last executing test programs: 8.321176271s ago: executing program 4 (id=53): r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000000)={[0xfffffffffffffff7]}, 0x8, 0x0) symlinkat(&(0x7f0000001400)='./file0\x00', r0, &(0x7f0000001440)='./file0\x00') 8.028974655s ago: executing program 4 (id=56): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuset.effective_mems\x00', 0x275a, 0x0) fcntl$setown(r0, 0x8, 0x0) close(0x3) 7.84409137s ago: executing program 4 (id=60): r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000100)={0x2, 0x4e21, @broadcast}, 0x10) ioctl$int_in(r0, 0x5452, &(0x7f0000000000)=0x6) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10) sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x201, 0x0, 0x0) shutdown(r0, 0x1) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0, 0xffffffffffffff2c}, 0x68) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x1, 0x4, 0x10000}, 0x28) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000140)={0x0, 0x3}, 0xfffffffffffffd29) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xf, &(0x7f0000000140)=0x6, 0x4) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045) r1 = io_uring_setup(0x4fee, &(0x7f0000000040)={0x0, 0x3cb1, 0x1c080, 0xa, 0x20002f7}) io_uring_enter(r1, 0x2219, 0x7721, 0x16, 0x0, 0x0) recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25) 7.674863769s ago: executing program 1 (id=62): ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000000)={[0x38, 0xfff, 0x0, 0x180, 0x2, 0x14, 0xf1, 0x0, 0x7fffffffffffe, 0x5, 0x4005, 0x8, 0x0, 0x45, 0x1, 0xbdb], 0xdddd0000, 0x1c4213}) r0 = socket$inet6_sctp(0xa, 0x5, 0x84) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x9) setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(r0, 0x84, 0x23, &(0x7f0000000040)={0x0, 0x2}, 0x8) 7.427981848s ago: executing program 1 (id=64): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000180)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) listen(r0, 0x5) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r1, 0x0, 0x0, 0x24040004, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @empty}, 0x1c) sendmmsg$inet(r1, &(0x7f0000000480)=[{{0x0, 0x0, &(0x7f00000014c0)=[{&(0x7f0000000140)="6f4103", 0x3}], 0x1}}, {{0x0, 0x0, &(0x7f0000001900)=[{&(0x7f00000000c0)="42ec6c", 0x3}], 0x1}}], 0x2, 0x4004880) 7.310752093s ago: executing program 3 (id=65): r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) recvmmsg(r0, &(0x7f0000006000)=[{{0x0, 0x0, 0x0}, 0x6e1}], 0x1, 0x22, 0x0) setsockopt$sock_int(r0, 0x1, 0x28, &(0x7f0000000000)=0x3, 0x4) syz_emit_ethernet(0x2a, &(0x7f0000000080)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x8}}}}}, 0x0) 7.268707772s ago: executing program 4 (id=67): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x41, 0x0) r1 = dup(r0) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x3, 0x0, 0x111, 0x8}}, 0x20) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000b80000/0x3000)=nil, 0x0}, 0x68) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000140)={0x0, 0x3}, 0x8) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xf, &(0x7f0000000140)=0x6, 0x4) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045) r2 = io_uring_setup(0x1b7b, &(0x7f0000000040)={0x0, 0x96f, 0x1f280, 0x0, 0x397}) io_uring_enter(r2, 0x8ae, 0xfbb9, 0x1f, 0x0, 0x0) ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000dc0)={0x0, 0x4, 0x0, 0x0, 0x1b, "0062ba7d820700000000000000000000096304"}) r3 = syz_open_pts(r0, 0x80) dup3(r3, r0, 0x80000) ioctl$TCSETS(r1, 0x5402, &(0x7f0000000540)={0x4, 0x6, 0x0, 0x4, 0x15, "1c702ac6c98ad9decfa06e24b787a55737a502"}) read(r0, &(0x7f00000005c0)=""/228, 0xe4) 7.05826135s ago: executing program 1 (id=68): syz_clone3(&(0x7f0000000080)={0x180801400, &(0x7f0000000000), 0x0, 0x0, {0x3d}, 0x0, 0x0, 0x0, 0x0}, 0x40) syz_open_procfs(0x0, &(0x7f0000000000)='map_files\x00') openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0) signalfd(0xffffffffffffffff, &(0x7f0000000000)={[0xc38]}, 0x8) socket$nl_route(0x10, 0x3, 0x0) socket$nl_sock_diag(0x10, 0x3, 0x4) socket$inet6_sctp(0xa, 0x5, 0x84) socket$inet_sctp(0x2, 0x5, 0x84) socket$nl_route(0x10, 0x3, 0x0) socket$inet(0x2, 0x4000000000000001, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='comm\x00') openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000002180)='blkio.bfq.io_merged\x00', 0x275a, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r0 = socket(0x11, 0x2, 0x0) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000100)=ANY=[@ANYRES32, @ANYRES32=r0, @ANYRES16=r0], 0x20) 6.915460335s ago: executing program 3 (id=70): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x4, &(0x7f0000006680)) memfd_create(&(0x7f0000000040)='-&:\n-\xb2];\x0f\xb2\x86NV6&\xb8=\x94Z}\xfaW~\xae\x87\x88\xea\xde\xd9=)s\xf0\xd6\xd1=\x1d\x8bl\xd5\xc3DZ\xbb0\x8e\xac\xba)\xe9\xa7\xc6Zd\xde\x82W\xc6\xefH\xb4\xf2r#\xebI\xab\xf6\xab}\x90\xe7\x85\x18 \x8a\x8aG:\xacD-\x99\xac\x8d\x1d\x1c\xe9\x80\xe5<\xfcP)E\xc1\x9f\xeb\xc9\x158Mq\x01\xe1\xf6-\xc3\xaa\x9a\x9be\xcd\xf2\xde\xccx\x1f\x0fne\xe8C\xe4Y\xc9\vR2MY\x8e\x9d\x97 w\xbc\x03\xe2\x7f\xf5\x10', 0x5) pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x1, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) pipe(&(0x7f00000002c0)={0xffffffffffffffff}) vmsplice(r1, &(0x7f00000014c0)=[{&(0x7f0000000000)='|', 0xfd}], 0xf, 0x0) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x33) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000300)) 6.7686825s ago: executing program 1 (id=71): timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f00000002c0)=0x0) fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x3ed4, 0x5}) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) timer_settime(r0, 0x1, &(0x7f0000000040)={{0x77359400}}, 0x0) socket$alg(0x26, 0x5, 0x0) r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000080)={[0xfffffffffffffffe]}, 0x8, 0x0) mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff1000/0x3000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f00003b6000/0x4000)=nil, &(0x7f0000ff8000/0x8000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045) r2 = io_uring_setup(0x1e64, &(0x7f0000000040)={0x0, 0xc89a, 0xc000, 0x2, 0x65}) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0x0, 0xfff0}, {0xe, 0xffff}}}, 0x24}}, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, &(0x7f0000000000)=0x6, 0x4) r3 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r3, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8) io_uring_enter(r2, 0xccb, 0x7721, 0x16, 0x0, 0x0) read$FUSE(r1, &(0x7f00000010c0)={0x2020}, 0x2020) 6.364470887s ago: executing program 3 (id=74): syz_clone(0xa4384211, 0x0, 0x0, 0x0, 0x0, 0x0) rt_sigsuspend(&(0x7f0000000080)={[0xd8b1]}, 0x8) 6.231582426s ago: executing program 2 (id=75): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000040)=0x1000, 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) 6.194624862s ago: executing program 4 (id=76): mlock(&(0x7f0000400000/0xc00000)=nil, 0xc00000) mremap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil) madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x19) 5.926745836s ago: executing program 2 (id=77): syz_emit_ethernet(0x46, &(0x7f0000000100)={@local, @link_local={0x3}, @void, {@ipv4={0x800, @tcp={{0x9, 0x4, 0x0, 0x0, 0x38, 0xfffc, 0x0, 0x0, 0x6, 0x0, @dev, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@rr={0x7, 0x3, 0xbb}, @rr={0x44, 0xb, 0x8, [@remote, @remote]}]}}, {{0x4e22, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x0, 0x1576}}}}}}, 0x0) 5.603129983s ago: executing program 2 (id=78): mprotect(&(0x7f0000fa6000/0x4000)=nil, 0x4000, 0x0) r0 = open(&(0x7f0000000080)='./file1\x00', 0x64842, 0x86) write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(r0, &(0x7f0000000040)={0x4, 0xfffffffffffffd80, 0xfa00, {0xffffffffffffffff, 0xd}}, 0xfffffe01) 4.858824291s ago: executing program 3 (id=81): sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x24, 0x8001, 0x0, 0x7, 0x200000000002, 0xbc, 0x80000008, 0x3}, 0x0) 4.774791113s ago: executing program 4 (id=82): futex(&(0x7f000000cffc)=0x2, 0x3, 0x801, 0x0, 0x0, 0xfffffffc) prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) r0 = socket(0xa, 0x3, 0xff) connect$inet6(r0, 0x0, 0x0) socket$inet_udp(0x2, 0x2, 0x0) openat(0xffffffffffffff9c, 0x0, 0x189840, 0x24) r1 = syz_io_uring_setup(0x4b6, &(0x7f0000000280)={0x0, 0x0, 0x400, 0x1, 0x199}, &(0x7f0000ff0000), &(0x7f0000000000)) io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x0, &(0x7f0000000040)=[{0x0}, {0x0}], 0x2) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r1, 0x10, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000540)=[{0x0}, {&(0x7f0000000340), 0xa002a0}], &(0x7f00000005c0), 0x2}, 0x20) mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8) sendto$inet(r0, &(0x7f00000002c0), 0x0, 0x800, 0x0, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x1d, &(0x7f0000000040)={0x0, 0x0}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) inotify_add_watch(0xffffffffffffffff, 0x0, 0x449) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/raw\x00') preadv(r3, &(0x7f00000003c0)=[{0x0}], 0x1, 0x2cf9, 0x2) mq_notify(0xffffffffffffffff, 0x0) syz_io_uring_setup(0x74d, 0x0, 0x0, 0x0) 4.47100938s ago: executing program 0 (id=83): setsockopt$SO_TIMESTAMP(0xffffffffffffffff, 0x1, 0x40, &(0x7f0000000140)=0x6, 0x4) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) r0 = socket$netlink(0x10, 0x3, 0x0) getsockopt$sock_int(r0, 0x1, 0x2f, 0x0, &(0x7f0000000140)) 4.353294087s ago: executing program 3 (id=84): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x100, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = dup(r1) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r0, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text16={0x10, 0x0}], 0x1, 0x72, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000080)="c421fc107500c4417877c744240039010000c74424028a000000ff1c240f01cb35040000002e8f401e1914c4028d3bea66450f3880213e41220a48b861000000000000000f23c00f21f84c3500000b000023f8f21eca66baf80cb8b428c987ef66bafc0cb843b50000ef", 0x6a}], 0x1, 0x11, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 4.346807694s ago: executing program 2 (id=85): mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0) r0 = open$dir(&(0x7f0000000000)='./file0\x00', 0x800, 0x20) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f00000005c0)=@v1={0x0, @aes256, 0x2, @desc2}) r1 = open$dir(&(0x7f0000000000)='./file0\x00', 0x1080, 0x112) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000080)=0x40000000) 4.294836102s ago: executing program 0 (id=86): syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000200)=[@text32={0x20, &(0x7f00000000c0)="0f21b034000f21c9440f20c03507000000440f22c0c4c1fa114d4966b8af0066ef66b83d018e9bf0f0b887008ee867360f062e0f09", 0x35}], 0x1, 0x8, 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000013c0), 0x0, 0x0) prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x5, 0x7, 0x7ffc0001}]}) mq_unlink(0x0) r1 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000100), 0x400, 0x0) flock(r1, 0x6) r2 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000100), 0x400, 0x0) fcntl$lock(r2, 0x25, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x7}) r3 = syz_open_procfs(0x0, &(0x7f0000000180)='fdinfo/4\x00') read$FUSE(r3, &(0x7f0000000480)={0x2020, 0x0, 0x0}, 0x2020) ioctl$TIOCPKT(r0, 0x5420, &(0x7f00000026c0)=0xa) ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000000)={0xffffffef, 0xee0, 0x9, 0x7fffffff, 0x90, "9900010000000000001300"}) write$FUSE_INIT(r3, &(0x7f0000000280)={0x50, 0x0, r4, {0x7, 0x2d, 0x0, 0x600040, 0x68, 0x8, 0x4, 0xffffffff, 0x0, 0x0, 0x4}}, 0x50) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil}) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff}) io_setup(0x205, &(0x7f0000002500)=0x0) close(r8) r10 = syz_io_uring_complete(0x0) io_submit(r9, 0x1, &(0x7f0000002680)=[&(0x7f0000002640)={0x0, 0x0, 0x0, 0x0, 0x1000, r10, 0x0, 0x0, 0xfffffffffffff7fe}]) io_submit(r9, 0x1, &(0x7f0000000040)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x8000, 0xffffffffffffffff, &(0x7f00000001c0)="0100fd6410", 0x5, 0x1000000000000008, 0x0, 0x0, r3}]) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0) syz_kvm_setup_cpu$x86(r6, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r7, 0xae80, 0x0) 3.654928231s ago: executing program 2 (id=87): syz_open_dev$cec(&(0x7f00000000c0), 0x0, 0x82002) r0 = syz_init_net_socket$ax25(0x3, 0x3, 0xca) r1 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0301, 0x0) ioctl$SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, &(0x7f0000001340)) ioctl$SNDCTL_DSP_CHANNELS(r1, 0xc0045006, &(0x7f0000000180)=0x6f) write$dsp(r1, &(0x7f00000012c0)="a52876830a602214f6b4e928d758f38a5a7cb4b31c4c09289e9ebb6286784ca3", 0x4000) bind$ax25(r0, &(0x7f0000000000)={{0x3, @default, 0xffffffff}, [@null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @bcast, @default, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}, 0x48) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff) ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0) ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f0000000040)) openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_LINKINFO_GET(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000280)={'bridge_slave_1\x00'}) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000040)=ANY=[], 0x48}, 0x1, 0x0, 0x0, 0x4040041}, 0x4000000) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x6f67}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) fsopen(&(0x7f0000000bc0)='binder\x00', 0x0) 3.521717089s ago: executing program 1 (id=88): r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000002f80)=ANY=[], 0x48) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff) ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000100)={0x3, 0x2, 0x1}) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2, 0x11, r0, 0x0) r4 = socket$inet6_udp(0xa, 0x2, 0x0) syz_mount_image$squashfs(&(0x7f0000000000), &(0x7f0000000200)='./file1\x00', 0x0, &(0x7f0000000240)=ANY=[], 0x1, 0x1a4, &(0x7f0000000600)="$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") rt_tgsigqueueinfo(r1, r1, 0x0, &(0x7f0000000040)={0x1, 0x800, 0x2}) listxattr(&(0x7f0000000180)='./file1\x00', 0x0, 0x0) lgetxattr(&(0x7f0000000140)='./file1\x00', 0x0, &(0x7f0000000340)=""/93, 0x5d) getsockopt$inet6_opts(r4, 0x88, 0x36, 0xffffffffffffffff, 0x0) 3.489915172s ago: executing program 3 (id=89): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0) mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000140)='ramfs\x00', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0/file1\x00', 0x60c42, 0x5) io_submit(0x0, 0x0, 0x0) prctl$PR_SET_MM_MAP(0x23, 0xe, 0x0, 0x0) mkdir(0x0, 0x0) mkdir(&(0x7f00000000c0)='./bus\x00', 0xa5) mkdir(&(0x7f0000000440)='./file1\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000a00)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) r3 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./bus\x00') linkat(r3, &(0x7f0000000100)='./file1\x00', r3, &(0x7f0000000240)='./file0\x00', 0x1400) rename(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./bus\x00') 2.286630958s ago: executing program 0 (id=90): getsockopt$inet_sctp_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f00000000c0)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(r0, 0x1, &(0x7f0000000180)=0x3) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x804, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000caefb8)={0x9, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="85000000ae000000540022c23031"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock}, 0x94) r3 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, 0x0) mmap$binder(&(0x7f000023d000/0x2000)=nil, 0x2000, 0x1, 0x11, r3, 0x6) r4 = socket$inet_mptcp(0x2, 0x1, 0x106) bind$inet(r4, &(0x7f0000000040)={0x2, 0x4e21, @empty}, 0x10) setsockopt$sock_int(r4, 0x1, 0x8, &(0x7f0000000100), 0x4) connect$inet(r4, &(0x7f0000000140)={0x2, 0x4e21, @empty}, 0x10) 1.800586363s ago: executing program 2 (id=91): mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19) mremap(&(0x7f0000000000/0x9000)=nil, 0x600002, 0x600002, 0x7, &(0x7f0000a00000/0x600000)=nil) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil) syz_kvm_setup_syzos_vm$x86(0xffffffffffffffff, &(0x7f0000169000/0x400000)=nil) mbind(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x4006, &(0x7f0000000c00)=0xc, 0x6, 0x2) 579.992696ms ago: executing program 0 (id=92): prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x5, 0x7, 0x7ffc0041}]}) keyctl$KEYCTL_WATCH_KEY(0x18, 0x0, 0xffffffffffffffff, 0x1047) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$UFFDIO_COPY(0xffffffffffffffff, 0xc028aa05, 0x0) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2800003, 0x31, 0xffffffffffffffff, 0x231cd000) rseq(&(0x7f00000000c0)={0x0, 0x0, 0x0, 0xa}, 0x20, 0x40000000, 0x0) rseq(&(0x7f00000000c0)={0x0, 0x0, 0x0, 0xa}, 0x20, 0x40000000, 0x0) 282.908314ms ago: executing program 0 (id=93): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_int(r0, 0x29, 0x33, &(0x7f0000000000)=0x8253, 0x4) setsockopt$inet6_int(r0, 0x29, 0x31, &(0x7f0000000040)=0x1f2b, 0x4) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) getsockopt$inet6_buf(r0, 0x29, 0x6, &(0x7f0000001500)=""/19, &(0x7f0000000080)=0x13) 139.345764ms ago: executing program 0 (id=94): timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f00000002c0)) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, 0x0, &(0x7f0000000180)=@keyring) fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x3ed4, 0x5}) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) timer_settime(0x0, 0x1, &(0x7f0000000040), 0x0) clock_settime(0x1ed5d7403, &(0x7f0000000180)) 0s ago: executing program 1 (id=95): mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='smaps\x00') mprotect(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) read$FUSE(r0, &(0x7f00000005c0)={0x2020}, 0x2020) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.249' (ED25519) to the list of known hosts. [ 78.457595][ T5828] cgroup: Unknown subsys name 'net' [ 78.577732][ T5828] cgroup: Unknown subsys name 'cpuset' [ 78.586876][ T5828] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 80.252024][ T5828] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 82.610096][ T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 82.626585][ T5855] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 82.635242][ T5855] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 82.651264][ T5857] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 82.655929][ T5855] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 82.663932][ T5857] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 82.674814][ T5857] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 82.676313][ T5855] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 82.682576][ T5857] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 82.683207][ T5857] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 82.692477][ T5855] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 82.706717][ T5857] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 82.715200][ T5855] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 82.722828][ T5860] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 82.728208][ T5855] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 82.737885][ T5860] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 82.743335][ T5855] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 82.749412][ T5857] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 82.757537][ T5855] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 82.764375][ T5860] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 82.775263][ T5855] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 82.790800][ T5860] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 82.792444][ T5855] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 82.806617][ T5860] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 82.819240][ T5855] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 83.607031][ T5852] chnl_net:caif_netlink_parms(): no params data found [ 83.677714][ T5840] chnl_net:caif_netlink_parms(): no params data found [ 83.712207][ T5842] chnl_net:caif_netlink_parms(): no params data found [ 83.739255][ T5841] chnl_net:caif_netlink_parms(): no params data found [ 83.896601][ T5843] chnl_net:caif_netlink_parms(): no params data found [ 83.948454][ T5852] bridge0: port 1(bridge_slave_0) entered blocking state [ 83.956441][ T5852] bridge0: port 1(bridge_slave_0) entered disabled state [ 83.964825][ T5852] bridge_slave_0: entered allmulticast mode [ 83.972408][ T5852] bridge_slave_0: entered promiscuous mode [ 84.014653][ T5852] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.022272][ T5852] bridge0: port 2(bridge_slave_1) entered disabled state [ 84.030350][ T5852] bridge_slave_1: entered allmulticast mode [ 84.038166][ T5852] bridge_slave_1: entered promiscuous mode [ 84.172190][ T5840] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.180174][ T5840] bridge0: port 1(bridge_slave_0) entered disabled state [ 84.187832][ T5840] bridge_slave_0: entered allmulticast mode [ 84.195791][ T5840] bridge_slave_0: entered promiscuous mode [ 84.225301][ T5852] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 84.235996][ T5842] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.243856][ T5842] bridge0: port 1(bridge_slave_0) entered disabled state [ 84.252259][ T5842] bridge_slave_0: entered allmulticast mode [ 84.260555][ T5842] bridge_slave_0: entered promiscuous mode [ 84.270560][ T5840] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.279248][ T5840] bridge0: port 2(bridge_slave_1) entered disabled state [ 84.287402][ T5840] bridge_slave_1: entered allmulticast mode [ 84.296394][ T5840] bridge_slave_1: entered promiscuous mode [ 84.305087][ T5841] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.313016][ T5841] bridge0: port 1(bridge_slave_0) entered disabled state [ 84.321232][ T5841] bridge_slave_0: entered allmulticast mode [ 84.329356][ T5841] bridge_slave_0: entered promiscuous mode [ 84.352416][ T5852] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 84.362144][ T5842] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.370889][ T5842] bridge0: port 2(bridge_slave_1) entered disabled state [ 84.378668][ T5842] bridge_slave_1: entered allmulticast mode [ 84.386871][ T5842] bridge_slave_1: entered promiscuous mode [ 84.424482][ T5841] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.433019][ T5841] bridge0: port 2(bridge_slave_1) entered disabled state [ 84.441065][ T5841] bridge_slave_1: entered allmulticast mode [ 84.449034][ T5841] bridge_slave_1: entered promiscuous mode [ 84.519090][ T5843] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.526920][ T5843] bridge0: port 1(bridge_slave_0) entered disabled state [ 84.534908][ T5843] bridge_slave_0: entered allmulticast mode [ 84.542872][ T5843] bridge_slave_0: entered promiscuous mode [ 84.568069][ T5842] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 84.581883][ T5842] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 84.595988][ T5840] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 84.619499][ T5843] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.626887][ T5843] bridge0: port 2(bridge_slave_1) entered disabled state [ 84.634260][ T5843] bridge_slave_1: entered allmulticast mode [ 84.641979][ T5843] bridge_slave_1: entered promiscuous mode [ 84.651663][ T5852] team0: Port device team_slave_0 added [ 84.676153][ T5840] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 84.689905][ T5841] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 84.714675][ T5852] team0: Port device team_slave_1 added [ 84.749655][ T5841] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 84.800351][ T5842] team0: Port device team_slave_0 added [ 84.814999][ T5845] Bluetooth: hci1: command tx timeout [ 84.846040][ T5843] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 84.871547][ T5842] team0: Port device team_slave_1 added [ 84.880381][ T5840] team0: Port device team_slave_0 added [ 84.889349][ T5840] team0: Port device team_slave_1 added [ 84.895131][ T5845] Bluetooth: hci3: command tx timeout [ 84.895341][ T5845] Bluetooth: hci2: command tx timeout [ 84.904327][ T5845] Bluetooth: hci4: command tx timeout [ 84.907116][ T5856] Bluetooth: hci0: command tx timeout [ 84.922628][ T5841] team0: Port device team_slave_0 added [ 84.932113][ T5843] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 84.944116][ T5852] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 84.952089][ T5852] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 84.979944][ T5852] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 85.020520][ T5841] team0: Port device team_slave_1 added [ 85.041242][ T5852] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 85.048520][ T5852] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 85.075551][ T5852] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 85.145565][ T5842] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 85.152892][ T5842] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 85.180854][ T5842] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 85.195534][ T5840] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 85.202877][ T5840] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 85.230563][ T5840] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 85.257081][ T5843] team0: Port device team_slave_0 added [ 85.265885][ T5842] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 85.273113][ T5842] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 85.299927][ T5842] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 85.320693][ T5840] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 85.328529][ T5840] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 85.355051][ T5840] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 85.367770][ T5841] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 85.375399][ T5841] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 85.402604][ T5841] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 85.417860][ T5843] team0: Port device team_slave_1 added [ 85.455816][ T5852] hsr_slave_0: entered promiscuous mode [ 85.463345][ T5852] hsr_slave_1: entered promiscuous mode [ 85.480586][ T5841] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 85.488142][ T5841] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 85.516909][ T5841] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 85.555635][ T5843] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 85.562818][ T5843] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 85.591414][ T5843] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 85.649945][ T5843] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 85.657324][ T5843] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 85.684428][ T5843] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 85.730174][ T5842] hsr_slave_0: entered promiscuous mode [ 85.737541][ T5842] hsr_slave_1: entered promiscuous mode [ 85.744753][ T5842] debugfs: 'hsr0' already exists in 'hsr' [ 85.750574][ T5842] Cannot create hsr debugfs directory [ 85.789282][ T5840] hsr_slave_0: entered promiscuous mode [ 85.796178][ T5840] hsr_slave_1: entered promiscuous mode [ 85.802851][ T5840] debugfs: 'hsr0' already exists in 'hsr' [ 85.808895][ T5840] Cannot create hsr debugfs directory [ 85.924874][ T5841] hsr_slave_0: entered promiscuous mode [ 85.931827][ T5841] hsr_slave_1: entered promiscuous mode [ 85.939234][ T5841] debugfs: 'hsr0' already exists in 'hsr' [ 85.945470][ T5841] Cannot create hsr debugfs directory [ 85.992528][ T5843] hsr_slave_0: entered promiscuous mode [ 86.001184][ T5843] hsr_slave_1: entered promiscuous mode [ 86.008352][ T5843] debugfs: 'hsr0' already exists in 'hsr' [ 86.015462][ T5843] Cannot create hsr debugfs directory [ 86.654685][ T5852] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 86.675573][ T5852] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 86.689346][ T5852] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 86.721817][ T5852] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 86.789162][ T5842] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 86.806932][ T5842] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 86.818371][ T5842] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 86.837542][ T5842] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 86.895162][ T5856] Bluetooth: hci1: command tx timeout [ 86.964727][ T5840] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 86.974609][ T5856] Bluetooth: hci0: command tx timeout [ 86.977768][ T5855] Bluetooth: hci2: command tx timeout [ 86.980798][ T51] Bluetooth: hci3: command tx timeout [ 86.986837][ T5845] Bluetooth: hci4: command tx timeout [ 87.009185][ T5840] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 87.030911][ T5840] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 87.050574][ T5840] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 87.281565][ T5841] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 87.300274][ T5841] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 87.339733][ T5841] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 87.358787][ T5841] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 87.408455][ T5852] 8021q: adding VLAN 0 to HW filter on device bond0 [ 87.532184][ T5852] 8021q: adding VLAN 0 to HW filter on device team0 [ 87.566648][ T5842] 8021q: adding VLAN 0 to HW filter on device bond0 [ 87.577712][ T5843] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 87.589818][ T5843] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 87.606256][ T63] bridge0: port 1(bridge_slave_0) entered blocking state [ 87.614281][ T63] bridge0: port 1(bridge_slave_0) entered forwarding state [ 87.635285][ T5843] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 87.659065][ T5843] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 87.673343][ T49] bridge0: port 2(bridge_slave_1) entered blocking state [ 87.680539][ T49] bridge0: port 2(bridge_slave_1) entered forwarding state [ 87.728172][ T5842] 8021q: adding VLAN 0 to HW filter on device team0 [ 87.762904][ T63] bridge0: port 1(bridge_slave_0) entered blocking state [ 87.770129][ T63] bridge0: port 1(bridge_slave_0) entered forwarding state [ 87.832494][ T63] bridge0: port 2(bridge_slave_1) entered blocking state [ 87.839761][ T63] bridge0: port 2(bridge_slave_1) entered forwarding state [ 87.965841][ T5840] 8021q: adding VLAN 0 to HW filter on device bond0 [ 88.126705][ T5840] 8021q: adding VLAN 0 to HW filter on device team0 [ 88.183249][ T5841] 8021q: adding VLAN 0 to HW filter on device bond0 [ 88.252700][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.260259][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 88.281594][ T1117] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.288855][ T1117] bridge0: port 2(bridge_slave_1) entered forwarding state [ 88.400856][ T5841] 8021q: adding VLAN 0 to HW filter on device team0 [ 88.430004][ T5852] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 88.478135][ T63] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.485865][ T63] bridge0: port 1(bridge_slave_0) entered forwarding state [ 88.533581][ T5843] 8021q: adding VLAN 0 to HW filter on device bond0 [ 88.553527][ T63] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.561132][ T63] bridge0: port 2(bridge_slave_1) entered forwarding state [ 88.636654][ T5842] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 88.672034][ T5843] 8021q: adding VLAN 0 to HW filter on device team0 [ 88.747571][ T49] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.755021][ T49] bridge0: port 1(bridge_slave_0) entered forwarding state [ 88.796212][ T49] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.803422][ T49] bridge0: port 2(bridge_slave_1) entered forwarding state [ 88.974427][ T5845] Bluetooth: hci1: command tx timeout [ 89.030521][ T5842] veth0_vlan: entered promiscuous mode [ 89.055945][ T5845] Bluetooth: hci4: command tx timeout [ 89.055954][ T51] Bluetooth: hci2: command tx timeout [ 89.064674][ T51] Bluetooth: hci3: command tx timeout [ 89.067139][ T5845] Bluetooth: hci0: command tx timeout [ 89.169416][ T5842] veth1_vlan: entered promiscuous mode [ 89.251271][ T5852] veth0_vlan: entered promiscuous mode [ 89.368562][ T5852] veth1_vlan: entered promiscuous mode [ 89.402793][ T5840] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 89.501863][ T5842] veth0_macvtap: entered promiscuous mode [ 89.557080][ T5842] veth1_macvtap: entered promiscuous mode [ 89.587110][ T5841] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 89.638741][ T5852] veth0_macvtap: entered promiscuous mode [ 89.677291][ T5842] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 89.690344][ T5843] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 89.701742][ T5852] veth1_macvtap: entered promiscuous mode [ 89.714667][ T5840] veth0_vlan: entered promiscuous mode [ 89.729922][ T5842] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 89.760479][ T63] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.770563][ T63] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.796820][ T63] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.833046][ T63] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.842960][ T5840] veth1_vlan: entered promiscuous mode [ 89.916706][ T5852] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 89.949799][ T5852] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 90.048368][ T49] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.057821][ T49] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.091054][ T49] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.100861][ T5841] veth0_vlan: entered promiscuous mode [ 90.120087][ T13] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.129654][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.138901][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.179410][ T5843] veth0_vlan: entered promiscuous mode [ 90.197023][ T5840] veth0_macvtap: entered promiscuous mode [ 90.233624][ T5841] veth1_vlan: entered promiscuous mode [ 90.273461][ T5840] veth1_macvtap: entered promiscuous mode [ 90.307095][ T1117] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.307322][ T5843] veth1_vlan: entered promiscuous mode [ 90.322485][ T1117] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.396543][ T1117] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.420630][ T1117] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.470397][ T5842] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 90.489848][ T5840] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 90.510344][ T5840] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 90.538279][ T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.563733][ T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.614451][ T5843] veth0_macvtap: entered promiscuous mode [ 90.649811][ T5841] veth0_macvtap: entered promiscuous mode [ 90.670088][ T1117] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.686956][ T1117] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.724962][ T5843] veth1_macvtap: entered promiscuous mode [ 90.770560][ T5843] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 90.782980][ T1117] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.863839][ T1117] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.933900][ T5841] veth1_macvtap: entered promiscuous mode [ 90.954729][ T5843] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 91.168648][ T5856] Bluetooth: hci4: command tx timeout [ 91.175287][ T5856] Bluetooth: hci2: command tx timeout [ 91.181790][ T51] Bluetooth: hci3: command tx timeout [ 91.190461][ T5856] Bluetooth: hci0: command tx timeout [ 91.201437][ T5845] Bluetooth: hci1: command tx timeout [ 91.287145][ T5968] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 91.440721][ T5970] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 91.996781][ T5841] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 92.040421][ T5841] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 92.154500][ T24] cfg80211: failed to load regulatory.db [ 92.157625][ T1157] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.171293][ T1157] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.276708][ T5977] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 93.524193][ T1157] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.640676][ T1157] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.673464][ T1157] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.762956][ T5982] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 94.461219][ T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 94.462264][ T1157] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.486511][ T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 94.536484][ T1157] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.552219][ T1157] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.846498][ T137] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 94.866661][ T137] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 95.239563][ T5992] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 95.287182][ T5988] loop1: detected capacity change from 0 to 8 [ 95.387930][ T137] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 95.396794][ T137] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 95.641571][ T137] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 95.686183][ T137] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 95.878043][ T1170] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 95.942551][ T1170] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.121981][ T6000] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 96.836067][ T1008] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.860269][ T1008] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 97.227486][ T6005] netlink: 'syz.0.1': attribute type 2 has an invalid length. [ 97.235739][ T6005] netlink: 'syz.0.1': attribute type 1 has an invalid length. [ 97.244710][ T6005] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1'. [ 97.918060][ T6020] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 99.209791][ T6039] Zero length message leads to an empty skb [ 99.605940][ T6051] loop3: detected capacity change from 0 to 16 [ 99.685809][ T6051] erofs (device loop3): mounted with root inode @ nid 36. [ 102.521221][ T6147] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 105.305368][ T30] audit: type=1326 audit(1773932062.619:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6188 comm="syz.0.86" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa56979c799 code=0x7ffc0000 [ 105.405106][ T30] audit: type=1326 audit(1773932062.659:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6188 comm="syz.0.86" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa56979c799 code=0x7ffc0000 [ 105.476671][ T30] audit: type=1326 audit(1773932062.659:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6188 comm="syz.0.86" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa56979c799 code=0x7ffc0000 [ 105.566621][ T30] audit: type=1326 audit(1773932062.659:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6188 comm="syz.0.86" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa56979c799 code=0x7ffc0000 [ 105.609635][ T30] audit: type=1326 audit(1773932062.659:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6188 comm="syz.0.86" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa56979c799 code=0x7ffc0000 [ 105.689549][ T30] audit: type=1326 audit(1773932062.659:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6188 comm="syz.0.86" exe="/root/syz-executor" sig=0 arch=c000003e syscall=241 compat=0 ip=0x7fa56979c799 code=0x7ffc0000 [ 105.770491][ T30] audit: type=1326 audit(1773932062.659:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6188 comm="syz.0.86" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa56979c799 code=0x7ffc0000 [ 105.843816][ T30] audit: type=1326 audit(1773932062.659:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6188 comm="syz.0.86" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa56979c799 code=0x7ffc0000 [ 105.924983][ T30] audit: type=1326 audit(1773932062.659:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6188 comm="syz.0.86" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa56979c799 code=0x7ffc0000 [ 106.018898][ T30] audit: type=1326 audit(1773932062.659:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6188 comm="syz.0.86" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa56979c799 code=0x7ffc0000 [ 107.961638][ T6213] loop1: detected capacity change from 0 to 8 [ 108.892672][ T6199] SQUASHFS error: Failed to read block 0x1ec: -5 [ 108.946859][ T6199] SQUASHFS error: Unable to read metadata cache entry [1ea] [ 110.505222][ T6225] node ffff888058fe8b00 offset 0 parent ffff888058fe2ec0 shift 0 count 64 values 0 array ffff888057822e40 list ffff888058fe8b18 ffff888058fe8b18 marks 0 0 0 [ 110.616650][ T6225] ------------[ cut here ]------------ [ 110.622297][ T6225] kernel BUG at ./include/linux/xarray.h:1441! [ 110.725781][ T6225] Oops: invalid opcode: 0000 [#1] SMP KASAN PTI [ 110.733421][ T6225] CPU: 0 UID: 0 PID: 6225 Comm: syz.2.91 Not tainted syzkaller #0 PREEMPT(full) [ 110.742983][ T6225] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 110.753703][ T6225] RIP: 0010:collapse_scan_file+0x4f98/0x5230 [ 110.760165][ T6225] Code: ff 4c 89 e7 48 c7 c6 20 b2 dc 8b e8 72 52 f1 fe 90 0f 0b 48 85 db 0f 84 03 01 00 00 e8 41 e5 8f ff 48 89 df e8 89 90 7b 09 90 <0f> 0b e8 31 e5 8f ff 48 89 df 48 c7 c6 20 b2 dc 8b e8 42 52 f1 fe [ 110.782568][ T6225] RSP: 0000:ffffc900070d6e20 EFLAGS: 00010246 [ 110.790767][ T6225] RAX: 0000000000000000 RBX: ffff888058fe8b00 RCX: c34e214bd25ac800 [ 110.799374][ T6225] RDX: ffffc9000ede5000 RSI: 00000000000072a0 RDI: 00000000000072a1 [ 110.807642][ T6225] RBP: ffffc900070d7130 R08: ffffc900070d6ba7 R09: 1ffff92000e1ad74 [ 110.817236][ T6225] R10: dffffc0000000000 R11: fffff52000e1ad75 R12: ffffea000131f9b0 [ 110.826810][ T6225] R13: dffffc0000000000 R14: 0000000000000000 R15: ffffc900070d7010 [ 110.835387][ T6225] FS: 00007f72bc9d56c0(0000) GS:ffff888125436000(0000) knlGS:0000000000000000 [ 110.844869][ T6225] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 110.852014][ T6225] CR2: 0000001b31d23ffc CR3: 0000000033d08000 CR4: 00000000003526f0 [ 110.860329][ T6225] Call Trace: [ 110.863623][ T6225] [ 110.866653][ T6225] ? collapse_scan_file+0x1c1/0x5230 [ 110.872035][ T6225] ? __pfx___schedule+0x10/0x10 [ 110.877078][ T6225] ? __pfx_collapse_scan_file+0x10/0x10 [ 110.883084][ T6225] ? __lock_acquire+0x6b5/0x2cf0 [ 110.888367][ T6225] ? schedule+0x16e/0x360 [ 110.892962][ T6225] ? __up_read+0x291/0x6b0 [ 110.898773][ T6225] ? __pfx___up_read+0x10/0x10 [ 110.903718][ T6225] collapse_single_pmd+0x22b/0x4510 [ 110.909534][ T6225] ? lockdep_hardirqs_on+0x7a/0x110 [ 110.915337][ T6225] ? debug_object_free+0x2d7/0x490 [ 110.922033][ T6225] ? __flush_work+0xa26/0xc50 [ 110.927176][ T6225] ? __pfx_collapse_single_pmd+0x10/0x10 [ 110.933553][ T6225] ? __flush_work+0x100/0xc50 [ 110.938706][ T6225] ? madvise_collapse+0x18c/0x820 [ 110.944122][ T6225] ? __mutex_unlock_slowpath+0x1bd/0x7d0 [ 110.950633][ T6225] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 110.957090][ T6225] madvise_collapse+0x34c/0x820 [ 110.962687][ T6225] madvise_vma_behavior+0x1094/0x4460 [ 110.969231][ T6225] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 110.976232][ T6225] ? __lock_acquire+0x6b5/0x2cf0 [ 110.981612][ T6225] ? unwind_next_frame+0xa5/0x23c0 [ 110.987034][ T6225] ? is_bpf_text_address+0x26/0x2b0 [ 110.992451][ T6225] ? is_bpf_text_address+0x292/0x2b0 [ 110.998123][ T6225] ? is_bpf_text_address+0x26/0x2b0 [ 111.003713][ T6225] ? kernel_text_address+0xa5/0xe0 [ 111.009211][ T6225] ? __kernel_text_address+0xd/0x30 [ 111.015843][ T6225] ? unwind_get_return_address+0x4d/0x90 [ 111.022294][ T6225] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 111.028683][ T6225] ? arch_stack_walk+0xfb/0x150 [ 111.033726][ T6225] ? mas_prev_slot+0xb7b/0xbf0 [ 111.038799][ T6225] ? find_vma_prev+0x123/0x1b0 [ 111.043589][ T6225] ? __pfx_find_vma_prev+0x10/0x10 [ 111.048726][ T6225] ? file_ioctl+0x273/0x860 [ 111.053245][ T6225] madvise_walk_vmas+0x573/0xae0 [ 111.058210][ T6225] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 111.064395][ T6225] ? blk_start_plug+0x6e/0x1b0 [ 111.069626][ T6225] madvise_do_behavior+0x386/0x540 [ 111.075291][ T6225] ? __pfx_madvise_do_behavior+0x10/0x10 [ 111.081420][ T6225] ? down_read+0x270/0x2e0 [ 111.086044][ T6225] ? madvise_lock+0x146/0x2e0 [ 111.090901][ T6225] do_madvise+0x1fa/0x2e0 [ 111.095242][ T6225] ? __pfx_do_madvise+0x10/0x10 [ 111.100279][ T6225] ? rcu_is_watching+0x15/0xb0 [ 111.105055][ T6225] ? __pfx_kcov_ioctl+0x10/0x10 [ 111.109931][ T6225] __x64_sys_madvise+0xa6/0xc0 [ 111.114704][ T6225] do_syscall_64+0x14d/0xf80 [ 111.119342][ T6225] ? trace_irq_disable+0x3b/0x150 [ 111.124432][ T6225] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 111.130701][ T6225] ? clear_bhb_loop+0x40/0x90 [ 111.135600][ T6225] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 111.141903][ T6225] RIP: 0033:0x7f72be79c799 [ 111.146465][ T6225] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 111.166538][ T6225] RSP: 002b:00007f72bc9d5028 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 111.175302][ T6225] RAX: ffffffffffffffda RBX: 00007f72bea16090 RCX: 00007f72be79c799 [ 111.183706][ T6225] RDX: 0000000000000019 RSI: 0000000000600003 RDI: 0000200000000000 [ 111.192613][ T6225] RBP: 00007f72be832c99 R08: 0000000000000000 R09: 0000000000000000 [ 111.200978][ T6225] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 111.209510][ T6225] R13: 00007f72bea16128 R14: 00007f72bea16090 R15: 00007ffc3bfd6c38 [ 111.217868][ T6225] [ 111.221163][ T6225] Modules linked in: [ 111.226451][ T6225] ---[ end trace 0000000000000000 ]--- [ 111.409288][ T6225] RIP: 0010:collapse_scan_file+0x4f98/0x5230 [ 111.437804][ T6225] Code: ff 4c 89 e7 48 c7 c6 20 b2 dc 8b e8 72 52 f1 fe 90 0f 0b 48 85 db 0f 84 03 01 00 00 e8 41 e5 8f ff 48 89 df e8 89 90 7b 09 90 <0f> 0b e8 31 e5 8f ff 48 89 df 48 c7 c6 20 b2 dc 8b e8 42 52 f1 fe [ 111.518080][ T6225] RSP: 0000:ffffc900070d6e20 EFLAGS: 00010246 [ 111.541555][ T6225] RAX: 0000000000000000 RBX: ffff888058fe8b00 RCX: c34e214bd25ac800 [ 111.551628][ T6225] RDX: ffffc9000ede5000 RSI: 00000000000072a0 RDI: 00000000000072a1 [ 111.570066][ T6225] RBP: ffffc900070d7130 R08: ffffc900070d6ba7 R09: 1ffff92000e1ad74 [ 111.584370][ T6225] R10: dffffc0000000000 R11: fffff52000e1ad75 R12: ffffea000131f9b0 [ 111.602386][ T6225] R13: dffffc0000000000 R14: 0000000000000000 R15: ffffc900070d7010 [ 111.625360][ T6225] FS: 00007f72bc9d56c0(0000) GS:ffff888125536000(0000) knlGS:0000000000000000 [ 111.648049][ T6225] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 111.663582][ T6225] CR2: 000000110c39ff3e CR3: 0000000033d08000 CR4: 00000000003526f0 [ 111.717417][ T6225] Kernel panic - not syncing: Fatal exception [ 111.734555][ T6225] Kernel Offset: disabled [ 111.739384][ T6225] Rebooting in 86400 seconds..