last executing test programs: 1m5.785180904s ago: executing program 2 (id=5): mkdir(&(0x7f0000000140)='./file0\x00', 0x63) syz_open_dev$vim2m(0x0, 0x7, 0x2) setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x32, &(0x7f0000000040)=0x8, 0x4) syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff) r0 = getpgrp(0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000080)=0x1) prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) getpid() openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) r3 = socket(0x10, 0x3, 0x0) ioctl$SG_GET_COMMAND_Q(0xffffffffffffffff, 0x2270, &(0x7f0000000380)) write(r3, 0x0, 0x0) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/power/resume_offset', 0x2, 0x0) socket(0x40000000015, 0x5, 0x0) r4 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r4, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000011008188e6b62aa73772cc9f1ba1f848390000005e140602000000002f001c000f000000028000001294", 0x2e}], 0x1}, 0x0) mount(&(0x7f0000000080)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000100)='./file0\x00', &(0x7f00000000c0)='ufs\x00', 0x1000000, 0x0) 1m2.088650853s ago: executing program 2 (id=7): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100)) r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0}) r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0) mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r2, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1}) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x18, &(0x7f0000000300)={@flat=@weak_binder={0x77622a85, 0x100a, 0x8000000000}, @flat=@weak_binder={0x77622a85, 0x1100, 0x3}}, &(0x7f0000000200)={0x0, 0x18, 0x30}}}], 0x0, 0x0, 0x0}) mmap$binder(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1, 0x11, r0, 0x10000000000) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x50, 0x0, &(0x7f0000000580)="b3185d7bb56f70f003360fa8bf71ac3086aedebf6fff904f92849a7a07395ee7f0e4cb1d78001c08a0ab73ffcf5ad07693727980eea946e6cba1723e81bfa5c3688803c8a124dcb27df7938e7ddfdd52"}) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000004a40)={0x44, 0x0, &(0x7f00000049c0)=[@transaction={0x40406300, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) ioctl$BINDER_THREAD_EXIT(r2, 0x40046208, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000480)={0x44, 0x0, &(0x7f0000000500)=[@reply={0x40406301, {0x2, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 54.982789238s ago: executing program 1 (id=12): ioctl$UI_SET_EVBIT(0xffffffffffffffff, 0x40045564, 0x12) bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x6, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0xa6426000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) mincore(&(0x7f0000ffd000/0x3000)=nil, 0x3000, &(0x7f0000000040)=""/31) 50.826095677s ago: executing program 1 (id=14): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) close(r1) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)) socket$inet_udp(0x2, 0x2, 0x0) socket$alg(0x26, 0x5, 0x0) r2 = getpgrp(0x0) sched_setaffinity(r2, 0x8, &(0x7f0000000040)=0x5) prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r3 = getpid() sched_setscheduler(r3, 0x2, &(0x7f0000000000)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r4 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r4, 0x1, 0x0) r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8) write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="7bedcb5d07081196f37538e486dd6372ce22667f2b00dbf6e97158cf474fec87891f6d76745b686158bbcfe8875afdef00010000000029"], 0x66) 48.909540399s ago: executing program 1 (id=15): r0 = io_uring_setup(0x1a6a, &(0x7f0000000000)={0x0, 0xfca1, 0x2, 0xfffffffc, 0x4007b}) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800"/15], &(0x7f00000003c0)='GPL\x00'}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r1}, 0x10) io_uring_register$IORING_REGISTER_RING_FDS(r0, 0x13, &(0x7f0000001bc0), 0x2) 48.761006545s ago: executing program 2 (id=17): mkdir(&(0x7f0000000140)='./file0\x00', 0x63) syz_open_dev$vim2m(0x0, 0x7, 0x2) setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x32, &(0x7f0000000040)=0x8, 0x4) syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff) r0 = getpgrp(0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000080)=0x1) prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = getpid() openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) mount(&(0x7f0000000080)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000100)='./file0\x00', &(0x7f00000000c0)='ufs\x00', 0x1000000, 0x0) 46.577238549s ago: executing program 2 (id=18): mkdir(&(0x7f0000000140)='./file0\x00', 0x63) syz_open_dev$vim2m(0x0, 0x7, 0x2) setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x32, &(0x7f0000000040)=0x8, 0x4) syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff) r0 = getpgrp(0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000080)=0x1) prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = getpid() openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) mount(&(0x7f0000000080)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000100)='./file0\x00', &(0x7f00000000c0)='ufs\x00', 0x1000000, 0x0) 44.300771947s ago: executing program 1 (id=21): mkdir(&(0x7f0000000140)='./file0\x00', 0x63) syz_open_dev$vim2m(0x0, 0x7, 0x2) setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x32, &(0x7f0000000040)=0x8, 0x4) syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff) r0 = getpgrp(0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000080)=0x1) prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = getpid() openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) socket(0x10, 0x3, 0x0) syz_open_dev$sg(&(0x7f0000000340), 0x0, 0x109200) mount(&(0x7f0000000080)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000100)='./file0\x00', &(0x7f00000000c0)='ufs\x00', 0x1000000, 0x0) 42.572399961s ago: executing program 2 (id=23): mkdir(&(0x7f0000000140)='./file0\x00', 0x63) syz_open_dev$vim2m(0x0, 0x7, 0x2) setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x32, &(0x7f0000000040)=0x8, 0x4) syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff) r0 = getpgrp(0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000080)=0x1) prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = getpid() openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) socket(0x10, 0x3, 0x0) r4 = syz_open_dev$sg(&(0x7f0000000340), 0x0, 0x109200) ioctl$SG_GET_COMMAND_Q(r4, 0x2270, &(0x7f0000000380)) mount(&(0x7f0000000080)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000100)='./file0\x00', &(0x7f00000000c0)='ufs\x00', 0x1000000, 0x0) 40.833876836s ago: executing program 1 (id=24): mkdir(&(0x7f0000000140)='./file0\x00', 0x63) syz_open_dev$vim2m(0x0, 0x7, 0x2) setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x32, &(0x7f0000000040)=0x8, 0x4) syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff) r0 = getpgrp(0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000080)=0x1) prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = getpid() openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) r4 = socket(0x10, 0x3, 0x0) ioctl$SG_GET_COMMAND_Q(0xffffffffffffffff, 0x2270, &(0x7f0000000380)) write(r4, 0x0, 0x0) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/power/resume_offset', 0x2, 0x0) socket(0x40000000015, 0x5, 0x0) r5 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r5, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000011008188e6b62aa73772cc9f1ba1f848390000005e140602000000002f001c000f000000028000001294", 0x2e}], 0x1}, 0x0) mount(&(0x7f0000000080)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000100)='./file0\x00', &(0x7f00000000c0)='ufs\x00', 0x1000000, 0x0) 33.921904813s ago: executing program 2 (id=29): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) close(r1) socket$alg(0x26, 0x5, 0x0) r2 = getpgrp(0x0) sched_setaffinity(r2, 0x8, &(0x7f0000000040)=0x5) prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r3 = getpid() sched_setscheduler(r3, 0x2, &(0x7f0000000000)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r4 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r4, 0x1, 0x0) r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8) write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="7bedcb5d07081196f37538e486dd6372ce22667f2b00dbf6e97158cf474fec87891f6d76745b686158bbcfe8875afdef00010000000029"], 0x66) 30.283715639s ago: executing program 1 (id=34): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x804}, 0xc0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) r1 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r1, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16) connect$inet(r1, &(0x7f0000000200)={0x2, 0x0, @multicast2}, 0x10) sendmmsg(r1, &(0x7f0000007fc0), 0x800001d, 0x900f000) 22.533040932s ago: executing program 3 (id=40): r0 = syz_usb_connect(0x0, 0x3f, 0x0, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000300)={0x84, &(0x7f0000000100)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) socket$kcm(0x11, 0x3, 0x0) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2}) close(0xffffffffffffffff) ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast}) r1 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'}) r2 = socket$unix(0x1, 0x1, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000026c0)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2, 0xffff}}, [@qdisc_kind_options=@q_cbs={{0x8}, {0x1c, 0x2, @TCA_CBS_PARMS={0x18, 0x1, {0x0, '\x00', 0x1, 0x7, 0x100, 0x8}}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x20000001}, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56441, 0x70bd29, 0x80200, {0x0, 0x0, 0x0, r4, {0x0, 0x6}, {0x2, 0xb}, {0xd, 0x8a62a9987a96d8de}}, [@qdisc_kind_options=@q_skbprio={{0xc}, {0x8, 0x2, 0x3587}}]}, 0x38}, 0x1, 0x0, 0x0, 0x2000c061}, 0x8000) ioctl$vim2m_VIDIOC_ENUM_FMT(0xffffffffffffffff, 0xc0405602, &(0x7f0000000000)={0x7, 0x1, 0x0, "d2ea61bf62041dae026e9e8203614554307c83d774dfc0fb62602f9a84c3bbe4", 0x4745504a}) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1a00000007"], 0x50) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) writev(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000000)='4', 0x1}], 0x1) write$binfmt_misc(r5, &(0x7f0000000000), 0xd) 20.101692096s ago: executing program 0 (id=41): mkdir(&(0x7f0000000140)='./file0\x00', 0x63) syz_open_dev$vim2m(0x0, 0x7, 0x2) setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x32, &(0x7f0000000040)=0x8, 0x4) syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff) r0 = getpgrp(0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000080)=0x1) prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = getpid() openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) r4 = socket(0x10, 0x3, 0x0) r5 = syz_open_dev$sg(&(0x7f0000000340), 0x0, 0x109200) ioctl$SG_GET_COMMAND_Q(r5, 0x2270, &(0x7f0000000380)) write(r4, 0x0, 0x0) mount(&(0x7f0000000080)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000100)='./file0\x00', &(0x7f00000000c0)='ufs\x00', 0x1000000, 0x0) 17.470646959s ago: executing program 32 (id=29): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) close(r1) socket$alg(0x26, 0x5, 0x0) r2 = getpgrp(0x0) sched_setaffinity(r2, 0x8, &(0x7f0000000040)=0x5) prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r3 = getpid() sched_setscheduler(r3, 0x2, &(0x7f0000000000)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r4 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r4, 0x1, 0x0) r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8) write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="7bedcb5d07081196f37538e486dd6372ce22667f2b00dbf6e97158cf474fec87891f6d76745b686158bbcfe8875afdef00010000000029"], 0x66) 14.044487846s ago: executing program 33 (id=34): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x804}, 0xc0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) r1 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r1, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16) connect$inet(r1, &(0x7f0000000200)={0x2, 0x0, @multicast2}, 0x10) sendmmsg(r1, &(0x7f0000007fc0), 0x800001d, 0x900f000) 14.021755977s ago: executing program 0 (id=44): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400), 0x8800, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CAP_SPLIT_IRQCHIP(r1, 0x4068aea3, &(0x7f00000001c0)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4138ae84, &(0x7f00000004c0)=@x86={0x6, 0xa, 0x7, 0x0, 0x3, 0xad, 0xce, 0x1c, 0x89, 0xa4, 0x27, 0x8, 0x0, 0x8000, 0xb, 0x2, 0x8, 0x2, 0x1, '\x00', 0x19, 0x3fb}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000140)=@x86={0x5, 0x0, 0x7, 0x0, 0xdc, 0x4, 0x6, 0x7, 0x7, 0x9, 0x3, 0x9, 0x0, 0x7, 0x100, 0xf7, 0x5, 0xf4, 0xc, '\x00', 0xfe}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 11.972602756s ago: executing program 3 (id=45): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB]) r0 = syz_io_uring_setup(0x10b, &(0x7f0000000140)={0x0, 0x334e, 0x10, 0x3, 0x800}, &(0x7f00000003c0)=0x0, &(0x7f0000000300)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000540)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000040)='./file0/file0\x00', 0x60, 0x185500, 0x12345}) io_uring_enter(r0, 0x7277, 0x1, 0x0, 0x0, 0x0) 10.790336046s ago: executing program 0 (id=46): mkdir(&(0x7f0000000140)='./file0\x00', 0x63) syz_open_dev$vim2m(0x0, 0x7, 0x2) setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x32, &(0x7f0000000040)=0x8, 0x4) syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff) r0 = getpgrp(0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000080)=0x1) prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = getpid() openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) r4 = socket(0x10, 0x3, 0x0) r5 = syz_open_dev$sg(&(0x7f0000000340), 0x0, 0x109200) ioctl$SG_GET_COMMAND_Q(r5, 0x2270, &(0x7f0000000380)) write(r4, 0x0, 0x0) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/power/resume_offset', 0x2, 0x0) mount(&(0x7f0000000080)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000100)='./file0\x00', &(0x7f00000000c0)='ufs\x00', 0x1000000, 0x0) 10.674020551s ago: executing program 3 (id=47): mkdir(&(0x7f0000000140)='./file0\x00', 0x63) syz_open_dev$vim2m(0x0, 0x7, 0x2) setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x32, &(0x7f0000000040)=0x8, 0x4) syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff) r0 = getpgrp(0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000080)=0x1) prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = getpid() openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) socket(0x10, 0x3, 0x0) r4 = syz_open_dev$sg(&(0x7f0000000340), 0x0, 0x109200) ioctl$SG_GET_COMMAND_Q(r4, 0x2270, &(0x7f0000000380)) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/power/resume_offset', 0x2, 0x0) socket(0x40000000015, 0x5, 0x0) r5 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r5, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000011008188e6b62aa73772cc9f1ba1f848390000005e140602000000002f001c000f000000028000001294", 0x2e}], 0x1}, 0x0) mount(&(0x7f0000000080)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000100)='./file0\x00', &(0x7f00000000c0)='ufs\x00', 0x1000000, 0x0) 6.383987746s ago: executing program 0 (id=48): add_key(&(0x7f0000000240)='dns_resolver\x00', 0x0, 0x0, 0x0, 0x0) openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) r1 = socket$inet_smc(0x2b, 0x1, 0x0) r2 = syz_io_uring_setup(0x10d, &(0x7f0000000540)={0x0, 0xd4bb, 0x0, 0xfffffffd}, &(0x7f0000000380)=0x0, &(0x7f0000000280)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0x10000, 0x0, 0x4) syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x80800}) io_uring_enter(r2, 0x3517, 0xc2de, 0x9, 0x0, 0x0) 5.890965897s ago: executing program 3 (id=49): mkdir(&(0x7f0000000140)='./file0\x00', 0x63) syz_open_dev$vim2m(0x0, 0x7, 0x2) setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x32, &(0x7f0000000040)=0x8, 0x4) syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff) r0 = getpgrp(0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000080)=0x1) prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = getpid() openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) r4 = socket(0x10, 0x3, 0x0) r5 = syz_open_dev$sg(&(0x7f0000000340), 0x0, 0x109200) ioctl$SG_GET_COMMAND_Q(r5, 0x2270, &(0x7f0000000380)) write(r4, 0x0, 0x0) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/power/resume_offset', 0x2, 0x0) socket(0x40000000015, 0x5, 0x0) mount(&(0x7f0000000080)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000100)='./file0\x00', &(0x7f00000000c0)='ufs\x00', 0x1000000, 0x0) 2.160399187s ago: executing program 3 (id=50): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) close(r1) socket$alg(0x26, 0x5, 0x0) r2 = getpgrp(0x0) sched_setaffinity(r2, 0x8, &(0x7f0000000040)=0x5) prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r3 = getpid() sched_setscheduler(r3, 0x2, &(0x7f0000000000)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r4 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r4, 0x1, 0x0) r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8) write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="7bedcb5d07081196f37538e486dd6372ce22667f2b00dbf6e97158cf474fec87891f6d76745b686158bbcfe8875afdef00010000000029"], 0x66) 2.032304433s ago: executing program 0 (id=51): mkdirat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x1) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000080)={[{@quota}, {@usrquota_inode_hardlimit={'usrquota_inode_hardlimit', 0x3d, [0x37]}}]}) chdir(&(0x7f0000000240)='./file0\x00') mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mkdir(&(0x7f00000000c0)='./bus\x00', 0x0) mkdir(&(0x7f0000000440)='./file1\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, 0x0) r0 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0) mknodat$loop(r0, &(0x7f0000001600)='./file1\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./bus\x00') openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143043, 0x0) creat(&(0x7f00000002c0)='./file0\x00', 0x0) 1.718139146s ago: executing program 0 (id=52): syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6) sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x0) connect$bt_l2cap(0xffffffffffffffff, 0x0, 0x0) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x0, '\x00', 0x0, 0x0}, 0x48) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000), 0xc) openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0xffffffffffffff7c, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee7, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0xfffffffffffffeef, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400), 0x8800, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CAP_SPLIT_IRQCHIP(r4, 0x4068aea3, &(0x7f00000001c0)) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1) ioctl$KVM_SET_VCPU_EVENTS(r5, 0x4138ae84, &(0x7f00000004c0)=@x86={0x6, 0xa, 0x7, 0x0, 0x3, 0xad, 0xce, 0x1c, 0x89, 0xa4, 0x27, 0x8, 0x0, 0x8000, 0xb, 0x2, 0x8, 0x2, 0x1, '\x00', 0x19, 0x3fb}) 0s ago: executing program 3 (id=53): r0 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0) ioctl$DRM_IOCTL_GET_CAP(r0, 0xc010640c, &(0x7f00000000c0)={0x11}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) socket$inet_udp(0x2, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002) r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r3) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) ptrace$pokeuser(0x6, r3, 0x358, 0x800000000000) sched_setaffinity(r3, 0x0, 0x0) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) bind$bt_l2cap(r4, &(0x7f0000000000)={0x1f, 0x0, @any, 0x4, 0x1}, 0xe) listen(r4, 0x3) accept4$bt_l2cap(r4, &(0x7f0000000200), 0x0, 0x800) syz_emit_vhci(&(0x7f0000000540)=ANY=[@ANYBLOB="043e130100c900", @ANYBLOB=' '], 0x16) setsockopt$MRT_DONE(0xffffffffffffffff, 0x0, 0xc9, 0x0, 0x0) sched_setscheduler(r1, 0x2, 0x0) syz_emit_ethernet(0x45, &(0x7f0000000000)={@broadcast, @empty, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x37, 0x0, 0x0, 0x0, 0x67, 0x0, @rand_addr, @broadcast}, @time_exceeded={0x21, 0x0, 0x0, 0x12, 0x0, 0x2802, {0x5, 0x2, 0x0, 0x0, 0x24, 0x64, 0xffff, 0x0, 0x0, 0x0, @broadcast, @rand_addr=0xe0000000}, "e9c9cee4837ae0"}}}}}, 0x0) syz_mount_image$squashfs(&(0x7f0000000080), &(0x7f0000000480)='./file1\x00', 0x80, &(0x7f0000000240)=ANY=[], 0xfb, 0x1a5, &(0x7f0000000600)="$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") r5 = openat$dir(0xffffffffffffff9c, &(0x7f00000002c0)='.\x00', 0x0, 0x0) lseek(r5, 0x5, 0x1) getdents(r5, 0x0, 0x58) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.149' (ED25519) to the list of known hosts. [ 56.721053][ T5774] cgroup: Unknown subsys name 'net' [ 56.860416][ T5774] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 58.266299][ T5774] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 60.461419][ T5790] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 60.476030][ T5799] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 60.484505][ T5799] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 60.492971][ T5799] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 60.501673][ T5799] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 60.509973][ T5799] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 60.517930][ T5799] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 60.526467][ T5799] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 60.534454][ T5800] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 60.536717][ T5803] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 60.550761][ T5803] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 60.558462][ T5800] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 60.561897][ T5801] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 60.572804][ T5803] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 60.573357][ T5800] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 60.582364][ T5803] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 60.588463][ T5800] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 60.594809][ T5803] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 60.608522][ T5801] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 60.608598][ T5800] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 60.627405][ T5803] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 60.635379][ T51] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 60.644637][ T51] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 60.652455][ T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 61.116636][ T5786] chnl_net:caif_netlink_parms(): no params data found [ 61.165089][ T5791] chnl_net:caif_netlink_parms(): no params data found [ 61.220314][ T5792] chnl_net:caif_netlink_parms(): no params data found [ 61.261623][ T5787] chnl_net:caif_netlink_parms(): no params data found [ 61.350279][ T5786] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.357654][ T5786] bridge0: port 1(bridge_slave_0) entered disabled state [ 61.366921][ T5786] bridge_slave_0: entered allmulticast mode [ 61.374866][ T5786] bridge_slave_0: entered promiscuous mode [ 61.395887][ T5791] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.403071][ T5791] bridge0: port 1(bridge_slave_0) entered disabled state [ 61.411007][ T5791] bridge_slave_0: entered allmulticast mode [ 61.419106][ T5791] bridge_slave_0: entered promiscuous mode [ 61.427730][ T5791] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.435127][ T5791] bridge0: port 2(bridge_slave_1) entered disabled state [ 61.442641][ T5791] bridge_slave_1: entered allmulticast mode [ 61.449895][ T5791] bridge_slave_1: entered promiscuous mode [ 61.457453][ T5786] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.464873][ T5786] bridge0: port 2(bridge_slave_1) entered disabled state [ 61.472291][ T5786] bridge_slave_1: entered allmulticast mode [ 61.479290][ T5786] bridge_slave_1: entered promiscuous mode [ 61.561537][ T5791] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 61.573999][ T5786] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 61.588105][ T5786] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 61.603638][ T5792] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.611108][ T5792] bridge0: port 1(bridge_slave_0) entered disabled state [ 61.618933][ T5792] bridge_slave_0: entered allmulticast mode [ 61.628898][ T5792] bridge_slave_0: entered promiscuous mode [ 61.639777][ T5791] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 61.697886][ T5792] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.705291][ T5792] bridge0: port 2(bridge_slave_1) entered disabled state [ 61.712506][ T5792] bridge_slave_1: entered allmulticast mode [ 61.720682][ T5792] bridge_slave_1: entered promiscuous mode [ 61.753981][ T5786] team0: Port device team_slave_0 added [ 61.763141][ T5786] team0: Port device team_slave_1 added [ 61.769499][ T5787] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.777181][ T5787] bridge0: port 1(bridge_slave_0) entered disabled state [ 61.784555][ T5787] bridge_slave_0: entered allmulticast mode [ 61.791311][ T5787] bridge_slave_0: entered promiscuous mode [ 61.812742][ T5791] team0: Port device team_slave_0 added [ 61.840401][ T5787] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.847794][ T5787] bridge0: port 2(bridge_slave_1) entered disabled state [ 61.855900][ T5787] bridge_slave_1: entered allmulticast mode [ 61.863553][ T5787] bridge_slave_1: entered promiscuous mode [ 61.885248][ T5791] team0: Port device team_slave_1 added [ 61.893348][ T5792] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 61.906758][ T5792] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 61.917664][ T5786] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 61.924727][ T5786] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 61.952247][ T5786] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 62.018970][ T5786] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 62.026341][ T5786] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 62.053095][ T5786] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 62.071633][ T5787] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 62.084573][ T5787] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 62.102199][ T5791] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 62.109532][ T5791] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 62.136884][ T5791] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 62.165782][ T5792] team0: Port device team_slave_0 added [ 62.182679][ T5791] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 62.189982][ T5791] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 62.218311][ T5791] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 62.237615][ T5792] team0: Port device team_slave_1 added [ 62.293464][ T5787] team0: Port device team_slave_0 added [ 62.302990][ T5787] team0: Port device team_slave_1 added [ 62.353461][ T5786] hsr_slave_0: entered promiscuous mode [ 62.362516][ T5786] hsr_slave_1: entered promiscuous mode [ 62.370258][ T5792] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 62.378028][ T5792] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 62.404925][ T5792] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 62.419840][ T5791] hsr_slave_0: entered promiscuous mode [ 62.427582][ T5791] hsr_slave_1: entered promiscuous mode [ 62.435491][ T5791] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 62.444210][ T5791] Cannot create hsr debugfs directory [ 62.462752][ T5787] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 62.470407][ T5787] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 62.498106][ T5787] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 62.511935][ T5787] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 62.520400][ T5787] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 62.550419][ T5787] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 62.562757][ T5792] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 62.570873][ T5792] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 62.597992][ T5792] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 62.726275][ T5802] Bluetooth: hci2: command tx timeout [ 62.734275][ T5802] Bluetooth: hci0: command tx timeout [ 62.740071][ T5802] Bluetooth: hci3: command tx timeout [ 62.746067][ T5104] Bluetooth: hci1: command tx timeout [ 62.760351][ T5792] hsr_slave_0: entered promiscuous mode [ 62.766910][ T5792] hsr_slave_1: entered promiscuous mode [ 62.773265][ T5792] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 62.781197][ T5792] Cannot create hsr debugfs directory [ 62.838966][ T5787] hsr_slave_0: entered promiscuous mode [ 62.845865][ T5787] hsr_slave_1: entered promiscuous mode [ 62.851909][ T5787] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 62.859614][ T5787] Cannot create hsr debugfs directory [ 63.147411][ T5791] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 63.160578][ T5791] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 63.170428][ T5791] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 63.181484][ T5791] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 63.240705][ T5786] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 63.252881][ T5786] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 63.267546][ T5786] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 63.278880][ T5786] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 63.357899][ T5787] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 63.376897][ T5787] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 63.391582][ T5787] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 63.442929][ T5787] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 63.459839][ T5792] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 63.469519][ T5792] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 63.493393][ T5792] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 63.505613][ T5792] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 63.619494][ T5791] 8021q: adding VLAN 0 to HW filter on device bond0 [ 63.671089][ T5786] 8021q: adding VLAN 0 to HW filter on device bond0 [ 63.682361][ T5791] 8021q: adding VLAN 0 to HW filter on device team0 [ 63.719316][ T1120] bridge0: port 1(bridge_slave_0) entered blocking state [ 63.726820][ T1120] bridge0: port 1(bridge_slave_0) entered forwarding state [ 63.749175][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 63.756373][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 63.782273][ T5786] 8021q: adding VLAN 0 to HW filter on device team0 [ 63.809520][ T5787] 8021q: adding VLAN 0 to HW filter on device bond0 [ 63.830292][ T1150] bridge0: port 1(bridge_slave_0) entered blocking state [ 63.837487][ T1150] bridge0: port 1(bridge_slave_0) entered forwarding state [ 63.866209][ T1150] bridge0: port 2(bridge_slave_1) entered blocking state [ 63.873361][ T1150] bridge0: port 2(bridge_slave_1) entered forwarding state [ 63.888535][ T5792] 8021q: adding VLAN 0 to HW filter on device bond0 [ 63.903554][ T5787] 8021q: adding VLAN 0 to HW filter on device team0 [ 63.938586][ T5791] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 63.949515][ T5791] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 63.964596][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 63.971739][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 63.989081][ T5792] 8021q: adding VLAN 0 to HW filter on device team0 [ 63.999062][ T1120] bridge0: port 2(bridge_slave_1) entered blocking state [ 64.006255][ T1120] bridge0: port 2(bridge_slave_1) entered forwarding state [ 64.053536][ T1150] bridge0: port 1(bridge_slave_0) entered blocking state [ 64.060797][ T1150] bridge0: port 1(bridge_slave_0) entered forwarding state [ 64.112459][ T1115] bridge0: port 2(bridge_slave_1) entered blocking state [ 64.119700][ T1115] bridge0: port 2(bridge_slave_1) entered forwarding state [ 64.201949][ T5787] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 64.458175][ T5791] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 64.540496][ T5786] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 64.616531][ T5791] veth0_vlan: entered promiscuous mode [ 64.653455][ T5791] veth1_vlan: entered promiscuous mode [ 64.698979][ T5792] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 64.711733][ T5786] veth0_vlan: entered promiscuous mode [ 64.728159][ T5786] veth1_vlan: entered promiscuous mode [ 64.740232][ T5787] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 64.753783][ T5791] veth0_macvtap: entered promiscuous mode [ 64.785368][ T5791] veth1_macvtap: entered promiscuous mode [ 64.804673][ T5802] Bluetooth: hci3: command tx timeout [ 64.805870][ T5794] Bluetooth: hci1: command tx timeout [ 64.810105][ T51] Bluetooth: hci0: command tx timeout [ 64.816274][ T5104] Bluetooth: hci2: command tx timeout [ 64.858231][ T5791] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 64.883316][ T5792] veth0_vlan: entered promiscuous mode [ 64.898517][ T5786] veth0_macvtap: entered promiscuous mode [ 64.909834][ T5791] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 64.926958][ T5786] veth1_macvtap: entered promiscuous mode [ 64.948010][ T5791] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.957911][ T5791] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.968443][ T5791] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.977564][ T5791] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.989489][ T5792] veth1_vlan: entered promiscuous mode [ 64.998798][ T5787] veth0_vlan: entered promiscuous mode [ 65.012977][ T5787] veth1_vlan: entered promiscuous mode [ 65.063663][ T5786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 65.074939][ T5786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 65.089398][ T5786] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 65.117901][ T5786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 65.130907][ T5786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 65.145007][ T5786] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 65.163456][ T5792] veth0_macvtap: entered promiscuous mode [ 65.172920][ T5786] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.182026][ T5786] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.191128][ T5786] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.200092][ T5786] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.238109][ T5787] veth0_macvtap: entered promiscuous mode [ 65.249004][ T5787] veth1_macvtap: entered promiscuous mode [ 65.263128][ T5792] veth1_macvtap: entered promiscuous mode [ 65.344860][ T1150] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 65.357631][ T5787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 65.376723][ T1150] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 65.382015][ T5787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 65.396996][ T5787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 65.407942][ T5787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 65.422264][ T5787] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 65.443476][ T5792] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 65.457275][ T5792] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 65.468603][ T5792] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 65.479265][ T5792] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 65.489291][ T5792] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 65.501055][ T5792] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 65.512442][ T5792] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 65.526568][ T5787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 65.541904][ T5787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 65.553933][ T5787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 65.565496][ T5787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 65.577057][ T5787] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 65.598832][ T2982] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 65.612798][ T5792] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 65.615540][ T2982] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 65.625134][ T5792] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 65.641052][ T5792] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 65.651788][ T5792] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 65.661946][ T5792] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 65.673841][ T5792] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 65.692410][ T5792] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 65.708023][ T5792] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.719052][ T5792] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.728319][ T5792] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.738237][ T5792] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.770004][ T5787] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.783736][ T5787] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.793260][ T5787] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.804633][ T5787] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.828639][ T2982] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 65.852087][ T2982] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 65.945173][ T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 65.959016][ T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 66.111955][ T2966] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 66.137928][ T2966] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 66.224321][ T1120] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 66.233539][ T1120] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 66.438269][ T1115] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 66.484532][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 67.114497][ T0] NOHZ tick-stop error: local softirq work is pending, handler #142!!! [ 67.504764][ T5104] Bluetooth: hci0: command tx timeout [ 67.508617][ T5794] Bluetooth: hci3: command tx timeout [ 67.510751][ T5104] Bluetooth: hci2: command tx timeout [ 67.517912][ T5794] Bluetooth: hci1: command tx timeout [ 67.558248][ T5884] ufs: You didn't specify the type of your ufs filesystem [ 67.558248][ T5884] [ 67.558248][ T5884] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ... [ 67.558248][ T5884] [ 67.558248][ T5884] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old [ 67.593993][ T5884] ufs: ufstype=old is supported read-only [ 67.601753][ T5884] syz.3.4: attempt to access beyond end of device [ 67.601753][ T5884] nbd3: rw=0, sector=16, nr_sectors = 2 limit=0 [ 67.728773][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 67.741247][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 67.933546][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 67.940542][ T1115] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 69.135847][ T5882] Zero length message leads to an empty skb [ 69.144635][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 69.162799][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 69.185575][ T5882] netlink: 14 bytes leftover after parsing attributes in process `syz.2.5'. [ 69.238899][ T5886] ufs: You didn't specify the type of your ufs filesystem [ 69.238899][ T5886] [ 69.238899][ T5886] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ... [ 69.238899][ T5886] [ 69.238899][ T5886] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old [ 69.282391][ T5886] ufs: ufstype=old is supported read-only [ 69.304670][ T5886] syz.2.5: attempt to access beyond end of device [ 69.304670][ T5886] nbd2: rw=0, sector=16, nr_sectors = 2 limit=0 [ 69.361367][ T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 69.473141][ T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 69.605298][ T5104] Bluetooth: hci2: command tx timeout [ 69.611606][ T51] Bluetooth: hci0: command tx timeout [ 69.618467][ T5802] Bluetooth: hci3: command tx timeout [ 69.626364][ T5794] Bluetooth: hci1: command tx timeout [ 69.765142][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 71.007219][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 71.017889][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 71.087575][ T5896] ufs: You didn't specify the type of your ufs filesystem [ 71.087575][ T5896] [ 71.087575][ T5896] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ... [ 71.087575][ T5896] [ 71.087575][ T5896] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old [ 71.136572][ T5896] ufs: ufstype=old is supported read-only [ 71.152015][ T5896] syz.0.1: attempt to access beyond end of device [ 71.152015][ T5896] nbd0: rw=0, sector=16, nr_sectors = 2 limit=0 [ 72.244761][ T5894] netlink: 14 bytes leftover after parsing attributes in process `syz.0.1'. [ 72.366267][ T1280] ieee802154 phy0 wpan0: encryption failed: -22 [ 72.378342][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 72.596904][ T5890] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2'. [ 72.991157][ T5904] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9'. [ 73.349832][ T5907] syz.1.10[5907]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set [ 74.240093][ T5907] loop1: detected capacity change from 0 to 256 [ 75.264100][ C1] sched: RT throttling activated [ 81.785224][ T5930] binder: BINDER_SET_CONTEXT_MGR already set [ 81.869170][ T5930] binder: 5928:5930 ioctl 4018620d 200000004a80 returned -16 [ 82.111588][ T9] cfg80211: failed to load regulatory.db [ 83.649478][ T5949] process 'syz.0.8' launched './file0' with NULL argv: empty string added [ 84.604615][ T5948] ufs: You didn't specify the type of your ufs filesystem [ 84.604615][ T5948] [ 84.604615][ T5948] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ... [ 84.604615][ T5948] [ 84.604615][ T5948] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old [ 84.661171][ T5948] ufs: ufstype=old is supported read-only [ 84.672570][ T5948] syz.2.17: attempt to access beyond end of device [ 84.672570][ T5948] nbd2: rw=0, sector=16, nr_sectors = 2 limit=0 [ 84.968507][ C0] vxcan0: j1939_tp_rxtimer: 0xffff888018b47800: rx timeout, send abort [ 85.481566][ C0] vxcan0: j1939_tp_rxtimer: 0xffff888018b47800: abort rx timeout. Force session deactivation [ 86.410752][ T5962] ufs: You didn't specify the type of your ufs filesystem [ 86.410752][ T5962] [ 86.410752][ T5962] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ... [ 86.410752][ T5962] [ 86.410752][ T5962] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old [ 86.453432][ T5962] ufs: ufstype=old is supported read-only [ 86.463627][ T5962] syz.0.19: attempt to access beyond end of device [ 86.463627][ T5962] nbd0: rw=0, sector=16, nr_sectors = 2 limit=0 [ 88.331710][ T5964] ufs: You didn't specify the type of your ufs filesystem [ 88.331710][ T5964] [ 88.331710][ T5964] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ... [ 88.331710][ T5964] [ 88.331710][ T5964] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old [ 88.366985][ T5964] ufs: ufstype=old is supported read-only [ 88.375460][ T5964] syz.2.18: attempt to access beyond end of device [ 88.375460][ T5964] nbd2: rw=0, sector=16, nr_sectors = 2 limit=0 [ 90.141454][ T5968] ufs: You didn't specify the type of your ufs filesystem [ 90.141454][ T5968] [ 90.141454][ T5968] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ... [ 90.141454][ T5968] [ 90.141454][ T5968] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old [ 90.179578][ T5968] ufs: ufstype=old is supported read-only [ 90.187299][ T5968] syz.1.21: attempt to access beyond end of device [ 90.187299][ T5968] nbd1: rw=0, sector=16, nr_sectors = 2 limit=0 [ 91.332638][ T5971] tipc: Started in network mode [ 91.455213][ T5971] tipc: Node identity e6312e60a836, cluster identity 4711 [ 91.463717][ T5971] tipc: Enabled bearer , priority 0 [ 92.342035][ T5973] syzkaller0: entered promiscuous mode [ 92.364692][ T5973] syzkaller0: entered allmulticast mode [ 92.395586][ T5973] tipc: Resetting bearer [ 93.000762][ T5977] ufs: You didn't specify the type of your ufs filesystem [ 93.000762][ T5977] [ 93.000762][ T5977] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ... [ 93.000762][ T5977] [ 93.000762][ T5977] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old [ 93.035313][ T5977] ufs: ufstype=old is supported read-only [ 93.045151][ T5977] syz.0.20: attempt to access beyond end of device [ 93.045151][ T5977] nbd0: rw=0, sector=16, nr_sectors = 2 limit=0 [ 93.908327][ T28] tipc: Node number set to 1309093472 [ 94.072062][ T5973] tipc: Enabling of bearer rejected, already enabled [ 96.959425][ T5987] ufs: You didn't specify the type of your ufs filesystem [ 96.959425][ T5987] [ 96.959425][ T5987] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ... [ 96.959425][ T5987] [ 96.959425][ T5987] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old [ 97.000419][ T5987] ufs: ufstype=old is supported read-only [ 97.009799][ T5987] syz.2.23: attempt to access beyond end of device [ 97.009799][ T5987] nbd2: rw=0, sector=16, nr_sectors = 2 limit=0 [ 99.143556][ T5994] netlink: 14 bytes leftover after parsing attributes in process `syz.1.24'. [ 99.208137][ T5996] ufs: You didn't specify the type of your ufs filesystem [ 99.208137][ T5996] [ 99.208137][ T5996] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ... [ 99.208137][ T5996] [ 99.208137][ T5996] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old [ 99.248184][ T5996] ufs: ufstype=old is supported read-only [ 99.258453][ T5996] syz.1.24: attempt to access beyond end of device [ 99.258453][ T5996] nbd1: rw=0, sector=16, nr_sectors = 2 limit=0 [ 101.864965][ T5932] tipc: Resetting bearer [ 102.281575][ T5932] tipc: Disabling bearer [ 108.084531][ T6029] ufs: You didn't specify the type of your ufs filesystem [ 108.084531][ T6029] [ 108.084531][ T6029] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ... [ 108.084531][ T6029] [ 108.084531][ T6029] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old [ 108.134024][ T6029] ufs: ufstype=old is supported read-only [ 108.150125][ T6029] syz.3.38: attempt to access beyond end of device [ 108.150125][ T6029] nbd3: rw=0, sector=16, nr_sectors = 2 limit=0 [ 110.309971][ T6033] ufs: You didn't specify the type of your ufs filesystem [ 110.309971][ T6033] [ 110.309971][ T6033] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ... [ 110.309971][ T6033] [ 110.309971][ T6033] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old [ 110.368330][ T6033] ufs: ufstype=old is supported read-only [ 110.383983][ T6033] syz.0.39: attempt to access beyond end of device [ 110.383983][ T6033] nbd0: rw=0, sector=16, nr_sectors = 2 limit=0 [ 116.551371][ T6045] ufs: You didn't specify the type of your ufs filesystem [ 116.551371][ T6045] [ 116.551371][ T6045] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ... [ 116.551371][ T6045] [ 116.551371][ T6045] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old [ 116.600623][ T6045] ufs: ufstype=old is supported read-only [ 116.611108][ T6045] syz.0.41: attempt to access beyond end of device [ 116.611108][ T6045] nbd0: rw=0, sector=16, nr_sectors = 2 limit=0 [ 118.925486][ T5802] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 118.943507][ T1120] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 118.997875][ T5802] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 119.018033][ T5802] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 119.041571][ T5802] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 119.057945][ T5802] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 119.070629][ T5802] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 119.326109][ T1120] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 119.473224][ T5794] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 119.485950][ T5794] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 119.499394][ T5794] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 119.513129][ T5794] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 119.523891][ T5794] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 119.556354][ T5794] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 119.647145][ T1120] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 119.822083][ T1120] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 120.305623][ T6063] kAFS: No cell specified [ 120.460115][ T6067] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 121.124507][ T51] Bluetooth: hci2: command tx timeout [ 122.346246][ T6082] ufs: You didn't specify the type of your ufs filesystem [ 122.346246][ T6082] [ 122.346246][ T6082] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ... [ 122.346246][ T6082] [ 122.346246][ T6082] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old [ 122.402228][ T6082] ufs: ufstype=old is supported read-only [ 122.415433][ T6082] syz.3.47: attempt to access beyond end of device [ 122.415433][ T6082] nbd3: rw=0, sector=16, nr_sectors = 2 limit=0 [ 123.609915][ T51] Bluetooth: hci4: command tx timeout [ 123.620901][ T51] Bluetooth: hci2: command tx timeout [ 123.921636][ T6083] ufs: You didn't specify the type of your ufs filesystem [ 123.921636][ T6083] [ 123.921636][ T6083] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ... [ 123.921636][ T6083] [ 123.921636][ T6083] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old [ 123.968572][ T6083] ufs: ufstype=old is supported read-only [ 123.980869][ T6083] syz.0.46: attempt to access beyond end of device [ 123.980869][ T6083] nbd0: rw=0, sector=16, nr_sectors = 2 limit=0 [ 125.684331][ T51] Bluetooth: hci2: command tx timeout [ 125.695792][ T51] Bluetooth: hci4: command tx timeout [ 125.892834][ T6080] netlink: 14 bytes leftover after parsing attributes in process `syz.3.47'. [ 126.181846][ T6054] chnl_net:caif_netlink_parms(): no params data found [ 126.350183][ T6060] chnl_net:caif_netlink_parms(): no params data found [ 127.093001][ T6054] bridge0: port 1(bridge_slave_0) entered blocking state [ 127.142821][ T6054] bridge0: port 1(bridge_slave_0) entered disabled state [ 127.188285][ T6054] bridge_slave_0: entered allmulticast mode [ 127.329386][ T6054] bridge_slave_0: entered promiscuous mode [ 127.371867][ T6054] bridge0: port 2(bridge_slave_1) entered blocking state [ 127.404611][ T6054] bridge0: port 2(bridge_slave_1) entered disabled state [ 127.521089][ T6054] bridge_slave_1: entered allmulticast mode [ 127.540818][ T6054] bridge_slave_1: entered promiscuous mode [ 127.764912][ T51] Bluetooth: hci2: command tx timeout [ 127.774437][ T51] Bluetooth: hci4: command tx timeout [ 128.485887][ T6107] ufs: You didn't specify the type of your ufs filesystem [ 128.485887][ T6107] [ 128.485887][ T6107] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ... [ 128.485887][ T6107] [ 128.485887][ T6107] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old [ 128.525574][ T6107] ufs: ufstype=old is supported read-only [ 128.534437][ T6107] syz.3.49: attempt to access beyond end of device [ 128.534437][ T6107] nbd3: rw=0, sector=16, nr_sectors = 2 limit=0 [ 129.847626][ T51] Bluetooth: hci4: command tx timeout [ 130.170681][ T6112] overlayfs: missing 'lowerdir' [ 130.187762][ T6060] bridge0: port 1(bridge_slave_0) entered blocking state [ 130.206929][ T6060] bridge0: port 1(bridge_slave_0) entered disabled state [ 130.242840][ T6060] bridge_slave_0: entered allmulticast mode [ 130.262953][ T6060] bridge_slave_0: entered promiscuous mode [ 130.370926][ T6054] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 130.419880][ T6054] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 130.444601][ T6060] bridge0: port 2(bridge_slave_1) entered blocking state [ 130.485658][ T6060] bridge0: port 2(bridge_slave_1) entered disabled state [ 130.515274][ T6060] bridge_slave_1: entered allmulticast mode [ 130.534613][ T6060] bridge_slave_1: entered promiscuous mode [ 130.838316][ T6060] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 130.918127][ T6054] team0: Port device team_slave_0 added [ 131.067630][ T6060] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 131.150824][ T6054] team0: Port device team_slave_1 added [ 131.283786][ T6054] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 131.315668][ T6054] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 131.612988][ T6054] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 132.046265][ T6060] team0: Port device team_slave_0 added [ 132.143691][ T6054] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 132.164192][ T6054] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 132.291201][ T6054] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 132.437726][ T6060] team0: Port device team_slave_1 added [ 132.557303][ T51] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:201' [ 132.557401][ T6131] loop3: detected capacity change from 0 to 8 [ 132.572980][ T51] CPU: 1 PID: 51 Comm: kworker/u5:0 Not tainted syzkaller #0 [ 132.589529][ T51] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 132.604920][ T51] Workqueue: hci1 hci_rx_work [ 132.609844][ T51] Call Trace: [ 132.614796][ T51] [ 132.618105][ T51] dump_stack_lvl+0x16c/0x230 [ 132.624388][ T51] ? show_regs_print_info+0x20/0x20 [ 132.630768][ T51] ? load_image+0x3b0/0x3b0 [ 132.638050][ T51] sysfs_create_dir_ns+0x256/0x280 [ 132.644274][ T51] ? asm_sysvec_reschedule_ipi+0x1a/0x20 [ 132.652918][ T51] ? sysfs_warn_dup+0xa0/0xa0 [ 132.657932][ T51] kobject_add_internal+0x6b8/0xc70 [ 132.663329][ T51] kobject_add+0x156/0x220 [ 132.668044][ T51] ? kobject_init+0x1e0/0x1e0 [ 132.674755][ T51] ? _raw_spin_unlock+0x3a/0x40 [ 132.681589][ T51] ? get_device_parent+0x366/0x390 [ 132.688875][ T51] device_add+0x408/0xc20 [ 132.694015][ T51] hci_conn_add_sysfs+0xd5/0x1e0 [ 132.700787][ T51] le_conn_complete_evt+0xf36/0x1500 [ 132.706562][ T51] ? hci_le_big_info_adv_report_evt+0x8e0/0x8e0 [ 132.717418][ T51] ? asm_sysvec_reschedule_ipi+0x1a/0x20 [ 132.725591][ T51] ? lockdep_hardirqs_on+0x98/0x150 [ 132.731324][ T51] ? skb_pull_data+0xfb/0x200 [ 132.736451][ T51] hci_le_conn_complete_evt+0x187/0x440 [ 132.742224][ T51] ? hci_remote_host_features_evt+0x160/0x160 [ 132.748889][ T51] hci_event_packet+0x795/0x1210 [ 132.754713][ T51] ? bis_list+0x290/0x290 [ 132.760520][ T51] ? kcov_remote_start+0x2b/0x7f0 [ 132.766629][ T51] ? hci_send_to_monitor+0xd7/0x4f0 [ 132.773010][ T51] hci_rx_work+0x43a/0xd80 [ 132.778808][ T51] ? process_scheduled_works+0x957/0x15b0 [ 132.785180][ T51] process_scheduled_works+0xa45/0x15b0 [ 132.790836][ T51] ? assign_work+0x400/0x400 [ 132.795775][ T51] ? assign_work+0x39e/0x400 [ 132.801057][ T51] worker_thread+0xa55/0xfc0 [ 132.806289][ T51] kthread+0x2fa/0x390 [ 132.810598][ T51] ? pr_cont_work+0x560/0x560 [ 132.816349][ T51] ? kthread_blkcg+0xd0/0xd0 [ 132.822124][ T51] ret_from_fork+0x48/0x80 [ 132.828074][ T51] ? kthread_blkcg+0xd0/0xd0 [ 132.834771][ T51] ret_from_fork_asm+0x11/0x20 [ 132.841023][ T51] [ 132.847040][ T51] kobject: kobject_add_internal failed for hci1:201 with -EEXIST, don't try to register things with the same name in the same directory. [ 133.053303][ T1280] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.062716][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.062969][ T51] Bluetooth: hci1: failed to register connection device [ 133.097625][ T51] general protection fault, probably for non-canonical address 0xdffffc0000000026: 0000 [#1] PREEMPT SMP KASAN [ 133.113902][ T51] KASAN: null-ptr-deref in range [0x0000000000000130-0x0000000000000137] [ 133.124940][ T51] CPU: 0 PID: 51 Comm: kworker/u5:0 Not tainted syzkaller #0 [ 133.138132][ T51] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 133.155102][ T51] Workqueue: hci1 hci_rx_work [ 133.162148][ T51] RIP: 0010:__lock_acquire+0xeb/0x7c80 [ 133.168475][ T51] Code: 85 dc 66 00 00 83 3d 8f c9 e3 0c 00 48 89 9c 24 f0 00 00 00 0f 84 11 10 00 00 83 3d ce d0 58 0b 00 74 36 48 89 f8 48 c1 e8 03 <42> 80 3c 00 00 74 1f 48 8b bc 24 88 00 00 00 e8 61 ff 75 00 48 8b [ 133.191833][ T51] RSP: 0018:ffffc90000bc72a0 EFLAGS: 00010002 [ 133.199078][ T51] RAX: 0000000000000026 RBX: 1ffff92000178e78 RCX: 0000000000000000 [ 133.208434][ T51] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000130 [ 133.217931][ T51] RBP: ffffc90000bc74e8 R08: dffffc0000000000 R09: 0000000000000000 [ 133.226625][ T51] R10: dffffc0000000000 R11: fffffbfff1c9527e R12: 0000000000000001 [ 133.237641][ T51] R13: 0000000000000000 R14: ffff88801b293c00 R15: 0000000000000000 [ 133.250371][ T51] FS: 0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 133.263943][ T51] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 133.272167][ T51] CR2: 00007f205b5909c0 CR3: 000000007e999000 CR4: 00000000003526f0 [ 133.283418][ T51] Call Trace: [ 133.287313][ T51] [ 133.290627][ T51] ? lockdep_hardirqs_on+0x98/0x150 [ 133.299363][ T51] ? verify_lock_unused+0x140/0x140 [ 133.308572][ T51] ? __schedule+0x14da/0x44d0 [ 133.315319][ T51] ? verify_lock_unused+0x140/0x140 [ 133.322771][ T51] ? __mutex_lock+0x953/0xcc0 [ 133.329292][ T51] ? __lock_acquire+0x7c80/0x7c80 [ 133.336900][ T51] ? do_raw_spin_lock+0x121/0x2c0 [ 133.343071][ T51] lock_acquire+0x197/0x410 [ 133.348072][ T51] ? l2cap_sock_new_connection_cb+0x4a/0x2b0 [ 133.356292][ T51] ? __mutex_lock+0x95d/0xcc0 [ 133.363352][ T51] ? __mutex_lock+0x4e8/0xcc0 [ 133.369529][ T51] ? read_lock_is_recursive+0x20/0x20 [ 133.378246][ T51] ? l2cap_connect_cfm+0x332/0x1030 [ 133.385440][ T51] ? mutex_lock_nested+0x20/0x20 [ 133.391086][ T51] ? l2cap_global_fixed_chan+0x2ef/0x380 [ 133.400998][ T51] lock_sock_nested+0x48/0x100 [ 133.406938][ T51] ? l2cap_sock_new_connection_cb+0x4a/0x2b0 [ 133.415981][ T51] l2cap_sock_new_connection_cb+0x4a/0x2b0 [ 133.424786][ T51] l2cap_connect_cfm+0x375/0x1030 [ 133.431264][ T51] ? l2cap_ertm_resend+0xff0/0xff0 [ 133.442467][ T51] ? l2cap_ertm_resend+0xff0/0xff0 [ 133.450030][ T51] hci_connect_cfm+0x8f/0x130 [ 133.460647][ T51] le_conn_complete_evt+0xfb5/0x1500 [ 133.466147][ T51] ? hci_le_big_info_adv_report_evt+0x8e0/0x8e0 [ 133.477709][ T51] ? asm_sysvec_reschedule_ipi+0x1a/0x20 [ 133.487579][ T51] ? lockdep_hardirqs_on+0x98/0x150 [ 133.496586][ T51] ? skb_pull_data+0xfb/0x200 [ 133.504687][ T51] hci_le_conn_complete_evt+0x187/0x440 [ 133.511199][ T51] ? hci_remote_host_features_evt+0x160/0x160 [ 133.520804][ T51] hci_event_packet+0x795/0x1210 [ 133.526806][ T51] ? bis_list+0x290/0x290 [ 133.531278][ T51] ? kcov_remote_start+0x2b/0x7f0 [ 133.541809][ T51] ? hci_send_to_monitor+0xd7/0x4f0 [ 133.547980][ T51] hci_rx_work+0x43a/0xd80 [ 133.553707][ T51] ? process_scheduled_works+0x957/0x15b0 [ 133.561657][ T51] process_scheduled_works+0xa45/0x15b0 [ 133.567695][ T51] ? assign_work+0x400/0x400 [ 133.573091][ T51] ? assign_work+0x39e/0x400 [ 133.582781][ T51] worker_thread+0xa55/0xfc0 [ 133.589908][ T51] kthread+0x2fa/0x390 [ 133.597558][ T51] ? pr_cont_work+0x560/0x560 [ 133.604209][ T51] ? kthread_blkcg+0xd0/0xd0 [ 133.613096][ T51] ret_from_fork+0x48/0x80 [ 133.619680][ T51] ? kthread_blkcg+0xd0/0xd0 [ 133.626542][ T51] ret_from_fork_asm+0x11/0x20 [ 133.632072][ T51] [ 133.636948][ T51] Modules linked in: [ 133.641467][ T51] ---[ end trace 0000000000000000 ]--- [ 133.648237][ T51] RIP: 0010:__lock_acquire+0xeb/0x7c80 [ 133.655037][ T51] Code: 85 dc 66 00 00 83 3d 8f c9 e3 0c 00 48 89 9c 24 f0 00 00 00 0f 84 11 10 00 00 83 3d ce d0 58 0b 00 74 36 48 89 f8 48 c1 e8 03 <42> 80 3c 00 00 74 1f 48 8b bc 24 88 00 00 00 e8 61 ff 75 00 48 8b [ 133.680472][ T51] RSP: 0018:ffffc90000bc72a0 EFLAGS: 00010002 [ 133.689852][ T51] RAX: 0000000000000026 RBX: 1ffff92000178e78 RCX: 0000000000000000 [ 133.700416][ T51] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000130 [ 133.710360][ T51] RBP: ffffc90000bc74e8 R08: dffffc0000000000 R09: 0000000000000000 [ 133.721833][ T51] R10: dffffc0000000000 R11: fffffbfff1c9527e R12: 0000000000000001 [ 133.731328][ T51] R13: 0000000000000000 R14: ffff88801b293c00 R15: 0000000000000000 [ 133.743338][ T51] FS: 0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 133.757974][ T51] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 133.768162][ T51] CR2: 00007f205b5909c0 CR3: 000000007e999000 CR4: 00000000003526f0 [ 133.778971][ T51] Kernel panic - not syncing: Fatal exception [ 133.787298][ T51] Kernel Offset: disabled [ 133.793765][ T51] Rebooting in 86400 seconds..