x401}, 0x0, 0x0, 0x0) io_uring_enter(r0, 0x2219, 0x7721, 0x16, 0x0, 0x0) 252.409504ms ago: executing program 3 (id=146): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_GUEST_DEBUG_x86(r2, 0x4048ae9b, &(0x7f0000000080)={0x70003, 0x0, {[0xffffffffffffffff, 0x1f8, 0x2, 0xffffffffefffff15, 0x3, 0x4, 0x1, 0x4]}}) ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000440)) 252.104114ms ago: executing program 0 (id=153): syz_emit_ethernet(0x6e, &(0x7f0000000040)=ANY=[@ANYBLOB="0180c2000002aaaaaaaaaaaa08004500006000000000002f9078640101000000000024806558000000000000000010000800000086dd"], 0x0) sendmmsg$alg(0xffffffffffffffff, &(0x7f0000007e40)=[{0x0, 0x0, &(0x7f0000003740)=[{&(0x7f00000000c0)="4789d3aefc1a4d03345aed327be33c", 0xf}], 0x1, 0x0, 0x0, 0x20000000}], 0x1, 0x20040894) r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000040900010073797a30000000009c000000090a010400000000000000000700000308000a40000000000900020073797a30000000000900010073797a3000000000080005400000000d58001280200001800e000100636f6e6e6c696d69740000000c0002800800014000000008200001800e000100636f6e6e6c696d69740000000c00028008000140000000001400017b090001006cdbf80789f3f947dd000280080003"], 0xe4}, 0x1, 0x0, 0x0, 0x8001}, 0x20010840) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030041000b05d25a806c8c6394f90324fc60100000000a000200053582c137153e3704020180fc5409000c00", 0x33fe0}], 0x1}, 0x0) 221.51861ms ago: executing program 0 (id=147): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0) write$binfmt_misc(r1, &(0x7f0000000600)="566fbd5a8e5a838739", 0x9) mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0x10012, r1, 0x0) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r0, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f0000000240)=[0x4], 0x0, 0x0, 0x1, 0x1}}, 0x40) 214.585904ms ago: executing program 1 (id=148): r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f00000006c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x43}}, 0x10) setsockopt$inet_udp_int(r0, 0x11, 0x67, &(0x7f0000000680)=0x6, 0x4) sendmmsg$inet(r0, &(0x7f0000000600)=[{{&(0x7f0000000c00)={0x2, 0x4e20, @multicast2}, 0x10, 0x0}}], 0x1, 0x2000c044) sendto$inet(r0, &(0x7f00000000c0)="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", 0x301, 0x6000000000000000, 0x0, 0x0) 156.488157ms ago: executing program 1 (id=149): r0 = getpid() r1 = syz_pidfd_open(r0, 0x0) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) setns(r1, 0x24020000) syz_clone(0x5a280000, 0x0, 0x0, 0x0, 0x0, 0x0) 141.826924ms ago: executing program 0 (id=151): r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000180)={@multicast1, @local}, 0xc) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000100)={@multicast2, @local}, 0xc) r1 = syz_open_procfs(0x0, &(0x7f0000002180)='net/mcfilter\x00') preadv(r1, &(0x7f00000000c0)=[{&(0x7f0000000500)=""/45, 0x2d}], 0x1, 0x80000000, 0xffffff7c) 74.668572ms ago: executing program 3 (id=152): r0 = socket$phonet(0x23, 0x2, 0x1) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000002c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x40, r1, 0x1, 0x70bd2c, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_MESH_SETUP={0x18, 0x70, [@NL80211_MESH_SETUP_AUTH_PROTOCOL={0x5, 0x8, 0x8}, @NL80211_MESH_SETUP_USERSPACE_AMPE={0x4}, @NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC={0x5, 0x6, 0x1}]}]}, 0x40}, 0x1, 0x0, 0x0, 0xc8c1}, 0x0) 70.715677ms ago: executing program 0 (id=154): mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x80001) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000040)) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f00000001c0)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1}) ioctl$UFFDIO_ZEROPAGE(r0, 0xc020aa04, &(0x7f0000000080)={{&(0x7f00003fe000/0x4000)=nil, 0x4000}}) 67.21033ms ago: executing program 0 (id=155): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000008c0)=@delchain={0x280, 0x65, 0x400, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x2, 0x2}, {0x0, 0x4}, {0x0, 0xa}}, [@TCA_CHAIN={0x8, 0xb, 0x3745}, @TCA_CHAIN={0x8, 0xb, 0x89f}, @filter_kind_options=@f_u32={{0x8}, {0x244, 0x2, [@TCA_U32_SEL={0x14, 0x5, {0x2, 0x7, 0x2, 0x1, 0x7, 0xd, 0x94, 0x2}}, @TCA_U32_ACT={0x22c, 0x7, [@m_csum={0x128, 0x4, 0x0, 0x0, {{0x9}, {0xac, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x1c, 0x1, {{0x0, 0x0, 0xffffffffffffffff, 0x4, 0xfffffffb}, 0x48}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x100, 0x4, 0x1, 0x7, 0xb28}, 0x60}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x10001, 0x3ff, 0x10000000, 0x5, 0x3}, 0x43}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0xc, 0x0, 0x1, 0x3, 0x3}, 0x26}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x1, 0x430800, 0x4, 0x7, 0x1}, 0x80}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x7, 0x7, 0x4, 0x9, 0xb}, 0x77}}]}, {0x51, 0x6, "fd94c06764f37d74e02e47d2112b5242809e2419a3cf7f21e0a41fd7d83b6df9e9c285b3a976c4ebcd91e46a33997be265aa1e90d10cac810d688759dede90afba97f4b1c43b3b365eb86d85fb"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3, 0x2}}}}, @m_ife={0xb4, 0x1a, 0x0, 0x0, {{0x8}, {0x2c, 0x2, 0x0, 0x1, [@TCA_IFE_SMAC={0xa, 0x4, @random="dad6d78a2b85"}, @TCA_IFE_PARMS={0x1c, 0x1, {{0x1, 0x6, 0x3, 0x2, 0x2}, 0xffff}}]}, {0x61, 0x6, "59b69513e97e708c0dc836f724775dbb59b2f21e013426759c817a1bd718849baa0b9d47756ce75b26f113f5bfe81ebbf06c0a2c154843e8d984f48c206498de65a138cb2d060aa964127c922df85b876a47f2b35d8bc8e3e0ce3e4535"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1, 0x1}}}}, @m_bpf={0x4c, 0x13, 0x0, 0x0, {{0x8}, {0x24, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_PARMS={0x18, 0x2, {0x10a, 0x5, 0x10000000, 0xff, 0x1}}, @TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x2}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3}}}}]}]}}]}, 0x280}, 0x1, 0x0, 0x0, 0x91}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000040)={0x4f}) 14.938775ms ago: executing program 3 (id=156): socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000003c0)={0xffffffffffffffff}) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_NEW_STATION(r1, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000500)={0x50, r2, 0xb97534d5fe9704cf, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_STA_SUPPORTED_RATES={0x4}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STA_AID={0x6, 0x10, 0x580}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6}, @NL80211_ATTR_STA_FLAGS={0x4}, @NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES={0x6, 0xbe, '|q'}, @NL80211_ATTR_STA_PLINK_ACTION={0x5, 0x19, 0x1}]}, 0x50}, 0x1, 0x0, 0x0, 0x20008001}, 0x0) 0s ago: executing program 1 (id=157): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000000), 0xffffffffffffffff) r2 = socket$l2tp(0x2, 0x2, 0x73) sendmsg$L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000340)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="230900000000000000000100000005000700000000000800090000000000060002000100000008000a000000000008001700", @ANYRES32=r2], 0x3c}}, 0x0) close(r2) kernel console output (not intermixed with test programs): Warning: Permanently added '[localhost]:53774' (ED25519) to the list of known hosts. [ 53.902357][ T40] kauditd_printk_skb: 17 callbacks suppressed [ 53.902382][ T40] audit: type=1400 audit(1777707765.286:138): avc: denied { name_bind } for pid=5709 comm="sshd-session" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 53.932463][ T40] audit: type=1400 audit(1777707765.316:139): avc: denied { execute } for pid=5710 comm="sh" name="syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 53.942111][ T40] audit: type=1400 audit(1777707765.316:140): avc: denied { execute_no_trans } for pid=5710 comm="sh" path="/syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 56.402798][ T40] audit: type=1400 audit(1777707767.786:141): avc: denied { mounton } for pid=5710 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2022 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 56.413720][ T40] audit: type=1400 audit(1777707767.796:142): avc: denied { mount } for pid=5710 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 56.416664][ T5710] cgroup: Unknown subsys name 'net' [ 56.431761][ T40] audit: type=1400 audit(1777707767.816:143): avc: denied { unmount } for pid=5710 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 56.582279][ T5710] cgroup: Unknown subsys name 'cpuset' [ 56.588672][ T5710] cgroup: Unknown subsys name 'rlimit' [ 56.801408][ T40] audit: type=1400 audit(1777707768.186:144): avc: denied { setattr } for pid=5710 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 56.812129][ T40] audit: type=1400 audit(1777707768.186:145): avc: denied { create } for pid=5710 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 56.822021][ T40] audit: type=1400 audit(1777707768.186:146): avc: denied { write } for pid=5710 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 56.832454][ T40] audit: type=1400 audit(1777707768.186:147): avc: denied { read } for pid=5710 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 56.875206][ T5719] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). Setting up swapspace version 1, size = 127995904 bytes [ 57.915277][ T5710] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 61.548263][ T40] kauditd_printk_skb: 10 callbacks suppressed [ 61.548277][ T40] audit: type=1400 audit(1777707772.936:158): avc: denied { execmem } for pid=5723 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 61.675231][ T40] audit: type=1400 audit(1777707773.056:159): avc: denied { create } for pid=5727 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 61.689628][ T40] audit: type=1400 audit(1777707773.056:160): avc: denied { read write } for pid=5727 comm="syz-executor" name="vhci" dev="devtmpfs" ino=1291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 61.697369][ T40] audit: type=1400 audit(1777707773.056:161): avc: denied { open } for pid=5727 comm="syz-executor" path="/dev/vhci" dev="devtmpfs" ino=1291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 61.701037][ T5729] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 61.705780][ T40] audit: type=1400 audit(1777707773.076:162): avc: denied { ioctl } for pid=5727 comm="syz-executor" path="socket:[7417]" dev="sockfs" ino=7417 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 61.710529][ T5729] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 61.719922][ T5729] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 61.724343][ T5729] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 61.725932][ T5733] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 61.727727][ T5729] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 61.734440][ T5729] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 61.742245][ T5735] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 61.747444][ T5737] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 61.747576][ T5741] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 61.751824][ T5743] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 61.755440][ T5741] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 61.757470][ T5742] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 61.757668][ T5743] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 61.761994][ T5741] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 61.764233][ T40] audit: type=1400 audit(1777707773.146:163): avc: denied { read } for pid=5731 comm="syz-executor" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 61.767400][ T5742] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 61.772886][ T40] audit: type=1400 audit(1777707773.146:164): avc: denied { open } for pid=5731 comm="syz-executor" path="net:[4026531833]" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 61.774516][ T5743] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 61.779890][ T5741] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 61.781128][ T40] audit: type=1400 audit(1777707773.156:165): avc: denied { mounton } for pid=5731 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 61.792291][ T5741] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 61.794205][ T40] audit: type=1400 audit(1777707773.156:166): avc: denied { module_request } for pid=5731 comm="syz-executor" kmod="netdev-nr3" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 61.797236][ T5741] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 61.822038][ T40] audit: type=1400 audit(1777707773.206:167): avc: denied { sys_module } for pid=5731 comm="syz-executor" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 62.408874][ T5731] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.412667][ T5731] bridge0: port 1(bridge_slave_0) entered disabled state [ 62.415978][ T5731] bridge_slave_0: entered allmulticast mode [ 62.422971][ T5731] bridge_slave_0: entered promiscuous mode [ 62.442324][ T5731] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.445181][ T5731] bridge0: port 2(bridge_slave_1) entered disabled state [ 62.447625][ T5731] bridge_slave_1: entered allmulticast mode [ 62.450632][ T5731] bridge_slave_1: entered promiscuous mode [ 62.503562][ T5736] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.506766][ T5736] bridge0: port 1(bridge_slave_0) entered disabled state [ 62.510638][ T5736] bridge_slave_0: entered allmulticast mode [ 62.514454][ T5736] bridge_slave_0: entered promiscuous mode [ 62.519327][ T5736] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.522537][ T5736] bridge0: port 2(bridge_slave_1) entered disabled state [ 62.525779][ T5736] bridge_slave_1: entered allmulticast mode [ 62.530256][ T5736] bridge_slave_1: entered promiscuous mode [ 62.594256][ T5731] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 62.621985][ T5736] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 62.629477][ T5736] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 62.633740][ T5727] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.637511][ T5727] bridge0: port 1(bridge_slave_0) entered disabled state [ 62.641838][ T5727] bridge_slave_0: entered allmulticast mode [ 62.645859][ T5727] bridge_slave_0: entered promiscuous mode [ 62.651333][ T5727] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.654717][ T5727] bridge0: port 2(bridge_slave_1) entered disabled state [ 62.658095][ T5727] bridge_slave_1: entered allmulticast mode [ 62.662088][ T5727] bridge_slave_1: entered promiscuous mode [ 62.667713][ T5731] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 62.747161][ T5736] team0: Port device team_slave_0 added [ 62.752550][ T5731] team0: Port device team_slave_0 added [ 62.764995][ T5727] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 62.773212][ T5727] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 62.778873][ T5736] team0: Port device team_slave_1 added [ 62.794355][ T5731] team0: Port device team_slave_1 added [ 62.846487][ T5738] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.848994][ T5738] bridge0: port 1(bridge_slave_0) entered disabled state [ 62.851531][ T5738] bridge_slave_0: entered allmulticast mode [ 62.854292][ T5738] bridge_slave_0: entered promiscuous mode [ 62.859085][ T5738] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.861567][ T5738] bridge0: port 2(bridge_slave_1) entered disabled state [ 62.863991][ T5738] bridge_slave_1: entered allmulticast mode [ 62.866700][ T5738] bridge_slave_1: entered promiscuous mode [ 62.870304][ T5736] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 62.872663][ T5736] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 62.881258][ T5736] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 62.885769][ T5731] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 62.888201][ T5731] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 62.897070][ T5731] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 62.902559][ T5731] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 62.905630][ T5731] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 62.916888][ T5731] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 62.924119][ T5727] team0: Port device team_slave_0 added [ 62.937386][ T5727] team0: Port device team_slave_1 added [ 62.940540][ T5736] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 62.943560][ T5736] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 62.954175][ T5736] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 63.004081][ T5727] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 63.007229][ T5727] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 63.018462][ T5727] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 63.024644][ T5727] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 63.027726][ T5727] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 63.038919][ T5727] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 63.047067][ T5738] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 63.054971][ T5738] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 63.106521][ T5738] team0: Port device team_slave_0 added [ 63.113989][ T5731] hsr_slave_0: entered promiscuous mode [ 63.117521][ T5731] hsr_slave_1: entered promiscuous mode [ 63.124276][ T5736] hsr_slave_0: entered promiscuous mode [ 63.126993][ T5736] hsr_slave_1: entered promiscuous mode [ 63.129283][ T5736] debugfs: 'hsr0' already exists in 'hsr' [ 63.131292][ T5736] Cannot create hsr debugfs directory [ 63.143801][ T5738] team0: Port device team_slave_1 added [ 63.209763][ T5727] hsr_slave_0: entered promiscuous mode [ 63.212891][ T5727] hsr_slave_1: entered promiscuous mode [ 63.215914][ T5727] debugfs: 'hsr0' already exists in 'hsr' [ 63.218487][ T5727] Cannot create hsr debugfs directory [ 63.221225][ T5738] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 63.223581][ T5738] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 63.232666][ T5738] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 63.273678][ T5738] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 63.276636][ T5738] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 63.287348][ T5738] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 63.457304][ T5738] hsr_slave_0: entered promiscuous mode [ 63.459767][ T5738] hsr_slave_1: entered promiscuous mode [ 63.462595][ T5738] debugfs: 'hsr0' already exists in 'hsr' [ 63.464614][ T5738] Cannot create hsr debugfs directory [ 63.608829][ T5731] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 63.616708][ T5731] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 63.628980][ T5731] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 63.633214][ T5731] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 63.656105][ T5731] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 63.662950][ T5731] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 63.674227][ T5731] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 63.681440][ T5731] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 63.727003][ T5736] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 63.733754][ T5736] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 63.740879][ T5736] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 63.746838][ T5736] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 63.751591][ T5736] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 63.758704][ T5736] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 63.768502][ T5736] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 63.774545][ T5736] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 63.799153][ T5742] Bluetooth: hci1: command tx timeout [ 63.799166][ T5741] Bluetooth: hci2: command tx timeout [ 63.799175][ T5729] Bluetooth: hci0: command tx timeout [ 63.859093][ T5727] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 63.863730][ T5727] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 63.872075][ T5727] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 63.878219][ T5729] Bluetooth: hci3: command tx timeout [ 63.878664][ T5727] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 63.884079][ T5727] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 63.888494][ T5727] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 63.891519][ T5727] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 63.895850][ T5727] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 63.935371][ T5731] 8021q: adding VLAN 0 to HW filter on device bond0 [ 63.982125][ T5738] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 63.986803][ T5738] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 63.990685][ T5738] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 63.995239][ T5738] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 63.998919][ T5738] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 64.004643][ T5738] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 64.007804][ T5738] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 64.012408][ T5738] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 64.025226][ T5731] 8021q: adding VLAN 0 to HW filter on device team0 [ 64.046332][ T223] bridge0: port 1(bridge_slave_0) entered blocking state [ 64.050083][ T223] bridge0: port 1(bridge_slave_0) entered forwarding state [ 64.065056][ T223] bridge0: port 2(bridge_slave_1) entered blocking state [ 64.068362][ T223] bridge0: port 2(bridge_slave_1) entered forwarding state [ 64.074753][ T5736] 8021q: adding VLAN 0 to HW filter on device bond0 [ 64.115057][ T5736] 8021q: adding VLAN 0 to HW filter on device team0 [ 64.140791][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 64.144130][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 64.171652][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 64.174085][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 64.233902][ T5727] 8021q: adding VLAN 0 to HW filter on device bond0 [ 64.254106][ T5738] 8021q: adding VLAN 0 to HW filter on device bond0 [ 64.265009][ T5727] 8021q: adding VLAN 0 to HW filter on device team0 [ 64.280177][ T169] bridge0: port 1(bridge_slave_0) entered blocking state [ 64.282545][ T169] bridge0: port 1(bridge_slave_0) entered forwarding state [ 64.294435][ T5738] 8021q: adding VLAN 0 to HW filter on device team0 [ 64.304498][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 64.306913][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 64.311262][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 64.313647][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 64.323677][ T169] bridge0: port 2(bridge_slave_1) entered blocking state [ 64.326021][ T169] bridge0: port 2(bridge_slave_1) entered forwarding state [ 64.453794][ T5731] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 64.486012][ T5731] veth0_vlan: entered promiscuous mode [ 64.494482][ T5731] veth1_vlan: entered promiscuous mode [ 64.518254][ T5731] veth0_macvtap: entered promiscuous mode [ 64.522709][ T5731] veth1_macvtap: entered promiscuous mode [ 64.536884][ T5736] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 64.543229][ T5731] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 64.552568][ T5731] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 64.566474][ T58] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.580802][ T5727] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 64.583645][ T58] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.587656][ T58] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.606501][ T58] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.633885][ T5738] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 64.645670][ T5736] veth0_vlan: entered promiscuous mode [ 64.664991][ T5736] veth1_vlan: entered promiscuous mode [ 64.711334][ T58] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 64.715998][ T5727] veth0_vlan: entered promiscuous mode [ 64.716075][ T58] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 64.752502][ T5736] veth0_macvtap: entered promiscuous mode [ 64.752825][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 64.758686][ T5738] veth0_vlan: entered promiscuous mode [ 64.761491][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 64.764888][ T5727] veth1_vlan: entered promiscuous mode [ 64.771994][ T5736] veth1_macvtap: entered promiscuous mode [ 64.776637][ T5738] veth1_vlan: entered promiscuous mode [ 64.815929][ T5736] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 64.820385][ T5727] veth0_macvtap: entered promiscuous mode [ 64.830592][ T5731] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 64.833873][ T5727] veth1_macvtap: entered promiscuous mode [ 64.842782][ T5736] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 64.847514][ T5738] veth0_macvtap: entered promiscuous mode [ 64.859851][ T5738] veth1_macvtap: entered promiscuous mode [ 64.871007][ T12] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.874864][ T12] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.880019][ T223] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.890680][ T5727] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 64.894376][ T223] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.925716][ T5727] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 64.933531][ T5738] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 64.956364][ T58] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 64.958758][ T13] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.961199][ T58] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 64.962904][ T13] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.970535][ T5738] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 64.989065][ T13] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.992104][ T13] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.013210][ T13] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.024972][ T13] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.029165][ T13] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.041621][ T13] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.049603][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 65.056314][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 65.077253][ T46] af_packet: tpacket_rcv: packet too big, clamped from 72 to 4294967272. macoff=96 [ 65.134307][ T223] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 65.137959][ T223] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 65.163830][ T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 65.167313][ T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 65.201570][ T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 65.202256][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 65.206357][ T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 65.207561][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 65.429760][ T5902] syz.2.11 uses obsolete (PF_INET,SOCK_PACKET) [ 65.495528][ T5729] Bluetooth: hci0: unknown advertising packet type: 0x82 [ 65.495580][ T5729] Bluetooth: hci0: Malformed LE Event: 0x02 [ 65.694115][ T5919] netlink: 212368 bytes leftover after parsing attributes in process `syz.1.20'. [ 65.791434][ T5923] netlink: 'syz.2.22': attribute type 4 has an invalid length. [ 65.878111][ T5729] Bluetooth: hci1: command tx timeout [ 65.878197][ T5742] Bluetooth: hci2: command tx timeout [ 65.888454][ T5742] Bluetooth: hci0: command tx timeout [ 65.968033][ T5742] Bluetooth: hci3: command tx timeout [ 66.450624][ T5949] process 'syz.0.32' launched './file2' with NULL argv: empty string added [ 66.566610][ T40] kauditd_printk_skb: 65 callbacks suppressed [ 66.566622][ T40] audit: type=1400 audit(1777707777.946:233): avc: denied { create } for pid=5959 comm="syz.0.37" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 66.581292][ T40] audit: type=1400 audit(1777707777.956:234): avc: denied { write } for pid=5959 comm="syz.0.37" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 66.622304][ T40] audit: type=1400 audit(1777707778.006:235): avc: denied { setopt } for pid=5959 comm="syz.0.37" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 66.646356][ T5968] ip6gre0: Master is either lo or non-ether device [ 66.686745][ T40] audit: type=1400 audit(1777707778.066:236): avc: denied { read append } for pid=5970 comm="syz.3.44" name="autofs" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1 [ 66.698329][ T40] audit: type=1400 audit(1777707778.066:237): avc: denied { open } for pid=5970 comm="syz.3.44" path="/dev/autofs" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1 [ 66.711677][ T40] audit: type=1400 audit(1777707778.076:238): avc: denied { ioctl } for pid=5970 comm="syz.3.44" path="/dev/autofs" dev="devtmpfs" ino=104 ioctlcmd=0x937e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1 [ 66.720425][ T5975] tun0: tun_chr_ioctl cmd 1074025675 [ 66.727362][ T5975] tun0: persist enabled [ 66.727461][ T40] audit: type=1400 audit(1777707778.086:239): avc: denied { unmount } for pid=5731 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 66.730494][ T5975] tun0: tun_chr_ioctl cmd 1074025675 [ 66.737775][ T5975] tun0: persist enabled [ 66.783488][ T40] audit: type=1400 audit(1777707778.166:240): avc: denied { create } for pid=5982 comm="syz.3.49" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 66.797805][ T40] audit: type=1400 audit(1777707778.166:241): avc: denied { setopt } for pid=5982 comm="syz.3.49" lport=2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 66.805565][ T40] audit: type=1400 audit(1777707778.186:242): avc: denied { write } for pid=5982 comm="syz.3.49" lport=2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 66.865505][ T5993] warning: `syz.2.52' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 66.941896][ T6000] netlink: 8 bytes leftover after parsing attributes in process `syz.0.55'. [ 67.145509][ T6019] capability: warning: `syz.0.64' uses 32-bit capabilities (legacy support in use) [ 67.173201][ T6019] overlayfs: upper fs does not support file handles, falling back to index=off. [ 67.203807][ T6017] sysfs: cannot create duplicate filename '/class/ieee80211/1ща^!' [ 67.207002][ T6017] CPU: 0 UID: 0 PID: 6017 Comm: syz.1.56 Not tainted syzkaller #0 PREEMPT(full) [ 67.207018][ T6017] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 67.207024][ T6017] Call Trace: [ 67.207029][ T6017] [ 67.207033][ T6017] dump_stack_lvl+0x100/0x190 [ 67.207051][ T6017] sysfs_warn_dup.cold+0x1c/0x28 [ 67.207068][ T6017] sysfs_do_create_link_sd+0x113/0x140 [ 67.207084][ T6017] sysfs_create_link+0x61/0xc0 [ 67.207099][ T6017] device_add+0x675/0x1950 [ 67.207114][ T6017] ? __pfx_device_add+0x10/0x10 [ 67.207125][ T6017] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 67.207140][ T6017] ? ieee80211_set_bitrate_flags+0x41b/0x6b0 [ 67.207161][ T6017] wiphy_register+0x1edd/0x2d90 [ 67.207173][ T6017] ? __rtnl_unlock+0xb9/0xf0 [ 67.207188][ T6017] ? __pfx_wiphy_register+0x10/0x10 [ 67.207199][ T6017] ? __asan_memset+0x23/0x50 [ 67.207214][ T6017] ? minstrel_ht_alloc+0x5e6/0x7f0 [ 67.207235][ T6017] ieee80211_register_hw+0x3055/0x4570 [ 67.207256][ T6017] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 67.207271][ T6017] ? __pfx___debug_object_init+0x10/0x10 [ 67.207289][ T6017] ? find_held_lock+0x2b/0x80 [ 67.207301][ T6017] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 67.207315][ T6017] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 67.207328][ T6017] ? __hrtimer_setup+0x208/0x330 [ 67.207345][ T6017] mac80211_hwsim_new_radio+0x2a01/0x5aa0 [ 67.207370][ T6017] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 67.207449][ T6017] ? __asan_memcpy+0x3c/0x60 [ 67.207469][ T6017] hwsim_new_radio_nl+0xc5f/0x1370 [ 67.207486][ T6017] ? rcu_is_watching+0x12/0xc0 [ 67.207504][ T6017] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 67.207525][ T6017] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1e5/0x2f0 [ 67.207542][ T6017] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1ef/0x2f0 [ 67.207562][ T6017] genl_family_rcv_msg_doit+0x214/0x300 [ 67.207580][ T6017] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 67.207599][ T6017] ? bpf_lsm_capable+0x9/0x10 [ 67.207611][ T6017] ? security_capable+0x80/0x260 [ 67.207623][ T6017] ? ns_capable+0xd2/0xf0 [ 67.207639][ T6017] genl_rcv_msg+0x560/0x800 [ 67.207655][ T6017] ? __pfx_genl_rcv_msg+0x10/0x10 [ 67.207670][ T6017] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 67.207690][ T6017] netlink_rcv_skb+0x159/0x420 [ 67.207704][ T6017] ? __pfx_genl_rcv_msg+0x10/0x10 [ 67.207719][ T6017] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 67.207737][ T6017] ? netlink_deliver_tap+0x1ae/0xcc0 [ 67.207751][ T6017] genl_rcv+0x28/0x40 [ 67.207763][ T6017] netlink_unicast+0x585/0x850 [ 67.207779][ T6017] ? __pfx_netlink_unicast+0x10/0x10 [ 67.207795][ T6017] netlink_sendmsg+0x8b0/0xda0 [ 67.207811][ T6017] ? __pfx_netlink_sendmsg+0x10/0x10 [ 67.207839][ T6017] ? __might_fault+0x90/0x140 [ 67.207881][ T6017] ____sys_sendmsg+0x9e1/0xb70 [ 67.207895][ T6017] ? __pfx_netlink_sendmsg+0x10/0x10 [ 67.207914][ T6017] ? __pfx_____sys_sendmsg+0x10/0x10 [ 67.207931][ T6017] ? __pfx_futex_wake_mark+0x10/0x10 [ 67.207949][ T6017] ___sys_sendmsg+0x190/0x1e0 [ 67.207964][ T6017] ? __pfx____sys_sendmsg+0x10/0x10 [ 67.207995][ T6017] __sys_sendmsg+0x170/0x220 [ 67.208011][ T6017] ? __pfx___sys_sendmsg+0x10/0x10 [ 67.208027][ T6017] ? __x64_sys_futex+0x34f/0x4d0 [ 67.208048][ T6017] ? rcu_is_watching+0x12/0xc0 [ 67.208066][ T6017] do_syscall_64+0x10b/0xf80 [ 67.208078][ T6017] ? clear_bhb_loop+0x40/0x90 [ 67.208091][ T6017] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 67.208105][ T6017] RIP: 0033:0x7f2e14f9cdd9 [ 67.208116][ T6017] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 67.208126][ T6017] RSP: 002b:00007f2e15e19028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 67.208138][ T6017] RAX: ffffffffffffffda RBX: 00007f2e15215fa0 RCX: 00007f2e14f9cdd9 [ 67.208145][ T6017] RDX: 0000000004000010 RSI: 0000200000000100 RDI: 0000000000000003 [ 67.208152][ T6017] RBP: 00007f2e15032d69 R08: 0000000000000000 R09: 0000000000000000 [ 67.208159][ T6017] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 67.208167][ T6017] R13: 00007f2e15216038 R14: 00007f2e15215fa0 R15: 00007ffc90d9f508 [ 67.208187][ T6017] [ 67.391922][ T6029] netlink: 20 bytes leftover after parsing attributes in process `syz.3.68'. [ 67.491792][ T6041] netlink: 8 bytes leftover after parsing attributes in process `syz.2.75'. [ 67.495633][ T6041] netlink: 16 bytes leftover after parsing attributes in process `syz.2.75'. [ 67.540954][ T6047] iommufd_mock iommufd_mock0: Adding to iommu group 9 [ 67.810270][ T6059] netlink: 4 bytes leftover after parsing attributes in process `syz.2.81'. [ 67.959113][ T5742] Bluetooth: hci2: command tx timeout [ 67.959160][ T5729] Bluetooth: hci1: command tx timeout [ 67.960414][ T5741] Bluetooth: hci0: command tx timeout [ 68.037948][ T5729] Bluetooth: hci3: command tx timeout [ 68.416761][ T6079] erspan0: entered promiscuous mode [ 68.996750][ T6105] debugfs: '1ща^!' already exists in 'ieee80211' [ 69.027127][ T6105] sysfs: cannot create duplicate filename '/class/ieee80211/1ща^!' [ 69.030957][ T6105] CPU: 0 UID: 0 PID: 6105 Comm: syz.3.98 Not tainted syzkaller #0 PREEMPT(full) [ 69.030974][ T6105] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 69.030981][ T6105] Call Trace: [ 69.030986][ T6105] [ 69.030990][ T6105] dump_stack_lvl+0x100/0x190 [ 69.031009][ T6105] sysfs_warn_dup.cold+0x1c/0x28 [ 69.031027][ T6105] sysfs_do_create_link_sd+0x113/0x140 [ 69.031043][ T6105] sysfs_create_link+0x61/0xc0 [ 69.031058][ T6105] device_add+0x675/0x1950 [ 69.031071][ T6105] ? __pfx_device_add+0x10/0x10 [ 69.031083][ T6105] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 69.031097][ T6105] ? ieee80211_set_bitrate_flags+0x41b/0x6b0 [ 69.031117][ T6105] wiphy_register+0x1edd/0x2d90 [ 69.031128][ T6105] ? __rtnl_unlock+0xb9/0xf0 [ 69.031151][ T6105] ? __pfx_wiphy_register+0x10/0x10 [ 69.031163][ T6105] ? __asan_memset+0x23/0x50 [ 69.031180][ T6105] ? minstrel_ht_alloc+0x5e6/0x7f0 [ 69.031202][ T6105] ieee80211_register_hw+0x3055/0x4570 [ 69.031226][ T6105] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 69.031241][ T6105] ? __pfx___debug_object_init+0x10/0x10 [ 69.031259][ T6105] ? find_held_lock+0x2b/0x80 [ 69.031270][ T6105] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 69.031284][ T6105] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 69.031296][ T6105] ? __hrtimer_setup+0x208/0x330 [ 69.031313][ T6105] mac80211_hwsim_new_radio+0x2a01/0x5aa0 [ 69.031338][ T6105] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 69.031359][ T6105] ? __asan_memcpy+0x3c/0x60 [ 69.031376][ T6105] hwsim_new_radio_nl+0xc5f/0x1370 [ 69.031392][ T6105] ? rcu_is_watching+0x12/0xc0 [ 69.031409][ T6105] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 69.031429][ T6105] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1e5/0x2f0 [ 69.031445][ T6105] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1ef/0x2f0 [ 69.031463][ T6105] genl_family_rcv_msg_doit+0x214/0x300 [ 69.031480][ T6105] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 69.031500][ T6105] ? bpf_lsm_capable+0x9/0x10 [ 69.031517][ T6105] ? security_capable+0x80/0x260 [ 69.031529][ T6105] ? ns_capable+0xd2/0xf0 [ 69.031546][ T6105] genl_rcv_msg+0x560/0x800 [ 69.031563][ T6105] ? __pfx_genl_rcv_msg+0x10/0x10 [ 69.031579][ T6105] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 69.031601][ T6105] netlink_rcv_skb+0x159/0x420 [ 69.031615][ T6105] ? __pfx_genl_rcv_msg+0x10/0x10 [ 69.031631][ T6105] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 69.031651][ T6105] ? netlink_deliver_tap+0x1ae/0xcc0 [ 69.031666][ T6105] genl_rcv+0x28/0x40 [ 69.031679][ T6105] netlink_unicast+0x585/0x850 [ 69.031695][ T6105] ? __pfx_netlink_unicast+0x10/0x10 [ 69.031712][ T6105] netlink_sendmsg+0x8b0/0xda0 [ 69.031731][ T6105] ? __pfx_netlink_sendmsg+0x10/0x10 [ 69.031748][ T6105] ? __might_fault+0x90/0x140 [ 69.031771][ T6105] ____sys_sendmsg+0x9e1/0xb70 [ 69.031783][ T6105] ? __pfx_netlink_sendmsg+0x10/0x10 [ 69.031797][ T6105] ? __pfx_____sys_sendmsg+0x10/0x10 [ 69.031814][ T6105] ? __pfx_futex_wake_mark+0x10/0x10 [ 69.031828][ T6105] ___sys_sendmsg+0x190/0x1e0 [ 69.031843][ T6105] ? __pfx____sys_sendmsg+0x10/0x10 [ 69.031875][ T6105] __sys_sendmsg+0x170/0x220 [ 69.031892][ T6105] ? __pfx___sys_sendmsg+0x10/0x10 [ 69.031908][ T6105] ? __x64_sys_futex+0x34f/0x4d0 [ 69.031929][ T6105] ? rcu_is_watching+0x12/0xc0 [ 69.031947][ T6105] do_syscall_64+0x10b/0xf80 [ 69.031960][ T6105] ? clear_bhb_loop+0x40/0x90 [ 69.031973][ T6105] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 69.031987][ T6105] RIP: 0033:0x7f1b8479cdd9 [ 69.031997][ T6105] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 69.032007][ T6105] RSP: 002b:00007f1b85639028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 69.032019][ T6105] RAX: ffffffffffffffda RBX: 00007f1b84a15fa0 RCX: 00007f1b8479cdd9 [ 69.032027][ T6105] RDX: 0000000004000010 RSI: 0000200000000100 RDI: 0000000000000003 [ 69.032034][ T6105] RBP: 00007f1b84832d69 R08: 0000000000000000 R09: 0000000000000000 [ 69.032041][ T6105] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 69.032047][ T6105] R13: 00007f1b84a16038 R14: 00007f1b84a15fa0 R15: 00007ffc0e9cd908 [ 69.032060][ T6105] [ 69.328261][ T6120] netlink: 28 bytes leftover after parsing attributes in process `syz.1.106'. [ 69.332384][ T6120] netlink: 'syz.1.106': attribute type 7 has an invalid length. [ 69.335666][ T6120] netlink: 'syz.1.106': attribute type 8 has an invalid length. [ 69.340625][ T6120] netlink: 4 bytes leftover after parsing attributes in process `syz.1.106'. [ 69.353678][ T6120] erspan0: entered promiscuous mode [ 69.358800][ T6120] gretap0: entered promiscuous mode [ 69.372109][ T6120] erspan0: left promiscuous mode [ 69.374674][ T6120] gretap0: left promiscuous mode [ 69.441068][ T6131] debugfs: '1ща^!' already exists in 'ieee80211' [ 69.474364][ T6131] sysfs: cannot create duplicate filename '/class/ieee80211/1ща^!' [ 69.482278][ T6131] CPU: 0 UID: 0 PID: 6131 Comm: syz.0.109 Not tainted syzkaller #0 PREEMPT(full) [ 69.482296][ T6131] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 69.482302][ T6131] Call Trace: [ 69.482307][ T6131] [ 69.482312][ T6131] dump_stack_lvl+0x100/0x190 [ 69.482330][ T6131] sysfs_warn_dup.cold+0x1c/0x28 [ 69.482348][ T6131] sysfs_do_create_link_sd+0x113/0x140 [ 69.482364][ T6131] sysfs_create_link+0x61/0xc0 [ 69.482378][ T6131] device_add+0x675/0x1950 [ 69.482392][ T6131] ? __pfx_device_add+0x10/0x10 [ 69.482403][ T6131] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 69.482418][ T6131] ? ieee80211_set_bitrate_flags+0x41b/0x6b0 [ 69.482438][ T6131] wiphy_register+0x1edd/0x2d90 [ 69.482450][ T6131] ? __rtnl_unlock+0xb9/0xf0 [ 69.482466][ T6131] ? __pfx_wiphy_register+0x10/0x10 [ 69.482477][ T6131] ? __asan_memset+0x23/0x50 [ 69.482493][ T6131] ? minstrel_ht_alloc+0x5e6/0x7f0 [ 69.482515][ T6131] ieee80211_register_hw+0x3055/0x4570 [ 69.482537][ T6131] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 69.482552][ T6131] ? __pfx___debug_object_init+0x10/0x10 [ 69.482569][ T6131] ? find_held_lock+0x2b/0x80 [ 69.482581][ T6131] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 69.482594][ T6131] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 69.482606][ T6131] ? __hrtimer_setup+0x208/0x330 [ 69.482624][ T6131] mac80211_hwsim_new_radio+0x2a01/0x5aa0 [ 69.482649][ T6131] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 69.482667][ T6131] ? __asan_memcpy+0x3c/0x60 [ 69.482684][ T6131] hwsim_new_radio_nl+0xc5f/0x1370 [ 69.482701][ T6131] ? rcu_is_watching+0x12/0xc0 [ 69.482718][ T6131] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 69.482772][ T6131] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1e5/0x2f0 [ 69.482797][ T6131] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1ef/0x2f0 [ 69.482816][ T6131] genl_family_rcv_msg_doit+0x214/0x300 [ 69.482834][ T6131] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 69.482854][ T6131] ? bpf_lsm_capable+0x9/0x10 [ 69.482865][ T6131] ? security_capable+0x80/0x260 [ 69.482877][ T6131] ? ns_capable+0xd2/0xf0 [ 69.482895][ T6131] genl_rcv_msg+0x560/0x800 [ 69.482912][ T6131] ? __pfx_genl_rcv_msg+0x10/0x10 [ 69.482928][ T6131] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 69.482949][ T6131] netlink_rcv_skb+0x159/0x420 [ 69.482962][ T6131] ? __pfx_genl_rcv_msg+0x10/0x10 [ 69.482978][ T6131] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 69.482996][ T6131] ? netlink_deliver_tap+0x1ae/0xcc0 [ 69.483011][ T6131] genl_rcv+0x28/0x40 [ 69.483024][ T6131] netlink_unicast+0x585/0x850 [ 69.483038][ T6131] ? __pfx_netlink_unicast+0x10/0x10 [ 69.483056][ T6131] netlink_sendmsg+0x8b0/0xda0 [ 69.483071][ T6131] ? __pfx_netlink_sendmsg+0x10/0x10 [ 69.483083][ T6131] ? __might_fault+0x90/0x140 [ 69.483103][ T6131] ____sys_sendmsg+0x9e1/0xb70 [ 69.483115][ T6131] ? __pfx_netlink_sendmsg+0x10/0x10 [ 69.483129][ T6131] ? __pfx_____sys_sendmsg+0x10/0x10 [ 69.483145][ T6131] ? __pfx_futex_wake_mark+0x10/0x10 [ 69.483159][ T6131] ___sys_sendmsg+0x190/0x1e0 [ 69.483173][ T6131] ? __pfx____sys_sendmsg+0x10/0x10 [ 69.483202][ T6131] __sys_sendmsg+0x170/0x220 [ 69.483219][ T6131] ? __pfx___sys_sendmsg+0x10/0x10 [ 69.483235][ T6131] ? __x64_sys_futex+0x34f/0x4d0 [ 69.483256][ T6131] ? rcu_is_watching+0x12/0xc0 [ 69.483274][ T6131] do_syscall_64+0x10b/0xf80 [ 69.483286][ T6131] ? clear_bhb_loop+0x40/0x90 [ 69.483299][ T6131] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 69.483310][ T6131] RIP: 0033:0x7fcdd639cdd9 [ 69.483321][ T6131] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 69.483330][ T6131] RSP: 002b:00007fcdd72a0028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 69.483341][ T6131] RAX: ffffffffffffffda RBX: 00007fcdd6615fa0 RCX: 00007fcdd639cdd9 [ 69.483348][ T6131] RDX: 0000000004000010 RSI: 0000200000000100 RDI: 0000000000000003 [ 69.483355][ T6131] RBP: 00007fcdd6432d69 R08: 0000000000000000 R09: 0000000000000000 [ 69.483360][ T6131] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 69.483366][ T6131] R13: 00007fcdd6616038 R14: 00007fcdd6615fa0 R15: 00007ffcf1077fc8 [ 69.483382][ T6131] [ 69.827428][ T6161] netlink: 28 bytes leftover after parsing attributes in process `syz.2.123'. [ 69.831664][ T6161] netlink: 'syz.2.123': attribute type 7 has an invalid length. [ 69.835761][ T6161] netlink: 'syz.2.123': attribute type 8 has an invalid length. [ 69.846413][ T6161] netlink: 4 bytes leftover after parsing attributes in process `syz.2.123'. [ 69.857566][ T6161] erspan0: entered promiscuous mode [ 69.864101][ T6161] gretap0: entered promiscuous mode [ 69.867533][ T6161] erspan0: left promiscuous mode [ 69.872717][ T6161] gretap0: left promiscuous mode [ 69.884959][ T6166] iommufd_mock iommufd_mock0: Adding to iommu group 9 [ 69.948990][ T6170] debugfs: '1ща^!' already exists in 'ieee80211' [ 69.983481][ T6170] sysfs: cannot create duplicate filename '/class/ieee80211/1ща^!' [ 69.986173][ T6170] CPU: 2 UID: 0 PID: 6170 Comm: syz.2.125 Not tainted syzkaller #0 PREEMPT(full) [ 69.986189][ T6170] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 69.986195][ T6170] Call Trace: [ 69.986199][ T6170] [ 69.986205][ T6170] dump_stack_lvl+0x100/0x190 [ 69.986223][ T6170] sysfs_warn_dup.cold+0x1c/0x28 [ 69.986240][ T6170] sysfs_do_create_link_sd+0x113/0x140 [ 69.986256][ T6170] sysfs_create_link+0x61/0xc0 [ 69.986270][ T6170] device_add+0x675/0x1950 [ 69.986284][ T6170] ? __pfx_device_add+0x10/0x10 [ 69.986296][ T6170] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 69.986310][ T6170] ? ieee80211_set_bitrate_flags+0x41b/0x6b0 [ 69.986331][ T6170] wiphy_register+0x1edd/0x2d90 [ 69.986342][ T6170] ? __rtnl_unlock+0xb9/0xf0 [ 69.986358][ T6170] ? __pfx_wiphy_register+0x10/0x10 [ 69.986369][ T6170] ? __asan_memset+0x23/0x50 [ 69.986385][ T6170] ? minstrel_ht_alloc+0x5e6/0x7f0 [ 69.986406][ T6170] ieee80211_register_hw+0x3055/0x4570 [ 69.986429][ T6170] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 69.986444][ T6170] ? __pfx___debug_object_init+0x10/0x10 [ 69.986462][ T6170] ? find_held_lock+0x2b/0x80 [ 69.986474][ T6170] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 69.986487][ T6170] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 69.986499][ T6170] ? __hrtimer_setup+0x208/0x330 [ 69.986516][ T6170] mac80211_hwsim_new_radio+0x2a01/0x5aa0 [ 69.986543][ T6170] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 69.986562][ T6170] ? __asan_memcpy+0x3c/0x60 [ 69.986580][ T6170] hwsim_new_radio_nl+0xc5f/0x1370 [ 69.986596][ T6170] ? rcu_is_watching+0x12/0xc0 [ 69.986613][ T6170] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 69.986633][ T6170] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1e5/0x2f0 [ 69.986649][ T6170] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1ef/0x2f0 [ 69.986667][ T6170] genl_family_rcv_msg_doit+0x214/0x300 [ 69.986684][ T6170] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 69.986703][ T6170] ? bpf_lsm_capable+0x9/0x10 [ 69.986714][ T6170] ? security_capable+0x80/0x260 [ 69.986756][ T6170] ? ns_capable+0xd2/0xf0 [ 69.986778][ T6170] genl_rcv_msg+0x560/0x800 [ 69.986797][ T6170] ? __pfx_genl_rcv_msg+0x10/0x10 [ 69.986812][ T6170] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 69.986835][ T6170] netlink_rcv_skb+0x159/0x420 [ 69.986849][ T6170] ? __pfx_genl_rcv_msg+0x10/0x10 [ 69.986871][ T6170] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 69.986889][ T6170] ? netlink_deliver_tap+0x1ae/0xcc0 [ 69.986903][ T6170] genl_rcv+0x28/0x40 [ 69.986917][ T6170] netlink_unicast+0x585/0x850 [ 69.986933][ T6170] ? __pfx_netlink_unicast+0x10/0x10 [ 69.986950][ T6170] netlink_sendmsg+0x8b0/0xda0 [ 69.986966][ T6170] ? __pfx_netlink_sendmsg+0x10/0x10 [ 69.986980][ T6170] ? __might_fault+0x90/0x140 [ 69.987002][ T6170] ____sys_sendmsg+0x9e1/0xb70 [ 69.987015][ T6170] ? __pfx_netlink_sendmsg+0x10/0x10 [ 69.987029][ T6170] ? __pfx_____sys_sendmsg+0x10/0x10 [ 69.987044][ T6170] ? __pfx_futex_wake_mark+0x10/0x10 [ 69.987058][ T6170] ___sys_sendmsg+0x190/0x1e0 [ 69.987072][ T6170] ? __pfx____sys_sendmsg+0x10/0x10 [ 69.987102][ T6170] __sys_sendmsg+0x170/0x220 [ 69.987121][ T6170] ? __pfx___sys_sendmsg+0x10/0x10 [ 69.987136][ T6170] ? __x64_sys_futex+0x34f/0x4d0 [ 69.987157][ T6170] ? rcu_is_watching+0x12/0xc0 [ 69.987175][ T6170] do_syscall_64+0x10b/0xf80 [ 69.987187][ T6170] ? clear_bhb_loop+0x40/0x90 [ 69.987200][ T6170] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 69.987212][ T6170] RIP: 0033:0x7fec8bd9cdd9 [ 69.987222][ T6170] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 69.987232][ T6170] RSP: 002b:00007fec8cd3f028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 69.987242][ T6170] RAX: ffffffffffffffda RBX: 00007fec8c015fa0 RCX: 00007fec8bd9cdd9 [ 69.987249][ T6170] RDX: 0000000004000010 RSI: 0000200000000100 RDI: 0000000000000003 [ 69.987256][ T6170] RBP: 00007fec8be32d69 R08: 0000000000000000 R09: 0000000000000000 [ 69.987263][ T6170] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 69.987270][ T6170] R13: 00007fec8c016038 R14: 00007fec8c015fa0 R15: 00007ffe63f047d8 [ 69.987284][ T6170] [ 70.046298][ T5729] Bluetooth: hci1: command tx timeout [ 70.047994][ T5742] Bluetooth: hci2: command tx timeout [ 70.049659][ T5741] Bluetooth: hci0: command tx timeout [ 70.119991][ T5742] Bluetooth: hci3: command tx timeout [ 70.144726][ T6186] sysfs: cannot create duplicate filename '/class/ieee80211/1ща^!' [ 70.147430][ T6186] CPU: 2 UID: 0 PID: 6186 Comm: syz.3.143 Not tainted syzkaller #0 PREEMPT(full) [ 70.147446][ T6186] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 70.147452][ T6186] Call Trace: [ 70.147460][ T6186] [ 70.147465][ T6186] dump_stack_lvl+0x100/0x190 [ 70.147482][ T6186] sysfs_warn_dup.cold+0x1c/0x28 [ 70.147500][ T6186] sysfs_do_create_link_sd+0x113/0x140 [ 70.147517][ T6186] sysfs_create_link+0x61/0xc0 [ 70.147531][ T6186] device_add+0x675/0x1950 [ 70.147544][ T6186] ? __pfx_device_add+0x10/0x10 [ 70.147556][ T6186] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 70.147571][ T6186] ? ieee80211_set_bitrate_flags+0x41b/0x6b0 [ 70.147592][ T6186] wiphy_register+0x1edd/0x2d90 [ 70.147603][ T6186] ? __rtnl_unlock+0xb9/0xf0 [ 70.147619][ T6186] ? __pfx_wiphy_register+0x10/0x10 [ 70.147630][ T6186] ? __asan_memset+0x23/0x50 [ 70.147646][ T6186] ? minstrel_ht_alloc+0x5e6/0x7f0 [ 70.147666][ T6186] ieee80211_register_hw+0x3055/0x4570 [ 70.147688][ T6186] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 70.147703][ T6186] ? __pfx___debug_object_init+0x10/0x10 [ 70.147720][ T6186] ? find_held_lock+0x2b/0x80 [ 70.147733][ T6186] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 70.147747][ T6186] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 70.147759][ T6186] ? __hrtimer_setup+0x208/0x330 [ 70.147792][ T6186] mac80211_hwsim_new_radio+0x2a01/0x5aa0 [ 70.147819][ T6186] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 70.147838][ T6186] ? __asan_memcpy+0x3c/0x60 [ 70.147855][ T6186] hwsim_new_radio_nl+0xc5f/0x1370 [ 70.147889][ T6186] ? rcu_is_watching+0x12/0xc0 [ 70.147908][ T6186] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 70.147930][ T6186] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1e5/0x2f0 [ 70.147948][ T6186] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1ef/0x2f0 [ 70.147968][ T6186] genl_family_rcv_msg_doit+0x214/0x300 [ 70.147984][ T6186] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 70.148004][ T6186] ? bpf_lsm_capable+0x9/0x10 [ 70.148015][ T6186] ? security_capable+0x80/0x260 [ 70.148027][ T6186] ? ns_capable+0xd2/0xf0 [ 70.148044][ T6186] genl_rcv_msg+0x560/0x800 [ 70.148060][ T6186] ? __pfx_genl_rcv_msg+0x10/0x10 [ 70.148075][ T6186] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 70.148097][ T6186] netlink_rcv_skb+0x159/0x420 [ 70.148110][ T6186] ? __pfx_genl_rcv_msg+0x10/0x10 [ 70.148125][ T6186] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 70.148144][ T6186] ? netlink_deliver_tap+0x1ae/0xcc0 [ 70.148160][ T6186] genl_rcv+0x28/0x40 [ 70.148173][ T6186] netlink_unicast+0x585/0x850 [ 70.148190][ T6186] ? __pfx_netlink_unicast+0x10/0x10 [ 70.148209][ T6186] netlink_sendmsg+0x8b0/0xda0 [ 70.148225][ T6186] ? __pfx_netlink_sendmsg+0x10/0x10 [ 70.148237][ T6186] ? __might_fault+0x90/0x140 [ 70.148258][ T6186] ____sys_sendmsg+0x9e1/0xb70 [ 70.148270][ T6186] ? __pfx_netlink_sendmsg+0x10/0x10 [ 70.148284][ T6186] ? __pfx_____sys_sendmsg+0x10/0x10 [ 70.148300][ T6186] ? __pfx_futex_wake_mark+0x10/0x10 [ 70.148313][ T6186] ___sys_sendmsg+0x190/0x1e0 [ 70.148327][ T6186] ? __pfx____sys_sendmsg+0x10/0x10 [ 70.148359][ T6186] __sys_sendmsg+0x170/0x220 [ 70.148375][ T6186] ? __pfx___sys_sendmsg+0x10/0x10 [ 70.148392][ T6186] ? __x64_sys_futex+0x34f/0x4d0 [ 70.148413][ T6186] ? rcu_is_watching+0x12/0xc0 [ 70.148431][ T6186] do_syscall_64+0x10b/0xf80 [ 70.148443][ T6186] ? clear_bhb_loop+0x40/0x90 [ 70.148457][ T6186] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 70.148468][ T6186] RIP: 0033:0x7f1b8479cdd9 [ 70.148478][ T6186] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 70.148488][ T6186] RSP: 002b:00007f1b85639028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 70.148499][ T6186] RAX: ffffffffffffffda RBX: 00007f1b84a15fa0 RCX: 00007f1b8479cdd9 [ 70.148506][ T6186] RDX: 0000000004004004 RSI: 0000200000000100 RDI: 0000000000000003 [ 70.148513][ T6186] RBP: 00007f1b84832d69 R08: 0000000000000000 R09: 0000000000000000 [ 70.148519][ T6186] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 70.148526][ T6186] R13: 00007f1b84a16038 R14: 00007f1b84a15fa0 R15: 00007ffc0e9cd908 [ 70.148541][ T6186] [ 70.316129][ T6187] sysfs: cannot create duplicate filename '/class/ieee80211/1ща^!' [ 70.355866][ T6187] CPU: 0 UID: 0 PID: 6187 Comm: syz.3.143 Not tainted syzkaller #0 PREEMPT(full) [ 70.355895][ T6187] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 70.355907][ T6187] Call Trace: [ 70.355914][ T6187] [ 70.355922][ T6187] dump_stack_lvl+0x100/0x190 [ 70.355954][ T6187] sysfs_warn_dup.cold+0x1c/0x28 [ 70.355982][ T6187] sysfs_do_create_link_sd+0x113/0x140 [ 70.356009][ T6187] sysfs_create_link+0x61/0xc0 [ 70.356034][ T6187] device_add+0x675/0x1950 [ 70.356058][ T6187] ? __pfx_device_add+0x10/0x10 [ 70.356078][ T6187] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 70.356103][ T6187] ? ieee80211_set_bitrate_flags+0x41b/0x6b0 [ 70.356135][ T6187] wiphy_register+0x1edd/0x2d90 [ 70.356155][ T6187] ? __rtnl_unlock+0xb9/0xf0 [ 70.356182][ T6187] ? __pfx_wiphy_register+0x10/0x10 [ 70.356203][ T6187] ? __asan_memset+0x23/0x50 [ 70.356230][ T6187] ? minstrel_ht_alloc+0x5e6/0x7f0 [ 70.356266][ T6187] ieee80211_register_hw+0x3055/0x4570 [ 70.356304][ T6187] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 70.356328][ T6187] ? __pfx___debug_object_init+0x10/0x10 [ 70.356355][ T6187] ? find_held_lock+0x2b/0x80 [ 70.356375][ T6187] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 70.356397][ T6187] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 70.356418][ T6187] ? __hrtimer_setup+0x208/0x330 [ 70.356447][ T6187] mac80211_hwsim_new_radio+0x2a01/0x5aa0 [ 70.356493][ T6187] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 70.356524][ T6187] ? __asan_memcpy+0x3c/0x60 [ 70.356547][ T6187] hwsim_new_radio_nl+0xc5f/0x1370 [ 70.356575][ T6187] ? rcu_is_watching+0x12/0xc0 [ 70.356603][ T6187] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 70.356637][ T6187] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1e5/0x2f0 [ 70.356664][ T6187] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1ef/0x2f0 [ 70.356698][ T6187] genl_family_rcv_msg_doit+0x214/0x300 [ 70.356728][ T6187] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 70.356761][ T6187] ? bpf_lsm_capable+0x9/0x10 [ 70.356780][ T6187] ? security_capable+0x80/0x260 [ 70.356811][ T6187] ? ns_capable+0xd2/0xf0 [ 70.356838][ T6187] genl_rcv_msg+0x560/0x800 [ 70.356865][ T6187] ? __pfx_genl_rcv_msg+0x10/0x10 [ 70.356890][ T6187] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 70.356919][ T6187] netlink_rcv_skb+0x159/0x420 [ 70.356933][ T6187] ? __pfx_genl_rcv_msg+0x10/0x10 [ 70.356963][ T6187] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 70.356985][ T6187] ? netlink_deliver_tap+0x1ae/0xcc0 [ 70.357000][ T6187] genl_rcv+0x28/0x40 [ 70.357014][ T6187] netlink_unicast+0x585/0x850 [ 70.357031][ T6187] ? __pfx_netlink_unicast+0x10/0x10 [ 70.357052][ T6187] netlink_sendmsg+0x8b0/0xda0 [ 70.357073][ T6187] ? __pfx_netlink_sendmsg+0x10/0x10 [ 70.357091][ T6187] ? __might_fault+0x90/0x140 [ 70.357127][ T6187] ____sys_sendmsg+0x9e1/0xb70 [ 70.357149][ T6187] ? __pfx_netlink_sendmsg+0x10/0x10 [ 70.357173][ T6187] ? __pfx_____sys_sendmsg+0x10/0x10 [ 70.357200][ T6187] ? __pfx_futex_wake_mark+0x10/0x10 [ 70.357224][ T6187] ___sys_sendmsg+0x190/0x1e0 [ 70.357250][ T6187] ? __pfx____sys_sendmsg+0x10/0x10 [ 70.357303][ T6187] __sys_sendmsg+0x170/0x220 [ 70.357332][ T6187] ? __pfx___sys_sendmsg+0x10/0x10 [ 70.357358][ T6187] ? __x64_sys_futex+0x34f/0x4d0 [ 70.357384][ T6187] ? rcu_is_watching+0x12/0xc0 [ 70.357402][ T6187] do_syscall_64+0x10b/0xf80 [ 70.357430][ T6187] ? clear_bhb_loop+0x40/0x90 [ 70.357447][ T6187] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 70.357458][ T6187] RIP: 0033:0x7f1b8479cdd9 [ 70.357470][ T6187] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 70.357481][ T6187] RSP: 002b:00007f1b85618028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 70.357494][ T6187] RAX: ffffffffffffffda RBX: 00007f1b84a16090 RCX: 00007f1b8479cdd9 [ 70.357501][ T6187] RDX: 0000000004000010 RSI: 0000200000000100 RDI: 0000000000000003 [ 70.357508][ T6187] RBP: 00007f1b84832d69 R08: 0000000000000000 R09: 0000000000000000 [ 70.357514][ T6187] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 70.357520][ T6187] R13: 00007f1b84a16128 R14: 00007f1b84a16090 R15: 00007ffc0e9cd908 [ 70.357534][ T6187] [ 70.891319][ T6235] ------------[ cut here ]------------ [ 70.893566][ T6235] !chanctx_conf [ 70.893577][ T6235] WARNING: net/mac80211/rate.c:53 at rate_control_rate_init+0x5c5/0x730, CPU#2: syz.3.156/6235 [ 70.898197][ T6235] Modules linked in: [ 70.899704][ T6235] CPU: 2 UID: 0 PID: 6235 Comm: syz.3.156 Not tainted syzkaller #0 PREEMPT(full) SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 70.902768][ T6235] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 70.906203][ T6235] RIP: 0010:rate_control_rate_init+0x5c5/0x730 [ 70.908333][ T6235] Code: 48 8d 35 00 00 00 00 e8 39 33 e3 f6 e8 34 8b ec f6 e9 20 fe ff ff e8 5a 47 07 f7 90 0f 0b 90 e9 12 fe ff ff e8 4c 47 07 f7 90 <0f> 0b 90 eb b1 e8 41 47 07 f7 e8 8c 93 eb f6 31 ff 89 c3 89 c6 e8 [ 70.914501][ T6235] RSP: 0018:ffffc90006957200 EFLAGS: 00010287 [ 70.916526][ T6235] RAX: 0000000000000788 RBX: ffff888059e0c000 RCX: ffffc90006d51000 [ 70.919221][ T6235] RDX: 0000000000080000 RSI: ffffffff8b0142d4 RDI: ffff8880346ca500 [ 70.922295][ T6235] RBP: 0000000000000001 R08: 0000000000000005 R09: 0000000000000000 [ 70.924996][ T6235] R10: 0000000000000001 R11: 0000000000000000 R12: ffff888038b3d980 [ 70.927560][ T6235] R13: ffff888059570f20 R14: ffff888058378000 R15: 0000000000000000 [ 70.930309][ T6235] FS: 00007f1b856396c0(0000) GS:ffff8880d6576000(0000) knlGS:0000000000000000 [ 70.933285][ T6235] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 70.935465][ T6235] CR2: 00007f1b84787f40 CR3: 000000005afaf000 CR4: 0000000000352ef0 [ 70.938132][ T6235] Call Trace: [ 70.939266][ T6235] [ 70.940299][ T6235] rate_control_rate_init_all_links+0x76/0x1f0 [ 70.942335][ T6235] sta_apply_auth_flags.isra.0+0x4aa/0x500 [ 70.944805][ T6235] sta_apply_parameters+0x1234/0x2090 [ 70.947082][ T6235] ? __sta_info_alloc+0x1146/0x1cd0 [ 70.949262][ T6235] ieee80211_add_station+0x3ff/0x760 [ 70.951047][ T6235] nl80211_new_station+0x14a9/0x20f0 [ 70.953046][ T6235] ? __pfx_nl80211_new_station+0x10/0x10 [ 70.955090][ T6235] ? nl80211_pre_doit+0x19a/0xae0 [ 70.956853][ T6235] genl_family_rcv_msg_doit+0x214/0x300 [ 70.958797][ T6235] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 70.961117][ T6235] ? bpf_lsm_capable+0x9/0x10 [ 70.962763][ T6235] ? security_capable+0x80/0x260 [ 70.964416][ T6235] ? ns_capable+0xd2/0xf0 [ 70.965860][ T6235] genl_rcv_msg+0x560/0x800 [ 70.967397][ T6235] ? __pfx_genl_rcv_msg+0x10/0x10 [ 70.969171][ T6235] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 70.971145][ T6235] ? __pfx_nl80211_new_station+0x10/0x10 [ 70.973024][ T6235] ? __pfx_nl80211_post_doit+0x10/0x10 [ 70.974858][ T6235] netlink_rcv_skb+0x159/0x420 [ 70.976495][ T6235] ? __pfx_genl_rcv_msg+0x10/0x10 [ 70.978259][ T6235] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 70.980096][ T6235] ? netlink_deliver_tap+0x1ae/0xcc0 [ 70.981771][ T6235] genl_rcv+0x28/0x40 [ 70.983132][ T6235] netlink_unicast+0x585/0x850 [ 70.984726][ T6235] ? __pfx_netlink_unicast+0x10/0x10 [ 70.986477][ T6235] netlink_sendmsg+0x8b0/0xda0 [ 70.988196][ T6235] ? __pfx_netlink_sendmsg+0x10/0x10 [ 70.990018][ T6235] ? __might_fault+0x90/0x140 [ 70.991643][ T6235] ____sys_sendmsg+0x9e1/0xb70 [ 70.993233][ T6235] ? __pfx_netlink_sendmsg+0x10/0x10 [ 70.994957][ T6235] ? __pfx_____sys_sendmsg+0x10/0x10 [ 70.996692][ T6235] ? __pfx_futex_wake_mark+0x10/0x10 [ 70.998454][ T6235] ___sys_sendmsg+0x190/0x1e0 [ 71.000071][ T6235] ? __pfx____sys_sendmsg+0x10/0x10 [ 71.001849][ T6235] __sys_sendmsg+0x170/0x220 [ 71.003666][ T6235] ? __pfx___sys_sendmsg+0x10/0x10 [ 71.005419][ T6235] ? __x64_sys_futex+0x34f/0x4d0 [ 71.007096][ T6235] ? rcu_is_watching+0x12/0xc0 [ 71.008749][ T6235] do_syscall_64+0x10b/0xf80 [ 71.010286][ T6235] ? clear_bhb_loop+0x40/0x90 [ 71.012018][ T6235] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 71.013971][ T6235] RIP: 0033:0x7f1b8479cdd9 [ 71.015508][ T6235] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 71.021917][ T6235] RSP: 002b:00007f1b85639028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 71.024710][ T6235] RAX: ffffffffffffffda RBX: 00007f1b84a15fa0 RCX: 00007f1b8479cdd9 [ 71.027254][ T6235] RDX: 0000000000000000 RSI: 0000200000001080 RDI: 0000000000000005 [ 71.029949][ T6235] RBP: 00007f1b84832d69 R08: 0000000000000000 R09: 0000000000000000 [ 71.032497][ T6235] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 71.035418][ T6235] R13: 00007f1b84a16038 R14: 00007f1b84a15fa0 R15: 00007ffc0e9cd908 [ 71.038059][ T6235] [ 71.039196][ T6235] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 71.041566][ T6235] CPU: 2 UID: 0 PID: 6235 Comm: syz.3.156 Not tainted syzkaller #0 PREEMPT(full) [ 71.044569][ T6235] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 71.047873][ T6235] Call Trace: [ 71.048988][ T6235] [ 71.050017][ T6235] dump_stack_lvl+0x100/0x190 [ 71.051603][ T6235] vpanic+0x552/0x970 [ 71.052925][ T6235] ? __pfx_vpanic+0x10/0x10 [ 71.054396][ T6235] panic+0xd1/0xe0 [ 71.055688][ T6235] ? __pfx_panic+0x10/0x10 [ 71.057176][ T6235] check_panic_on_warn.cold+0x19/0x34 [ 71.058966][ T6235] ? rate_control_rate_init+0x5c5/0x730 [ 71.060817][ T6235] __warn.cold+0x191/0x328 [ 71.062302][ T6235] __report_bug+0x296/0x3d0 [ 71.063840][ T6235] ? rate_control_rate_init+0x5c5/0x730 [ 71.065664][ T6235] ? __pfx___report_bug+0x10/0x10 [ 71.067534][ T6235] ? kasan_save_track+0x14/0x30 [ 71.069182][ T6235] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 71.071314][ T6235] ? ieee80211_add_station+0x5f1/0x760 [ 71.073103][ T6235] ? nl80211_new_station+0x14a9/0x20f0 [ 71.074916][ T6235] ? genl_family_rcv_msg_doit+0x214/0x300 [ 71.076849][ T6235] ? netlink_rcv_skb+0x159/0x420 [ 71.078496][ T6235] ? netlink_unicast+0x585/0x850 [ 71.080180][ T6235] ? netlink_sendmsg+0x8b0/0xda0 [ 71.081810][ T6235] ? ____sys_sendmsg+0x9e1/0xb70 [ 71.083465][ T6235] ? rate_control_rate_init+0x5c5/0x730 [ 71.085281][ T6235] report_bug+0xb2/0x220 [ 71.086685][ T6235] ? rate_control_rate_init+0x5c5/0x730 [ 71.088566][ T6235] handle_bug+0x16a/0x2a0 [ 71.090026][ T6235] exc_invalid_op+0x17/0x50 [ 71.091550][ T6235] asm_exc_invalid_op+0x1a/0x20 [ 71.093158][ T6235] RIP: 0010:rate_control_rate_init+0x5c5/0x730 [ 71.095191][ T6235] Code: 48 8d 35 00 00 00 00 e8 39 33 e3 f6 e8 34 8b ec f6 e9 20 fe ff ff e8 5a 47 07 f7 90 0f 0b 90 e9 12 fe ff ff e8 4c 47 07 f7 90 <0f> 0b 90 eb b1 e8 41 47 07 f7 e8 8c 93 eb f6 31 ff 89 c3 89 c6 e8 [ 71.101703][ T6235] RSP: 0018:ffffc90006957200 EFLAGS: 00010287 [ 71.103741][ T6235] RAX: 0000000000000788 RBX: ffff888059e0c000 RCX: ffffc90006d51000 [ 71.106319][ T6235] RDX: 0000000000080000 RSI: ffffffff8b0142d4 RDI: ffff8880346ca500 [ 71.108967][ T6235] RBP: 0000000000000001 R08: 0000000000000005 R09: 0000000000000000 [ 71.111596][ T6235] R10: 0000000000000001 R11: 0000000000000000 R12: ffff888038b3d980 [ 71.114175][ T6235] R13: ffff888059570f20 R14: ffff888058378000 R15: 0000000000000000 [ 71.116780][ T6235] ? rate_control_rate_init+0x5c4/0x730 [ 71.118609][ T6235] rate_control_rate_init_all_links+0x76/0x1f0 [ 71.120888][ T6235] sta_apply_auth_flags.isra.0+0x4aa/0x500 [ 71.122840][ T6235] sta_apply_parameters+0x1234/0x2090 [ 71.124605][ T6235] ? __sta_info_alloc+0x1146/0x1cd0 [ 71.126317][ T6235] ieee80211_add_station+0x3ff/0x760 [ 71.128092][ T6235] nl80211_new_station+0x14a9/0x20f0 [ 71.129886][ T6235] ? __pfx_nl80211_new_station+0x10/0x10 [ 71.131918][ T6235] ? nl80211_pre_doit+0x19a/0xae0 [ 71.133593][ T6235] genl_family_rcv_msg_doit+0x214/0x300 [ 71.135444][ T6235] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 71.137448][ T6235] ? bpf_lsm_capable+0x9/0x10 [ 71.139034][ T6235] ? security_capable+0x80/0x260 [ 71.140723][ T6235] ? ns_capable+0xd2/0xf0 [ 71.142183][ T6235] genl_rcv_msg+0x560/0x800 [ 71.143713][ T6235] ? __pfx_genl_rcv_msg+0x10/0x10 [ 71.145378][ T6235] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 71.147165][ T6235] ? __pfx_nl80211_new_station+0x10/0x10 [ 71.149023][ T6235] ? __pfx_nl80211_post_doit+0x10/0x10 [ 71.150867][ T6235] netlink_rcv_skb+0x159/0x420 [ 71.152813][ T6235] ? __pfx_genl_rcv_msg+0x10/0x10 [ 71.154568][ T6235] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 71.156340][ T6235] ? netlink_deliver_tap+0x1ae/0xcc0 [ 71.158085][ T6235] genl_rcv+0x28/0x40 [ 71.159476][ T6235] netlink_unicast+0x585/0x850 [ 71.161075][ T6235] ? __pfx_netlink_unicast+0x10/0x10 [ 71.163015][ T6235] netlink_sendmsg+0x8b0/0xda0 [ 71.164601][ T6235] ? __pfx_netlink_sendmsg+0x10/0x10 [ 71.166341][ T6235] ? __might_fault+0x90/0x140 [ 71.167943][ T6235] ____sys_sendmsg+0x9e1/0xb70 [ 71.169557][ T6235] ? __pfx_netlink_sendmsg+0x10/0x10 [ 71.171318][ T6235] ? __pfx_____sys_sendmsg+0x10/0x10 [ 71.173126][ T6235] ? __pfx_futex_wake_mark+0x10/0x10 [ 71.174891][ T6235] ___sys_sendmsg+0x190/0x1e0 [ 71.176452][ T6235] ? __pfx____sys_sendmsg+0x10/0x10 [ 71.178178][ T6235] __sys_sendmsg+0x170/0x220 [ 71.179756][ T6235] ? __pfx___sys_sendmsg+0x10/0x10 [ 71.181444][ T6235] ? __x64_sys_futex+0x34f/0x4d0 [ 71.183104][ T6235] ? rcu_is_watching+0x12/0xc0 [ 71.184729][ T6235] do_syscall_64+0x10b/0xf80 [ 71.186260][ T6235] ? clear_bhb_loop+0x40/0x90 [ 71.187843][ T6235] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 71.189805][ T6235] RIP: 0033:0x7f1b8479cdd9 [ 71.191297][ T6235] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 71.197715][ T6235] RSP: 002b:00007f1b85639028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 71.200484][ T6235] RAX: ffffffffffffffda RBX: 00007f1b84a15fa0 RCX: 00007f1b8479cdd9 [ 71.203082][ T6235] RDX: 0000000000000000 RSI: 0000200000001080 RDI: 0000000000000005 [ 71.205713][ T6235] RBP: 00007f1b84832d69 R08: 0000000000000000 R09: 0000000000000000 [ 71.208328][ T6235] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 71.210950][ T6235] R13: 00007f1b84a16038 R14: 00007f1b84a15fa0 R15: 00007ffc0e9cd908 [ 71.213533][ T6235] [ 71.215418][ T6235] Kernel Offset: disabled [ 71.217011][ T6235] Rebooting in 86400 seconds..