last executing test programs: 2.71858275s ago: executing program 3 (id=4): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) getsockopt$sock_buf(r0, 0x1, 0x1a, 0x0, &(0x7f0000000340)) 2.688128134s ago: executing program 0 (id=1): creat(&(0x7f0000000100)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r0, &(0x7f0000006300)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x10408, 0xe07, 0x69e}}, 0x50) syz_fuse_handle_req(r0, &(0x7f00000021c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r2 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x80101, 0x0) r3 = dup2(r2, r0) lseek(r3, 0x0, 0x4) 1.942698351s ago: executing program 1 (id=2): syz_mount_image$hfsplus(&(0x7f00000003c0), &(0x7f0000000100)='./file0\x00', 0x201048c, &(0x7f0000000300)=ANY=[], 0xfd, 0x644, &(0x7f0000000cc0)="$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") openat(0xffffffffffffff9c, &(0x7f0000000440)='./bus\x00', 0x141842, 0x0) mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0) r0 = open(&(0x7f0000000240)='./bus\x00', 0x1c7102, 0x1) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r0, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) timer_settime(0x0, 0x1, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x9) 1.782397182s ago: executing program 3 (id=6): r0 = socket$inet_tcp(0x2, 0x1, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x101, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) fstatfs(r0, &(0x7f0000000180)=""/205) 1.621628087s ago: executing program 0 (id=7): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x3, 0x3, 0x0, &(0x7f0000000480)='syzkaller\x00'}, 0x94) 1.605823879s ago: executing program 2 (id=3): timer_create(0x0, &(0x7f00000000c0)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0) timer_create(0x0, &(0x7f0000000180)={0x0, 0x13, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000240)=0x0) timer_settime(r0, 0x0, &(0x7f0000000340)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48) close(r1) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000010c0)={0xffffffffffffffff}) ioctl$int_in(r2, 0x5452, &(0x7f0000000940)=0x707987cd) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r3}, &(0x7f0000000000), &(0x7f0000000080)=r1}, 0x20) recvmsg(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000001c40)=""/4096, 0x8ec0}], 0x1}, 0x0) 1.000857543s ago: executing program 0 (id=8): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f00000190c0)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) socket$nl_xfrm(0x10, 0x3, 0x6) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) sendmsg$nl_xfrm(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000005c0)=@migrate={0xbc, 0x21, 0x1, 0x0, 0x2, {{@in6=@private2, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0xa, 0x20, 0x0, 0x0, 0x0, r4}}, [@migrate={0x50, 0x11, [{@in6=@empty, @in=@private=0xa010100, @in=@private=0xa010100, @in=@rand_addr=0x64010100, 0x3c, 0x0, 0x0, 0x0, 0xa, 0x2}]}, @encap={0x1c, 0x4, {0x0, 0x4e24, 0x4e24, @in6=@mcast2}}]}, 0xbc}, 0x1, 0x0, 0x0, 0x40}, 0x0) r5 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0) timer_create(0x3, &(0x7f00000042c0)={0x0, 0x21, 0x0, @thr={&(0x7f0000004180)="4bf2ab8b5af93ace6dbb31603990c23b75394dc949b370933d26a080406be9a62a16f9e02108317e45f27849c55159beed866e", &(0x7f00000041c0)="627a2e2c10537af601161b3c5148c9d8e67cfe8db9ec759dff931c5c7b68cc439f40b7dc7ab7dbe8345612fc07b99f7c9272d7838f898445c62c741ec11fba1250d47ed8837e0c24627ec9b76f168213dd8e06a5592a8032f3639ecf3eab79ddd879a7fd330472bdf8fba6648a877e8705d5974981e4535cf00d1ee9750f851f8ecb6fffa52dc110df00b7c564e31b12ae9647de33f01b01d43407533dae5f89fcb86afc7eb9213d6263621fc0fcc7fb499bd966c0b53bf7e20f13f5b7881431d79042fc02cb5e7be5bdbea69f959c230f543ed070fe82b078"}}, &(0x7f0000004300)) ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r5, 0xc1105518, &(0x7f0000000c40)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00', 0x5}, 0x0, [0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x80000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x1, 0x0, 0xc848, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x108000000000000, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x80000, 0x0, 0x80000000000000, 0x0, 0x0, 0xffff, 0x0, 0x40, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0xfffffffffffffffa, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x3, 0x400000000000, 0x3, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x80000000000000, 0xfffffffc, 0x1, 0x8, 0x4, 0x0, 0x3, 0x0, 0x9953, 0x0, 0x9a, 0xfffffffffffffffd, 0x4, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0xfffffffc, 0x7]}) creat(&(0x7f0000000b80)='./bus\x00', 0x155) mount(&(0x7f0000000000)=@loop={'/dev/loop', 0x0}, &(0x7f00000005c0)='./bus\x00', &(0x7f00000000c0)='ecryptfs\x00', 0x0, &(0x7f0000000040)='&@,,') 711.290611ms ago: executing program 1 (id=9): r0 = syz_open_dev$loop(&(0x7f00000001c0), 0xfffffffffffffffe, 0x100) ioctl$BLKPG(r0, 0x1269, &(0x7f00000002c0)={0x1, 0x0, 0x98, &(0x7f0000000200)={0x1000, 0x10000, 0x80b}}) 0s ago: executing program 4 (id=5): r0 = socket$inet_udp(0x2, 0x2, 0x0) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) getsockopt$inet_udp_int(r0, 0x11, 0xa, 0x0, &(0x7f00000025c0)) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.83' (ED25519) to the list of known hosts. [ 192.679729][ T5770] cgroup: Unknown subsys name 'net' [ 192.825273][ T5770] cgroup: Unknown subsys name 'cpuset' [ 192.842901][ T5770] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 229.646433][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 229.653153][ T1285] ieee802154 phy1 wpan1: encryption failed: -22 [ 243.320724][ T5770] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 248.363411][ T5793] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 248.373559][ T5793] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 248.382483][ T5793] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 248.396202][ T5793] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 248.410122][ T5797] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 248.420211][ T5793] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 248.430320][ T5793] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 248.439319][ T5797] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 248.450047][ T5797] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 248.462673][ T5793] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 248.560050][ T50] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 248.576308][ T50] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 248.597889][ T50] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 248.599136][ T5796] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 248.618771][ T5808] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 248.628199][ T5796] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 248.637457][ T5808] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 248.642538][ T50] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 248.656441][ T5808] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 248.668498][ T5808] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 248.681531][ T5808] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 248.692345][ T5808] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 248.735592][ T50] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 248.751100][ T50] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 248.774817][ T50] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 249.941212][ T5792] chnl_net:caif_netlink_parms(): no params data found [ 250.227486][ T5802] chnl_net:caif_netlink_parms(): no params data found [ 250.519293][ T5810] Bluetooth: hci1: command tx timeout [ 250.525171][ T5810] Bluetooth: hci0: command tx timeout [ 250.568739][ T5801] chnl_net:caif_netlink_parms(): no params data found [ 250.826131][ T5793] Bluetooth: hci4: command tx timeout [ 250.831821][ T5793] Bluetooth: hci2: command tx timeout [ 250.838153][ T5810] Bluetooth: hci3: command tx timeout [ 250.931134][ T5792] bridge0: port 1(bridge_slave_0) entered blocking state [ 250.939441][ T5792] bridge0: port 1(bridge_slave_0) entered disabled state [ 250.947324][ T5792] bridge_slave_0: entered allmulticast mode [ 250.956891][ T5792] bridge_slave_0: entered promiscuous mode [ 250.972663][ T5792] bridge0: port 2(bridge_slave_1) entered blocking state [ 250.984060][ T5792] bridge0: port 2(bridge_slave_1) entered disabled state [ 250.992043][ T5792] bridge_slave_1: entered allmulticast mode [ 251.001714][ T5792] bridge_slave_1: entered promiscuous mode [ 251.072123][ T5795] chnl_net:caif_netlink_parms(): no params data found [ 251.198265][ T5792] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 251.209915][ T5803] chnl_net:caif_netlink_parms(): no params data found [ 251.262543][ T5792] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 251.594735][ T5792] team0: Port device team_slave_0 added [ 251.680896][ T5802] bridge0: port 1(bridge_slave_0) entered blocking state [ 251.688678][ T5802] bridge0: port 1(bridge_slave_0) entered disabled state [ 251.696659][ T5802] bridge_slave_0: entered allmulticast mode [ 251.706411][ T5802] bridge_slave_0: entered promiscuous mode [ 251.731180][ T5792] team0: Port device team_slave_1 added [ 251.821627][ T5802] bridge0: port 2(bridge_slave_1) entered blocking state [ 251.829494][ T5802] bridge0: port 2(bridge_slave_1) entered disabled state [ 251.839449][ T5802] bridge_slave_1: entered allmulticast mode [ 251.849052][ T5802] bridge_slave_1: entered promiscuous mode [ 251.923547][ T5801] bridge0: port 1(bridge_slave_0) entered blocking state [ 251.931368][ T5801] bridge0: port 1(bridge_slave_0) entered disabled state [ 251.941442][ T5801] bridge_slave_0: entered allmulticast mode [ 251.951305][ T5801] bridge_slave_0: entered promiscuous mode [ 252.077586][ T5792] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 252.086692][ T5792] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 252.113908][ T5792] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 252.132074][ T5792] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 252.139650][ T5792] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 252.166512][ T5792] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 252.178818][ T5801] bridge0: port 2(bridge_slave_1) entered blocking state [ 252.186700][ T5801] bridge0: port 2(bridge_slave_1) entered disabled state [ 252.194647][ T5801] bridge_slave_1: entered allmulticast mode [ 252.204169][ T5801] bridge_slave_1: entered promiscuous mode [ 252.348816][ T5802] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 252.503597][ T5802] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 252.568017][ T5801] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 252.577920][ T5795] bridge0: port 1(bridge_slave_0) entered blocking state [ 252.586217][ T5793] Bluetooth: hci0: command tx timeout [ 252.586692][ T5795] bridge0: port 1(bridge_slave_0) entered disabled state [ 252.591766][ T5793] Bluetooth: hci1: command tx timeout [ 252.599379][ T5795] bridge_slave_0: entered allmulticast mode [ 252.614117][ T5795] bridge_slave_0: entered promiscuous mode [ 252.739265][ T5801] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 252.750342][ T5795] bridge0: port 2(bridge_slave_1) entered blocking state [ 252.760861][ T5795] bridge0: port 2(bridge_slave_1) entered disabled state [ 252.768816][ T5795] bridge_slave_1: entered allmulticast mode [ 252.777525][ T5795] bridge_slave_1: entered promiscuous mode [ 252.788930][ T5803] bridge0: port 1(bridge_slave_0) entered blocking state [ 252.796699][ T5803] bridge0: port 1(bridge_slave_0) entered disabled state [ 252.804571][ T5803] bridge_slave_0: entered allmulticast mode [ 252.813663][ T5803] bridge_slave_0: entered promiscuous mode [ 252.831243][ T5803] bridge0: port 2(bridge_slave_1) entered blocking state [ 252.839023][ T5803] bridge0: port 2(bridge_slave_1) entered disabled state [ 252.846906][ T5803] bridge_slave_1: entered allmulticast mode [ 252.856406][ T5803] bridge_slave_1: entered promiscuous mode [ 252.904889][ T5802] team0: Port device team_slave_0 added [ 252.915781][ T5793] Bluetooth: hci2: command tx timeout [ 252.921474][ T5793] Bluetooth: hci3: command tx timeout [ 252.928512][ T5797] Bluetooth: hci4: command tx timeout [ 253.065388][ T5802] team0: Port device team_slave_1 added [ 253.184897][ T5792] hsr_slave_0: entered promiscuous mode [ 253.195942][ T5792] hsr_slave_1: entered promiscuous mode [ 253.246971][ T5801] team0: Port device team_slave_0 added [ 253.303653][ T5795] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 253.323879][ T5803] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 253.342469][ T5795] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 253.400408][ T5801] team0: Port device team_slave_1 added [ 253.445733][ T5802] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 253.452943][ T5802] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 253.479726][ T5802] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 253.500475][ T5803] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 253.594954][ T5795] team0: Port device team_slave_0 added [ 253.605374][ T5802] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 253.612589][ T5802] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 253.639971][ T5802] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 253.725689][ T5803] team0: Port device team_slave_0 added [ 253.775334][ T5795] team0: Port device team_slave_1 added [ 253.828669][ T5803] team0: Port device team_slave_1 added [ 253.876933][ T5801] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 253.884133][ T5801] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 253.910825][ T5801] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 254.088103][ T5801] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 254.095486][ T5801] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 254.122054][ T5801] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 254.171536][ T5795] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 254.179011][ T5795] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 254.205893][ T5795] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 254.241434][ T5803] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 254.248876][ T5803] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 254.275398][ T5803] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 254.381522][ T5802] hsr_slave_0: entered promiscuous mode [ 254.391862][ T5802] hsr_slave_1: entered promiscuous mode [ 254.400770][ T5802] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 254.408676][ T5802] Cannot create hsr debugfs directory [ 254.417372][ T5795] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 254.424762][ T5795] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 254.451219][ T5795] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 254.483858][ T5803] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 254.491328][ T5803] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 254.517895][ T5803] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 254.664827][ T5793] Bluetooth: hci1: command tx timeout [ 254.670558][ T5793] Bluetooth: hci0: command tx timeout [ 254.673994][ T5801] hsr_slave_0: entered promiscuous mode [ 254.686393][ T5801] hsr_slave_1: entered promiscuous mode [ 254.696611][ T5801] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 254.704942][ T5801] Cannot create hsr debugfs directory [ 255.007310][ T5793] Bluetooth: hci3: command tx timeout [ 255.013216][ T5793] Bluetooth: hci4: command tx timeout [ 255.019147][ T5797] Bluetooth: hci2: command tx timeout [ 255.087110][ T5795] hsr_slave_0: entered promiscuous mode [ 255.097201][ T5795] hsr_slave_1: entered promiscuous mode [ 255.105875][ T5795] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 255.113662][ T5795] Cannot create hsr debugfs directory [ 255.184074][ T5803] hsr_slave_0: entered promiscuous mode [ 255.193160][ T5803] hsr_slave_1: entered promiscuous mode [ 255.202168][ T5803] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 255.210027][ T5803] Cannot create hsr debugfs directory [ 256.195611][ T5792] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 256.292679][ T5792] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 256.386166][ T5792] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 256.409270][ T5792] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 256.520955][ T5802] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 256.650466][ T5802] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 256.678130][ T5802] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 256.707064][ T5802] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 256.745138][ T5797] Bluetooth: hci0: command tx timeout [ 256.750846][ T5797] Bluetooth: hci1: command tx timeout [ 256.873827][ T5801] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 256.906818][ T5801] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 256.941667][ T5801] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 256.964788][ T5801] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 257.071138][ T5803] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 257.073155][ T5793] Bluetooth: hci2: command tx timeout [ 257.080809][ T5797] Bluetooth: hci4: command tx timeout [ 257.085500][ T5793] Bluetooth: hci3: command tx timeout [ 257.129897][ T5803] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 257.215100][ T5803] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 257.270396][ T5803] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 257.428168][ T5795] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 257.466121][ T5795] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 257.489787][ T5795] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 257.518161][ T5795] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 257.987363][ T5792] 8021q: adding VLAN 0 to HW filter on device bond0 [ 258.190020][ T5792] 8021q: adding VLAN 0 to HW filter on device team0 [ 258.259015][ T5802] 8021q: adding VLAN 0 to HW filter on device bond0 [ 258.288429][ T3831] bridge0: port 1(bridge_slave_0) entered blocking state [ 258.296128][ T3831] bridge0: port 1(bridge_slave_0) entered forwarding state [ 258.390775][ T179] bridge0: port 2(bridge_slave_1) entered blocking state [ 258.398512][ T179] bridge0: port 2(bridge_slave_1) entered forwarding state [ 258.434028][ T5801] 8021q: adding VLAN 0 to HW filter on device bond0 [ 258.475777][ T5802] 8021q: adding VLAN 0 to HW filter on device team0 [ 258.605454][ T179] bridge0: port 1(bridge_slave_0) entered blocking state [ 258.613212][ T179] bridge0: port 1(bridge_slave_0) entered forwarding state [ 258.629750][ T179] bridge0: port 2(bridge_slave_1) entered blocking state [ 258.637480][ T179] bridge0: port 2(bridge_slave_1) entered forwarding state [ 258.725934][ T5801] 8021q: adding VLAN 0 to HW filter on device team0 [ 258.754146][ T5803] 8021q: adding VLAN 0 to HW filter on device bond0 [ 258.870728][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 258.878393][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 259.010754][ T3831] bridge0: port 2(bridge_slave_1) entered blocking state [ 259.018292][ T3831] bridge0: port 2(bridge_slave_1) entered forwarding state [ 259.089816][ T5803] 8021q: adding VLAN 0 to HW filter on device team0 [ 259.210623][ T3831] bridge0: port 1(bridge_slave_0) entered blocking state [ 259.218300][ T3831] bridge0: port 1(bridge_slave_0) entered forwarding state [ 259.244024][ T179] bridge0: port 2(bridge_slave_1) entered blocking state [ 259.251874][ T179] bridge0: port 2(bridge_slave_1) entered forwarding state [ 259.279210][ T5795] 8021q: adding VLAN 0 to HW filter on device bond0 [ 259.555973][ T5795] 8021q: adding VLAN 0 to HW filter on device team0 [ 259.732052][ T3870] bridge0: port 1(bridge_slave_0) entered blocking state [ 259.739768][ T3870] bridge0: port 1(bridge_slave_0) entered forwarding state [ 259.958112][ T3870] bridge0: port 2(bridge_slave_1) entered blocking state [ 259.965868][ T3870] bridge0: port 2(bridge_slave_1) entered forwarding state [ 261.259994][ T5792] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 261.412203][ T5802] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 261.671788][ T5801] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 261.801568][ T5792] veth0_vlan: entered promiscuous mode [ 261.887951][ T5792] veth1_vlan: entered promiscuous mode [ 262.072701][ T5803] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 262.223576][ T5795] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 262.240272][ T5792] veth0_macvtap: entered promiscuous mode [ 262.323903][ T5801] veth0_vlan: entered promiscuous mode [ 262.352129][ T5792] veth1_macvtap: entered promiscuous mode [ 262.486132][ T5801] veth1_vlan: entered promiscuous mode [ 262.618377][ T5792] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 262.717503][ T5792] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 262.870912][ T5792] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 262.880219][ T5792] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 262.889589][ T5792] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 262.898763][ T5792] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 262.938726][ T5803] veth0_vlan: entered promiscuous mode [ 262.951979][ T5801] veth0_macvtap: entered promiscuous mode [ 263.002503][ T5795] veth0_vlan: entered promiscuous mode [ 263.031776][ T5801] veth1_macvtap: entered promiscuous mode [ 263.130329][ T5803] veth1_vlan: entered promiscuous mode [ 263.197315][ T5795] veth1_vlan: entered promiscuous mode [ 263.242822][ T5801] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 263.378193][ T5801] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 263.503002][ T5801] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 263.514081][ T5801] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 263.524731][ T5801] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 263.533774][ T5801] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 263.612883][ T5803] veth0_macvtap: entered promiscuous mode [ 263.649009][ T5795] veth0_macvtap: entered promiscuous mode [ 263.729734][ T5803] veth1_macvtap: entered promiscuous mode [ 263.809696][ T5795] veth1_macvtap: entered promiscuous mode [ 263.910020][ T5803] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 264.036396][ T5795] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 264.082379][ T5803] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 264.126494][ T5795] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 264.189743][ T5795] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 264.200861][ T5795] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 264.210109][ T5795] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 264.219275][ T5795] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 264.287759][ T5803] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 264.298250][ T5803] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 264.307661][ T5803] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 264.316854][ T5803] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 264.646375][ T5802] veth0_vlan: entered promiscuous mode [ 264.753905][ T5802] veth1_vlan: entered promiscuous mode [ 265.054126][ T5802] veth0_macvtap: entered promiscuous mode [ 265.165713][ T5802] veth1_macvtap: entered promiscuous mode [ 265.353382][ T5802] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 265.494183][ T5802] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 265.608792][ T5802] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 265.618161][ T5802] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 265.629046][ T5802] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 265.639253][ T5802] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 270.255884][ T3933] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 270.264013][ T3933] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 270.312452][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 270.320820][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 270.569043][ T2988] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 270.578311][ T2988] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 270.630563][ T4281] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 270.638852][ T4281] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 271.027576][ T5792] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 271.082753][ T3831] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 271.091000][ T3831] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 271.419869][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 271.428120][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 271.479812][ T3858] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 271.488154][ T3858] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 271.793163][ T3831] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 271.803695][ T3831] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 272.586155][ T5982] loop1: detected capacity change from 0 to 1024 [ 272.840499][ T5982] hfsplus: inconsistency in B*Tree (128,1,255,1,0) [ 272.847739][ T5982] hfsplus: xattr searching failed [ 272.965588][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 272.973793][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 273.293160][ T4281] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 273.299723][ T5795] hfsplus: inconsistency in B*Tree (128,1,255,1,0) [ 273.301420][ T4281] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 273.312514][ T5795] hfsplus: xattr search failed [ 273.444071][ T5795] hfsplus: inconsistency in B*Tree (128,1,255,1,0) [ 273.451498][ T5795] hfsplus: xattr search failed [ 273.457257][ T5795] syz-executor: attempt to access beyond end of device [ 273.457257][ T5795] loop1: rw=0, sector=917504, nr_sectors = 2 limit=1024 [ 273.471510][ T5795] Buffer I/O error on dev loop1, logical block 458752, async page read [ 273.480405][ T5795] hfsplus: unable to mark blocks free: error -5 [ 273.487050][ T5795] hfsplus: can't free extent [ 273.782178][ T5795] hfsplus: inconsistency in B*Tree (128,1,255,1,0) [ 273.799347][ T5795] hfsplus: xattr search failed [ 273.813428][ T5795] syz-executor: attempt to access beyond end of device [ 273.813428][ T5795] loop1: rw=0, sector=917504, nr_sectors = 2 limit=1024 [ 273.832650][ T5795] Buffer I/O error on dev loop1, logical block 458752, async page read [ 273.843089][ T5795] hfsplus: unable to mark blocks free: error -5 [ 273.849753][ T5795] hfsplus: can't free extent [ 274.113875][ T5795] hfsplus: inconsistency in B*Tree (128,1,255,1,0) [ 274.120969][ T5795] hfsplus: xattr search failed [ 274.134129][ T5795] hfsplus: inconsistency in B*Tree (128,1,255,1,0) [ 274.141068][ T5795] hfsplus: xattr search failed [ 274.146768][ T5795] ===================================================== [ 274.153985][ T5795] BUG: KMSAN: uninit-value in hfsplus_lookup+0x674/0xf70 [ 274.161417][ T5795] hfsplus_lookup+0x674/0xf70 [ 274.166548][ T5795] __lookup_slow+0x560/0x760 [ 274.171361][ T5795] lookup_slow+0x6a/0xd0 [ 274.176569][ T5795] walk_component+0x444/0x650 [ 274.181449][ T5795] path_lookupat+0x251/0x6b0 [ 274.186487][ T5795] filename_lookup+0x2bd/0x800 [ 274.191493][ T5795] user_path_at+0x91/0x3d0 [ 274.196286][ T5795] __x64_sys_umount+0x143/0x250 [ 274.201361][ T5795] x64_sys_call+0x320b/0x3db0 [ 274.206608][ T5795] do_syscall_64+0xd9/0x210 [ 274.211332][ T5795] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 274.217595][ T5795] [ 274.220045][ T5795] Uninit was created at: [ 274.224678][ T5795] __alloc_frozen_pages_noprof+0x689/0xf00 [ 274.235821][ T5795] alloc_pages_mpol+0x328/0x860 [ 274.240956][ T5795] alloc_frozen_pages_noprof+0xf7/0x200 [ 274.248456][ T5795] allocate_slab+0x24d/0x1220 [ 274.253364][ T5795] ___slab_alloc+0xfec/0x3480 [ 274.258412][ T5795] kmem_cache_alloc_lru_noprof+0x922/0xed0 [ 274.264561][ T5795] hfsplus_alloc_inode+0x5a/0xd0 [ 274.269699][ T5795] alloc_inode+0x87/0x4a0 [ 274.274288][ T5795] iget_locked+0x239/0x12d0 [ 274.279832][ T5795] hfsplus_iget+0x5c/0xb80 [ 274.284547][ T5795] hfsplus_btree_open+0x134/0x1d00 [ 274.289898][ T5795] hfsplus_fill_super+0x1161/0x2740 [ 274.295427][ T5795] get_tree_bdev_flags+0x6e6/0x920 [ 274.300888][ T5795] get_tree_bdev+0x38/0x50 [ 274.305781][ T5795] hfsplus_get_tree+0x35/0x40 [ 274.310660][ T5795] vfs_get_tree+0xb3/0x5c0 [ 274.315479][ T5795] do_new_mount+0x738/0x1610 [ 274.320307][ T5795] path_mount+0x6db/0x1e90 [ 274.325080][ T5795] __se_sys_mount+0x6eb/0x7d0 [ 274.330052][ T5795] __x64_sys_mount+0xe4/0x150 [ 274.339552][ T5795] x64_sys_call+0xfa7/0x3db0 [ 274.343842][ T5994] ecryptfs: Unknown parameter '&@' [ 274.346046][ T5795] do_syscall_64+0xd9/0x210 [ 274.346148][ T5795] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 274.346257][ T5795] [ 274.346315][ T5795] CPU: 0 UID: 0 PID: 5795 Comm: syz-executor Not tainted 6.16.0-rc4-syzkaller-00108-g17bbde2e1716 #0 PREEMPT(undef) [ 274.377924][ T5795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 274.388304][ T5795] ===================================================== [ 274.395726][ T5795] Disabling lock debugging due to kernel taint [ 274.402065][ T5795] Kernel panic - not syncing: kmsan.panic set ... [ 274.408674][ T5795] CPU: 0 UID: 0 PID: 5795 Comm: syz-executor Tainted: G B 6.16.0-rc4-syzkaller-00108-g17bbde2e1716 #0 PREEMPT(undef) [ 274.422753][ T5795] Tainted: [B]=BAD_PAGE [ 274.427050][ T5795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 274.437289][ T5795] Call Trace: [ 274.440719][ T5795] [ 274.443795][ T5795] __dump_stack+0x26/0x30 [ 274.448369][ T5795] dump_stack_lvl+0x53/0x270 [ 274.453194][ T5795] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 274.459284][ T5795] dump_stack+0x1e/0x25 [ 274.463671][ T5795] panic+0x4bd/0xd50 [ 274.467863][ T5795] kmsan_report+0x31c/0x320 [ 274.472643][ T5795] ? __msan_warning+0x1b/0x30 [ 274.477560][ T5795] ? hfsplus_lookup+0x674/0xf70 [ 274.482651][ T5795] ? __lookup_slow+0x560/0x760 [ 274.487638][ T5795] ? lookup_slow+0x6a/0xd0 [ 274.492311][ T5795] ? walk_component+0x444/0x650 [ 274.497401][ T5795] ? path_lookupat+0x251/0x6b0 [ 274.502400][ T5795] ? filename_lookup+0x2bd/0x800 [ 274.507586][ T5795] ? user_path_at+0x91/0x3d0 [ 274.512472][ T5795] ? __x64_sys_umount+0x143/0x250 [ 274.517764][ T5795] ? x64_sys_call+0x320b/0x3db0 [ 274.522883][ T5795] ? do_syscall_64+0xd9/0x210 [ 274.527755][ T5795] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 274.534040][ T5795] ? __hfsplus_brec_find+0x6d3/0x840 [ 274.539597][ T5795] ? kmsan_get_metadata+0xfb/0x160 [ 274.544999][ T5795] ? kmsan_internal_memmove_metadata+0x91/0x230 [ 274.551507][ T5795] ? __msan_memcpy+0x108/0x1c0 [ 274.556537][ T5795] ? hfsplus_bnode_read+0x34b/0x3a0 [ 274.562017][ T5795] ? kmsan_get_metadata+0xfb/0x160 [ 274.567506][ T5795] __msan_warning+0x1b/0x30 [ 274.572245][ T5795] hfsplus_lookup+0x674/0xf70 [ 274.577209][ T5795] ? kmsan_get_metadata+0xfb/0x160 [ 274.582636][ T5795] ? filter_irq_stacks+0x49/0x190 [ 274.587889][ T5795] ? kmsan_get_metadata+0xfb/0x160 [ 274.593256][ T5795] ? __pfx_hfsplus_lookup+0x10/0x10 [ 274.598690][ T5795] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 274.604780][ T5795] ? __pfx_hfsplus_lookup+0x10/0x10 [ 274.610227][ T5795] __lookup_slow+0x560/0x760 [ 274.615095][ T5795] lookup_slow+0x6a/0xd0 [ 274.619584][ T5795] walk_component+0x444/0x650 [ 274.624475][ T5795] ? kmsan_get_metadata+0xfb/0x160 [ 274.629897][ T5795] path_lookupat+0x251/0x6b0 [ 274.634738][ T5795] filename_lookup+0x2bd/0x800 [ 274.639752][ T5795] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 274.645849][ T5795] ? strncpy_from_user+0x255/0x470 [ 274.651208][ T5795] ? kmsan_get_metadata+0xfb/0x160 [ 274.656602][ T5795] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 274.662723][ T5795] user_path_at+0x91/0x3d0 [ 274.667390][ T5795] __x64_sys_umount+0x143/0x250 [ 274.672472][ T5795] ? kmsan_internal_set_shadow_origin+0x79/0x110 [ 274.679081][ T5795] x64_sys_call+0x320b/0x3db0 [ 274.684029][ T5795] do_syscall_64+0xd9/0x210 [ 274.688767][ T5795] ? irqentry_exit+0x16/0x60 [ 274.693550][ T5795] ? clear_bhb_loop+0x40/0x90 [ 274.698442][ T5795] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 274.704548][ T5795] RIP: 0033:0x7f9edb18fc57 [ 274.709326][ T5795] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 [ 274.729182][ T5795] RSP: 002b:00007ffffa71cb88 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 274.737874][ T5795] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9edb18fc57 [ 274.746037][ T5795] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffffa71cc40 [ 274.754185][ T5795] RBP: 00007ffffa71cc40 R08: 0000000000000000 R09: 0000000000000000 [ 274.762353][ T5795] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffffa71dd30 [ 274.770553][ T5795] R13: 00007f9edb210925 R14: 0000000000042a8b R15: 00007ffffa71ee00 [ 274.778759][ T5795] [ 274.782288][ T5795] Kernel Offset: disabled [ 274.786705][ T5795] Rebooting in 86400 seconds..