last executing test programs: 1m42.54152572s ago: executing program 2 (id=6): sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x8000) prlimit64(0x0, 0xe, &(0x7f0000000200)={0x8, 0x8a}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) r0 = syz_open_dev$MSR(&(0x7f0000000040), 0x0, 0x0) read$msr(r0, &(0x7f0000019300)=""/102392, 0x18ff8) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x13, 0x0, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000340)=ANY=[@ANYBLOB="9feb010018000000000000003c0000003c000000020000000000000002000084ffffffff000000000300000000000000000000000200000000000000000000000000000a030000000000000000000002"], 0x0, 0x56}, 0x20) mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0xa, 0x42032, 0xffffffffffffffff, 0x0) 1m37.73683088s ago: executing program 2 (id=7): sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40050}, 0x2040000) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000280), 0x13f, 0x2}}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x6, 0x4, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4000, 0x0, 0x0, 0x0, 0x9}, [@call={0x85, 0x0, 0x0, 0xbc}]}, &(0x7f0000000180)='syzkaller\x00', 0x2, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94) bpf$TOKEN_CREATE(0x24, &(0x7f0000000740), 0x8) bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x1f, 0xc, &(0x7f0000000600)=ANY=[], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = socket$packet(0x11, 0x3, 0x300) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000080)) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)=',8Zz', 0x4) r2 = accept4(r1, 0x0, 0x0, 0x800) sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800) recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000013c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r3, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r4, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r5, @ANYBLOB="d50633008000009effffffffffff080211000001"], 0x6f4}}, 0x8044) 1m36.067890811s ago: executing program 2 (id=10): syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='./file2\x00', 0x2800000, &(0x7f0000000300)={[{@debug}, {@jqfmt_vfsv0}, {@inlinecrypt}, {@debug}, {@test_dummy_encryption_v1}, {@norecovery}, {@delalloc}, {@nogrpid}, {@minixdf}]}, 0x1, 0xbd9, &(0x7f0000000400)="$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") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x1, &(0x7f0000000240)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@file={0x0, './bus\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x4000087, 0x2, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0xb, 0x42, 0x40, 0x42}, 0x48) bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000140)={r3, &(0x7f0000000100)="b352", 0x0}, 0x20) r4 = open(&(0x7f00000001c0)='./bus\x00', 0x4c27e, 0x2) fallocate(r4, 0x0, 0x0, 0x1000f4) sendfile(r4, r4, 0x0, 0x400000000008004) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) socket$inet6_udp(0xa, 0x2, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x2400, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CAP_MANUAL_DIRTY_LOG_PROTECT2(r6, 0x4068aea3, &(0x7f0000000900)={0xa8, 0x0, 0x2}) add_key$fscrypt_v1(&(0x7f00000002c0), &(0x7f0000000300)={'fscrypt:', @desc3}, &(0x7f0000000440)={0x0, "8527d2100090af54bfbca283be11c0de7af30e94937920fcba13ce0af61beaa44d66a6535daf1bc35fb3af1e9197d71d26589d077c88184095fb00", 0x40012}, 0x48, 0xffffffffffffffff) unshare(0x2040400) fadvise64(0xffffffffffffffff, 0x5, 0x9, 0x4) 1m28.742669127s ago: executing program 2 (id=13): syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='./file2\x00', 0x2800000, &(0x7f0000000300)={[{@debug}, {@jqfmt_vfsv0}, {@inlinecrypt}, {@debug}, {@test_dummy_encryption_v1}, {@norecovery}, {@delalloc}, {@nogrpid}, {@minixdf}]}, 0x1, 0xbd9, &(0x7f0000000400)="$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") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x1, &(0x7f0000000240)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@file={0x0, './bus\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x4000087, 0x2, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0xb, 0x42, 0x40, 0x42}, 0x48) bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000140)={r3, &(0x7f0000000100)="b352", 0x0}, 0x20) r4 = open(&(0x7f00000001c0)='./bus\x00', 0x4c27e, 0x2) fallocate(r4, 0x0, 0x0, 0x1000f4) sendfile(r4, r4, 0x0, 0x400000000008004) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) socket$inet6_udp(0xa, 0x2, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x2400, 0x0) ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r6 = add_key$fscrypt_v1(&(0x7f00000002c0), &(0x7f0000000300)={'fscrypt:', @desc3}, &(0x7f0000000440)={0x0, "8527d2100090af54bfbca283be11c0de7af30e94937920fcba13ce0af61beaa44d66a6535daf1bc35fb3af1e9197d71d26589d077c88184095fb00", 0x40012}, 0x48, 0xffffffffffffffff) keyctl$unlink(0x9, r6, 0xffffffffffffffff) 1m15.289171203s ago: executing program 2 (id=23): syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='./file2\x00', 0x2800000, &(0x7f0000000300)={[{@debug}, {@jqfmt_vfsv0}, {@inlinecrypt}, {@debug}, {@test_dummy_encryption_v1}, {@norecovery}, {@delalloc}, {@nogrpid}, {@minixdf}]}, 0x1, 0xbd9, &(0x7f0000000400)="$eJzs3M1rHOcZAPBnRp+25a5cSql7sUopNpSuZReZ2hRqF5deeii014CFvDJC6w8kBUeyIKvkHwhJzoFcAklMgg/x2ZcEcs0lca4xOQRMUKwEQkgUZj8kWdqVLGtXo8i/H7ya92Nm3ufRSDvzwu4G8Mwayn6kEUcj4lISUaj3pxHRW631R1Rq+y0tzo99tzg/lsTy8v++TiKJiEeL82ONcyX17aF6oz8iPvlnEr9+eeO807Nzk6Plcmmq3j45c/XGyenZub9MXB29UrpSunbqzN9GTo+cGT470rZcv//i/N1v//DvLys/vPPj7W9eeyuJ8zFQH1ubRz3rHRuKoZXfyVrdETHahvPvBV31fNbmmXRvcVDa4aAAAGgpXfMM99soRFesPrwV4sNPcw0OAAAAaIvlrohlAAAAYJ9LrP8BAABgn2u8D+DR4vxYo+T7joTd9fBCRAzW8l+ql9pId1Sq2/7oiYiDj5JY+7HWpHbYjg1FxIPPz76flWjyOeROqyxExO+aXf+kmv9g/ZPQ6/NPI2K4DfMPrWv/kvI/34b5884fgGfTvQu1G9nG+1+68vwTTe5/3U3uXU8j7/tf4/lvacPz32r+XS2e//77hHPcevuNm63Gsvz/fvdf7zVKNn+23VFS2/BwIeL33c3yT1byT1rkf2mLcydRO0Xhp5ulVvvknf/ymxHHo3n+Dcnm3090cnyiXBqu/Ww6x8LHI++2mj/v/LPrf7BF/ptc//6s78ZjZ2r9pT7PXbx4Z0Nnffet80+/6k3+X6311nteGJ2ZmToV0Zv8Z2P/6c3zbezTOEeW/4k/bv7/3+zvP3tNqNT/NrJUFurbrP3Sujn/cfvWB63iaaz/8rz+l7d//at9rzzhHH/66NUT6/sa36+1dv2blWz+B0ltLQwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADWlEDESSFiMiqdbTtFiMOBQRv4mDafn69Myfx68/f+1yNhYxGD3p+ES5NBwRhVo7ydqnqvXV9ul17b9GxJGIeL1woNoujl0vX847eQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFYcioiBSNJiRKQRsVRI02Ix76gAAACAthvMOwAAAACg46z/AQAAYP+z/gcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKDDjhy7dz+JiMq5A9WS6a2P9eQaGdBpad4BALnpyjsAIDfdeQcA5Gaba3yPC7APJVuM9zftzV49+joSDwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB70/Gj9+4nEVE5d6BaMr31sZ6mRxzbxeiATkrzDgDITddmg927Fwew+576X/xwe+MAdl/zNT7wLEm2GO9f3afy+Ehfx2ICAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYO8ZqJYkLUZEWq2nabEYcTgiBqMnGZ8ol4Yj4lcR8Vmhpy9r9+UdNAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAG03PTs3OVoul6aeppLs7HAVlVaVF/dGGLtbSfZGGLVK3q9MAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADkYXp2bnK0XC5NTecdCQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJC36dm5ydFyuTT1BJU729l5TSXvHAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAyM/PAQAA///E/w3d") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x1, &(0x7f0000000240)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@file={0x0, './bus\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x4000087, 0x2, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0xb, 0x42, 0x40, 0x42}, 0x48) bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000140)={r3, &(0x7f0000000100)="b352", 0x0}, 0x20) r4 = open(&(0x7f00000001c0)='./bus\x00', 0x4c27e, 0x2) sendfile(r4, r4, 0x0, 0x400000000008004) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x2400, 0x0) r5 = add_key$fscrypt_v1(&(0x7f00000002c0), &(0x7f0000000300)={'fscrypt:', @desc3}, &(0x7f0000000440)={0x0, "8527d2100090af54bfbca283be11c0de7af30e94937920fcba13ce0af61beaa44d66a6535daf1bc35fb3af1e9197d71d26589d077c88184095fb00", 0x40012}, 0x48, 0xffffffffffffffff) keyctl$unlink(0x9, r5, 0xffffffffffffffff) 1m5.855500368s ago: executing program 2 (id=30): syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='./file2\x00', 0x2800000, &(0x7f0000000300)={[{@debug}, {@jqfmt_vfsv0}, {@inlinecrypt}, {@debug}, {@test_dummy_encryption_v1}, {@norecovery}, {@delalloc}, {@nogrpid}, {@minixdf}]}, 0x1, 0xbd9, &(0x7f0000000400)="$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") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x1, &(0x7f0000000240)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@file={0x0, './bus\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x4000087, 0x2, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0xb, 0x42, 0x40, 0x42}, 0x48) bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000140)={r3, &(0x7f0000000100)="b352", 0x0}, 0x20) r4 = open(&(0x7f00000001c0)='./bus\x00', 0x4c27e, 0x2) fallocate(r4, 0x0, 0x0, 0x1000f4) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x2400, 0x0) r5 = add_key$fscrypt_v1(&(0x7f00000002c0), &(0x7f0000000300)={'fscrypt:', @desc3}, &(0x7f0000000440)={0x0, "8527d2100090af54bfbca283be11c0de7af30e94937920fcba13ce0af61beaa44d66a6535daf1bc35fb3af1e9197d71d26589d077c88184095fb00", 0x40012}, 0x48, 0xffffffffffffffff) keyctl$unlink(0x9, r5, 0xffffffffffffffff) 49.447781422s ago: executing program 32 (id=30): syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='./file2\x00', 0x2800000, &(0x7f0000000300)={[{@debug}, {@jqfmt_vfsv0}, {@inlinecrypt}, {@debug}, {@test_dummy_encryption_v1}, {@norecovery}, {@delalloc}, {@nogrpid}, {@minixdf}]}, 0x1, 0xbd9, &(0x7f0000000400)="$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") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x1, &(0x7f0000000240)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@file={0x0, './bus\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x4000087, 0x2, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0xb, 0x42, 0x40, 0x42}, 0x48) bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000140)={r3, &(0x7f0000000100)="b352", 0x0}, 0x20) r4 = open(&(0x7f00000001c0)='./bus\x00', 0x4c27e, 0x2) fallocate(r4, 0x0, 0x0, 0x1000f4) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x2400, 0x0) r5 = add_key$fscrypt_v1(&(0x7f00000002c0), &(0x7f0000000300)={'fscrypt:', @desc3}, &(0x7f0000000440)={0x0, "8527d2100090af54bfbca283be11c0de7af30e94937920fcba13ce0af61beaa44d66a6535daf1bc35fb3af1e9197d71d26589d077c88184095fb00", 0x40012}, 0x48, 0xffffffffffffffff) keyctl$unlink(0x9, r5, 0xffffffffffffffff) 36.451501612s ago: executing program 3 (id=73): sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40050}, 0x2040000) r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x1, 0x0, 0x13f, 0x2}}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x6, 0x4, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4000, 0x0, 0x0, 0x0, 0x9}, [@call={0x85, 0x0, 0x0, 0xbc}]}, 0x0, 0x2, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94) bpf$TOKEN_CREATE(0x24, &(0x7f0000000740), 0x8) bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x1f, 0xc, &(0x7f0000000600)=ANY=[], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000080)) sendmsg$ETHTOOL_MSG_DEBUG_GET(0xffffffffffffffff, &(0x7f0000000d40)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f00000008c0)=ANY=[@ANYRES32, @ANYBLOB="14"], 0x17c}, 0x1, 0x0, 0x0, 0x4008004}, 0x20004810) r2 = socket$alg(0x26, 0x5, 0x0) bind$alg(r2, 0x0, 0x0) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000280)="2c385a7af3", 0x5) r3 = accept4(r2, 0x0, 0x0, 0x800) sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800) recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000013c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r4, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r5, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r6, @ANYBLOB="d50633008000009effffffffffff080211000001"], 0x6f4}}, 0x8044) 35.263620151s ago: executing program 3 (id=79): setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f00000000c0)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x800, 0x0, 0x103, 0x1}, 0x20) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="2c385a7af3", 0x5) r1 = accept4(r0, 0x0, 0x0, 0x800) recvmmsg$unix(r1, &(0x7f0000005180)=[{{0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000600)=""/148, 0x94}], 0x1}}, {{0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000800)=""/39, 0x27}], 0x1}}, {{0x0, 0x0, &(0x7f0000000c40)=[{&(0x7f0000000b40)=""/218, 0xda}], 0x1}}, {{0x0, 0x0, &(0x7f0000001080)=[{&(0x7f0000000e00)=""/203, 0xcb}], 0x1}}], 0x4, 0x40000200, 0x0) sendmsg$kcm(0xffffffffffffffff, &(0x7f00000017c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f00000004c0)="7f", 0x1}], 0x1, 0x0, 0xd0}, 0x480c4) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800) recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000013c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d50633008000009effffffffffff080211000001"], 0x6f4}}, 0x8044) 31.299030799s ago: executing program 3 (id=86): ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0) timer_create(0x0, 0x0, &(0x7f0000000300)=0x0) fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5}) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0) pipe2$9p(&(0x7f0000000180), 0x800) sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040)=0x3, 0xac5) syz_clone3(&(0x7f0000000900)={0x23800000, &(0x7f0000000040), 0x0, 0x0, {0x28}, 0x0, 0x0, 0x0, 0x0}, 0x58) 31.04194551s ago: executing program 3 (id=88): sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40050}, 0x2040000) r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x1, 0x0, 0x13f, 0x2}}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x6, 0x4, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4000, 0x0, 0x0, 0x0, 0x9}, [@call={0x85, 0x0, 0x0, 0xbc}]}, 0x0, 0x2, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94) bpf$TOKEN_CREATE(0x24, &(0x7f0000000740), 0x8) bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x1f, 0xc, &(0x7f0000000600)=ANY=[], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000080)) sendmsg$ETHTOOL_MSG_DEBUG_GET(0xffffffffffffffff, &(0x7f0000000d40)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f00000008c0)=ANY=[@ANYRES32, @ANYBLOB="14"], 0x17c}, 0x1, 0x0, 0x0, 0x4008004}, 0x20004810) r2 = socket$alg(0x26, 0x5, 0x0) bind$alg(r2, 0x0, 0x0) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000280)="2c385a7af3", 0x5) r3 = accept4(r2, 0x0, 0x0, 0x800) sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800) recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000013c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r4, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r5, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r6, @ANYBLOB="d50633008000009effffffffffff080211000001"], 0x6f4}}, 0x8044) 30.829501725s ago: executing program 4 (id=90): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r1 = syz_open_procfs(0x0, &(0x7f0000000300)='task\x00') getdents(r1, 0xffffffffffffffff, 0x5a) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0) creat(&(0x7f0000000000)='./file0\x00', 0x40) socket$nl_xfrm(0x10, 0x3, 0x6) bind$inet(0xffffffffffffffff, 0x0, 0x0) userfaultfd(0x1) socket$inet6(0xa, 0x2, 0x0) r4 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_group_source_req(r4, 0x29, 0x2e, &(0x7f0000000200)={0x1, {{0xa, 0x0, 0x8e3, @mcast1={0xff, 0x7}}}, {{0xa, 0x1, 0x4, @ipv4={'\x00', '\xff\xff', @empty}, 0x3}}}, 0x108) r5 = syz_open_procfs(0x0, &(0x7f00000003c0)='net/mcfilter6\x00') preadv(r5, &(0x7f00000000c0)=[{&(0x7f0000000600)=""/128, 0x80}], 0x1, 0x113, 0x2) 22.924649943s ago: executing program 4 (id=91): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x1, 0xe, &(0x7f0000000900)=ANY=[@ANYBLOB="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"], &(0x7f0000000280)='GPL\x00'}, 0x48) r1 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r1}, &(0x7f0000000240), &(0x7f00000003c0)=r0}, 0x20) r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r2, 0xaf01, 0x0) ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f00000001c0)={0x0, 0x0, 0x0, &(0x7f0000000380)=""/70, 0x0, 0x4}) ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f00000000c0)=""/87, 0x0, 0x100000}) ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000003700)={0x1, 0x0, [{0x54000, 0x8b, &(0x7f0000000500)=""/139}]}) syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x10000, &(0x7f0000000080), 0x1, 0x50a, &(0x7f0000001f40)="$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") r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cpuset.effective_mems\x00', 0x275a, 0x0) write$binfmt_script(r3, &(0x7f0000000040), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0) fdatasync(r3) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'gre0\x00'}) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x9) 22.449796423s ago: executing program 3 (id=94): kexec_load(0x3, 0x1, &(0x7f00000005c0)=[{&(0x7f0000000100)="047715ac7141c111fab2fcda5de4dc8b278029bcb1bd17524f177856cac105f463c77e2d2ab44d875217dc82baa911f236f959fb9227524d4fe6b621a19823457d04c399283edbac755852623c82f7206d26e918a2981c8f", 0x58, 0x5, 0xffffffff}], 0x0) sendmsg$inet(0xffffffffffffffff, &(0x7f0000003c00)={0x0, 0x0, &(0x7f0000000700)=[{0x0}, {&(0x7f0000000740)}], 0x2}, 0x41) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000540), 0x82, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000280), 0x80, 0x0) sendmmsg$alg(r2, &(0x7f0000007640)=[{0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000740)="bd9c629b909dddebc0508bf412865663aded7919352b141faa7dc00680ce5a44ff1ed1c813c6c1e58e28c509cd269d0e79fff4d2ea4c1da69fa672c4f5eb15788aa929e9f5c94e443cf68a1759ee805958a7c76c8c7f11a39ea32c019c2f2c8cce48d92d659f623081974c0135dc1fe2a057f725a843c083e0620ffa607d3b9570a5b4094fca255491844b3d5cb63bab3d76ad07f9503d1450f1fb860b18ac983285f983e51262c539312073482f1538d9588323b836e6e2b7704dff3cbf89c2b828c7613310eafd664c946b1a6728154b1877257a8abe3d983344da083b86ae", 0xe0}], 0x1, &(0x7f00000008c0)=[@iv={0x68, 0x117, 0x2, 0x50, "bd19a432ebf20eb0a0ee39d005e869fe74b9842d9c92be0054aa20f9dbfeb8e59fa49c486a1a51c45c98c886185e506d1cf93255718fc79d6b6d1d434c678807c5ab4264c8ba94065d11d8ee27dd16f4"}, @assoc={0x18, 0x117, 0x4, 0x6}], 0x80, 0x40800}, {0x0, 0x0, &(0x7f0000003900)=[{&(0x7f00000009c0)="c2debd9e2d4617d17e01e704d3576f8b26b757ffa164a105efcaa28e5d52d4383258c148e95e4ee927dab4ba9cdbf4dbf6b0e19f8b7e9a95211ec6aedfd78a09200b7076afabdae9c87c6837e202845b6cf3ac6b728856d66eef286087e0154a40c153e5fe7505615fb53b33f629928c80aeea7fd091180968d44cd4544b6bb4c116f4d6c4c3d148eb273bd4fa76ad8f709ed07bd2a91564fc364f1b971b0e005f", 0xa1}, {&(0x7f0000000ac0)="3fe4c8a328", 0x5}, {&(0x7f0000000b40)="86545d2157646172b815818bfd0e1457556266898579380233e0e3853e4a118a5a2bcc52eeea6b2dc4fc32c3f81f9b1d06cd70a1b428c0", 0x37}, {&(0x7f0000000b80)="0d4842ef613cd072196eae2d74d31c309df1c61a888039b1a23acbea852fb54afae1761845284c6e484aa5154a2b418ffe2ac1d6363010c9d8f2d75a71eb55849202714884c6a0a760f5e028016a68fc07407f5671a5a4a8c91e9d056039df63390376a7359c6fc2059d1e3ffeec1ff0f4c09099e8e61c268324d0fc621f6dc2912e4bd5", 0x84}, {&(0x7f0000000d40)="7edb39aa76e39c9fc185dd49e1d028ba5e90ec3bb54d3c486f189f406945a495fe7b4ad51446c162f581368e4d711db9add53f7917e1dc55", 0x38}], 0x5, 0x0, 0x0, 0xc0}], 0x2, 0x48040) r3 = socket$alg(0x26, 0x5, 0x0) bind$alg(r3, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58) setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3", 0x5) r4 = accept4(r3, 0x0, 0x0, 0x800) recvmsg(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil}) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0) pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 21.264922472s ago: executing program 0 (id=95): fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) setxattr$system_posix_acl(&(0x7f0000002a00)='.\x00', &(0x7f0000002a40)='system.posix_acl_default\x00', &(0x7f0000000340)={{}, {}, [], {0x4, 0x4}}, 0x24, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x400000000008d}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x1, &(0x7f0000000240)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x4000087, 0x2, 0x0) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./bus\x00', 0x2298042, &(0x7f0000000680)={[{@rodir}, {@shortname_mixed}, {@iocharset={'iocharset', 0x3d, 'cp936'}}, {@utf8}, {@numtail}, {@utf8}, {@numtail}, {@shortname_win95}, {@shortname_lower}, {@shortname_mixed}, {@uni_xlateno}, {@fat=@umask={'umask', 0x3d, 0x7fffffff}}, {@utf8no}, {@utf8}, {@utf8no}, {@shortname_mixed}, {@shortname_win95}, {@iocharset={'iocharset', 0x3d, 'cp874'}}], [{@euid_lt}, {@obj_user}]}, 0x1, 0x381, &(0x7f0000000c00)="$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") pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x5) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = socket$inet(0x2, 0x3, 0x2) setsockopt$inet_mreqsrc(r4, 0x0, 0x27, &(0x7f0000000280)={@multicast2, @local, @remote}, 0xc) setsockopt$inet_mreqsrc(r4, 0x0, 0x27, 0x0, 0x0) r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff) sendmsg$TIPC_NL_KEY_SET(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="0100000000000000000003000000400001802c0004001400010002000000ac1414aa00000000000000001400020002000000e000000200000000000004000d0001007564703a73"], 0x54}}, 0x0) r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) socket$pppl2tp(0x18, 0x1, 0x1) getsockopt$bt_l2cap_L2CAP_CONNINFO(r6, 0x6, 0x2, &(0x7f0000000080), &(0x7f00000000c0)=0x6) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x71, 0x11, 0xad}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x5}, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x2b2, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70) 21.13465991s ago: executing program 4 (id=96): sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40050}, 0x2040000) bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x6, 0x4, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4000, 0x0, 0x0, 0x0, 0x9}, [@call={0x85, 0x0, 0x0, 0xbc}]}, &(0x7f0000000180)='syzkaller\x00', 0x2, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94) bpf$TOKEN_CREATE(0x24, &(0x7f0000000740), 0x8) r0 = socket$packet(0x11, 0x3, 0x300) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000080)) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="2c385a7af3", 0x5) r2 = accept4(r1, 0x0, 0x0, 0x800) sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a", 0x27}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11", 0xce}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800) recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000013c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r3, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r4, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r5, @ANYBLOB="d50633008000009effffffffffff080211000001"], 0x6f4}}, 0x8044) 21.106543884s ago: executing program 1 (id=97): sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40050}, 0x2040000) r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000280), 0x13f, 0x2}}, 0x20) bpf$TOKEN_CREATE(0x24, &(0x7f0000000740), 0x8) bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x1f, 0xc, &(0x7f0000000600)=ANY=[], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000080)={'batadv0\x00', 0x0}) sendto$packet(r1, &(0x7f0000000100)="f257a8ea7bc273dfaeab968586", 0xd, 0x0, &(0x7f0000000200)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @link_local}, 0x14) sendmsg$ETHTOOL_MSG_DEBUG_GET(0xffffffffffffffff, &(0x7f0000000d40)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f00000008c0)=ANY=[@ANYRES32, @ANYBLOB="14"], 0x17c}, 0x1, 0x0, 0x0, 0x4008004}, 0x20004810) r3 = socket$alg(0x26, 0x5, 0x0) bind$alg(r3, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58) setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000280)="2c385a7af3", 0x5) r4 = accept4(r3, 0x0, 0x0, 0x800) sendmmsg$alg(r4, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46", 0xb5}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800) recvmsg(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f00000013c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r5, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r6, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r7, @ANYBLOB="d50633008000009effffffffffff080211000001"], 0x6f4}}, 0x8044) 19.631820086s ago: executing program 1 (id=98): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x1, 0xe, &(0x7f0000000900)=ANY=[@ANYBLOB="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"], &(0x7f0000000280)='GPL\x00'}, 0x48) r1 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r1}, &(0x7f0000000240), &(0x7f00000003c0)=r0}, 0x20) r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r2, 0xaf01, 0x0) ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f00000001c0)={0x0, 0x0, 0x0, &(0x7f0000000380)=""/70, 0x0, 0x4}) ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f00000000c0)=""/87, 0x0, 0x100000}) ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000003700)={0x1, 0x0, [{0x54000, 0x8b, &(0x7f0000000500)=""/139}]}) syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x10000, &(0x7f0000000080), 0x1, 0x50a, &(0x7f0000001f40)="$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") r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cpuset.effective_mems\x00', 0x275a, 0x0) write$binfmt_script(r3, &(0x7f0000000040), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x9) 18.616857022s ago: executing program 3 (id=99): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3", 0x5) r1 = accept4(r0, 0x0, 0x0, 0x800) sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448", 0xd}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800) recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x51}], 0x1}, 0x0) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40a01, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) socket$kcm(0x2, 0xa, 0x2) write$tun(r2, &(0x7f00000000c0)=ANY=[@ANYBLOB], 0xffe) 17.691053234s ago: executing program 4 (id=100): ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0) timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2}, 0x0) fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5}) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0) pipe2$9p(&(0x7f0000000180), 0x800) sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040)=0x3, 0xac5) syz_clone3(&(0x7f0000000900)={0x23800000, &(0x7f0000000040), 0x0, 0x0, {0x28}, 0x0, 0x0, 0x0, 0x0}, 0x58) 17.577878656s ago: executing program 0 (id=101): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x25104000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x0, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x8, 0x0, 0x0, 0x0, 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x1e69c66eda6944c, '\x00', 0x0, @cgroup_skb}, 0x94) r3 = socket$key(0xf, 0x3, 0x2) sendmmsg(r3, &(0x7f0000004740), 0x0, 0x4804) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) listxattr(0x0, 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r4 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000001340)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0) fstat(r4, &(0x7f0000001380)) 17.45294166s ago: executing program 1 (id=102): r0 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) socket$inet6(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4040814}, 0x80) openat$cgroup_ro(r0, &(0x7f0000000080)='cpuacct.usage_sys\x00', 0x275a, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0xffffd000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e25}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0) socket$unix(0x1, 0x1, 0x0) io_setup(0x1, &(0x7f00000003c0)=0x0) io_submit(r4, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x3, 0x8, &(0x7f0000000d80)=ANY=[@ANYBLOB="1800000000000000000000000000000018020000", @ANYRES32, @ANYBLOB="0000000000000000b7030000000000008500000087000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 17.019998925s ago: executing program 4 (id=103): fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) setxattr$system_posix_acl(&(0x7f0000002a00)='.\x00', &(0x7f0000002a40)='system.posix_acl_default\x00', &(0x7f0000000340)={{}, {}, [], {0x4, 0x4}}, 0x24, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x400000000008d}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x1, &(0x7f0000000240)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x4000087, 0x2, 0x0) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./bus\x00', 0x2298042, &(0x7f0000000680)={[{@rodir}, {@shortname_mixed}, {@iocharset={'iocharset', 0x3d, 'cp936'}}, {@utf8}, {@numtail}, {@utf8}, {@numtail}, {@shortname_win95}, {@shortname_lower}, {@shortname_mixed}, {@uni_xlateno}, {@fat=@umask={'umask', 0x3d, 0x7fffffff}}, {@utf8no}, {@utf8}, {@utf8no}, {@shortname_mixed}, {@shortname_win95}, {@iocharset={'iocharset', 0x3d, 'cp874'}}], [{@euid_lt}, {@obj_user}]}, 0x1, 0x381, &(0x7f0000000c00)="$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") pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x5) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = socket$inet(0x2, 0x3, 0x2) setsockopt$inet_mreqsrc(r4, 0x0, 0x27, &(0x7f0000000280)={@multicast2, @local, @remote}, 0xc) setsockopt$inet_mreqsrc(r4, 0x0, 0x27, 0x0, 0x0) r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff) sendmsg$TIPC_NL_KEY_SET(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="0100000000000000000003000000400001802c0004001400010002000000ac1414aa00000000000000001400020002000000e000000200000000000004000d0001007564703a73"], 0x54}}, 0x0) r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) socket$pppl2tp(0x18, 0x1, 0x1) getsockopt$bt_l2cap_L2CAP_CONNINFO(r6, 0x6, 0x2, &(0x7f0000000080), &(0x7f00000000c0)=0x6) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x71, 0x11, 0xad}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x5}, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x2b2, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, 0x0) 6.481449384s ago: executing program 0 (id=104): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x25104000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x0, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x8, 0x0, 0x0, 0x0, 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x1e69c66eda6944c, '\x00', 0x0, @cgroup_skb}, 0x94) r3 = socket$key(0xf, 0x3, 0x2) sendmmsg(r3, &(0x7f0000004740), 0x0, 0x4804) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) listxattr(0x0, 0x0, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r5 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000001340)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0) fstat(r5, &(0x7f0000001380)) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000000c0)={'erspan0\x00'}) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) 6.163452974s ago: executing program 1 (id=105): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(r0, 0x8, &(0x7f00000002c0)=0x2) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket(0x10, 0x3, 0x0) r5 = socket$nl_route(0x10, 0x3, 0x0) r6 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r6) getsockname$packet(r6, &(0x7f00000001c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r7, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) write$cgroup_int(0xffffffffffffffff, &(0x7f0000000040)=0x3, 0x12) sendmsg$nl_route_sched(r4, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {0x0, 0xa}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0x6}, 0x8000, 0x3}}}]}, 0x78}, 0x1, 0x0, 0x0, 0x4004000}, 0x0) sendmsg$nl_route_sched(r3, 0x0, 0x0) r8 = socket$igmp(0x2, 0x3, 0x2) connect$inet(r8, &(0x7f0000000100)={0x2, 0x4e20, @multicast2}, 0x10) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]}) setfsgid(0xee00) r9 = syz_open_procfs(0x0, &(0x7f0000000b40)='task\x00') fchdir(r9) mount(0x0, &(0x7f0000000140)='.\x00', &(0x7f0000000080)='proc\x00', 0x189, 0x0) syz_open_procfs(0x0, &(0x7f0000000040)='attr/prev\x00') 2.503288949s ago: executing program 33 (id=99): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3", 0x5) r1 = accept4(r0, 0x0, 0x0, 0x800) sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448", 0xd}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800) recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x51}], 0x1}, 0x0) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40a01, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) socket$kcm(0x2, 0xa, 0x2) write$tun(r2, &(0x7f00000000c0)=ANY=[@ANYBLOB], 0xffe) 2.46196726s ago: executing program 0 (id=107): socket(0x2a, 0x3, 0xe751) socket$nl_route(0x10, 0x3, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0xa) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, 0x0, 0x0) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setaffinity(0x0, 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) write$cgroup_int(0xffffffffffffffff, &(0x7f00000000c0)=0x202, 0x12) r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x7, 0xa, &(0x7f0000000680)=@framed={{0x18, 0x8}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @map_fd={0x18, 0x0, 0x0}, @generic={0x2c}, @initr0, @exit]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238}, 0x80) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000540)={r5, 0xe0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x18, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x5f, 0xfe, 0x0, 0x0, 0x0, 0x8, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x1, 0xffffffffffffffff}}, 0x10) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0) socketpair$tipc(0x1e, 0x2, 0x0, 0x0) r6 = dup(0xffffffffffffffff) socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000001800)={'veth1_virt_wifi\x00'}) 2.267933844s ago: executing program 4 (id=108): kexec_load(0x3, 0x1, &(0x7f00000005c0)=[{&(0x7f0000000100)="047715ac7141c111fab2fcda5de4dc8b278029bcb1bd17524f177856cac105f463c77e2d2ab44d875217dc82baa911f236f959fb9227524d4fe6b621a19823457d04c399283edbac755852623c82f7206d26e918a2981c8f", 0x58, 0x5, 0xffffffff}], 0x0) sendmsg$inet(0xffffffffffffffff, &(0x7f0000003c00)={0x0, 0x0, &(0x7f0000000700)=[{0x0}, {&(0x7f0000000740)}], 0x2}, 0x41) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000540), 0x82, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000280), 0x80, 0x0) sendmmsg$alg(r2, &(0x7f0000007640)=[{0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000740)="bd9c629b909dddebc0508bf412865663aded7919352b141faa7dc00680ce5a44ff1ed1c813c6c1e58e28c509cd269d0e79fff4d2ea4c1da69fa672c4f5eb15788aa929e9f5c94e443cf68a1759ee805958a7c76c8c7f11a39ea32c019c2f2c8cce48d92d659f623081974c0135dc1fe2a057f725a843c083e0620ffa607d3b9570a5b4094fca255491844b3d5cb63bab3d76ad07f9503d1450f1fb860b18ac983285f983e51262c539312073482f1538d9588323b836e6e2b7704dff3cbf89c2b828c7613310eafd664c946b1a6728154b1877257a8abe3d983344da083b86ae", 0xe0}], 0x1, &(0x7f00000008c0)=[@iv={0x68, 0x117, 0x2, 0x50, "bd19a432ebf20eb0a0ee39d005e869fe74b9842d9c92be0054aa20f9dbfeb8e59fa49c486a1a51c45c98c886185e506d1cf93255718fc79d6b6d1d434c678807c5ab4264c8ba94065d11d8ee27dd16f4"}, @assoc={0x18, 0x117, 0x4, 0x6}], 0x80, 0x40800}, {0x0, 0x0, &(0x7f0000003900)=[{&(0x7f00000009c0)="c2debd9e2d4617d17e01e704d3576f8b26b757ffa164a105efcaa28e5d52d4383258c148e95e4ee927dab4ba9cdbf4dbf6b0e19f8b7e9a95211ec6aedfd78a09200b7076afabdae9c87c6837e202845b6cf3ac6b728856d66eef286087e0154a40c153e5fe7505615fb53b33f629928c80aeea7fd091180968d44cd4544b6bb4c116f4d6c4c3d148eb273bd4fa76ad8f709ed07bd2a91564fc364f1b971b0e005f", 0xa1}, {&(0x7f0000000ac0)="3fe4c8a328", 0x5}, {&(0x7f0000000b40)="86545d2157646172b815818bfd0e1457556266898579380233e0e3853e4a118a5a2bcc52eeea6b2dc4fc32c3f81f9b1d06cd70a1b428c0", 0x37}, {&(0x7f0000000b80)="0d4842ef613cd072196eae2d74d31c309df1c61a888039b1a23acbea852fb54afae1761845284c6e484aa5154a2b418ffe2ac1d6363010c9d8f2d75a71eb55849202714884c6a0a760f5e028016a68fc07407f5671a5a4a8c91e9d056039df63390376a7359c6fc2059d1e3ffeec1ff0f4c09099e8e61c268324d0fc621f6dc2912e4bd5", 0x84}, {&(0x7f0000000d40)="7edb39aa76e39c9fc185dd49e1d028ba5e90ec3bb54d3c486f189f406945a495fe7b4ad51446c162f581368e4d711db9add53f7917e1dc55", 0x38}], 0x5, 0x0, 0x0, 0xc0}], 0x2, 0x48040) r3 = socket$alg(0x26, 0x5, 0x0) bind$alg(r3, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58) setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3", 0x5) sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800) recvmsg(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil}) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0) pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 2.245780511s ago: executing program 1 (id=109): sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40050}, 0x2040000) r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000280), 0x13f, 0x2}}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x6, 0x4, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4000, 0x0, 0x0, 0x0, 0x9}, [@call={0x85, 0x0, 0x0, 0xbc}]}, &(0x7f0000000180)='syzkaller\x00', 0x2, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94) bpf$TOKEN_CREATE(0x24, &(0x7f0000000740), 0x8) bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x1f, 0xc, &(0x7f0000000600)=ANY=[], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) socket$packet(0x11, 0x3, 0x300) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="2c385a7af3", 0x5) r2 = accept4(r1, 0x0, 0x0, 0x800) sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45", 0xc8}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800) recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000013c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r3, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r4, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r5, @ANYBLOB="d50633008000009effffffffffff080211000001"], 0x6f4}}, 0x8044) 877.806737ms ago: executing program 0 (id=110): sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x2040000) r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000280), 0x13f, 0x2}}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x6, 0x0, 0x0, &(0x7f0000000180)='syzkaller\x00', 0x2, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94) bpf$TOKEN_CREATE(0x24, &(0x7f0000000740), 0x8) bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x1f, 0xc, &(0x7f0000000600)=ANY=[], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000080)) sendmsg$ETHTOOL_MSG_DEBUG_GET(0xffffffffffffffff, &(0x7f0000000d40)={0x0, 0x0, &(0x7f0000000c80)={0x0, 0x17c}, 0x1, 0x0, 0x0, 0x4008004}, 0x20004810) r2 = socket$alg(0x26, 0x5, 0x0) bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000280)="2c385a7af3", 0x5) r3 = accept4(r2, 0x0, 0x0, 0x800) sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800) recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000013c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r4, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r5, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r6, @ANYBLOB="d50633008000009effffffffffff080211000001"], 0x6f4}}, 0x8044) 178.381861ms ago: executing program 1 (id=111): socket$nl_route(0x10, 0x3, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) write$input_event(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r3 = fsopen(&(0x7f0000000040)='configfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0) r4 = fsmount(r3, 0x0, 0x0) fchownat(r4, &(0x7f0000000080)='.\x00', 0x0, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000500)={0x20071026}, &(0x7f0000000200)={0x200002, 0x200003, 0x801, 0x4, 0x7}) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xe, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000008a00000095"], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x51, &(0x7f0000000180)={[{@init_itable}, {@dioread_lock}, {@norecovery}, {@nojournal_checksum}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x8}}]}, 0x8, 0x610, &(0x7f00000010c0)="$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") r5 = creat(&(0x7f0000000000)='./file0\x00', 0x70) close(r5) read$FUSE(0xffffffffffffffff, 0x0, 0x0) socket$pppl2tp(0x18, 0x1, 0x1) gettid() read$FUSE(r5, &(0x7f0000001980)={0x2020}, 0x2020) 0s ago: executing program 0 (id=112): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000280), 0x13f, 0x2}}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x6, 0x4, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4000, 0x0, 0x0, 0x0, 0x9}, [@call={0x85, 0x0, 0x0, 0xbc}]}, &(0x7f0000000180)='syzkaller\x00', 0x2, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94) bpf$TOKEN_CREATE(0x24, &(0x7f0000000740), 0x8) bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x1f, 0xc, &(0x7f0000000600)=ANY=[], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000080)) sendmsg$ETHTOOL_MSG_DEBUG_GET(0xffffffffffffffff, &(0x7f0000000d40)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4008004}, 0x20004810) r2 = socket$alg(0x26, 0x5, 0x0) bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000280)=',8Z', 0x3) r3 = accept4(r2, 0x0, 0x0, 0x800) sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800) recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000013c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r4, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r5, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r6, @ANYBLOB="d50633008000009effffffffffff080211000001"], 0x6f4}}, 0x8044) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.123' (ED25519) to the list of known hosts. [ 97.911022][ T5595] cgroup: Unknown subsys name 'net' [ 98.159836][ T5595] cgroup: Unknown subsys name 'cpuset' [ 98.213871][ T5595] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 100.456500][ T38] cfg80211: failed to load regulatory.db [ 100.458070][ T5595] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 104.799118][ T5628] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 104.844594][ T5619] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 104.849973][ T5628] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 104.942809][ T5629] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 104.970935][ T5619] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 105.000156][ T5628] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 105.006763][ T5628] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 105.023601][ T5629] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 105.045879][ T5628] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 105.084375][ T5619] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 105.103944][ T5629] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 105.104315][ T5629] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 105.110213][ T5619] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 105.120773][ T5629] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 105.132523][ T5629] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 105.156566][ T5628] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 105.157828][ T5628] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 105.188912][ T5619] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 105.226895][ T5629] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 105.246204][ T5629] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 105.248462][ T5629] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 105.302514][ T5628] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 105.302522][ T5616] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 105.351577][ T5630] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 105.365531][ T5618] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 107.478082][ T5631] Bluetooth: hci0: command tx timeout [ 107.717177][ T4924] Bluetooth: hci2: command tx timeout [ 107.718467][ T5631] Bluetooth: hci1: command tx timeout [ 107.793246][ T5631] Bluetooth: hci4: command tx timeout [ 107.794041][ T4924] Bluetooth: hci3: command tx timeout [ 108.905172][ T5609] bridge0: port 1(bridge_slave_0) entered blocking state [ 108.906665][ T5609] bridge0: port 1(bridge_slave_0) entered disabled state [ 108.906930][ T5609] bridge_slave_0: entered allmulticast mode [ 108.909675][ T5609] bridge_slave_0: entered promiscuous mode [ 109.007301][ T5609] bridge0: port 2(bridge_slave_1) entered blocking state [ 109.007646][ T5609] bridge0: port 2(bridge_slave_1) entered disabled state [ 109.007868][ T5609] bridge_slave_1: entered allmulticast mode [ 109.010860][ T5609] bridge_slave_1: entered promiscuous mode [ 109.149442][ T5610] bridge0: port 1(bridge_slave_0) entered blocking state [ 109.149735][ T5610] bridge0: port 1(bridge_slave_0) entered disabled state [ 109.150163][ T5610] bridge_slave_0: entered allmulticast mode [ 109.175806][ T5610] bridge_slave_0: entered promiscuous mode [ 109.193627][ T5613] bridge0: port 1(bridge_slave_0) entered blocking state [ 109.193911][ T5613] bridge0: port 1(bridge_slave_0) entered disabled state [ 109.194419][ T5613] bridge_slave_0: entered allmulticast mode [ 109.196890][ T5613] bridge_slave_0: entered promiscuous mode [ 109.259608][ T5610] bridge0: port 2(bridge_slave_1) entered blocking state [ 109.259939][ T5610] bridge0: port 2(bridge_slave_1) entered disabled state [ 109.260247][ T5610] bridge_slave_1: entered allmulticast mode [ 109.264485][ T5610] bridge_slave_1: entered promiscuous mode [ 109.308237][ T5613] bridge0: port 2(bridge_slave_1) entered blocking state [ 109.308529][ T5613] bridge0: port 2(bridge_slave_1) entered disabled state [ 109.308972][ T5613] bridge_slave_1: entered allmulticast mode [ 109.311552][ T5613] bridge_slave_1: entered promiscuous mode [ 109.346607][ T5609] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 109.347191][ T5608] bridge0: port 1(bridge_slave_0) entered blocking state [ 109.347522][ T5608] bridge0: port 1(bridge_slave_0) entered disabled state [ 109.347803][ T5608] bridge_slave_0: entered allmulticast mode [ 109.350230][ T5608] bridge_slave_0: entered promiscuous mode [ 109.446937][ T5609] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 109.447562][ T5608] bridge0: port 2(bridge_slave_1) entered blocking state [ 109.447888][ T5608] bridge0: port 2(bridge_slave_1) entered disabled state [ 109.448087][ T5608] bridge_slave_1: entered allmulticast mode [ 109.450736][ T5608] bridge_slave_1: entered promiscuous mode [ 109.498984][ T5611] bridge0: port 1(bridge_slave_0) entered blocking state [ 109.499462][ T5611] bridge0: port 1(bridge_slave_0) entered disabled state [ 109.499776][ T5611] bridge_slave_0: entered allmulticast mode [ 109.502456][ T5611] bridge_slave_0: entered promiscuous mode [ 109.553290][ T4924] Bluetooth: hci0: command tx timeout [ 109.613843][ T5610] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 109.614337][ T5611] bridge0: port 2(bridge_slave_1) entered blocking state [ 109.614749][ T5611] bridge0: port 2(bridge_slave_1) entered disabled state [ 109.615038][ T5611] bridge_slave_1: entered allmulticast mode [ 109.617692][ T5611] bridge_slave_1: entered promiscuous mode [ 109.645400][ T5613] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 109.714267][ T5610] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 109.746830][ T5613] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 109.751129][ T5609] team0: Port device team_slave_0 added [ 109.773323][ T5608] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 109.795772][ T5631] Bluetooth: hci2: command tx timeout [ 109.797720][ T4924] Bluetooth: hci1: command tx timeout [ 109.857656][ T5609] team0: Port device team_slave_1 added [ 109.862192][ T5608] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 109.873304][ T4924] Bluetooth: hci4: command tx timeout [ 109.883339][ T4924] Bluetooth: hci3: command tx timeout [ 109.915641][ T5611] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 109.986154][ T5610] team0: Port device team_slave_0 added [ 109.990895][ T5611] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 110.000149][ T5613] team0: Port device team_slave_0 added [ 110.060491][ T5610] team0: Port device team_slave_1 added [ 110.090878][ T5613] team0: Port device team_slave_1 added [ 110.100399][ T5609] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 110.100413][ T5609] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 110.100433][ T5609] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 110.145307][ T5608] team0: Port device team_slave_0 added [ 110.648257][ T5609] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 110.648285][ T5609] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 110.648306][ T5609] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 110.652166][ T5608] team0: Port device team_slave_1 added [ 110.714286][ T5611] team0: Port device team_slave_0 added [ 110.789491][ T5610] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 110.789505][ T5610] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 110.789532][ T5610] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 110.796839][ T5611] team0: Port device team_slave_1 added [ 110.804079][ T5613] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 110.804122][ T5613] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 110.804220][ T5613] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 110.911780][ T5610] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 110.911798][ T5610] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 110.911830][ T5610] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 110.968147][ T5613] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 110.968163][ T5613] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 110.968191][ T5613] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 110.971752][ T5608] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 110.971765][ T5608] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 110.971785][ T5608] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 111.120502][ T5608] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 111.120523][ T5608] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 111.120544][ T5608] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 111.168090][ T5611] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 111.168182][ T5611] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 111.168286][ T5611] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 111.256973][ T5611] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 111.256989][ T5611] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 111.257017][ T5611] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 111.308168][ T5609] hsr_slave_0: entered promiscuous mode [ 111.318881][ T5609] hsr_slave_1: entered promiscuous mode [ 111.457719][ T5610] hsr_slave_0: entered promiscuous mode [ 111.459500][ T5610] hsr_slave_1: entered promiscuous mode [ 111.461065][ T5610] debugfs: 'hsr0' already exists in 'hsr' [ 111.461183][ T5610] Cannot create hsr debugfs directory [ 111.489530][ T5613] hsr_slave_0: entered promiscuous mode [ 111.491240][ T5613] hsr_slave_1: entered promiscuous mode [ 111.492784][ T5613] debugfs: 'hsr0' already exists in 'hsr' [ 111.492819][ T5613] Cannot create hsr debugfs directory [ 111.596615][ T5608] hsr_slave_0: entered promiscuous mode [ 111.598357][ T5608] hsr_slave_1: entered promiscuous mode [ 111.599723][ T5608] debugfs: 'hsr0' already exists in 'hsr' [ 111.599754][ T5608] Cannot create hsr debugfs directory [ 111.633270][ T4924] Bluetooth: hci0: command tx timeout [ 111.726927][ T5611] hsr_slave_0: entered promiscuous mode [ 111.728609][ T5611] hsr_slave_1: entered promiscuous mode [ 111.729938][ T5611] debugfs: 'hsr0' already exists in 'hsr' [ 111.729965][ T5611] Cannot create hsr debugfs directory [ 111.873204][ T4924] Bluetooth: hci1: command tx timeout [ 111.873243][ T4924] Bluetooth: hci2: command tx timeout [ 111.953330][ T5631] Bluetooth: hci3: command tx timeout [ 111.953372][ T5631] Bluetooth: hci4: command tx timeout [ 112.892802][ T5609] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 112.950316][ T5609] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 112.971689][ T5609] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 113.016444][ T5609] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 113.020611][ T5609] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 113.081539][ T5609] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 113.128571][ T5609] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 113.172530][ T5609] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 113.328537][ T5613] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 113.370088][ T5613] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 113.390348][ T5613] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 113.432799][ T5613] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 113.456539][ T5613] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 113.501045][ T5613] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 113.536992][ T5613] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 113.606524][ T5613] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 113.714243][ T4924] Bluetooth: hci0: command tx timeout [ 113.900468][ T5608] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 113.941382][ T5608] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 113.955311][ T4924] Bluetooth: hci2: command tx timeout [ 113.955370][ T4924] Bluetooth: hci1: command tx timeout [ 113.958476][ T5608] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 114.000680][ T5608] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 114.016784][ T5608] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 114.033323][ T5631] Bluetooth: hci4: command tx timeout [ 114.033337][ T4924] Bluetooth: hci3: command tx timeout [ 114.062214][ T5608] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 114.107015][ T5608] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 114.148580][ T5608] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 114.361109][ T5611] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 114.401248][ T5611] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 114.420317][ T5611] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 114.447889][ T5611] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 114.512620][ T5611] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 114.572554][ T5611] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 114.598326][ T5611] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 114.630524][ T5611] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 114.762481][ T5609] 8021q: adding VLAN 0 to HW filter on device bond0 [ 114.830732][ T5610] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 114.875058][ T5610] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 114.901147][ T5610] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 114.950733][ T5610] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 114.980050][ T5610] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 115.017741][ T5610] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 115.026632][ T5610] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 115.078436][ T5610] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 115.157967][ T5609] 8021q: adding VLAN 0 to HW filter on device team0 [ 115.196431][ T5613] 8021q: adding VLAN 0 to HW filter on device bond0 [ 115.246892][ T1441] bridge0: port 1(bridge_slave_0) entered blocking state [ 115.247570][ T1441] bridge0: port 1(bridge_slave_0) entered forwarding state [ 115.350648][ T2232] bridge0: port 2(bridge_slave_1) entered blocking state [ 115.350906][ T2232] bridge0: port 2(bridge_slave_1) entered forwarding state [ 115.451424][ T5613] 8021q: adding VLAN 0 to HW filter on device team0 [ 115.514168][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 115.514383][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 115.607804][ T2232] bridge0: port 2(bridge_slave_1) entered blocking state [ 115.607982][ T2232] bridge0: port 2(bridge_slave_1) entered forwarding state [ 115.631740][ T5608] 8021q: adding VLAN 0 to HW filter on device bond0 [ 115.794474][ T5608] 8021q: adding VLAN 0 to HW filter on device team0 [ 115.901929][ T5611] 8021q: adding VLAN 0 to HW filter on device bond0 [ 115.925058][ T2232] bridge0: port 1(bridge_slave_0) entered blocking state [ 115.925356][ T2232] bridge0: port 1(bridge_slave_0) entered forwarding state [ 116.062128][ T2232] bridge0: port 2(bridge_slave_1) entered blocking state [ 116.062265][ T2232] bridge0: port 2(bridge_slave_1) entered forwarding state [ 116.278456][ T5611] 8021q: adding VLAN 0 to HW filter on device team0 [ 116.303661][ T5610] 8021q: adding VLAN 0 to HW filter on device bond0 [ 116.394060][ T92] bridge0: port 1(bridge_slave_0) entered blocking state [ 116.394474][ T92] bridge0: port 1(bridge_slave_0) entered forwarding state [ 116.481709][ T92] bridge0: port 2(bridge_slave_1) entered blocking state [ 116.481881][ T92] bridge0: port 2(bridge_slave_1) entered forwarding state [ 116.705562][ T5610] 8021q: adding VLAN 0 to HW filter on device team0 [ 116.787427][ T1238] bridge0: port 1(bridge_slave_0) entered blocking state [ 116.787712][ T1238] bridge0: port 1(bridge_slave_0) entered forwarding state [ 116.889450][ T152] bridge0: port 2(bridge_slave_1) entered blocking state [ 116.889730][ T152] bridge0: port 2(bridge_slave_1) entered forwarding state [ 117.492647][ T5609] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 118.089743][ T5613] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 118.519266][ T5609] veth0_vlan: entered promiscuous mode [ 118.669294][ T5609] veth1_vlan: entered promiscuous mode [ 118.706295][ T5608] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 118.937136][ T5613] veth0_vlan: entered promiscuous mode [ 119.042844][ T5613] veth1_vlan: entered promiscuous mode [ 119.218548][ T5609] veth0_macvtap: entered promiscuous mode [ 119.251377][ T5611] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 119.296980][ T5609] veth1_macvtap: entered promiscuous mode [ 119.394547][ T5608] veth0_vlan: entered promiscuous mode [ 119.544889][ T5608] veth1_vlan: entered promiscuous mode [ 119.594959][ T5609] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 119.597640][ T5613] veth0_macvtap: entered promiscuous mode [ 119.704645][ T5609] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 119.724839][ T5613] veth1_macvtap: entered promiscuous mode [ 119.840658][ T5610] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 119.857905][ T92] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 119.878847][ T92] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 119.882746][ T92] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 119.938784][ T92] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 120.044997][ T5613] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 120.146909][ T5613] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 120.242371][ T5608] veth0_macvtap: entered promiscuous mode [ 120.366346][ T1238] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 120.451164][ T92] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 120.454240][ T5608] veth1_macvtap: entered promiscuous mode [ 120.518605][ T92] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 120.557053][ T92] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 120.789252][ T2232] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.789284][ T2232] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.022400][ T5608] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 121.060859][ T5611] veth0_vlan: entered promiscuous mode [ 121.118611][ T5610] veth0_vlan: entered promiscuous mode [ 121.192312][ T5608] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 121.202376][ T1238] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.202398][ T1238] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.389657][ T5610] veth1_vlan: entered promiscuous mode [ 121.409380][ T1441] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 121.414903][ T1441] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 121.466429][ T1441] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 121.483726][ T1441] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 121.508749][ T5611] veth1_vlan: entered promiscuous mode [ 121.747990][ T1238] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.748016][ T1238] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 122.173045][ T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!! [ 122.193041][ T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!! [ 122.203046][ T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!! [ 122.213020][ T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!! [ 122.223030][ T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!! [ 122.233035][ T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!! [ 122.243040][ T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!! [ 122.253036][ T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!! [ 122.263043][ T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!! [ 122.273035][ T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!! [ 125.247008][ T1560] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.247033][ T1560] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.341036][ T5610] veth0_macvtap: entered promiscuous mode [ 125.447736][ T5610] veth1_macvtap: entered promiscuous mode [ 125.682325][ T5611] veth0_macvtap: entered promiscuous mode [ 125.737905][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.737931][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.786923][ T5611] veth1_macvtap: entered promiscuous mode [ 125.916109][ T5610] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 126.018824][ T5611] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 126.042862][ T5610] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 126.102907][ T152] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 126.103980][ T152] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 126.145231][ T5611] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 126.215844][ T1238] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 126.228074][ T1238] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 126.254951][ T1238] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 126.317991][ T2232] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 126.368732][ T2232] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 126.392306][ T152] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 126.417899][ T152] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 126.439064][ T152] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 127.616903][ T5816] netlink: 'syz.0.1': attribute type 2 has an invalid length. [ 130.369913][ T5828] loop1: detected capacity change from 0 to 1024 [ 130.416010][ T999] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 130.416033][ T999] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 130.450560][ T5828] ======================================================= [ 130.450560][ T5828] WARNING: The mand mount option has been deprecated and [ 130.450560][ T5828] and is ignored by this kernel. Remove the mand [ 130.450560][ T5828] option from the mount to silence this warning. [ 130.450560][ T5828] ======================================================= [ 130.620359][ T5828] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 130.683339][ T1540] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 130.683366][ T1540] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 130.950893][ T5831] loop0: detected capacity change from 0 to 4096 [ 131.055488][ T70] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 131.055514][ T70] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 131.132850][ T5831] EXT4-fs: inline encryption not supported [ 131.404122][ T5831] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 131.404155][ T5831] EXT4-fs (loop0): Test dummy encryption mode enabled [ 131.475280][ T5828] EXT4-fs error (device loop1): ext4_map_blocks:791: inode #3: block 2: comm syz.1.8: lblock 2 mapped to illegal pblock 2 (length 1) [ 131.475720][ T5828] loop1: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 131.487999][ C1] EXT4-fs (loop1): initial error at time 1781872041: ext4_map_blocks:791: inode 3: block 2 [ 131.488138][ C1] EXT4-fs (loop1): last error at time 1781872041: ext4_map_blocks:791: inode 3: block 2 [ 131.543422][ T5828] Quota error (device loop1): qtree_write_dquot: dquota write failed [ 131.543512][ T5828] EXT4-fs error (device loop1): ext4_map_blocks:791: inode #3: block 48: comm syz.1.8: lblock 0 mapped to illegal pblock 48 (length 1) [ 131.543559][ T5828] loop1: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 131.545557][ T5828] Quota error (device loop1): v2_write_file_info: Can't write info structure [ 131.545585][ T5828] EXT4-fs error (device loop1): ext4_acquire_dquot:7041: comm syz.1.8: Failed to acquire dquot type 0 [ 131.546018][ T5828] loop1: lost filesystem error report for type 5 error -117 [ 131.548677][ T5828] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6435: Corrupt filesystem [ 131.548735][ T5828] loop1: lost filesystem error report for type 5 error -117 [ 131.640013][ T5831] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c198, mo2=0003] [ 131.640270][ T5831] System zones: 0-5 [ 131.693214][ T5828] EXT4-fs error (device loop1): ext4_evict_inode:267: inode #11: comm syz.1.8: mark_inode_dirty error [ 131.693275][ T5828] loop1: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 131.694589][ T5828] EXT4-fs warning (device loop1): ext4_evict_inode:270: couldn't mark inode dirty (err -117) [ 131.761978][ T5828] EXT4-fs (loop1): 1 orphan inode deleted [ 131.843953][ T5831] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 131.873901][ T1238] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 131.873928][ T1238] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 131.959385][ T5828] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 132.005401][ T5839] loop2: detected capacity change from 0 to 4096 [ 132.041904][ T5839] EXT4-fs: inline encryption not supported [ 132.057549][ T1540] EXT4-fs error (device loop1): ext4_map_blocks:791: inode #3: block 1: comm kworker/u8:13: lblock 1 mapped to illegal pblock 1 (length 1) [ 132.150442][ T5839] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 132.150473][ T5839] EXT4-fs (loop2): Test dummy encryption mode enabled [ 132.359487][ T1540] Quota error (device loop1): remove_tree: Can't read quota data block 1 [ 132.451073][ T5839] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c198, mo2=0003] [ 132.451231][ T5839] System zones: 0-5 [ 132.848566][ T5844] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 133.386424][ T1540] EXT4-fs error (device loop1): ext4_release_dquot:7077: comm kworker/u8:13: Failed to release dquot type 0 [ 133.900975][ T5840] EXT4-fs error (device loop1): ext4_map_blocks:791: inode #3: block 1: comm syz.1.8: lblock 1 mapped to illegal pblock 1 (length 1) [ 134.157676][ T5839] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 135.745269][ T5840] Quota error (device loop1): find_next_id: Can't read quota tree block 1 [ 136.815036][ T5843] fscrypt: AES-256-XTS using implementation "xts-aes-aesni-avx" [ 137.159568][ T39] audit: type=1800 audit(1781872046.708:2): pid=5843 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.9" name="bus" dev="loop0" ino=18 res=0 errno=0 [ 137.159643][ T39] audit: type=1800 audit(1781872046.898:3): pid=5848 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.10" name="bus" dev="loop2" ino=18 res=0 errno=0 [ 138.808935][ T5608] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 138.896705][ T5608] EXT4-fs error (device loop1): __ext4_get_inode_loc:4886: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 138.896757][ T5608] loop1: lost filesystem error report for type 5 error -117 [ 138.978121][ T5608] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6435: Corrupt filesystem [ 138.978167][ T5608] loop1: lost filesystem error report for type 5 error -117 [ 139.085982][ T5613] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 139.086753][ T5608] EXT4-fs error (device loop1): ext4_quota_off:7325: inode #3: comm syz-executor: mark_inode_dirty error [ 139.086794][ T5608] loop1: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 139.369030][ T5609] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 140.176145][ T5870] loop1: detected capacity change from 0 to 4096 [ 140.177492][ T5870] EXT4-fs: inline encryption not supported [ 140.197095][ T5870] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 140.197122][ T5870] EXT4-fs (loop1): Test dummy encryption mode enabled [ 140.199976][ T5870] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c198, mo2=0003] [ 140.200137][ T5870] System zones: 0-5 [ 140.532735][ T5870] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 142.264926][ T39] audit: type=1800 audit(1781872051.848:4): pid=5884 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.11" name="bus" dev="loop1" ino=18 res=0 errno=0 [ 142.286336][ T1339] ieee802154 phy0 wpan0: encryption failed: -22 [ 142.286504][ T1339] ieee802154 phy1 wpan1: encryption failed: -22 [ 146.778844][ T5608] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 146.790828][ T5892] loop2: detected capacity change from 0 to 4096 [ 146.820739][ T5892] EXT4-fs: inline encryption not supported [ 146.840980][ T5892] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 146.841009][ T5892] EXT4-fs (loop2): Test dummy encryption mode enabled [ 146.919473][ T5892] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c198, mo2=0003] [ 146.919650][ T5892] System zones: 0-5 [ 147.036169][ T5892] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 147.429197][ T5899] loop0: detected capacity change from 0 to 4096 [ 147.430525][ T5899] EXT4-fs: inline encryption not supported [ 149.228590][ T39] audit: type=1800 audit(1781872058.288:5): pid=5907 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.13" name="bus" dev="loop2" ino=18 res=0 errno=0 [ 149.803869][ T5899] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 149.803901][ T5899] EXT4-fs (loop0): Test dummy encryption mode enabled [ 150.734475][ T5899] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c198, mo2=0003] [ 150.734653][ T5899] System zones: 0-5 [ 150.735362][ T5899] EXT4-fs: error -4 creating inode table initialization thread [ 150.816372][ T5899] EXT4-fs (loop0): mount failed [ 151.039800][ T5918] loop3: detected capacity change from 0 to 4096 [ 151.041159][ T5918] EXT4-fs: inline encryption not supported [ 151.099193][ T5918] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 151.099240][ T5918] EXT4-fs (loop3): Test dummy encryption mode enabled [ 151.559778][ T5923] loop1: detected capacity change from 0 to 4096 [ 152.331499][ T5923] EXT4-fs: inline encryption not supported [ 152.365428][ T5918] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c198, mo2=0003] [ 152.365605][ T5918] System zones: 0-5 [ 152.452809][ T5923] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 152.452840][ T5923] EXT4-fs (loop1): Test dummy encryption mode enabled [ 152.470867][ T5918] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 152.586870][ T5923] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c198, mo2=0003] [ 152.587028][ T5923] System zones: 0-5 [ 154.238245][ T39] audit: type=1800 audit(1781872064.068:6): pid=5929 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.21" name="bus" dev="loop3" ino=18 res=0 errno=0 [ 154.393314][ T5609] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 154.394270][ T5923] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 154.567495][ T5932] loop0: detected capacity change from 0 to 4096 [ 154.572278][ T5932] EXT4-fs: inline encryption not supported [ 155.447958][ T5932] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 155.448139][ T5932] EXT4-fs (loop0): Test dummy encryption mode enabled [ 157.173732][ T39] audit: type=1800 audit(1781872066.968:7): pid=5934 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.20" name="bus" dev="loop1" ino=18 res=0 errno=0 [ 157.196873][ T5932] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c198, mo2=0003] [ 157.197038][ T5932] System zones: 0-5 [ 157.365753][ T5932] EXT4-fs: error -4 creating inode table initialization thread [ 157.366292][ T5932] EXT4-fs (loop0): mount failed [ 158.368164][ T5939] loop2: detected capacity change from 0 to 4096 [ 158.483962][ T5939] EXT4-fs: inline encryption not supported [ 158.525645][ T5939] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 158.525675][ T5939] EXT4-fs (loop2): Test dummy encryption mode enabled [ 158.591455][ T5610] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 158.596476][ T5939] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c198, mo2=0003] [ 158.596991][ T5939] System zones: 0-5 [ 158.647950][ T5939] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 160.200986][ T5608] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 161.117391][ T5945] loop4: detected capacity change from 0 to 4096 [ 161.172488][ T5945] EXT4-fs: inline encryption not supported [ 161.528562][ T5945] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 161.528594][ T5945] EXT4-fs (loop4): Test dummy encryption mode enabled [ 161.669452][ T39] audit: type=1800 audit(1781872071.428:8): pid=5948 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.23" name="bus" dev="loop2" ino=18 res=0 errno=0 [ 162.006784][ T5945] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c198, mo2=0003] [ 162.006985][ T5945] System zones: 0-5 [ 162.035706][ T5609] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 162.064230][ T5945] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 162.146495][ T5955] loop3: detected capacity change from 0 to 4096 [ 162.244850][ T5611] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 162.265865][ T5955] EXT4-fs: inline encryption not supported [ 162.301060][ T5955] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 162.301092][ T5955] EXT4-fs (loop3): Test dummy encryption mode enabled [ 162.363741][ T5958] loop1: detected capacity change from 0 to 4096 [ 162.365030][ T5958] EXT4-fs: inline encryption not supported [ 162.474873][ T5958] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 162.474903][ T5958] EXT4-fs (loop1): Test dummy encryption mode enabled [ 162.554261][ T5955] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c198, mo2=0003] [ 162.554416][ T5955] System zones: 0-5 [ 162.596040][ T5958] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c198, mo2=0003] [ 162.596194][ T5958] System zones: 0-5 [ 162.670019][ T5958] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 162.671545][ T5955] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 163.185639][ T39] audit: type=1800 audit(1781872073.008:9): pid=5966 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.28" name="bus" dev="loop1" ino=18 res=0 errno=0 [ 163.817086][ T39] audit: type=1800 audit(1781872073.328:10): pid=5969 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.26" name="bus" dev="loop3" ino=18 res=0 errno=0 [ 163.969199][ T5961] loop2: detected capacity change from 0 to 4096 [ 163.970450][ T5961] EXT4-fs: inline encryption not supported [ 164.039673][ T5961] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 164.039703][ T5961] EXT4-fs (loop2): Test dummy encryption mode enabled [ 164.128961][ T5961] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c198, mo2=0003] [ 164.129131][ T5961] System zones: 0-5 [ 164.257241][ T5961] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 164.788687][ T5972] loop0: detected capacity change from 0 to 4096 [ 164.818556][ T5972] EXT4-fs: inline encryption not supported [ 164.839655][ T5972] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 164.839682][ T5972] EXT4-fs (loop0): Test dummy encryption mode enabled [ 165.050890][ T5972] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c198, mo2=0003] [ 165.051146][ T5972] System zones: 0-5 [ 165.235990][ T5972] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 167.301067][ T39] audit: type=1800 audit(1781872077.128:11): pid=5976 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.30" name="bus" dev="loop2" ino=18 res=0 errno=0 [ 169.526060][ T5608] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 170.226909][ T5613] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 171.215648][ T5610] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 171.382457][ T5990] loop0: detected capacity change from 0 to 4096 [ 171.430775][ T5990] EXT4-fs: inline encryption not supported [ 171.450615][ T5990] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 171.450646][ T5990] EXT4-fs (loop0): Test dummy encryption mode enabled [ 171.493731][ T5990] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c198, mo2=0003] [ 171.493920][ T5990] System zones: 0-5 [ 171.608975][ T5990] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 173.062831][ T39] audit: type=1800 audit(1781872082.888:12): pid=5999 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.38" name="bus" dev="loop0" ino=18 res=0 errno=0 [ 173.956078][ T39] audit: type=1326 audit(1781872083.748:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6002 comm="syz.3.41" exe="/root/ci-upstream-linux-next-kasan-gce-root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2b8a9dce59 code=0x0 [ 174.954754][ T5613] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 175.348380][ T6014] loop4: detected capacity change from 0 to 4096 [ 175.359669][ T6014] EXT4-fs: inline encryption not supported [ 175.380451][ T6014] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 175.380481][ T6014] EXT4-fs (loop4): Test dummy encryption mode enabled [ 175.490800][ T6014] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c198, mo2=0003] [ 175.490964][ T6014] System zones: 0-5 [ 175.615735][ T6014] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 178.449082][ T6032] loop3: detected capacity change from 0 to 256 [ 178.470456][ T5611] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 178.737220][ T5609] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 179.191775][ T6032] FAT-fs (loop3): data area starts beyond volume (274 > 64) [ 179.191811][ T6032] FAT-fs (loop3): Can't find a valid FAT filesystem [ 179.328708][ T6034] loop1: detected capacity change from 0 to 512 [ 180.545443][ T39] audit: type=1326 audit(1781872089.648:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6031 comm="syz.3.51" exe="/root/ci-upstream-linux-next-kasan-gce-root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2b8a9dce59 code=0x0 [ 180.779181][ T5631] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 180.823374][ T5631] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 180.825924][ T5631] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 180.852528][ T5631] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 180.860837][ T5631] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 181.001325][ T6034] EXT4-fs error (device loop1): ext4_orphan_get:1399: inode #15: comm syz.1.53: iget: bad i_size value: 38620345925642 [ 181.001384][ T6034] loop1: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 181.012012][ C1] EXT4-fs (loop1): initial error at time 1781872090: ext4_orphan_get:1399: inode 15 [ 181.012057][ C1] EXT4-fs (loop1): last error at time 1781872090: ext4_orphan_get:1399: inode 15 [ 181.150340][ T6034] EXT4-fs error (device loop1): ext4_orphan_get:1404: comm syz.1.53: couldn't read orphan inode 15 (err -117) [ 181.150384][ T6034] loop1: lost filesystem error report for type 5 error -117 [ 181.195493][ T6034] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 181.369783][ T6036] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.53: bg 0: block 5: invalid block bitmap [ 181.451908][ T6036] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 284 with error 28 [ 181.451949][ T6036] EXT4-fs (loop1): This should not happen!! Data will be lost [ 181.451949][ T6036] [ 181.451966][ T6036] EXT4-fs (loop1): Total free blocks count 0 [ 181.451981][ T6036] EXT4-fs (loop1): Free/Dirty block details [ 181.452028][ T6036] EXT4-fs (loop1): free_blocks=0 [ 181.452065][ T6036] EXT4-fs (loop1): dirty_blocks=284 [ 181.452080][ T6036] EXT4-fs (loop1): Block reservation details [ 181.452103][ T6036] EXT4-fs (loop1): i_reserved_data_blocks=284 [ 181.750562][ T33] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 182.033316][ T5608] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 183.075825][ T5631] Bluetooth: hci5: command tx timeout [ 184.847794][ T6097] syz.0.67 uses obsolete (PF_INET,SOCK_PACKET) [ 185.134646][ T12] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 185.163822][ T5631] Bluetooth: hci5: command tx timeout [ 185.709434][ T6103] loop1: detected capacity change from 0 to 256 [ 186.889465][ T6106] tipc: Started in network mode [ 186.889730][ T6106] tipc: Node identity ac1414aa, cluster identity 4711 [ 186.949401][ T6106] tipc: Enabled bearer , priority 10 [ 187.818011][ T5631] Bluetooth: hci5: command tx timeout [ 190.363158][ T5631] Bluetooth: hci5: command tx timeout [ 191.061954][ T5808] tipc: Node number set to 2886997162 [ 191.270602][ T6115] loop1: detected capacity change from 0 to 256 [ 191.311599][ T6115] FAT-fs (loop1): data area starts beyond volume (274 > 64) [ 191.311636][ T6115] FAT-fs (loop1): Can't find a valid FAT filesystem [ 191.802033][ T39] audit: type=1326 audit(1781872101.628:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6114 comm="syz.1.72" exe="/root/ci-upstream-linux-next-kasan-gce-root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f46ab09ce59 code=0x0 [ 191.877097][ T12] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 196.234667][ T12] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 196.908080][ T5622] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 197.106413][ T12] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 197.166740][ T5622] usb 1-1: Using ep0 maxpacket: 16 [ 203.971748][ T1339] ieee802154 phy0 wpan0: encryption failed: -22 [ 203.971871][ T1339] ieee802154 phy1 wpan1: encryption failed: -22 [ 205.011400][ T6179] loop4: detected capacity change from 0 to 512 [ 205.072177][ T5622] usb 1-1: unable to read config index 0 descriptor/all [ 205.072237][ T5622] usb 1-1: can't read configurations, error -71 [ 205.179340][ T6179] EXT4-fs error (device loop4): ext4_orphan_get:1399: inode #15: comm syz.4.91: iget: bad i_size value: 38620345925642 [ 205.179393][ T6179] loop4: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 205.181511][ T6179] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.91: couldn't read orphan inode 15 (err -117) [ 205.181556][ T6179] loop4: lost filesystem error report for type 5 error -117 [ 205.183061][ C1] EXT4-fs (loop4): error count since last fsck: 2 [ 205.183080][ C1] EXT4-fs (loop4): initial error at time 1781872115: ext4_orphan_get:1399: inode 15 [ 205.183104][ C1] EXT4-fs (loop4): last error at time 1781872115: ext4_orphan_get:1404 [ 205.302755][ T6179] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 205.423456][ T6186] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.91: bg 0: block 5: invalid block bitmap [ 205.440818][ T6186] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 36 with error 28 [ 205.440866][ T6186] EXT4-fs (loop4): This should not happen!! Data will be lost [ 205.440866][ T6186] [ 205.440894][ T6186] EXT4-fs (loop4): Total free blocks count 0 [ 205.440908][ T6186] EXT4-fs (loop4): Free/Dirty block details [ 205.440922][ T6186] EXT4-fs (loop4): free_blocks=0 [ 205.440937][ T6186] EXT4-fs (loop4): dirty_blocks=40 [ 205.440952][ T6186] EXT4-fs (loop4): Block reservation details [ 205.440965][ T6186] EXT4-fs (loop4): i_reserved_data_blocks=40 [ 206.696037][ T5611] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 206.852421][ T6048] bridge0: port 1(bridge_slave_0) entered blocking state [ 206.859838][ T6048] bridge0: port 1(bridge_slave_0) entered disabled state [ 206.860220][ T6048] bridge_slave_0: entered allmulticast mode [ 206.864523][ T6048] bridge_slave_0: entered promiscuous mode [ 206.923780][ T6048] bridge0: port 2(bridge_slave_1) entered blocking state [ 206.924126][ T6048] bridge0: port 2(bridge_slave_1) entered disabled state [ 206.924581][ T6048] bridge_slave_1: entered allmulticast mode [ 206.928742][ T6048] bridge_slave_1: entered promiscuous mode [ 207.233220][ T6208] loop0: detected capacity change from 0 to 256 [ 207.895620][ T6208] tipc: Started in network mode [ 207.895851][ T6208] tipc: Node identity ac1414aa, cluster identity 4711 [ 207.911994][ T6208] tipc: Enabled bearer , priority 10 [ 209.145914][ T5727] tipc: Node number set to 2886997162 [ 209.291265][ T6213] loop1: detected capacity change from 0 to 512 [ 209.301246][ T6213] EXT4-fs error (device loop1): ext4_orphan_get:1399: inode #15: comm syz.1.98: iget: bad i_size value: 38620345925642 [ 209.301288][ T6213] loop1: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 209.302965][ C0] EXT4-fs (loop1): error count since last fsck: 1 [ 209.302988][ C0] EXT4-fs (loop1): initial error at time 1781872119: ext4_orphan_get:1399: inode 15 [ 209.303020][ C0] EXT4-fs (loop1): last error at time 1781872119: ext4_orphan_get:1399: inode 15 [ 209.303532][ T6213] EXT4-fs error (device loop1): ext4_orphan_get:1404: comm syz.1.98: couldn't read orphan inode 15 (err -117) [ 209.303564][ T6213] loop1: lost filesystem error report for type 5 error -117 [ 209.308900][ T6213] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 209.541420][ T6048] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 209.612305][ T6048] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 209.694152][ T6048] team0: Port device team_slave_0 added [ 209.702523][ T6048] team0: Port device team_slave_1 added [ 209.796464][ T6048] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 209.796485][ T6048] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 209.796513][ T6048] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 209.905828][ T6048] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 209.905847][ T6048] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 209.905876][ T6048] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 210.034570][ T6218] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm ext4lazyinit: bg 0: block 5: invalid block bitmap [ 210.206989][ T5608] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 213.460172][ T6238] loop4: detected capacity change from 0 to 256 [ 222.018354][ T6247] netlink: 4 bytes leftover after parsing attributes in process `syz.1.105'. [ 222.106211][ T6249] netlink: 12 bytes leftover after parsing attributes in process `syz.1.105'. [ 224.839729][ T6240] tipc: Started in network mode [ 224.839805][ T6240] tipc: Node identity ac1414aa, cluster identity 4711 [ 224.841733][ T6240] tipc: Enabled bearer , priority 10 [ 226.881141][ T5808] tipc: Node number set to 2886997162 [ 227.231942][ T6048] hsr_slave_0: entered promiscuous mode [ 227.247269][ T6048] hsr_slave_1: entered promiscuous mode [ 227.265511][ T6048] debugfs: 'hsr0' already exists in 'hsr' [ 227.265545][ T6048] Cannot create hsr debugfs directory [ 227.401198][ T4924] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 227.440716][ T4924] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 227.447726][ T4924] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 227.477409][ T4924] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 227.479074][ T4924] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 228.228574][ T6282] capability: warning: `syz.1.111' uses deprecated v2 capabilities in a way that may be insecure [ 228.717086][ T6282] loop1: detected capacity change from 0 to 1024 [ 229.103227][ T6282] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (46272!=20869) [ 229.119190][ T6282] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 229.397088][ C0] ------------[ cut here ]------------ [ 229.397108][ C0] workqueue: cannot queue hci_conn_timeout on wq hci2 [ 229.397152][ C0] WARNING: kernel/workqueue.c:2306 at __queue_work+0xd91/0x10f0, CPU#0: ktimers/0/16 [ 229.397191][ C0] Modules linked in: [ 229.397232][ C0] CPU: 0 UID: 0 PID: 16 Comm: ktimers/0 Not tainted syzkaller #0 PREEMPT_{RT,(full)} [ 229.397271][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 229.397287][ C0] RIP: 0010:__queue_work+0xdae/0x10f0 [ 229.397314][ C0] Code: 81 c3 68 01 00 00 4c 8d 35 cf 67 02 0e 48 89 f8 48 c1 e8 03 42 80 3c 20 00 74 05 e8 1c e8 a3 00 49 8b 77 18 4c 89 f7 48 89 da <67> 48 0f b9 3a 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff [ 229.397334][ C0] RSP: 0018:ffffc90000157990 EFLAGS: 00010046 [ 229.397355][ C0] RAX: 1ffff11006d7b95b RBX: ffff88803726e968 RCX: ffff88801d2f8000 [ 229.397370][ C0] RDX: ffff88803726e968 RSI: ffffffff8a242740 RDI: ffffffff8f8f7260 [ 229.397385][ C0] RBP: 0000000000000100 R08: 0000000000000000 R09: 0000000000000100 [ 229.397395][ C0] R10: dffffc0000000000 R11: ffffffff818d11c0 R12: dffffc0000000000 [ 229.397407][ C0] R13: 0000000000000008 R14: ffffffff8f8f7260 R15: ffff888036bdcac0 [ 229.397420][ C0] FS: 0000000000000000(0000) GS:ffff888125ed4000(0000) knlGS:0000000000000000 [ 229.397435][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 229.397448][ C0] CR2: 00007f5d2532fa10 CR3: 0000000050152000 CR4: 00000000003526f0 [ 229.397464][ C0] Call Trace: [ 229.397481][ C0] [ 229.397493][ C0] ? call_timer_fn+0xd4/0x5e0 [ 229.397541][ C0] call_timer_fn+0x192/0x5e0 [ 229.397561][ C0] ? __pfx_delayed_work_timer_fn+0x10/0x10 [ 229.397581][ C0] ? call_timer_fn+0xd4/0x5e0 [ 229.397600][ C0] ? __pfx_call_timer_fn+0x10/0x10 [ 229.397627][ C0] ? __pfx_delayed_work_timer_fn+0x10/0x10 [ 229.397650][ C0] ? do_raw_spin_unlock+0xf5/0x210 [ 229.397675][ C0] ? __pfx_delayed_work_timer_fn+0x10/0x10 [ 229.397693][ C0] __run_timer_base+0x73c/0x9b0 [ 229.397739][ C0] ? __pfx___run_timer_base+0x10/0x10 [ 229.397785][ C0] ? __local_bh_disable_ip+0x3c/0x420 [ 229.397815][ C0] ? __local_bh_disable_ip+0x3c/0x420 [ 229.397837][ C0] run_timer_softirq+0xb7/0x170 [ 229.397863][ C0] handle_softirqs+0x1d9/0x6c0 [ 229.397889][ C0] run_ktimerd+0x69/0x100 [ 229.397909][ C0] smpboot_thread_fn+0x57c/0xa80 [ 229.397932][ C0] ? smpboot_thread_fn+0x4e/0xa80 [ 229.397958][ C0] kthread+0x388/0x470 [ 229.397982][ C0] ? __pfx_smpboot_thread_fn+0x10/0x10 [ 229.397999][ C0] ? __pfx_kthread+0x10/0x10 [ 229.398022][ C0] ret_from_fork+0x514/0xb70 [ 229.398053][ C0] ? __pfx_ret_from_fork+0x10/0x10 [ 229.398077][ C0] ? __switch_to+0xc89/0x1420 [ 229.398116][ C0] ? __pfx_kthread+0x10/0x10 [ 229.398142][ C0] ret_from_fork_asm+0x1a/0x30 [ 229.398188][ C0] [ 229.398201][ C0] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 229.398217][ C0] CPU: 0 UID: 0 PID: 16 Comm: ktimers/0 Not tainted syzkaller #0 PREEMPT_{RT,(full)} [ 229.398239][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 229.398250][ C0] Call Trace: [ 229.398259][ C0] [ 229.398266][ C0] vpanic+0x56c/0xa60 [ 229.398298][ C0] ? __pfx__printk+0x10/0x10 [ 229.398321][ C0] ? __pfx_vpanic+0x10/0x10 [ 229.398345][ C0] ? is_bpf_text_address+0x292/0x2b0 [ 229.398380][ C0] ? is_bpf_text_address+0x26/0x2b0 [ 229.398422][ C0] panic+0xc5/0xd0 [ 229.398446][ C0] ? __pfx_panic+0x10/0x10 [ 229.398478][ C0] ? ret_from_fork_asm+0x1a/0x30 [ 229.398507][ C0] __warn+0x315/0x4c0 [ 229.398530][ C0] ? __queue_work+0xd91/0x10f0 [ 229.398573][ C0] ? __queue_work+0xd91/0x10f0 [ 229.398591][ C0] __report_bug+0x331/0x530 [ 229.398616][ C0] ? call_timer_fn+0x192/0x5e0 [ 229.398632][ C0] ? __run_timer_base+0x73c/0x9b0 [ 229.398658][ C0] ? run_timer_softirq+0xb7/0x170 [ 229.398687][ C0] ? __queue_work+0xd91/0x10f0 [ 229.398707][ C0] ? __pfx___report_bug+0x10/0x10 [ 229.398731][ C0] ? __pfx_hci_conn_timeout+0x10/0x10 [ 229.398768][ C0] ? look_up_lock_class+0x57/0x110 [ 229.398792][ C0] ? register_lock_class+0x31/0x2e0 [ 229.398835][ C0] report_bug_entry+0x19a/0x290 [ 229.398862][ C0] ? __queue_work+0xdae/0x10f0 [ 229.398879][ C0] ? __queue_work+0xdb3/0x10f0 [ 229.398897][ C0] handle_bug+0xce/0x200 [ 229.398928][ C0] exc_invalid_op+0x1a/0x50 [ 229.398956][ C0] asm_exc_invalid_op+0x1a/0x20 [ 229.398978][ C0] RIP: 0010:__queue_work+0xdae/0x10f0 [ 229.398999][ C0] Code: 81 c3 68 01 00 00 4c 8d 35 cf 67 02 0e 48 89 f8 48 c1 e8 03 42 80 3c 20 00 74 05 e8 1c e8 a3 00 49 8b 77 18 4c 89 f7 48 89 da <67> 48 0f b9 3a 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff [ 229.399016][ C0] RSP: 0018:ffffc90000157990 EFLAGS: 00010046 [ 229.399035][ C0] RAX: 1ffff11006d7b95b RBX: ffff88803726e968 RCX: ffff88801d2f8000 [ 229.399051][ C0] RDX: ffff88803726e968 RSI: ffffffff8a242740 RDI: ffffffff8f8f7260 [ 229.399065][ C0] RBP: 0000000000000100 R08: 0000000000000000 R09: 0000000000000100 [ 229.399077][ C0] R10: dffffc0000000000 R11: ffffffff818d11c0 R12: dffffc0000000000 [ 229.399091][ C0] R13: 0000000000000008 R14: ffffffff8f8f7260 R15: ffff888036bdcac0 [ 229.399111][ C0] ? __pfx_delayed_work_timer_fn+0x10/0x10 [ 229.399135][ C0] ? __pfx_hci_conn_timeout+0x10/0x10 [ 229.399166][ C0] ? call_timer_fn+0xd4/0x5e0 [ 229.399203][ C0] call_timer_fn+0x192/0x5e0 [ 229.399224][ C0] ? __pfx_delayed_work_timer_fn+0x10/0x10 [ 229.399256][ C0] ? call_timer_fn+0xd4/0x5e0 [ 229.399276][ C0] ? __pfx_call_timer_fn+0x10/0x10 [ 229.399306][ C0] ? __pfx_delayed_work_timer_fn+0x10/0x10 [ 229.399330][ C0] ? do_raw_spin_unlock+0xf5/0x210 [ 229.399357][ C0] ? __pfx_delayed_work_timer_fn+0x10/0x10 [ 229.399379][ C0] __run_timer_base+0x73c/0x9b0 [ 229.399428][ C0] ? __pfx___run_timer_base+0x10/0x10 [ 229.399466][ C0] ? __local_bh_disable_ip+0x3c/0x420 [ 229.399488][ C0] ? __local_bh_disable_ip+0x3c/0x420 [ 229.399518][ C0] run_timer_softirq+0xb7/0x170 [ 229.399554][ C0] handle_softirqs+0x1d9/0x6c0 [ 229.399590][ C0] run_ktimerd+0x69/0x100 [ 229.399616][ C0] smpboot_thread_fn+0x57c/0xa80 [ 229.399645][ C0] ? smpboot_thread_fn+0x4e/0xa80 [ 229.399680][ C0] kthread+0x388/0x470 [ 229.399709][ C0] ? __pfx_smpboot_thread_fn+0x10/0x10 [ 229.399745][ C0] ? __pfx_kthread+0x10/0x10 [ 229.399776][ C0] ret_from_fork+0x514/0xb70 [ 229.399817][ C0] ? __pfx_ret_from_fork+0x10/0x10 [ 229.399847][ C0] ? __switch_to+0xc89/0x1420 [ 229.399883][ C0] ? __pfx_kthread+0x10/0x10 [ 229.399914][ C0] ret_from_fork_asm+0x1a/0x30 [ 229.399976][ C0] [ 229.400146][ C0] Kernel Offset: disabled