last executing test programs: 4.550367505s ago: executing program 2 (id=127): r0 = socket$kcm(0xa, 0x922000000003, 0x11) setsockopt$sock_attach_bpf(r0, 0x29, 0x24, &(0x7f00000000c0), 0x4) sendmsg$kcm(r0, &(0x7f0000000100)={&(0x7f00000007c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1, 0x9}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000780)="f4000900062b2b25fe80000000000000dc8b850f238466cc00007a000000ad6e911b51818462b400", 0x28}], 0x1}, 0x4804) 4.371696934s ago: executing program 2 (id=129): prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0xffffffffffffffff}, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) semop(0x0, 0x0, 0x0) r3 = socket$inet_tcp(0x2, 0x1, 0x0) sendmmsg$inet(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000003500)}}], 0x2, 0xc085) bind$inet(r3, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_mtu(r3, 0x0, 0xa, &(0x7f0000000180)=0x4, 0x4) connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x18}}, 0x10) 4.198677013s ago: executing program 1 (id=131): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$OSF_MSG_ADD(r0, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000700)={0x268, 0x0, 0x5, 0x6da9bc2af41fee17, 0x0, 0x0, {0x2}, [{{0x254, 0x1, {{0x3, 0x8}, 0x9, 0x2, 0x0, 0x7ff, 0x1, 'syz1\x00', "c05211277ee6bfbb02f97309e2eb5e4489e0e7f459fc10612ffa630e153ccd95", "92ddc27aef0e5a30be0d398be0513d767005883024759619e1d9ea445f12b740", [{0x100, 0x8, {0x1, 0x80000000}}, {0x6, 0x7f9a, {0x0, 0xccf6}}, {0x8, 0x1, {0x0, 0x4}}, {0x592, 0x9, {0x0, 0xfd}}, {0xb, 0x2, {0x2, 0x1}}, {0x7, 0x5, {0x2, 0x8}}, {0x1, 0x1, {0x3, 0x100}}, {0x1, 0x4, {0x1, 0x10}}, {0x8001, 0x1, {0x2, 0xffff}}, {0xe, 0x10, {0x0, 0x3}}, {0xbf9, 0x0, {0x3, 0x6}}, {0xff7f, 0x6, {0x1, 0x5}}, {0x2, 0x7ff, {0x0, 0x2}}, {0x40, 0x8, {0x0, 0xd}}, {0x3, 0x7, {0x0, 0x10000}}, {0x2, 0x401, {0x3, 0x42fb}}, {0x5, 0x80, {0x2, 0x80}}, {0x3, 0x2}, {0x8, 0xf, {0x0, 0x81}}, {0x5, 0x8, {0x1, 0x3}}, {0x8000, 0x8, {0x3, 0x9}}, {0x9, 0x6, {0x1, 0x40}}, {0x0, 0xfd, {0x2, 0x6}}, {0x401, 0x2, {0x2, 0x5}}, {0x4, 0x2, {0x3, 0x100}}, {0x32d, 0x4, {0x2, 0x55}}, {0xe15e, 0xff, {0x3, 0x80}}, {0x26e8, 0xe, {0x0, 0x800}}, {0xa, 0x8, {0x0, 0x2}}, {0x83b, 0x9, {0x3, 0x8}}, {0x61, 0x7, {0x0, 0x200}}, {0x1, 0x8, {0x2, 0xcd9}}, {0x3, 0x74, {0x0, 0x2}}, {0xfff9, 0x5, {0x3, 0x2}}, {0xa019, 0xf, {0x0, 0x7}}, {0x0, 0x92be, {0x1, 0x80000000}}, {0xfffa, 0x0, {0x0, 0x1}}, {0x1, 0x3, {0x1, 0x5}}, {0x2, 0x8bc3, {0x2, 0x8}}, {0x9, 0xf59, {0x2, 0x4}}]}}}]}, 0x268}, 0x1, 0x0, 0x0, 0x4048810}, 0x20000000) 3.726661317s ago: executing program 1 (id=134): creat(0x0, 0x182) prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbee3, 0x8031, 0xffffffffffffffff, 0xffffe000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) r3 = socket$inet_udp(0x2, 0x2, 0x0) syz_open_dev$tty1(0xc, 0x4, 0x1) r4 = add_key$user(&(0x7f0000000240), &(0x7f0000000500)={'syz', 0x0}, &(0x7f0000000b80)="ffa16b558f", 0x5, 0xffffffffffffffff) r5 = add_key$keyring(&(0x7f0000000540), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffb) bpf$PROG_LOAD(0x5, &(0x7f0000008000)={0x15, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="b700000000000000070000000000000095000000000000007bc23c22c47a74cfb5af100fc4e94d123d9f22a7561b8850821bc1f8b5b0a3e3b79b0d96ab7cc60e0e144f0f04bfffe66a22d132a161eea53a46a5316f"], &(0x7f0000003ff6)='syzkaller\x00', 0x1, 0xcc, &(0x7f0000000440)=""/204, 0x0, 0x0, '\x00', 0x0, @sk_reuseport}, 0x94) socket$inet6(0xa, 0x2, 0x0) keyctl$KEYCTL_MOVE(0x1e, r4, 0xffffffffffffffff, r5, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x2b, &(0x7f0000000380)={0x2, {{0x2, 0x4e26, @private=0xa010101}}, {{0x2, 0x2, @rand_addr=0x64010101}}}, 0x108) socket$netlink(0x10, 0x3, 0xb) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0) openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0) 3.28114605s ago: executing program 2 (id=139): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff) sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000040)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000fcdbdf2503000000580001800d0001007564703a73797a310000000044000400200001000a004e2600000044ff0000000000000000000000000000010000000020000200"], 0x6c}, 0x1, 0x0, 0x0, 0x40}, 0x0) 2.411841015s ago: executing program 0 (id=140): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='memory.events\x00', 0x26e1, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000280)=ANY=[@ANYBLOB="400000000101010100000000000000000a001c002000018006000340000000001400018008c301007f000001080002007f0000010c00198008000100", @ANYRES32=r0], 0x40}, 0x1, 0x0, 0x0, 0x40}, 0x0) 2.238758334s ago: executing program 2 (id=141): sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(0xffffffffffffffff, 0x0, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2c, 0x25dddbfd, {0x0, 0x0, 0x0, r2, {0x0, 0xffff}, {0xffff, 0xffff}, {0x1, 0xd}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=@newtfilter={0x4c, 0x2c, 0xd27, 0x70bd28, 0x8000, {0x0, 0x0, 0x0, r2, {0x0, 0x8}, {}, {0xc}}, [@filter_kind_options=@f_flower={{0xb}, {0x1c, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS={0x18, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_GENEVE={0x14, 0x1, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_GENEVE_CLASS={0x6, 0x1, 0x8000}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_TYPE={0x5, 0x2, 0x5}]}]}]}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x220008e8}, 0x804) 1.986479717s ago: executing program 0 (id=143): r0 = syz_open_procfs(0x0, &(0x7f0000000100)='sched\x00') write$cgroup_pressure(r0, 0x0, 0x0) 1.751476279s ago: executing program 2 (id=144): unshare(0x22020400) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000300)='cgroup\x00') lseek(r0, 0x7, 0x5) 1.654742055s ago: executing program 3 (id=145): fstat(0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000500)='.\x00', 0x0, 0x0) ioctl$EXT4_IOC_GET_ES_CACHE(r0, 0xc020660b, &(0x7f0000000c00)={0x7, 0xfffffffffffffffd, 0x4, 0xb}) 1.644461075s ago: executing program 0 (id=146): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x1, &(0x7f0000000280)=[{0x6, 0xfa, 0x0, 0xe4}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr', 0x3) sendmmsg$inet(r0, &(0x7f0000001240)=[{{0x0, 0x0, &(0x7f0000001dc0)=[{&(0x7f0000000140)="91f8a9849519def28691bbc4173c3d6f357d0272b7319130feaab952ac4703cad04be68907e50e997fc26e4c91ea4feb931647fc5393de25000000", 0x3b}, {&(0x7f0000000e80)="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", 0x121}, {&(0x7f00000001c0)="985e44efeabe001cabcf3d8673c3a254a9a2d3197970cb347b70a243bf77139a94bc3ae91684aaf7b7dff691deb8f8aef2d915fb3a0794a9a9b431a819bca6122c350637808dde804a048fd8696e524b2934126c443ce93d82e931eb9918e6c0827686e59209d2e02c9210fd8048f04ad6c48b30", 0x74}], 0x3}}, {{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000fc0)="31cef842d9c50636f60fc0cfdac56c75f1687f0c56287423f5eed69f117e766bdbad0c2171ad6227e1173ab6efa2fcb1c420a51a0917861009000000f049c606ccab7cda1f0e3490fbe385ea382294882839a22674037b8910bd8a1420e33eb1be6f10cfb24eb7cccdf1528ef33b34ab07cdb0909a9ba9547e1e343b451d9025c4e153612d4674b9411fb4de295499abbcb388d291aa83e93db6cf9ab0954e6a8dfc19c3c1533a11d81e0382999bd736f1caacc2bbf1194598a652677efb930a5b6ee292c57402e0cc07a9a26ee794", 0xcf}], 0x1}}, {{0x0, 0x0, &(0x7f0000000a00)=[{&(0x7f0000000640)="42e013913edbeb683c44e18a52b5a2462064ddd92caaba941de80d06047dedb7eeeff3a27eacf4c416b6979d6c918608807c44d01535dbaab3b390086e4fd43c6b5931187023646d6beac2340fdc7a0d81214ac76a818f64d287311e8828dfd3e3dd67efdb129a6e52745d1540e570891f6bf411cc16a18c4d34e522a1f003498f1a03ea1f8828b6c902286c71a9bc21923972dacfa74fef6a0fd3267e599c1dd33dff5d7b28f134bda4a29962fd5daa4fc9c515a1c3ee25ace1a9948c24b277d0", 0xc1}, {&(0x7f0000000040)="7542473782798be019c27ed30b2b", 0xe}, {&(0x7f0000000300)="d6f6da22b14bf9ad2fbb765e446f21a90b8d398bc28c67ea1b14020f785656813f94f0a10a80cff62212b5842b9740c2e7c8cbc7ad801a6ec481d22ff828b1ba477f736c1712a1334158d7df5bc9584acb5112d5ca2ba8ac448a37a5347342781c320dd5dcb867490334b7231c", 0x6d}], 0x3}}], 0x3, 0x2090) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4) sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0) 1.420858556s ago: executing program 2 (id=147): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000003940)=ANY=[@ANYBLOB="210000000000000000000000000100000004"], 0x48) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x2010008, &(0x7f0000000240)={[{@bh}, {@inlinecrypt}, {@max_batch_time={'max_batch_time', 0x3d, 0xfff}}]}, 0xff, 0x548, &(0x7f0000001300)="$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") mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x200000a, 0x13, r0, 0x0) mremap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000005000/0x4000)=nil) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) 1.392241008s ago: executing program 3 (id=148): socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000001f40)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$sock_attach_bpf(r0, 0x1, 0x4c, &(0x7f0000000080), 0xfe41) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/pid_for_children\x00') sendmsg$unix(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000280)='=', 0x1}], 0x1, &(0x7f0000000580)=[@rights={{0x14, 0x1, 0x1, [r2]}}], 0x18, 0x20000084}, 0x40880) 1.102679493s ago: executing program 3 (id=149): socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000000040)=0x8001) r2 = getpgid(0x0) fcntl$setownex(r1, 0xf, &(0x7f0000000140)={0x2, r2}) sendmmsg$unix(r0, &(0x7f0000006c40)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000300)="11", 0x1}], 0x1}}], 0x1, 0x40015) 1.079816084s ago: executing program 1 (id=150): r0 = open(&(0x7f0000000040)='./bus\x00', 0x143142, 0x80) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7fffffff) ftruncate(r0, 0x2007ffb) r1 = syz_open_procfs$pagemap(0xffffffffffffffff, 0x0) ioctl$PAGEMAP_SCAN(r1, 0xc0606610, &(0x7f0000000100)={0x60, 0x0, &(0x7f00001c9000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x2}) sendfile(r0, r0, 0x0, 0x1000000201005) r2 = socket$unix(0x1, 0x1, 0x0) bind$unix(r2, &(0x7f0000000000)=@abs={0x1, 0x0, 0x4e20}, 0x6e) write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000000ec0)={0x8, {"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", 0x1000}}, 0x1006) r3 = creat(&(0x7f00000002c0)='./bus\x00', 0x5) sendfile(0xffffffffffffffff, r3, 0x0, 0x4a) r4 = socket$inet6_sctp(0xa, 0x1, 0x84) dup(r4) setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, 0x0, 0x0) setsockopt$IP_VS_SO_SET_FLUSH(0xffffffffffffffff, 0x0, 0x485, 0x0, 0x0) write$qrtrtun(r0, &(0x7f0000000100)="f230b62d6ac54da583045fbc6923feabb0bde3cf", 0x14) bind$unix(r2, 0x0, 0x0) prctl$PR_MCE_KILL(0x21, 0x0, 0x1) 894.500193ms ago: executing program 3 (id=151): openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0) r0 = socket$l2tp(0x2, 0x2, 0x73) bind$inet(r0, &(0x7f0000000080)={0x2, 0xffff, @broadcast}, 0x10) r1 = socket$kcm(0x2, 0x2, 0x73) bind$inet(r1, &(0x7f0000000340)={0x2, 0x4e20, @multicast2}, 0x10) bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e21, @broadcast}, 0x10) 718.790113ms ago: executing program 1 (id=152): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143041, 0x2a) pwritev2(r0, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0xe7b, 0x0, 0x0) 718.506693ms ago: executing program 3 (id=153): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="0b00000005000000010001000a00000001"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x14, &(0x7f0000000880)=ANY=[@ANYBLOB="180000000300000000000000004000001811", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000018010000756c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000005000000850000000600000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240), &(0x7f0000000500), 0x8, r0}, 0x38) bpf$PROG_BIND_MAP(0xa, &(0x7f00000003c0)={r1}, 0xc) 641.436017ms ago: executing program 1 (id=154): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$TIPC_NL_PEER_REMOVE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)={0x2c, r1, 0xf2ff96e223395e37, 0x70bd27, 0x25dfdbfe, {}, [@TIPC_NLA_NET={0x18, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0xb822}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x8001}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x1}, 0x50) 591.67012ms ago: executing program 0 (id=155): syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x11, &(0x7f0000000100)={[{@noblock_validity}, {@stripe={'stripe', 0x3d, 0x2}}, {@norecovery}, {@min_batch_time={'min_batch_time', 0x3d, 0x71d}}, {@abort}]}, 0x1, 0x610, &(0x7f0000000a40)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='.\x00', 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000880)=ANY=[@ANYBLOB="000000004c900200000000000300010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000010009000000000000ffffffffffffffff0000000000000000"]) 462.786416ms ago: executing program 3 (id=156): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x21081e, &(0x7f00000001c0)={[{@grpquota}, {@nogrpid}, {@quota}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101e42, 0x33) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0)=0x400) r1 = io_uring_setup(0xf08, 0x0) io_uring_register$IORING_REGISTER_FILES(r1, 0x20, 0x0, 0x0) pwritev2(r0, &(0x7f0000000cc0)=[{&(0x7f0000000240)=';', 0xffffffbc}], 0x1, 0xfff, 0xc, 0x4) ioctl$EXT4_IOC_MIGRATE(r0, 0x6609) 462.668426ms ago: executing program 1 (id=157): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x382, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xf) ioctl$TCFLSH(r0, 0x400455c8, 0x0) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000040), 0x6) ioctl$sock_bt_hci(r1, 0x800448d5, &(0x7f0000000340)) 213.069919ms ago: executing program 0 (id=158): syz_emit_ethernet(0xa6, &(0x7f0000000000)={@link_local, @link_local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "010120", 0x70, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [{0x0, 0xa, "a78ce54006598080a8030037004023493b87aafaffffffffffffff23732472eefa45ad96489269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac15084dbaf736b41e5af1802"}, {0x0, 0x1, "000000000400260004000000"}]}}}}}}, 0x0) 0s ago: executing program 0 (id=159): r0 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$inet_sctp_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f00000003c0)={0xfff9, 0xe38f, 0xffff, 0x40}, 0x8) sendmsg$inet_sctp(r0, 0x0, 0x4000891) setsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, 0x0, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.38' (ED25519) to the list of known hosts. syzkaller login: [ 73.702803][ T5756] cgroup: Unknown subsys name 'net' [ 73.844745][ T5756] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 75.501398][ T5756] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 77.181975][ T5773] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 77.194872][ T5774] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 77.202818][ T5783] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 77.203742][ T5774] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 77.220335][ T5783] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 77.221359][ T5774] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 77.227965][ T5783] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 77.235935][ T5774] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 77.243158][ T5783] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 77.250194][ T5774] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 77.257881][ T5783] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 77.270379][ T5774] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 77.270686][ T5783] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 77.287385][ T5783] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 77.294923][ T5774] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 77.295534][ T5783] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 77.310148][ T5783] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 77.316751][ T5774] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 77.324879][ T5774] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 77.324984][ T5783] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 77.332247][ T5774] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 77.347019][ T5783] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 77.347163][ T5774] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 77.354258][ T5783] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 77.872647][ T5768] chnl_net:caif_netlink_parms(): no params data found [ 77.890941][ T5769] chnl_net:caif_netlink_parms(): no params data found [ 78.002627][ T5770] chnl_net:caif_netlink_parms(): no params data found [ 78.039702][ T5767] chnl_net:caif_netlink_parms(): no params data found [ 78.092856][ T5769] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.100576][ T5769] bridge0: port 1(bridge_slave_0) entered disabled state [ 78.107996][ T5769] bridge_slave_0: entered allmulticast mode [ 78.114910][ T5769] bridge_slave_0: entered promiscuous mode [ 78.134230][ T5769] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.141536][ T5769] bridge0: port 2(bridge_slave_1) entered disabled state [ 78.148959][ T5769] bridge_slave_1: entered allmulticast mode [ 78.156163][ T5769] bridge_slave_1: entered promiscuous mode [ 78.163681][ T5768] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.171150][ T5768] bridge0: port 1(bridge_slave_0) entered disabled state [ 78.178536][ T5768] bridge_slave_0: entered allmulticast mode [ 78.185406][ T5768] bridge_slave_0: entered promiscuous mode [ 78.225366][ T5768] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.232816][ T5768] bridge0: port 2(bridge_slave_1) entered disabled state [ 78.240144][ T5768] bridge_slave_1: entered allmulticast mode [ 78.249413][ T5768] bridge_slave_1: entered promiscuous mode [ 78.294596][ T5769] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 78.326073][ T5769] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 78.354017][ T5768] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 78.388876][ T5769] team0: Port device team_slave_0 added [ 78.398156][ T5768] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 78.443967][ T5769] team0: Port device team_slave_1 added [ 78.452285][ T5768] team0: Port device team_slave_0 added [ 78.462080][ T5768] team0: Port device team_slave_1 added [ 78.468418][ T5767] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.475607][ T5767] bridge0: port 1(bridge_slave_0) entered disabled state [ 78.483291][ T5767] bridge_slave_0: entered allmulticast mode [ 78.490191][ T5767] bridge_slave_0: entered promiscuous mode [ 78.499106][ T5767] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.506270][ T5767] bridge0: port 2(bridge_slave_1) entered disabled state [ 78.513528][ T5767] bridge_slave_1: entered allmulticast mode [ 78.520918][ T5767] bridge_slave_1: entered promiscuous mode [ 78.530158][ T5770] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.537652][ T5770] bridge0: port 1(bridge_slave_0) entered disabled state [ 78.544792][ T5770] bridge_slave_0: entered allmulticast mode [ 78.552767][ T5770] bridge_slave_0: entered promiscuous mode [ 78.612488][ T5768] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 78.619559][ T5768] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 78.645779][ T5768] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 78.660231][ T5770] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.667601][ T5770] bridge0: port 2(bridge_slave_1) entered disabled state [ 78.674774][ T5770] bridge_slave_1: entered allmulticast mode [ 78.681879][ T5770] bridge_slave_1: entered promiscuous mode [ 78.689809][ T5769] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 78.697553][ T5769] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 78.723872][ T5769] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 78.745416][ T5768] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 78.752586][ T5768] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 78.781412][ T5768] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 78.812276][ T5769] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 78.819487][ T5769] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 78.845610][ T5769] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 78.865802][ T5767] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 78.910622][ T5767] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 78.944134][ T5770] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 78.967717][ T5767] team0: Port device team_slave_0 added [ 78.986037][ T5770] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 79.002842][ T5769] hsr_slave_0: entered promiscuous mode [ 79.015196][ T5769] hsr_slave_1: entered promiscuous mode [ 79.023529][ T5767] team0: Port device team_slave_1 added [ 79.071548][ T5770] team0: Port device team_slave_0 added [ 79.084211][ T5768] hsr_slave_0: entered promiscuous mode [ 79.091039][ T5768] hsr_slave_1: entered promiscuous mode [ 79.097924][ T5768] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 79.105900][ T5768] Cannot create hsr debugfs directory [ 79.134460][ T5770] team0: Port device team_slave_1 added [ 79.165386][ T5767] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 79.172538][ T5767] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 79.198989][ T5767] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 79.222465][ T5767] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 79.229544][ T5767] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 79.255856][ T5767] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 79.317002][ T5770] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 79.323992][ T5770] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 79.349970][ T5770] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 79.400400][ T5770] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 79.408454][ T51] Bluetooth: hci3: command tx timeout [ 79.408469][ T5776] Bluetooth: hci2: command tx timeout [ 79.408736][ T5770] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 79.445905][ T5770] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 79.496877][ T51] Bluetooth: hci0: command tx timeout [ 79.500868][ T5776] Bluetooth: hci1: command tx timeout [ 79.526155][ T5767] hsr_slave_0: entered promiscuous mode [ 79.532798][ T5767] hsr_slave_1: entered promiscuous mode [ 79.539510][ T5767] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 79.547194][ T5767] Cannot create hsr debugfs directory [ 79.619209][ T5770] hsr_slave_0: entered promiscuous mode [ 79.625846][ T5770] hsr_slave_1: entered promiscuous mode [ 79.632573][ T5770] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 79.640762][ T5770] Cannot create hsr debugfs directory [ 79.878701][ T5768] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 79.917867][ T5768] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 79.929791][ T5768] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 79.940298][ T5768] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 80.018518][ T5769] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 80.040525][ T5769] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 80.078724][ T5769] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 80.089654][ T5769] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 80.136172][ T5767] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 80.154820][ T5767] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 80.164998][ T5767] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 80.175474][ T5767] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 80.294511][ T5770] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 80.307677][ T5770] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 80.330590][ T5768] 8021q: adding VLAN 0 to HW filter on device bond0 [ 80.351991][ T5770] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 80.363285][ T5770] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 80.401409][ T5768] 8021q: adding VLAN 0 to HW filter on device team0 [ 80.428094][ T37] bridge0: port 1(bridge_slave_0) entered blocking state [ 80.435436][ T37] bridge0: port 1(bridge_slave_0) entered forwarding state [ 80.447829][ T37] bridge0: port 2(bridge_slave_1) entered blocking state [ 80.454930][ T37] bridge0: port 2(bridge_slave_1) entered forwarding state [ 80.541057][ T5767] 8021q: adding VLAN 0 to HW filter on device bond0 [ 80.581361][ T5769] 8021q: adding VLAN 0 to HW filter on device bond0 [ 80.603968][ T5767] 8021q: adding VLAN 0 to HW filter on device team0 [ 80.644039][ T1087] bridge0: port 1(bridge_slave_0) entered blocking state [ 80.651243][ T1087] bridge0: port 1(bridge_slave_0) entered forwarding state [ 80.663378][ T1087] bridge0: port 2(bridge_slave_1) entered blocking state [ 80.670521][ T1087] bridge0: port 2(bridge_slave_1) entered forwarding state [ 80.711372][ T5769] 8021q: adding VLAN 0 to HW filter on device team0 [ 80.788910][ T5770] 8021q: adding VLAN 0 to HW filter on device bond0 [ 80.835806][ T37] bridge0: port 1(bridge_slave_0) entered blocking state [ 80.843024][ T37] bridge0: port 1(bridge_slave_0) entered forwarding state [ 80.872500][ T49] bridge0: port 2(bridge_slave_1) entered blocking state [ 80.879696][ T49] bridge0: port 2(bridge_slave_1) entered forwarding state [ 80.908030][ T5767] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 80.940888][ T5770] 8021q: adding VLAN 0 to HW filter on device team0 [ 80.969400][ T1087] bridge0: port 1(bridge_slave_0) entered blocking state [ 80.976651][ T1087] bridge0: port 1(bridge_slave_0) entered forwarding state [ 81.013113][ T49] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.020311][ T49] bridge0: port 2(bridge_slave_1) entered forwarding state [ 81.160583][ T5768] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 81.301439][ T5768] veth0_vlan: entered promiscuous mode [ 81.332884][ T5768] veth1_vlan: entered promiscuous mode [ 81.440383][ T5768] veth0_macvtap: entered promiscuous mode [ 81.464299][ T5767] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 81.487310][ T5776] Bluetooth: hci3: command tx timeout [ 81.499094][ T5776] Bluetooth: hci2: command tx timeout [ 81.512156][ T5768] veth1_macvtap: entered promiscuous mode [ 81.567661][ T5776] Bluetooth: hci1: command tx timeout [ 81.568838][ T51] Bluetooth: hci0: command tx timeout [ 81.620017][ T5768] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 81.656229][ T5768] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 81.680773][ T5767] veth0_vlan: entered promiscuous mode [ 81.690765][ T5768] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.700535][ T5768] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.711360][ T5768] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.720369][ T5768] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.754092][ T5769] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 81.784900][ T5770] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 81.792783][ T5767] veth1_vlan: entered promiscuous mode [ 81.885267][ T3487] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 81.905126][ T3487] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 81.950574][ T5767] veth0_macvtap: entered promiscuous mode [ 81.972155][ T37] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 81.982329][ T37] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 81.983894][ T5767] veth1_macvtap: entered promiscuous mode [ 82.058086][ T5769] veth0_vlan: entered promiscuous mode [ 82.091260][ T5767] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 82.102478][ T5767] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.120145][ T5767] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 82.134660][ T5770] veth0_vlan: entered promiscuous mode [ 82.155679][ T5770] veth1_vlan: entered promiscuous mode [ 82.165984][ T5767] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 82.182766][ T5767] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.196135][ T5767] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 82.209197][ T5769] veth1_vlan: entered promiscuous mode [ 82.243988][ T5767] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.260617][ T5767] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.269907][ T5767] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.278840][ T5767] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.361291][ T5770] veth0_macvtap: entered promiscuous mode [ 82.390577][ T5770] veth1_macvtap: entered promiscuous mode [ 82.475231][ T5769] veth0_macvtap: entered promiscuous mode [ 82.491927][ T5769] veth1_macvtap: entered promiscuous mode [ 82.509213][ T5770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 82.520847][ T5770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.531062][ T5770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 82.541836][ T5770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.554461][ T5770] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 82.605348][ T3518] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 82.619327][ T3518] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 82.626349][ T5770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 82.646681][ T5770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.670398][ T5770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 82.686300][ T5770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.704974][ T5770] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 82.732518][ T5769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 82.751951][ T5769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.762769][ T5769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 82.778855][ T5769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.791201][ T5769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 82.805224][ T5769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.823202][ T5769] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 82.834659][ T5769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 82.854755][ T5769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.864697][ T5769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 82.878411][ T5769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.888857][ T5769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 82.900105][ T5769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.915520][ T5769] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 82.938519][ T37] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 82.938515][ T5770] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.958182][ T5770] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.967285][ T5770] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.975799][ T37] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 82.975989][ T5770] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.044833][ T5769] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.061649][ T5769] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.088690][ T5769] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.114488][ T5769] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.116777][ T5836] syz.1.6[5836]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set [ 83.183802][ T5836] loop1: detected capacity change from 0 to 512 [ 83.214093][ T5836] EXT4-fs: Ignoring removed nomblk_io_submit option [ 83.259328][ T5836] EXT4-fs: Ignoring removed mblk_io_submit option [ 83.302561][ T3487] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.321204][ T3487] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.354623][ T5836] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2 [ 83.363290][ T5836] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -2 [ 83.377710][ T5836] EXT4-fs (loop1): 1 truncate cleaned up [ 83.384929][ T5836] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 83.423449][ T5836] EXT4-fs error (device loop1): ext4_map_blocks:610: inode #2: block 4: comm syz.1.6: lblock 0 mapped to illegal pblock 4 (length 1) [ 83.439292][ T5836] EXT4-fs (loop1): Remounting filesystem read-only [ 83.473869][ T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.499558][ T5768] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 83.506910][ T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.567054][ T51] Bluetooth: hci2: command tx timeout [ 83.567691][ T1087] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.572858][ T51] Bluetooth: hci3: command tx timeout [ 83.624550][ T1087] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.647379][ T51] Bluetooth: hci0: command tx timeout [ 83.648082][ T5776] Bluetooth: hci1: command tx timeout [ 83.723144][ T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.746958][ T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.088497][ T5850] loop0: detected capacity change from 0 to 512 [ 84.133459][ T5852] loop3: detected capacity change from 0 to 1764 [ 84.162372][ T5854] loop1: detected capacity change from 0 to 512 [ 84.185500][ T5850] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 84.199194][ T5850] ext4 filesystem being mounted at /1/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 84.223317][ T5851] syzkaller0: entered promiscuous mode [ 84.230054][ T5851] syzkaller0: entered allmulticast mode [ 84.298347][ T5854] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 84.341910][ T5854] ext4 filesystem being mounted at /5/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 84.467760][ T5854] EXT4-fs error (device loop1): ext4_xattr_block_get:597: inode #15: comm syz.1.10: corrupted xattr block 33: invalid header [ 84.504577][ T5854] fscrypt (loop1, inode 15): Error -117 getting encryption context [ 84.599746][ T5768] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 84.744878][ T5863] hub 8-0:1.0: USB hub found [ 84.757748][ T5863] hub 8-0:1.0: 1 port detected [ 85.085352][ T5865] syzkaller0: entered promiscuous mode [ 85.141855][ T5865] syzkaller0: entered allmulticast mode [ 85.169158][ T5876] netlink: 328 bytes leftover after parsing attributes in process `syz.2.17'. [ 85.186009][ T5878] ======================================================= [ 85.186009][ T5878] WARNING: The mand mount option has been deprecated and [ 85.186009][ T5878] and is ignored by this kernel. Remove the mand [ 85.186009][ T5878] option from the mount to silence this warning. [ 85.186009][ T5878] ======================================================= [ 85.430052][ T5881] usb usb1: usbfs: process 5881 (syz.3.19) did not claim interface 0 before use [ 85.480711][ T5882] loop2: detected capacity change from 0 to 2048 [ 85.618600][ T5882] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 85.648101][ T5776] Bluetooth: hci2: command tx timeout [ 85.658364][ T51] Bluetooth: hci3: command tx timeout [ 85.727348][ T51] Bluetooth: hci0: command tx timeout [ 85.728044][ T5776] Bluetooth: hci1: command tx timeout [ 85.777739][ T5767] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 85.853134][ T5770] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 86.018964][ T5890] loop0: detected capacity change from 0 to 512 [ 86.047223][ T5890] EXT4-fs: Ignoring removed bh option [ 86.052778][ T5890] EXT4-fs: inline encryption not supported [ 86.066209][ T5890] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 86.131570][ T5890] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1154: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 86.148649][ T5890] EXT4-fs error (device loop0): ext4_validate_block_bitmap:439: comm syz.0.22: bg 0: block 248: padding at end of block bitmap is not set [ 86.184800][ T5890] Quota error (device loop0): write_blk: dquota write failed [ 86.193270][ T5890] Quota error (device loop0): qtree_write_dquot: Error -28 occurred while creating quota [ 86.204180][ T5890] EXT4-fs error (device loop0): ext4_acquire_dquot:6953: comm syz.0.22: Failed to acquire dquot type 1 [ 86.272484][ T5890] EXT4-fs (loop0): 1 truncate cleaned up [ 86.308567][ T5890] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback. [ 86.442399][ T5767] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0008-000000000000. [ 89.338551][ T5941] loop0: detected capacity change from 0 to 512 [ 89.406057][ T5941] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 89.500537][ T5941] ext4 filesystem being mounted at /5/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 89.707602][ T5767] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 89.746177][ T5960] loop1: detected capacity change from 0 to 512 [ 89.764202][ T5960] EXT4-fs: inline encryption not supported [ 90.053228][ T5960] EXT4-fs error (device loop1): ext4_iget_extra_inode:4739: inode #15: comm syz.1.46: corrupted in-inode xattr: e_value size too large [ 90.415721][ T5960] EXT4-fs error (device loop1): ext4_orphan_get:1409: comm syz.1.46: couldn't read orphan inode 15 (err -117) [ 90.743659][ T5960] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 90.898970][ T5768] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 91.043789][ T5976] loop1: detected capacity change from 0 to 512 [ 91.066053][ T5976] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 91.137925][ T5976] EXT4-fs (loop1): 1 truncate cleaned up [ 91.153389][ T5976] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 91.406743][ T5768] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 91.841076][ T5994] loop0: detected capacity change from 0 to 1764 [ 92.801846][ T9] cfg80211: failed to load regulatory.db [ 93.177960][ T6010] loop1: detected capacity change from 0 to 256 [ 94.655075][ T6027] loop0: detected capacity change from 0 to 512 [ 94.688400][ T6027] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 94.746854][ T6027] EXT4-fs (loop0): 1 truncate cleaned up [ 94.754014][ T6027] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 95.076027][ T5767] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 95.958390][ T6052] netlink: 48 bytes leftover after parsing attributes in process `syz.2.80'. [ 96.851041][ T6063] loop3: detected capacity change from 0 to 1024 [ 96.868733][ T6063] EXT4-fs: Ignoring removed bh option [ 96.920052][ T6065] tipc: Invalid UDP bearer configuration [ 96.920199][ T6065] tipc: Enabling of bearer rejected, failed to enable media [ 97.041240][ T6063] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: writeback. [ 97.073084][ T6063] ext4 filesystem being mounted at /26/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 97.200157][ T5769] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 97.405916][ T6078] netlink: 48 bytes leftover after parsing attributes in process `syz.0.92'. [ 97.645597][ T6059] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 97.801323][ T6059] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 98.107428][ T6059] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 98.335138][ T6059] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 98.370723][ T6059] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 98.419780][ T6059] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 98.442707][ T6059] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 98.460314][ T6059] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 98.473983][ T6059] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 98.507409][ T6059] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 98.526695][ T6059] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 98.530206][ T6092] tipc: Invalid UDP bearer configuration [ 98.532853][ T6092] tipc: Enabling of bearer rejected, failed to enable media [ 98.549899][ T6059] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 98.766891][ T5776] Bluetooth: hci1: command 0x0c1a tx timeout [ 98.805862][ T6100] capability: warning: `syz.1.101' uses 32-bit capabilities (legacy support in use) [ 98.887365][ T6102] netlink: 48 bytes leftover after parsing attributes in process `syz.3.102'. [ 100.696453][ C0] sched: RT throttling activated [ 100.715289][ T5776] Bluetooth: hci0: command 0x0c1a tx timeout [ 100.721453][ T51] Bluetooth: hci2: command 0x0c1a tx timeout [ 101.631944][ T6130] hub 8-0:1.0: USB hub found [ 101.639841][ T6130] hub 8-0:1.0: 1 port detected [ 101.668717][ T6130] netlink: 'syz.0.110': attribute type 10 has an invalid length. [ 101.706640][ T5776] Bluetooth: hci3: command 0x0c1a tx timeout [ 101.706663][ T5785] Bluetooth: hci1: command 0x0c1a tx timeout [ 101.977238][ T6130] macvlan0: entered allmulticast mode [ 101.992471][ T6130] veth1_vlan: entered allmulticast mode [ 102.004225][ T6130] team0: Port device macvlan0 added [ 102.159668][ T6135] netlink: 48 bytes leftover after parsing attributes in process `syz.1.114'. [ 102.334739][ T6140] loop2: detected capacity change from 0 to 512 [ 102.353826][ T6140] EXT4-fs: Ignoring removed nobh option [ 102.364582][ T6143] loop3: detected capacity change from 0 to 1024 [ 102.364676][ T6140] EXT4-fs (loop2): orphan cleanup on readonly fs [ 102.393119][ T6140] EXT4-fs warning (device loop2): ext4_xattr_inode_get:546: inode #11: comm syz.2.116: ea_inode file size=4294967295 entry size=6 [ 102.407785][ T6143] EXT4-fs: Ignoring removed orlov option [ 102.411899][ T6140] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 102.430491][ T6140] EXT4-fs error (device loop2): ext4_do_update_inode:5255: inode #15: comm syz.2.116: corrupted inode contents [ 102.560767][ T6140] EXT4-fs error (device loop2): ext4_dirty_inode:6143: inode #15: comm syz.2.116: mark_inode_dirty error [ 102.623912][ T6143] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a002c018, mo2=0002] [ 102.668401][ T6140] EXT4-fs error (device loop2): ext4_do_update_inode:5255: inode #15: comm syz.2.116: corrupted inode contents [ 102.685569][ T6138] loop0: detected capacity change from 0 to 8192 [ 102.702894][ T6143] System zones: 0-1, 3-12 [ 102.733720][ T6143] EXT4-fs (loop3): mounted filesystem 00000000-0500-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 102.769597][ T6140] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2998: inode #15: comm syz.2.116: mark_inode_dirty error [ 102.859556][ T6140] EXT4-fs error (device loop2): ext4_xattr_delete_inode:3001: inode #15: comm syz.2.116: mark inode dirty (error -117) [ 102.935212][ T6143] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2853: Unable to expand inode 12. Delete some EAs or run e2fsck. [ 102.949473][ T6140] EXT4-fs warning (device loop2): ext4_evict_inode:274: xattr delete (err -117) [ 102.962885][ T6140] EXT4-fs (loop2): 1 orphan inode deleted [ 102.983290][ T6140] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 103.068139][ T5769] EXT4-fs (loop3): unmounting filesystem 00000000-0500-0000-0000-000000000000. [ 103.183556][ T5770] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 103.727038][ T5776] Bluetooth: hci1: command 0x0c1a tx timeout [ 103.733181][ T51] Bluetooth: hci0: command 0x0c1a tx timeout [ 103.740150][ T51] Bluetooth: hci3: command 0x0c1a tx timeout [ 103.740418][ T5782] Bluetooth: hci2: command 0x0c1a tx timeout [ 106.012971][ T5782] Bluetooth: hci3: command 0x0c1a tx timeout [ 106.019311][ T5782] Bluetooth: hci2: command 0x0c1a tx timeout [ 106.025583][ T5782] Bluetooth: hci0: command 0x0c1a tx timeout [ 106.050588][ T6170] hub 8-0:1.0: USB hub found [ 106.056592][ T6170] hub 8-0:1.0: 1 port detected [ 106.085766][ T6170] netlink: 'syz.2.124': attribute type 10 has an invalid length. [ 106.389538][ T6170] macvlan0: entered allmulticast mode [ 106.399419][ T6170] veth1_vlan: entered allmulticast mode [ 106.410273][ T6170] team0: Port device macvlan0 added [ 107.352111][ T6193] Dead loop on virtual device ip6_vti0, fix it urgently! [ 107.856872][ T6202] loop3: detected capacity change from 0 to 1024 [ 108.114901][ T6202] EXT4-fs: Ignoring removed bh option [ 108.427748][ T6202] EXT4-fs (loop3): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 108.528416][ T6202] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 108.541088][ T6207] tipc: Enabling of bearer rejected, failed to enable media [ 108.841608][ T6213] netlink: 16 bytes leftover after parsing attributes in process `syz.0.140'. [ 108.869791][ T5769] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 109.756412][ T6230] loop2: detected capacity change from 0 to 512 [ 109.774367][ T6230] EXT4-fs: Ignoring removed bh option [ 109.811545][ T6230] EXT4-fs: inline encryption not supported [ 109.837610][ T6230] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 109.894419][ T6230] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1154: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 109.940993][ T6230] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.147: bg 0: block 248: padding at end of block bitmap is not set [ 109.956974][ T6230] Quota error (device loop2): write_blk: dquota write failed [ 109.964747][ T6230] Quota error (device loop2): qtree_write_dquot: Error -28 occurred while creating quota [ 110.013611][ T6230] EXT4-fs error (device loop2): ext4_acquire_dquot:6953: comm syz.2.147: Failed to acquire dquot type 1 [ 110.079471][ T6230] EXT4-fs (loop2): 1 truncate cleaned up [ 110.095607][ T6230] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback. [ 110.541548][ T6247] loop0: detected capacity change from 0 to 1024 [ 110.567186][ T6247] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock [ 110.584127][ T6247] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869) [ 110.605441][ T6247] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 110.634409][ T6249] loop3: detected capacity change from 0 to 512 [ 110.646078][ T6247] EXT4-fs error (device loop0): ext4_get_journal_inode:5820: inode #5: comm syz.0.155: unexpected bad inode w/o EXT4_IGET_BAD [ 110.692345][ T6247] EXT4-fs (loop0): no journal found [ 110.703752][ T6247] EXT4-fs (loop0): can't get journal size [ 110.745325][ T6247] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 110.773657][ T6249] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 110.813057][ T5767] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 110.833239][ T6249] ext4 filesystem being mounted at /47/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 111.095390][ T6258] BUG: unable to handle page fault for address: ffffffffffffffec [ 111.103188][ T6258] #PF: supervisor read access in kernel mode [ 111.109241][ T6258] #PF: error_code(0x0000) - not-present page [ 111.115342][ T6258] PGD cf35067 P4D cf35067 PUD cf37067 PMD 0 [ 111.121397][ T6258] Oops: 0000 [#1] PREEMPT SMP KASAN [ 111.126626][ T6258] CPU: 1 PID: 6258 Comm: syz.3.156 Not tainted syzkaller #0 [ 111.133947][ T6258] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 111.144036][ T6258] RIP: 0010:ext4_free_ext_path+0x45/0x110 [ 111.149816][ T6258] Code: 85 db 0f 84 b0 00 00 00 49 bf 00 00 00 00 00 fc ff df 48 8d 7b 08 48 89 f8 48 c1 e8 03 42 0f b6 04 38 84 c0 0f 85 a9 00 00 00 <0f> b7 43 08 c1 e0 04 48 8d 04 40 48 89 44 24 08 48 8d 43 28 48 89 [ 111.169987][ T6258] RSP: 0018:ffffc9000c427638 EFLAGS: 00010246 [ 111.176101][ T6258] RAX: 0000000000000000 RBX: ffffffffffffffe4 RCX: 0000000000080000 [ 111.184445][ T6258] RDX: ffffc9000e30f000 RSI: 000000000000cbe2 RDI: ffffffffffffffec [ 111.192700][ T6258] RBP: ffffc9000c427758 R08: ffff88807865341f R09: 1ffff1100f0ca683 [ 111.200883][ T6258] R10: dffffc0000000000 R11: ffffed100f0ca684 R12: ffff8880786534b0 [ 111.208894][ T6258] R13: ffffffffffffffe4 R14: dffffc0000000000 R15: dffffc0000000000 [ 111.216910][ T6258] FS: 00007f4b8717e6c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 111.225979][ T6258] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 111.232682][ T6258] CR2: ffffffffffffffec CR3: 0000000027009000 CR4: 00000000003506e0 [ 111.241206][ T6258] Call Trace: [ 111.244487][ T6258] [ 111.247420][ T6258] finish_range+0x234/0x340 [ 111.251933][ T6258] ? update_tind_extent_range+0x3f0/0x3f0 [ 111.257673][ T6258] ? __ext4_sb_bread_gfp+0x14c/0x210 [ 111.262999][ T6258] update_ind_extent_range+0x2e3/0x520 [ 111.268668][ T6258] ext4_ext_migrate+0xb07/0x1080 [ 111.274135][ T6258] ? mb_regenerate_buddy+0x510/0x510 [ 111.279521][ T6258] ? down_read_killable+0x340/0x340 [ 111.284728][ T6258] ? sb_start_write+0x110/0x1c0 [ 111.289616][ T6258] ? mnt_want_write_file+0x16a/0x200 [ 111.294941][ T6258] ext4_ioctl+0x1ee3/0x3b80 [ 111.299463][ T6258] ? ext4_fileattr_set+0x16d0/0x16d0 [ 111.304754][ T6258] ? mark_lock+0x94/0x320 [ 111.309085][ T6258] ? lockdep_hardirqs_on_prepare+0x40d/0x770 [ 111.315082][ T6258] ? do_vfs_ioctl+0x1573/0x1cc0 [ 111.319946][ T6258] ? __ia32_compat_sys_ioctl+0x8a0/0x8a0 [ 111.325606][ T6258] ? tomoyo_path_number_perm+0x217/0x620 [ 111.331253][ T6258] ? __lock_acquire+0x7d40/0x7d40 [ 111.336299][ T6258] ? slab_free_freelist_hook+0x130/0x1a0 [ 111.341957][ T6258] ? tomoyo_path_number_perm+0x500/0x620 [ 111.347600][ T6258] ? __kmem_cache_free+0xba/0x1e0 [ 111.352815][ T6258] ? tomoyo_path_number_perm+0x5b4/0x620 [ 111.358647][ T6258] ? tomoyo_path_number_perm+0x217/0x620 [ 111.364301][ T6258] ? tomoyo_check_path_acl+0x1c0/0x1c0 [ 111.369920][ T6258] ? __fget_files+0x28/0x4b0 [ 111.374541][ T6258] ? __fget_files+0x28/0x4b0 [ 111.379145][ T6258] ? bpf_lsm_file_ioctl+0x9/0x10 [ 111.384187][ T6258] ? security_file_ioctl+0x80/0xa0 [ 111.389313][ T6258] ? ext4_fileattr_set+0x16d0/0x16d0 [ 111.394603][ T6258] __se_sys_ioctl+0xfd/0x170 [ 111.399216][ T6258] do_syscall_64+0x55/0xa0 [ 111.403656][ T6258] ? clear_bhb_loop+0x40/0x90 [ 111.408363][ T6258] ? clear_bhb_loop+0x40/0x90 [ 111.413113][ T6258] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 111.419022][ T6258] RIP: 0033:0x7f4b8639c819 [ 111.423497][ T6258] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 111.443147][ T6258] RSP: 002b:00007f4b8717e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 111.451614][ T6258] RAX: ffffffffffffffda RBX: 00007f4b86616090 RCX: 00007f4b8639c819 [ 111.459893][ T6258] RDX: 0000000000000000 RSI: 0000000000006609 RDI: 0000000000000004 [ 111.467904][ T6258] RBP: 00007f4b86432c91 R08: 0000000000000000 R09: 0000000000000000 [ 111.476004][ T6258] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 111.484028][ T6258] R13: 00007f4b86616128 R14: 00007f4b86616090 R15: 00007ffceee99d48 [ 111.492155][ T6258] [ 111.495729][ T6258] Modules linked in: [ 111.499697][ T6258] CR2: ffffffffffffffec [ 111.503902][ T6258] ---[ end trace 0000000000000000 ]--- [ 111.509473][ T6258] RIP: 0010:ext4_free_ext_path+0x45/0x110 [ 111.515249][ T6258] Code: 85 db 0f 84 b0 00 00 00 49 bf 00 00 00 00 00 fc ff df 48 8d 7b 08 48 89 f8 48 c1 e8 03 42 0f b6 04 38 84 c0 0f 85 a9 00 00 00 <0f> b7 43 08 c1 e0 04 48 8d 04 40 48 89 44 24 08 48 8d 43 28 48 89 [ 111.534902][ T6258] RSP: 0018:ffffc9000c427638 EFLAGS: 00010246 [ 111.541016][ T6258] RAX: 0000000000000000 RBX: ffffffffffffffe4 RCX: 0000000000080000 [ 111.549244][ T6258] RDX: ffffc9000e30f000 RSI: 000000000000cbe2 RDI: ffffffffffffffec [ 111.557343][ T6258] RBP: ffffc9000c427758 R08: ffff88807865341f R09: 1ffff1100f0ca683 [ 111.565356][ T6258] R10: dffffc0000000000 R11: ffffed100f0ca684 R12: ffff8880786534b0 [ 111.573376][ T6258] R13: ffffffffffffffe4 R14: dffffc0000000000 R15: dffffc0000000000 [ 111.581392][ T6258] FS: 00007f4b8717e6c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 111.590362][ T6258] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 111.596980][ T6258] CR2: ffffffffffffffec CR3: 0000000027009000 CR4: 00000000003506e0 [ 111.604997][ T6258] Kernel panic - not syncing: Fatal exception [ 111.611507][ T6258] Kernel Offset: disabled [ 111.615849][ T6258] Rebooting in 86400 seconds..