last executing test programs: 20.502948508s ago: executing program 1 (id=21): bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={0x0, 0x0, 0x6e, 0x0, 0x1}, 0x28) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x101100, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) rt_sigqueueinfo(0x0, 0x3, &(0x7f00000001c0)={0x18, 0xfff, 0x7}) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000380)={[0x9, 0x9, 0xfffffffffffffffd, 0x0, 0x2, 0x0, 0x8, 0x1004, 0x9, 0xc595, 0x9, 0x8, 0x1, 0xc, 0x80000004000000, 0x1c], 0x80a0000, 0x2010d3}) ioctl$KVM_GET_MSRS_cpu(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000100)) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000016000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, 0x0}], 0x1, 0x4e, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000180)={0x0, 0xd000}) syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa0f"], 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 16.836027485s ago: executing program 1 (id=26): syz_mount_image$reiserfs(&(0x7f0000000000), &(0x7f00000000c0)='.\x02\x00', 0x8488, &(0x7f0000000780), 0xfe, 0x10fd, &(0x7f0000001140)="$eJzs2T9rFEEYBvBnds8/3cqmXwQtLCQknF8ghcK1ttqIpDJVrlL8OH4cTWUf0msRsF9Zb/dO5UTwTm1+PzjmvYd9Z2fKmQ0AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMZsmnkhxUSTtlVZKSdN3F4ipJN+V33tdVSp6eLpaPz+dPlknqb4+XZ0kZuoa2tMf3brfzdt4et48OTu5/WL5+8+rF2dnp+ThNSZfL6/1vpYzrAQAAAH7U76z5z+8HAAAAfmdvFwkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAf6hvNnU7FVWSknTdxeIqSbel78Y/Wh8AAACwu5Iqz5tt+eoaYONhPjZlnQ/jlzLUR3m3pR8AAAD4pf7WWHz/fb3c3JzHH2S2PpcP2d3Mcni4+j8O+XyS1EmOfpr88vrty+lX+vpv7wUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgK/swLEAAAAAgDB/6zQ6NgAAAAAAAAAAAAAAAAAAAPYKAAD///F61s8=") r0 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x103a42, 0x0) ftruncate(r0, 0x6000000) creat(&(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0) unlink(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') sched_setscheduler(0x0, 0x2, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.time_recursive\x00', 0x275a, 0x0) 14.226223758s ago: executing program 3 (id=30): syz_mount_image$exfat(&(0x7f0000000280), &(0x7f0000000180)='./file1\x00', 0x2008000, &(0x7f0000000240)=ANY=[@ANYRES64=0x0], 0x2, 0x1502, &(0x7f0000002ec0)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x40, 0x0) fcntl$setlease(r0, 0x400, 0x0) unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x0) 13.475056211s ago: executing program 0 (id=31): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) bpf$PROG_LOAD(0x4, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='mm_khugepaged_scan_pmd\x00', r0}, 0x18) madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x19) openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5) r2 = socket(0x169b85273c6f8108, 0x5, 0x0) bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e20, 0xfffffffd, @loopback, 0x3}, 0x1c) getsockname$netrom(r2, 0x0, 0x0) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0) r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) r4 = socket$tipc(0x1e, 0x5, 0x0) setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10) sendmsg$NFT_BATCH(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000480)=ANY=[], 0x28}, 0x1, 0x0, 0x0, 0x48d0}, 0x0) pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x200100000000, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x49}, 0x0, &(0x7f0000000140)={0x3ff, 0x7, 0xffffffffffffffff, 0x9, 0x0, 0xf, 0x80000006}, 0x0, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) r5 = syz_open_dev$dri(&(0x7f0000000040), 0x1, 0x0) ioctl$DRM_IOCTL_MODE_PAGE_FLIP(r5, 0xc01864b0, &(0x7f0000000100)={0x0, 0x0, 0x3, 0x1000, 0xfffffffffffffffc}) mount(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000480)='configfs\x00', 0x0, 0x0) 12.519157222s ago: executing program 0 (id=33): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000200)={[{@quota}, {@oldalloc}, {@barrier_val={'barrier', 0x3d, 0x3}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x7c}}, {@block_validity}, {@jqfmt_vfsv1}]}, 0x3, 0x434, &(0x7f0000000940)="$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") r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100"/13], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) r1 = getpid() sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) syz_open_procfs$namespace(r1, &(0x7f00000000c0)='ns/time_for_children\x00') getdents64(0xffffffffffffffff, 0xfffffffffffffffe, 0xff80) 12.506955872s ago: executing program 1 (id=34): bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={0x0, 0x0, 0x6e, 0x0, 0x1}, 0x28) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x101100, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) rt_sigqueueinfo(0x0, 0x3, &(0x7f00000001c0)={0x18, 0xfff, 0x7}) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000380)={[0x9, 0x9, 0xfffffffffffffffd, 0x0, 0x2, 0x0, 0x8, 0x1004, 0x9, 0xc595, 0x9, 0x8, 0x1, 0xc, 0x80000004000000, 0x1c], 0x80a0000, 0x2010d3}) ioctl$KVM_GET_MSRS_cpu(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000100)={0x1, 0x0, [{0x4b564d01}]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000016000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, 0x0}], 0x1, 0x4e, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000180)={0x0, 0xd000}) syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa0f"], 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 12.216011755s ago: executing program 3 (id=35): r0 = io_uring_setup(0x136a, &(0x7f0000000080)={0x0, 0x1f8a, 0x0, 0x3, 0x28c}) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000240)={0x0, 0x20, 0x30}, 0xc) bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @empty}, 0x1c) sendto$inet6(r1, &(0x7f0000000180)="1a", 0x1, 0x804, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) sendto$inet6(r1, &(0x7f0000000c80)="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", 0x34000, 0xbcff, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000080), 0xc) writev(r1, &(0x7f0000001300)=[{&(0x7f0000000100)='^', 0xfdef}], 0x1) close_range(r0, 0xffffffffffffffff, 0x0) socket$nl_rdma(0x10, 0x3, 0x14) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000380), 0x181401, 0x0) ioctl$SNDCTL_DSP_SUBDIVIDE(r2, 0xc0045009, &(0x7f0000000200)=0x4) ioctl$SNDCTL_DSP_SETFRAGMENT(r2, 0xc004500a, &(0x7f00000000c0)=0x53fffffe) 11.435737328s ago: executing program 2 (id=36): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000002c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='percpu_alloc_percpu\x00', r3}, 0x10) syz_io_uring_setup(0x111, &(0x7f0000000340)={0x0, 0x11, 0x2, 0x4}, 0x0, 0x0) 7.475996989s ago: executing program 0 (id=37): mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1ab) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000021c0), 0x181000) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r0, 0xc0a85320, &(0x7f0000000c40)={{0x80, 0x4}, 'port0\x00', 0x0, 0x100c40, 0x5, 0x0, 0x4, 0x40, 0xfffffc01, 0x0, 0x1, 0x25}) close(r0) r4 = landlock_create_ruleset(&(0x7f0000000140)={0x6000}, 0x18, 0x0) r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x6c6882, 0x4) landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r4, 0x1, &(0x7f0000000340)={0x2000, r5}, 0x0) 7.269999467s ago: executing program 2 (id=38): mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0) syz_mount_image$fuse(0x0, &(0x7f0000000180)='./bus\x00', 0x301242f, 0x0, 0x1, 0x0, 0x0) socket$can_raw(0x1d, 0x3, 0x1) r0 = getpid() prlimit64(r0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r1 = getpid() sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="020000000400000008000000"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x20, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x73cea2d47785b264, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x0}, 0x94) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='sched_switch\x00', r4}, 0x18) r5 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r5}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) openat$binderfs(0xffffffffffffff9c, &(0x7f0000000340)='./binderfs/binder0\x00', 0x800, 0x0) r6 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0) read$FUSE(r6, &(0x7f0000000040)={0x2020}, 0x2020) r7 = syz_mount_image$fuse(&(0x7f0000000540), &(0x7f0000000000)='./bus\x00', 0x322020, &(0x7f0000000580)=ANY=[], 0x3, 0x0, 0x0) r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cgroup.kill\x00', 0x275a, 0x0) fstat(r8, 0x0) mknodat(r7, 0x0, 0x100, 0x7ffffffe) pipe2$9p(0x0, 0x0) 5.551940972s ago: executing program 3 (id=39): openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000400), 0x0, 0x0, 0x0}) r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x800, 0x0) mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r1, 0x10000000000) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r1, 0x4018620d, 0x0) socket$inet_sctp(0x2, 0x5, 0x84) socket$inet6_tcp(0xa, 0x1, 0x0) openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000280), 0x80a02, 0x0) r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) syz_open_dev$tty1(0xc, 0x4, 0x2) syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x20000000000, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x49}, 0x0, &(0x7f00000002c0)={0x3ff, 0x7, 0xffffffffffffffff, 0x9, 0x0, 0xf, 0x80000006}, 0x0, 0x0) openat$mice(0xffffffffffffff9c, &(0x7f0000000180), 0x46c800) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x46, 0x0, &(0x7f0000000440)="97713b46fbaa2b1044f2d408ffca802db4d770eb9874f493e0ef367e4bde497c403b450c72ff35a1e107fa5c8d3cbb1fa61229a00ecd207d9e6f2a208bf148e6bc56955cb533"}) 5.455582306s ago: executing program 0 (id=40): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba9432}) socket$kcm(0x2, 0xa, 0x2) socket$igmp6(0xa, 0x3, 0x2) openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0) r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) socket$xdp(0x2c, 0x3, 0x0) pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x100000000, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x49}, 0x0, &(0x7f00000002c0)={0x3ff, 0x7, 0xffffffffffffffff, 0x9, 0x0, 0xf, 0x80000005}, 0x0, 0x0) 5.286695943s ago: executing program 2 (id=41): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) bpf$PROG_LOAD(0x4, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='mm_khugepaged_scan_pmd\x00', r0}, 0x18) madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x19) openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5) r2 = socket(0x169b85273c6f8108, 0x5, 0x0) bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e20, 0xfffffffd, @loopback, 0x3}, 0x1c) getsockname$netrom(r2, 0x0, 0x0) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0) r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) r4 = socket$tipc(0x1e, 0x5, 0x0) setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10) sendmsg$NFT_BATCH(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000480)=ANY=[], 0x28}, 0x1, 0x0, 0x0, 0x48d0}, 0x0) pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x200100000000, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x49}, 0x0, &(0x7f0000000140)={0x3ff, 0x7, 0xffffffffffffffff, 0x9, 0x0, 0xf, 0x80000006}, 0x0, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) r5 = syz_open_dev$dri(&(0x7f0000000040), 0x1, 0x0) ioctl$DRM_IOCTL_MODE_PAGE_FLIP(r5, 0xc01864b0, &(0x7f0000000100)={0x0, 0x0, 0x3, 0x1000, 0xfffffffffffffffc}) mount(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000480)='configfs\x00', 0x0, 0x0) 4.333673334s ago: executing program 1 (id=42): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x408e, &(0x7f0000000240)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@min_batch_time={'min_batch_time', 0x3d, 0xfff}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x80}}, {@nobh}, {@errors_remount}, {@max_batch_time={'max_batch_time', 0x3d, 0x7}}]}, 0x3, 0x43a, &(0x7f0000000340)="$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") quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000000180)=@loop={'/dev/loop', 0x0}, 0xffffffffffffffff, 0x0) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x9) r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x105042, 0x189) write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x92, 0x2, 0x8, 0xfffa}, 0x3a, [0x8000, 0x2c95a, 0xf, 0x8, 0x80, 0x2, 0xffffffff, 0x80000000, 0x20000006, 0x4d, 0x6, 0x5d, 0x8, 0x5, 0xffff2d37, 0x7, 0x6, 0x3, 0x0, 0x5, 0x4, 0x0, 0x7, 0x3c5b, 0x1, 0x24, 0xd, 0x7, 0x0, 0x1, 0x4, 0x4, 0x7, 0x7ff, 0x8, 0x4c75, 0x80000000, 0xfffffffe, 0x3, 0xe, 0x0, 0x80008071, 0x7, 0x40017, 0xffffffff, 0x7, 0x5, 0x3e, 0x3, 0x6, 0xffff, 0x0, 0x6, 0x4, 0x8008, 0x4, 0x80, 0x0, 0x5, 0x6, 0x8, 0x4, 0x1, 0x40], [0x10000007, 0x9, 0x8000, 0x2008004, 0x5, 0xfffffff3, 0x129432e6, 0x40c8, 0xf9, 0xe, 0x2c0, 0x6c7, 0x8, 0xfffffffc, 0x3, 0x0, 0x0, 0x5, 0x2f, 0xe, 0x312, 0x5, 0xea4, 0x0, 0xb94, 0x7, 0x7fff, 0x6, 0x400, 0x401, 0x200006, 0x9, 0xff, 0x5, 0x1000005, 0x5f2e, 0x2d, 0x4e6, 0x5, 0x4, 0xb, 0x2000004, 0x9, 0x80000001, 0x9, 0x5, 0xfffffff9, 0x8000, 0x1, 0xfe000000, 0x8, 0x2, 0x4, 0x4, 0x3, 0x8000, 0x9, 0x1, 0x3, 0x3, 0x81, 0x48c93690, 0x42, 0x3], [0x7, 0x408, 0x7, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x5, 0x8000, 0x0, 0x5, 0xb, 0x4, 0x5, 0x5, 0x4000000, 0x1eb, 0x5, 0x8, 0x8000086, 0x2, 0x303c, 0x3e7, 0xb, 0x5, 0x2, 0xfffffffe, 0x3, 0x20000008, 0x4, 0x6d01, 0x2, 0x38, 0x800003, 0x200, 0x4000080, 0x3, 0x8000004, 0x2950bfaf, 0xffd, 0xa2, 0x7, 0xa9, 0x4005, 0x7, 0xac8, 0xca, 0x2, 0x3, 0x7ff, 0xbe, 0x4, 0x7, 0xa, 0x0, 0x5, 0x8000, 0x120000, 0xf55, 0x2006, 0x80a2ed, 0x4, 0x3c484551], [0x9, 0xbb33, 0x7, 0xb, 0x5, 0x93a, 0x5, 0x6, 0x0, 0xb9, 0xce7, 0x1ff, 0x2, 0x57, 0x9, 0x2, 0x101, 0x10000, 0x2000004, 0x7fff, 0xffff, 0xa61d, 0x2, 0x1, 0x6, 0x2, 0x14c, 0x60a7, 0x6, 0x16, 0xffffffff, 0x80000000, 0x5, 0x4, 0x0, 0xffffffd9, 0xfffff000, 0x10010000, 0x0, 0x7e, 0x7, 0x9602, 0x0, 0xaf, 0x5, 0x6, 0x8, 0x2, 0x5, 0x7, 0x30b1d696, 0x0, 0xf40, 0x7, 0x1, 0x6c1b, 0x0, 0x4, 0x5, 0xb1e, 0xd7, 0x201, 0xffff3441, 0xfff]}, 0x45c) openat(0xffffffffffffff9c, &(0x7f0000000d80)='./file1\x00', 0x143042, 0x0) 4.132311602s ago: executing program 3 (id=43): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206030000000000000000000000000005000100070000000900020073797a310000000014000780050015000c00000008001240000000000500050002000000050004000000000010000300686173683a69702c6d6163"], 0x5c}}, 0x0) sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000580)=ANY=[@ANYBLOB="1c0000000306010200000000000000000a0000010500010007"], 0x1c}, 0x1, 0x0, 0x0, 0x4004810}, 0x840) 3.25260973s ago: executing program 0 (id=44): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000040)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) quotactl$Q_GETINFO(0xffffffff80000500, 0x0, 0x0, 0x0) getitimer(0x0, &(0x7f0000000000)) 3.251777151s ago: executing program 2 (id=45): r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r1 = getpid() sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00'}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) bpf$MAP_CREATE(0x0, 0x0, 0x48) socket$inet_tcp(0x2, 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x16, 0x16, &(0x7f0000000600)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector}, 0x94) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/stat\x00', 0x0, 0x0) shutdown(r0, 0x0) sendfile(r0, r5, 0x0, 0xdc) bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x1, 0x4, 0x7fe2, 0x1}, 0x50) getpid() bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x1e, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x20048801}, 0x0) 3.140307595s ago: executing program 3 (id=46): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000480)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='&\x00\x00\x00\a'], 0x50) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6) write$binfmt_misc(r3, &(0x7f0000000000), 0xd) r4 = fsopen(0x0, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r5, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x48) fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0) syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000040)='./bus\x00', 0x2029c1b, 0x0, 0x1, 0x0, &(0x7f00000000c0)) rename(&(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='./bus/file0/file0\x00') 2.177871687s ago: executing program 2 (id=47): socket$netlink(0x10, 0x3, 0x15) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeeb, 0x8031, 0xffffffffffffffff, 0xbf5ce000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) syz_io_uring_setup(0x18d6, 0x0, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x1214040, 0x0) 1.888131119s ago: executing program 1 (id=48): mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1ab) r0 = landlock_create_ruleset(&(0x7f0000000140)={0x6000}, 0x18, 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x6c6882, 0x4) landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r0, 0x1, &(0x7f0000000340)={0x2000, r1}, 0x0) landlock_restrict_self(r0, 0x0) 978.117268ms ago: executing program 3 (id=49): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) openat(0xffffffffffffff9c, 0x0, 0x42, 0x0) syz_mount_image$ext4(&(0x7f0000000bc0)='ext4\x00', &(0x7f0000000240)='./file1\x00', 0x4000, &(0x7f0000000280), 0x2, 0xbc1, &(0x7f00000028c0)="$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") syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x88e, &(0x7f0000000540)={[{@inlinecrypt}, {@mblk_io_submit}, {@bh}, {@auto_da_alloc}, {@barrier}, {@test_dummy_encryption}, {@nogrpid}]}, 0x3, 0x445, &(0x7f0000000800)="$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") r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000015000000181100", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r3 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x5c399000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cgroup.events\x00', 0x275a, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0xc, 0x13, &(0x7f00000005c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x17}}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f00000004c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x100, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 973.364068ms ago: executing program 2 (id=50): syz_mount_image$udf(&(0x7f00000000c0), &(0x7f0000000180)='./file0\x00', 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB='lastblock=00000000000000000000,umask=00000000000000000000002,dmode=00000000000000000077777,novrs,shortad,shortad,undelete,iocharset=cp437,shortad,umask=00000000000000000000006,dmode=00000000000000000000002,nostrict,uid=', @ANYRESOCT=0x0, @ANYRES16], 0x2, 0xc36, &(0x7f0000002540)="$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") r0 = open(&(0x7f00000000c0)='./file1\x00', 0x24842, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15) pwrite64(r1, &(0x7f0000000140)='2', 0xfdef, 0xe7c) pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x1}], 0x1, 0x9c00, 0xfffffffc, 0x3) 691.335371ms ago: executing program 1 (id=51): bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={0x0, 0x0, 0x6e, 0x0, 0x1}, 0x28) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x101100, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) rt_sigqueueinfo(0x0, 0x3, &(0x7f00000001c0)={0x18, 0xfff, 0x7}) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000380)={[0x9, 0x9, 0xfffffffffffffffd, 0x0, 0x2, 0x0, 0x8, 0x1004, 0x9, 0xc595, 0x9, 0x8, 0x1, 0xc, 0x80000004000000, 0x1c], 0x80a0000, 0x2010d3}) ioctl$KVM_GET_MSRS_cpu(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000100)={0x1, 0x0, [{0x4b564d01}]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000016000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, 0x0}], 0x1, 0x4e, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000180)={0x0, 0xd000}) syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa0f"], 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 0s ago: executing program 0 (id=52): sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0xffffffffffffffb4, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x809d) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000500)={0x2, 0x0, @ioapic={0x8080000, 0x0, 0xff, 0x7, 0x0, [{0x3, 0x1, 0xfb, '\x00', 0x7}, {0x1, 0x5, 0xc0, '\x00', 0x4}, {0x7, 0x0, 0x7c, '\x00', 0x7}, {0x40, 0x2b, 0x33, '\x00', 0xe}, {0xff, 0x9b, 0x4, '\x00', 0x1}, {0xc, 0x8, 0x46, '\x00', 0x81}, {0x7, 0x3, 0x49, '\x00', 0x10}, {0xb, 0x4, 0x0, '\x00', 0x2}, {0xf, 0x8, 0x3, '\x00', 0xaf}, {0x7, 0x7f, 0x1, '\x00', 0xa1}, {0x0, 0x96, 0x3, '\x00', 0xa}, {0x5, 0x3, 0x9, '\x00', 0x6}, {0x9, 0xa, 0x4f, '\x00', 0x4}, {0xa, 0x2, 0x80, '\x00', 0xa5}, {0x83, 0x0, 0x44, '\x00', 0x9}, {0xc8, 0x2, 0x2b, '\x00', 0x9}, {0x85, 0x0, 0x0, '\x00', 0x8}, {0x10, 0x40, 0x6, '\x00', 0xa}, {0x1, 0xe, 0x2, '\x00', 0x80}, {0xf5, 0x9, 0x0, '\x00', 0x7}, {0x7, 0x9, 0x6, '\x00', 0x80}, {0x80, 0x90, 0x2, '\x00', 0x3}, {0x1, 0x6, 0xf9, '\x00', 0x4}, {0xb, 0x5, 0x2}]}}) bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=ANY=[], 0x50) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000140)=@arm64={0x10, 0x2, 0xb6, '\x00', 0x2}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_MSRS(r3, 0x4008ae89, 0x0) connect$can_bcm(0xffffffffffffffff, &(0x7f0000000140), 0x10) socket$can_raw(0x1d, 0x3, 0x1) prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) r5 = syz_open_procfs(0xffffffffffffffff, 0x0) lseek(r5, 0x9, 0x0) syz_open_dev$I2C(0x0, 0x0, 0x189802) pipe(&(0x7f00000001c0)={0xffffffffffffffff}) read(r6, &(0x7f0000032440)=""/102364, 0x18fdc) syz_mount_image$minix(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="00e611ed6229b237ad2a184a94283e2b34c24caf7280c18475708140abe763dfb52cdb0ba0cdc8c572346d0a832984b36248c4fa844eda0af4b1652605421a7821dcfde12aa77458d811a84538a156b05b0ec3eaf24a90ceb5b7463d9fd38b49d41fbfa868653605702abe43d9c2c30aed4da0b8cc18c6b369f086a965442c1217f19a67a534064b7236a6660000000000"], 0x1, 0x17b, &(0x7f0000000300)="$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") openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x441, 0x78) truncate(&(0x7f0000000000)='./file1\x00', 0xf0ffff) syz_kvm_add_vcpu$x86(0x0, &(0x7f0000000140)={0x0, 0x0}) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.50' (ED25519) to the list of known hosts. [ 77.256770][ T5774] cgroup: Unknown subsys name 'net' [ 77.422983][ T5774] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 79.126703][ T5774] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 81.312885][ T5786] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 81.325047][ T5786] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 81.333877][ T5786] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 81.346649][ T5790] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 81.354809][ T5790] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 81.364028][ T5792] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 81.373058][ T5797] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 81.412914][ T5790] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 81.421582][ T5797] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 81.422140][ T5790] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 81.435877][ T5797] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 81.436760][ T5790] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 81.444890][ T5792] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 81.451919][ T5790] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 81.458161][ T5792] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 81.466889][ T5790] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 81.474659][ T5792] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 81.483491][ T5790] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 81.485555][ T5792] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 81.494175][ T5790] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 81.506870][ T5792] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 81.507132][ T5790] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 81.521557][ T5790] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 81.530327][ T5792] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 82.099903][ T5794] chnl_net:caif_netlink_parms(): no params data found [ 82.185504][ T5788] chnl_net:caif_netlink_parms(): no params data found [ 82.215950][ T5783] chnl_net:caif_netlink_parms(): no params data found [ 82.226664][ T5789] chnl_net:caif_netlink_parms(): no params data found [ 82.319129][ T5794] bridge0: port 1(bridge_slave_0) entered blocking state [ 82.327153][ T5794] bridge0: port 1(bridge_slave_0) entered disabled state [ 82.334745][ T5794] bridge_slave_0: entered allmulticast mode [ 82.341897][ T5794] bridge_slave_0: entered promiscuous mode [ 82.374017][ T5794] bridge0: port 2(bridge_slave_1) entered blocking state [ 82.381278][ T5794] bridge0: port 2(bridge_slave_1) entered disabled state [ 82.388544][ T5794] bridge_slave_1: entered allmulticast mode [ 82.396068][ T5794] bridge_slave_1: entered promiscuous mode [ 82.520120][ T5794] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 82.536286][ T5788] bridge0: port 1(bridge_slave_0) entered blocking state [ 82.543524][ T5788] bridge0: port 1(bridge_slave_0) entered disabled state [ 82.551257][ T5788] bridge_slave_0: entered allmulticast mode [ 82.558846][ T5788] bridge_slave_0: entered promiscuous mode [ 82.567529][ T5783] bridge0: port 1(bridge_slave_0) entered blocking state [ 82.574738][ T5783] bridge0: port 1(bridge_slave_0) entered disabled state [ 82.582022][ T5783] bridge_slave_0: entered allmulticast mode [ 82.589733][ T5783] bridge_slave_0: entered promiscuous mode [ 82.599864][ T5794] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 82.621574][ T5788] bridge0: port 2(bridge_slave_1) entered blocking state [ 82.628972][ T5788] bridge0: port 2(bridge_slave_1) entered disabled state [ 82.636875][ T5788] bridge_slave_1: entered allmulticast mode [ 82.643919][ T5788] bridge_slave_1: entered promiscuous mode [ 82.651123][ T5783] bridge0: port 2(bridge_slave_1) entered blocking state [ 82.658627][ T5783] bridge0: port 2(bridge_slave_1) entered disabled state [ 82.665960][ T5783] bridge_slave_1: entered allmulticast mode [ 82.672968][ T5783] bridge_slave_1: entered promiscuous mode [ 82.706082][ T5789] bridge0: port 1(bridge_slave_0) entered blocking state [ 82.713304][ T5789] bridge0: port 1(bridge_slave_0) entered disabled state [ 82.720601][ T5789] bridge_slave_0: entered allmulticast mode [ 82.727852][ T5789] bridge_slave_0: entered promiscuous mode [ 82.772464][ T5789] bridge0: port 2(bridge_slave_1) entered blocking state [ 82.780008][ T5789] bridge0: port 2(bridge_slave_1) entered disabled state [ 82.787610][ T5789] bridge_slave_1: entered allmulticast mode [ 82.794946][ T5789] bridge_slave_1: entered promiscuous mode [ 82.829791][ T5788] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 82.856435][ T5794] team0: Port device team_slave_0 added [ 82.866714][ T5794] team0: Port device team_slave_1 added [ 82.901626][ T5788] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 82.914064][ T5783] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 82.927557][ T5783] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 82.951141][ T5789] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 82.965123][ T5789] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 83.005442][ T5794] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 83.012434][ T5794] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 83.038634][ T5794] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 83.090072][ T5783] team0: Port device team_slave_0 added [ 83.097273][ T5794] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 83.105245][ T5794] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 83.131687][ T5794] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 83.163932][ T5788] team0: Port device team_slave_0 added [ 83.175430][ T5788] team0: Port device team_slave_1 added [ 83.183215][ T5783] team0: Port device team_slave_1 added [ 83.218178][ T5783] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 83.225233][ T5783] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 83.252524][ T5783] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 83.269549][ T5789] team0: Port device team_slave_0 added [ 83.302083][ T5783] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 83.309711][ T5783] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 83.336027][ T5783] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 83.355613][ T5789] team0: Port device team_slave_1 added [ 83.373296][ T5788] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 83.380435][ T5788] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 83.406683][ T5788] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 83.419667][ T5788] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 83.426882][ T5788] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 83.452934][ T5788] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 83.515534][ T5794] hsr_slave_0: entered promiscuous mode [ 83.522220][ T5794] hsr_slave_1: entered promiscuous mode [ 83.549102][ T5783] hsr_slave_0: entered promiscuous mode [ 83.556051][ T5783] hsr_slave_1: entered promiscuous mode [ 83.562350][ T5783] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 83.565428][ T5792] Bluetooth: hci2: command tx timeout [ 83.570889][ T5783] Cannot create hsr debugfs directory [ 83.576534][ T5792] Bluetooth: hci0: command tx timeout [ 83.601274][ T5789] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 83.608383][ T5789] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 83.634452][ T5789] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 83.645269][ T5792] Bluetooth: hci3: command tx timeout [ 83.645291][ T51] Bluetooth: hci1: command tx timeout [ 83.689666][ T5789] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 83.696759][ T5789] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 83.725587][ T5789] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 83.837364][ T5788] hsr_slave_0: entered promiscuous mode [ 83.844043][ T5788] hsr_slave_1: entered promiscuous mode [ 83.851503][ T5788] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 83.859414][ T5788] Cannot create hsr debugfs directory [ 83.935623][ T5789] hsr_slave_0: entered promiscuous mode [ 83.942399][ T5789] hsr_slave_1: entered promiscuous mode [ 83.948877][ T5789] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 83.956778][ T5789] Cannot create hsr debugfs directory [ 84.272589][ T5794] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 84.285138][ T5794] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 84.306698][ T5794] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 84.318990][ T5794] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 84.404567][ T5783] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 84.420285][ T5783] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 84.437114][ T5783] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 84.451002][ T5783] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 84.554017][ T5789] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 84.572229][ T5789] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 84.588075][ T5789] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 84.599712][ T5789] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 84.702102][ T5794] 8021q: adding VLAN 0 to HW filter on device bond0 [ 84.769424][ T5783] 8021q: adding VLAN 0 to HW filter on device bond0 [ 84.776902][ T5788] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 84.790711][ T5788] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 84.802787][ T5788] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 84.818300][ T5788] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 84.858490][ T5794] 8021q: adding VLAN 0 to HW filter on device team0 [ 84.872287][ T2886] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.879790][ T2886] bridge0: port 1(bridge_slave_0) entered forwarding state [ 84.917825][ T5783] 8021q: adding VLAN 0 to HW filter on device team0 [ 84.942797][ T2912] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.949990][ T2912] bridge0: port 2(bridge_slave_1) entered forwarding state [ 84.993869][ T2886] bridge0: port 1(bridge_slave_0) entered blocking state [ 85.001128][ T2886] bridge0: port 1(bridge_slave_0) entered forwarding state [ 85.051300][ T2886] bridge0: port 2(bridge_slave_1) entered blocking state [ 85.058529][ T2886] bridge0: port 2(bridge_slave_1) entered forwarding state [ 85.130322][ T5794] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 85.158184][ T5789] 8021q: adding VLAN 0 to HW filter on device bond0 [ 85.203756][ T5789] 8021q: adding VLAN 0 to HW filter on device team0 [ 85.286880][ T49] bridge0: port 1(bridge_slave_0) entered blocking state [ 85.294173][ T49] bridge0: port 1(bridge_slave_0) entered forwarding state [ 85.359249][ T5788] 8021q: adding VLAN 0 to HW filter on device bond0 [ 85.388065][ T59] bridge0: port 2(bridge_slave_1) entered blocking state [ 85.395330][ T59] bridge0: port 2(bridge_slave_1) entered forwarding state [ 85.443053][ T5788] 8021q: adding VLAN 0 to HW filter on device team0 [ 85.472831][ T737] bridge0: port 1(bridge_slave_0) entered blocking state [ 85.480047][ T737] bridge0: port 1(bridge_slave_0) entered forwarding state [ 85.519613][ T5789] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 85.563655][ T5794] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 85.590680][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 85.597943][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 85.650021][ T5792] Bluetooth: hci0: command tx timeout [ 85.650032][ T51] Bluetooth: hci2: command tx timeout [ 85.724777][ T5792] Bluetooth: hci3: command tx timeout [ 85.724836][ T51] Bluetooth: hci1: command tx timeout [ 85.839015][ T5794] veth0_vlan: entered promiscuous mode [ 85.893085][ T5794] veth1_vlan: entered promiscuous mode [ 85.910433][ T5783] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 86.000976][ T5794] veth0_macvtap: entered promiscuous mode [ 86.056801][ T5794] veth1_macvtap: entered promiscuous mode [ 86.091453][ T5783] veth0_vlan: entered promiscuous mode [ 86.132043][ T5794] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 86.149999][ T5789] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 86.165880][ T5794] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 86.182604][ T5783] veth1_vlan: entered promiscuous mode [ 86.198719][ T5794] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.208855][ T5794] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.223103][ T5794] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.232254][ T5794] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.293442][ T5788] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 86.379150][ T5789] veth0_vlan: entered promiscuous mode [ 86.421613][ T5789] veth1_vlan: entered promiscuous mode [ 86.467776][ T5783] veth0_macvtap: entered promiscuous mode [ 86.480810][ T5783] veth1_macvtap: entered promiscuous mode [ 86.511562][ T2912] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 86.526538][ T2912] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 86.552607][ T5788] veth0_vlan: entered promiscuous mode [ 86.570421][ T5789] veth0_macvtap: entered promiscuous mode [ 86.606477][ T5783] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 86.619911][ T5783] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 86.632601][ T5783] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 86.642113][ T5788] veth1_vlan: entered promiscuous mode [ 86.652427][ T5789] veth1_macvtap: entered promiscuous mode [ 86.660504][ T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 86.668925][ T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 86.681278][ T5783] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 86.693374][ T5783] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 86.705511][ T5783] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 86.738830][ T5783] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.747845][ T5783] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.756708][ T5783] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.766352][ T5783] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.798257][ T5789] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 86.810878][ T5789] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 86.821292][ T5789] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 86.833373][ T5789] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 86.850781][ T5789] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 86.879331][ T5789] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 86.893208][ T5789] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 86.911073][ T5789] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 86.921587][ T5789] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 86.933867][ T5789] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 86.946772][ T5789] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.955710][ T5789] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.964931][ T5789] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.973665][ T5789] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.055860][ T5788] veth0_macvtap: entered promiscuous mode [ 87.099270][ T5788] veth1_macvtap: entered promiscuous mode [ 87.135366][ T5875] syz.1.2[5875]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set [ 87.196690][ T5875] loop1: detected capacity change from 0 to 4096 [ 87.209714][ T5875] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 87.412478][ T5788] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 87.464306][ T5788] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 87.514272][ T5788] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 87.524935][ T5788] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 87.535479][ T5788] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 87.549170][ T5788] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 87.560957][ T5788] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 87.591977][ T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 87.607671][ T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 87.724250][ T51] Bluetooth: hci0: command tx timeout [ 87.735765][ T51] Bluetooth: hci2: command tx timeout [ 87.804786][ T51] Bluetooth: hci3: command tx timeout [ 87.815506][ T51] Bluetooth: hci1: command tx timeout [ 88.107424][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 88.146965][ T5788] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 88.164470][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 88.210490][ T5788] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 88.240177][ T5788] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 88.273713][ T5788] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 88.283681][ T5788] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 88.294752][ T5788] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 88.306677][ T5788] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 88.320048][ T5788] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.329144][ T5788] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.338837][ T5788] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.370369][ T5788] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.499262][ T737] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 88.514904][ T737] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 88.552087][ T5881] syzkaller0: entered promiscuous mode [ 88.559155][ T5881] syzkaller0: entered allmulticast mode [ 88.623469][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 88.638347][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 89.000264][ T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 89.029963][ T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 89.129945][ T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 89.163105][ T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 89.222107][ T5888] loop1: detected capacity change from 0 to 4096 [ 89.376423][ T5888] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 89.435571][ T5888] ntfs3: loop1: Failed to initialize $Extend/$Reparse. [ 89.534720][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 89.929953][ T51] Bluetooth: hci2: command tx timeout [ 89.929959][ T5792] Bluetooth: hci0: command tx timeout [ 89.930003][ T51] Bluetooth: hci1: command tx timeout [ 89.935587][ T5793] Bluetooth: hci3: command tx timeout [ 90.861317][ T5891] loop0: detected capacity change from 0 to 32768 [ 90.917033][ T5891] ======================================================= [ 90.917033][ T5891] WARNING: The mand mount option has been deprecated and [ 90.917033][ T5891] and is ignored by this kernel. Remove the mand [ 90.917033][ T5891] option from the mount to silence this warning. [ 90.917033][ T5891] ======================================================= [ 91.093801][ T5900] loop2: detected capacity change from 0 to 256 [ 91.158092][ T5891] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 91.262111][ T5900] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 91.519171][ T28] audit: type=1800 audit(1764212809.908:2): pid=5909 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.7" name="file1" dev="loop2" ino=1048592 res=0 errno=0 [ 91.750150][ T5789] ocfs2: Unmounting device (7,0) on (node local) [ 92.027702][ T5916] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 92.216728][ T967] cfg80211: failed to load regulatory.db [ 92.544500][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 92.604430][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 92.854642][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 92.969541][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 93.388955][ T5925] loop2: detected capacity change from 0 to 32768 [ 93.420372][ T5925] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.11 (5925) [ 93.447486][ T5925] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 93.458062][ T5925] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 93.466862][ T5925] BTRFS info (device loop2): using free space tree [ 93.635946][ T5925] BTRFS info (device loop2): enabling ssd optimizations [ 93.642986][ T5925] BTRFS info (device loop2): auto enabling async discard [ 94.300849][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 94.396177][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 94.405784][ T0] NOHZ tick-stop error: local softirq work is pending, handler #240!!! [ 94.414876][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 94.423936][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 94.563674][ T28] audit: type=1800 audit(1764212812.878:3): pid=5950 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.11" name="file2" dev="loop2" ino=261 res=0 errno=0 [ 95.578129][ T5954] Zero length message leads to an empty skb [ 96.357532][ T5783] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 96.573350][ T5960] binder: 5959:5960 ioctl 4018620d 0 returned -22 [ 96.903567][ T5962] loop3: detected capacity change from 0 to 512 [ 97.158130][ T5962] EXT4-fs: Ignoring removed oldalloc option [ 97.964407][ T5962] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 98.013234][ T5962] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 98.292255][ T5962] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2872: Unable to expand inode 11. Delete some EAs or run e2fsck. [ 98.487796][ T5962] EXT4-fs (loop3): 1 truncate cleaned up [ 98.678213][ T5962] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 101.160029][ T5788] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 101.737132][ T787] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 103.752682][ T6006] loop1: detected capacity change from 0 to 8192 [ 104.061685][ T6006] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 104.104130][ C0] sched: RT throttling activated [ 104.104257][ T787] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7 [ 104.122968][ T787] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 104.132395][ T6006] REISERFS (device loop1): found reiserfs format "3.5" with non-standard journal [ 104.142894][ T6006] REISERFS (device loop1): using ordered data mode [ 104.149809][ T6006] reiserfs: using flush barriers [ 104.169158][ T6018] binder: 6017:6018 ioctl 4018620d 0 returned -22 [ 104.185436][ T6006] REISERFS (device loop1): journal params: device loop1, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 104.366934][ T787] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7 [ 104.386760][ T6006] REISERFS (device loop1): checking transaction log (loop1) [ 104.611429][ T6006] REISERFS (device loop1): Using r5 hash to sort names [ 104.823298][ T6006] REISERFS (device loop1): Created .reiserfs_priv - reserved for xattr storage. [ 105.201965][ T787] usb 3-1: string descriptor 0 read error: -71 [ 105.213722][ T6024] loop3: detected capacity change from 0 to 256 [ 105.395549][ T6024] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18d7c, utbl_chksum : 0xe619d30d) [ 106.015236][ T787] usb 3-1: New USB device found, idVendor=0a07, idProduct=00d0, bcdDevice=10.13 [ 106.070289][ T787] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 106.125679][ T787] usb 3-1: config 0 descriptor?? [ 106.144425][ T787] usb 3-1: can't set config #0, error -71 [ 106.155630][ T787] usb 3-1: USB disconnect, device number 2 [ 106.349834][ T6030] loop0: detected capacity change from 0 to 512 [ 106.363248][ T6030] EXT4-fs: Ignoring removed oldalloc option [ 106.566277][ T6030] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 106.861024][ T6030] EXT4-fs (loop0): 1 truncate cleaned up [ 107.033666][ T6030] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 111.357475][ T5789] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 113.296743][ T6074] binder: 6073:6074 ioctl 4018620d 0 returned -22 [ 113.458611][ T6078] syz.0.40 uses obsolete (PF_INET,SOCK_PACKET) [ 115.382722][ T6086] loop1: detected capacity change from 0 to 512 [ 115.398625][ T6086] EXT4-fs: Ignoring removed nobh option [ 115.435735][ T6086] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 115.467535][ T6086] EXT4-fs (loop1): 1 truncate cleaned up [ 115.496671][ T6086] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 116.405460][ T6097] EXT4-fs error (device loop1): ext4_map_blocks:608: inode #2: block 13: comm syz.1.42: lblock 0 mapped to illegal pblock 13 (length 1) [ 116.510689][ T6097] EXT4-fs (loop1): Remounting filesystem read-only [ 116.695439][ T5794] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 116.912645][ T6103] Bluetooth: MGMT ver 1.22 [ 118.044707][ T6116] loop2: detected capacity change from 0 to 2048 [ 118.092122][ T6112] loop3: detected capacity change from 0 to 4096 [ 118.308949][ T6116] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 118.335211][ T6112] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 118.570265][ T28] audit: type=1800 audit(1764212836.948:4): pid=6116 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.50" name="file1" dev="loop2" ino=1346 res=0 errno=0 [ 118.739065][ T6116] ------------[ cut here ]------------ [ 118.745041][ T6116] WARNING: CPU: 0 PID: 6116 at fs/udf/truncate.c:224 udf_truncate_extents+0xd46/0xeb0 [ 118.754747][ T6116] Modules linked in: [ 118.758713][ T6116] CPU: 0 PID: 6116 Comm: syz.2.50 Not tainted syzkaller #0 [ 118.766142][ T6116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 118.777535][ T6116] RIP: 0010:udf_truncate_extents+0xd46/0xeb0 [ 118.783853][ T6116] Code: 65 48 8b 04 25 28 00 00 00 48 3b 84 24 80 01 00 00 75 70 44 89 e0 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 8a 95 8d fe <0f> 0b eb 8e 44 89 e9 80 e1 07 38 c1 0f 8c ec f3 ff ff 4c 89 ef e8 [ 118.803947][ T6116] RSP: 0018:ffffc9000554f880 EFLAGS: 00010287 [ 118.810416][ T6116] RAX: ffffffff82f80af6 RBX: 1ffff1100ff6a1a2 RCX: 0000000000080000 [ 118.818595][ T6116] RDX: ffffc9000d1fb000 RSI: 000000000000f664 RDI: 000000000000f665 [ 118.826849][ T6116] RBP: ffffc9000554fa48 R08: ffff88802bb21e00 R09: 0000000000000002 [ 118.834932][ T6116] R10: 0000000000000001 R11: 0000000000000002 R12: 0000000000000000 [ 118.842955][ T6116] R13: 0000000000000000 R14: 000000000000000a R15: 000000000000000a [ 118.851053][ T6116] FS: 00007f01562756c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 118.860357][ T6116] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 118.867067][ T6116] CR2: 00007f9abdff1000 CR3: 000000005e2e4000 CR4: 00000000003526f0 [ 118.875535][ T6116] Call Trace: [ 118.880385][ T6116] [ 118.883390][ T6116] ? udf_discard_prealloc+0x570/0x570 [ 118.889361][ T6116] ? udf_write_failed+0x178/0x1b0 [ 118.894805][ T6116] ? __lock_acquire+0x7c80/0x7c80 [ 118.900523][ T6116] ? do_raw_spin_lock+0x121/0x2c0 [ 118.905679][ T6116] ? __rwlock_init+0xa0/0x150 [ 118.910423][ T6116] ? do_raw_spin_unlock+0x121/0x230 [ 118.915746][ T6116] udf_write_failed+0x180/0x1b0 [ 118.920674][ T6116] udf_direct_IO+0x1c3/0x200 [ 118.925415][ T6116] generic_file_direct_write+0x1d4/0x3e0 [ 118.931147][ T6116] __generic_file_write_iter+0x11b/0x230 [ 118.936879][ T6116] ? udf_file_write_iter+0x2b1/0x620 [ 118.942241][ T6116] udf_file_write_iter+0x2c0/0x620 [ 118.947559][ T6116] do_iter_write+0x79a/0xc70 [ 118.952230][ T6116] ? vfs_iter_write+0xa0/0xa0 [ 118.956997][ T6116] ? rcu_read_lock_any_held+0xb4/0x120 [ 118.962526][ T6116] do_pwritev+0x205/0x340 [ 118.967000][ T6116] ? do_preadv+0x330/0x330 [ 118.971506][ T6116] ? lockdep_hardirqs_on_prepare+0x400/0x760 [ 118.977587][ T6116] ? lock_chain_count+0x20/0x20 [ 118.983696][ T6116] ? lockdep_hardirqs_on+0x98/0x150 [ 118.989221][ T6116] ? __x64_sys_pwritev2+0xbe/0x100 [ 118.994478][ T6116] do_syscall_64+0x55/0xb0 [ 118.999005][ T6116] ? clear_bhb_loop+0x40/0x90 [ 119.003744][ T6116] ? clear_bhb_loop+0x40/0x90 [ 119.008775][ T6116] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 119.014914][ T6116] RIP: 0033:0x7f015538f749 [ 119.019407][ T6116] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 119.039197][ T6116] RSP: 002b:00007f0156275038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148 [ 119.047764][ T6116] RAX: ffffffffffffffda RBX: 00007f01555e5fa0 RCX: 00007f015538f749 [ 119.055858][ T6116] RDX: 0000000000000001 RSI: 0000200000000240 RDI: 0000000000000004 [ 119.063939][ T6116] RBP: 00007f0155413f91 R08: 00000000fffffffc R09: 0000000000000003 [ 119.072091][ T6116] R10: 0000000000009c00 R11: 0000000000000246 R12: 0000000000000000 [ 119.080183][ T6116] R13: 00007f01555e6038 R14: 00007f01555e5fa0 R15: 00007ffc5a8f5c28 [ 119.094496][ T6116] [ 119.100317][ T6116] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 119.104812][ T6130] loop0: detected capacity change from 0 to 64 [ 119.113830][ T6116] CPU: 0 PID: 6116 Comm: syz.2.50 Not tainted syzkaller #0 [ 119.121077][ T6116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 119.131185][ T6116] Call Trace: [ 119.134518][ T6116] [ 119.137498][ T6116] dump_stack_lvl+0x16c/0x230 [ 119.142248][ T6116] ? show_regs_print_info+0x20/0x20 [ 119.147601][ T6116] ? load_image+0x3b0/0x3b0 [ 119.152183][ T6116] panic+0x2c0/0x710 [ 119.156149][ T6116] ? bpf_jit_dump+0xd0/0xd0 [ 119.160739][ T6116] __warn+0x2e0/0x470 [ 119.165288][ T6116] ? udf_truncate_extents+0xd46/0xeb0 [ 119.170719][ T6116] ? udf_truncate_extents+0xd46/0xeb0 [ 119.176243][ T6116] report_bug+0x2be/0x4f0 [ 119.180633][ T6116] ? udf_truncate_extents+0xd46/0xeb0 [ 119.186060][ T6116] ? udf_truncate_extents+0xd46/0xeb0 [ 119.191487][ T6116] ? udf_truncate_extents+0xd48/0xeb0 [ 119.196913][ T6116] handle_bug+0xcf/0x120 [ 119.201230][ T6116] exc_invalid_op+0x1a/0x50 [ 119.205773][ T6116] asm_exc_invalid_op+0x1a/0x20 [ 119.210662][ T6116] RIP: 0010:udf_truncate_extents+0xd46/0xeb0 [ 119.216699][ T6116] Code: 65 48 8b 04 25 28 00 00 00 48 3b 84 24 80 01 00 00 75 70 44 89 e0 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 8a 95 8d fe <0f> 0b eb 8e 44 89 e9 80 e1 07 38 c1 0f 8c ec f3 ff ff 4c 89 ef e8 [ 119.236603][ T6116] RSP: 0018:ffffc9000554f880 EFLAGS: 00010287 [ 119.242734][ T6116] RAX: ffffffff82f80af6 RBX: 1ffff1100ff6a1a2 RCX: 0000000000080000 [ 119.250748][ T6116] RDX: ffffc9000d1fb000 RSI: 000000000000f664 RDI: 000000000000f665 [ 119.258762][ T6116] RBP: ffffc9000554fa48 R08: ffff88802bb21e00 R09: 0000000000000002 [ 119.266781][ T6116] R10: 0000000000000001 R11: 0000000000000002 R12: 0000000000000000 [ 119.274788][ T6116] R13: 0000000000000000 R14: 000000000000000a R15: 000000000000000a [ 119.282799][ T6116] ? udf_truncate_extents+0xd46/0xeb0 [ 119.288236][ T6116] ? udf_discard_prealloc+0x570/0x570 [ 119.293652][ T6116] ? udf_write_failed+0x178/0x1b0 [ 119.298734][ T6116] ? __lock_acquire+0x7c80/0x7c80 [ 119.303812][ T6116] ? do_raw_spin_lock+0x121/0x2c0 [ 119.308882][ T6116] ? __rwlock_init+0xa0/0x150 [ 119.313614][ T6116] ? do_raw_spin_unlock+0x121/0x230 [ 119.318852][ T6116] udf_write_failed+0x180/0x1b0 [ 119.323754][ T6116] udf_direct_IO+0x1c3/0x200 [ 119.328380][ T6116] generic_file_direct_write+0x1d4/0x3e0 [ 119.334045][ T6116] __generic_file_write_iter+0x11b/0x230 [ 119.339702][ T6116] ? udf_file_write_iter+0x2b1/0x620 [ 119.345013][ T6116] udf_file_write_iter+0x2c0/0x620 [ 119.350161][ T6116] do_iter_write+0x79a/0xc70 [ 119.354786][ T6116] ? vfs_iter_write+0xa0/0xa0 [ 119.359479][ T6116] ? rcu_read_lock_any_held+0xb4/0x120 [ 119.364965][ T6116] do_pwritev+0x205/0x340 [ 119.369319][ T6116] ? do_preadv+0x330/0x330 [ 119.373771][ T6116] ? lockdep_hardirqs_on_prepare+0x400/0x760 [ 119.379771][ T6116] ? lock_chain_count+0x20/0x20 [ 119.384646][ T6116] ? lockdep_hardirqs_on+0x98/0x150 [ 119.389861][ T6116] ? __x64_sys_pwritev2+0xbe/0x100 [ 119.395005][ T6116] do_syscall_64+0x55/0xb0 [ 119.399455][ T6116] ? clear_bhb_loop+0x40/0x90 [ 119.404158][ T6116] ? clear_bhb_loop+0x40/0x90 [ 119.408951][ T6116] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 119.414881][ T6116] RIP: 0033:0x7f015538f749 [ 119.419329][ T6116] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 119.438964][ T6116] RSP: 002b:00007f0156275038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148 [ 119.447400][ T6116] RAX: ffffffffffffffda RBX: 00007f01555e5fa0 RCX: 00007f015538f749 [ 119.455383][ T6116] RDX: 0000000000000001 RSI: 0000200000000240 RDI: 0000000000000004 [ 119.463395][ T6116] RBP: 00007f0155413f91 R08: 00000000fffffffc R09: 0000000000000003 [ 119.471394][ T6116] R10: 0000000000009c00 R11: 0000000000000246 R12: 0000000000000000 [ 119.479397][ T6116] R13: 00007f01555e6038 R14: 00007f01555e5fa0 R15: 00007ffc5a8f5c28 [ 119.487412][ T6116] [ 119.490583][ T6116] Kernel Offset: disabled [ 119.494982][ T6116] Rebooting in 86400 seconds..