last executing test programs: 3.279354172s ago: executing program 2 (id=3): r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f00000001c0)={0x2, 0x3, @local}, 0x10) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) connect$inet(r0, &(0x7f0000000480)={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x39}}, 0x10) 2.595932866s ago: executing program 2 (id=6): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000007c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(sm4)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000001280)="b7f2288a911993f08d3aaea2bc0000de", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg$alg(r1, &(0x7f0000002880)=[{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000180)="fc4406008e199ae0898c7a8988823619badd4fe626289574f86d0809dc46543a7397ceafd65272d07668", 0x2a}, {&(0x7f00000048c0)="4aa6ebbaadac821a088be79aff597e399b67d0e0d8b16af93d4078939730787afd7ca85bd5aa74fab362b0585f095ee8c513e864ee7783500a577bfbf648389284cb6744ba7d2e", 0x47}], 0x2, 0x0, 0x0, 0x800}], 0x1, 0x4815) recvmmsg(r1, &(0x7f0000003140)=[{{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000003a80)=""/101, 0x65}], 0x1}, 0xffffff0b}, {{0x0, 0x0, &(0x7f0000000a40)=[{&(0x7f0000000580)=""/81, 0x51}], 0x1}, 0x4000000f}], 0x2, 0x2101, 0x0) 1.691268164s ago: executing program 0 (id=1): r0 = timerfd_create(0x7, 0x0) timerfd_settime(r0, 0x0, &(0x7f00000003c0)={{0x0, 0x4}, {0x0, 0x989680}}, 0x0) readv(r0, 0x0, 0x0) timerfd_gettime(r0, &(0x7f0000001200)) 1.398276457s ago: executing program 3 (id=4): socket$inet6_udplite(0xa, 0x2, 0x88) sendmsg$inet(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)=ANY=[], 0x70}, 0x80) r0 = socket$packet(0x11, 0x3, 0x300) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), r1) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000000c0)=ANY=[@ANYBLOB="98030000", @ANYRES16=r2, @ANYBLOB="010028057000fcdbdf253b00000008000300", @ANYRES32=r3, @ANYBLOB="04008e00080057001b0a000004006c000500190107000000080026006c0900005603330080b0c000ffffffffffff080211000001bae9ee14d4284d73c826d8bce62cb84c8b765cba"], 0x398}}, 0x0) ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='percpu_create_chunk\x00'}, 0x18) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xa, 0x101, 0x7fff, 0xcc}, 0x50) recvfrom$rxrpc(0xffffffffffffffff, &(0x7f0000000400)=""/15, 0xf, 0x40010003, &(0x7f0000000580)=@in6={0x21, 0x4, 0x2, 0x1c, {0xa, 0x4e22, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x5}}, 0x24) 1.228667564s ago: executing program 1 (id=2): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0) getsockname$packet(r2, &(0x7f00000002c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_ingress={0xc}]}, 0x30}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000003c0)=@delchain={0x34, 0x64, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x9}, {0xa, 0xffff}}, [@filter_kind_options=@f_route={{0xa}, {0x4}}]}, 0x34}}, 0x0) 1.003970105s ago: executing program 2 (id=7): r0 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f0000000140)={{0x0, 0x1, 0x0, 0xfffffefc, 'syz0\x00'}, 0x2, 0x2, 0x0, 0x0, 0x0, 0xff, 'syz0\x00', 0x0, 0xf}) 848.385059ms ago: executing program 0 (id=8): r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f00000013c0)={0x0, 0x2, 0x2, {0x2, @vbi={0x0, 0x0, 0x4, 0x0, [], [0x8200], 0x1}}}) 447.791365ms ago: executing program 1 (id=9): r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r1) ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=0x0) sendmsg$NFC_CMD_DEV_UP(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="010026bd70003c0200000200000008000100", @ANYRES32=r3], 0x1c}}, 0x0) write$nci(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="61030621134d5e80d902"], 0xa) 183.917081ms ago: executing program 2 (id=10): syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x800000, &(0x7f0000000100)={[{@discard}, {@umask={'umask', 0x3d, 0x2}}, {@gid}, {@errors_continue}, {@errors_continue}, {@iocharset={'iocharset', 0x3d, 'cp865'}}, {@fmask={'fmask', 0x3d, 0x106}}, {@fmask={'fmask', 0x3d, 0xa}}, {@namecase}, {@keep_last_dots}]}, 0x1, 0x1524, &(0x7f0000001f80)="$eJzs3AuYjtXaOPD7Xms9Y0h6m+QwrLXuhzc5LJMkOSTJIUmSJMkpIWmSLQmJIaekIQnJYUgOQ0gOE5PG+Xw+JCRJkyQhOSXrf0342+3a3977233bd31z/67ruaz7Xc+9nvW89/u8z8HMfNdlaM3Gtao1JCL4t+DFf5IAIBYABgLAdQAQAEC5uHJxWf05JSb9exthf65HUq/2DNjVxPXP3rj+2RvXP3vj+mdvXP/sjeufvXH9szeuP2PZ2ebpBa/nJfsu/Pw/O+Pz//8hmaXHfrW29I1dAWL+2RSuf/bG9f8/K/hnVuL6Z29c/+wq9mpPgP0vwMd/dpDj7/Zw/bM3rj9j2dnVfv58tReIZO/34Gp//hhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMZQ9n/BUKAC63r/a8GGOMMcYYY4wx9ufxOa72DBhjjDHGGGOMMfY/D0GABAUBxEAOiIWckAsEAFwLeeA6iMD1EAc3QF64EfJBfigABSEeCkFh0GAgBghCKAJFIQo3QTG4GYpDCSgJpcBBaUiAW6AM3Apl4TYoB7dDebgDKkBFqASV4U6oAndBVbgbqsE9UB1qQE2oBfdCbbgP6sD9UBcegHrwINSHh6ABPAwN4RFoBI9CY3gMmsDj0BSaQXNoAS3/W/kvQQ94GXpCL0iC3tAHXoG+0A/6wwAYCK/CIHgNBsPrkAxDYCi8AcPgTRgOb8EIGAmj4G0YDe/AGBgL42A8pMAEmAjvwiR4DybDFJgK0yAVpsMMeB9mwiyYDR/AHPgQ5sI8mA8LIA0+goWwCNLhY1gMn0AGLIGlsAyWwwpYCatgNayBtbAO1sMG2AibYDNsga2wDbbDDtgJn8Iu+Ax2wx7YC5/DPvjiX8w//Tf5XREQUKBAhQpjMAZjMRZzYS7MjbkxD+bBCEYwDuMwL+bFfJgPC2ABjMd4LIyF0aBBQsIiWASjGMViWAyLY3EsiSXRocMETMAyeCuWxbJYDstheSyPFbAiVsTKWBmrYBWsilWxGlbD6lgda2JNvBfvxd5YB+tgXayL9bDe5cdT2BAbYiNshI2xMTbBJtgUm2JzbI4tsSW2wlbYGltjW2yL7bAdtsf2mIiJ2AE7YEfsiJ2wE3bGztgFu2BX7IbdMl/KAfgyvoy9sLrojX2wD/bF5Bz9cQAOwFdxEL6Gr+HrmIxDcCi+gW/gmzgcT+EIHImjcBRWEe/gGByLJMZjCqbgRJyIk3ASTsYpOAWnYSpOxxk4A2fiLJyFH+Ac/BA/xHk4DxdgGqbhQlyE6ZiOi/E0ZuASXIrLcDmuwOW4ClfjKlyL63AtbsANuAk34RbcgttwG+7AHfgpKgD8DPfgHkzGfbgP9+N+PIAH8CAexEzMxEN4CA/jYTyCR/AoHsVjeBxP4HE8iSfxFJ7GM3gGz+E5PI8vxH/T6NMSa5JBZFFCiRgRI2JFrMglconcIrfII/KIiIiIOBEn8oq8Ip/IJwqIAiJexIvCorAwwggSYQwAiKiIimKimCguiouSoqRwwokEkSDKiDKirCgryonbRXlxh6ggKoo2rrKoLKqItq6quFtUE9VEdVFD1BS1RC1RW9QWdUQdUVfUFfVEPVFfPCQaiN7YHx8RWZVpLIZgEzEUm4pmQl76BmslhmNr0Ua0FU+JkTgC24tWLlE8KzqIMdhR/EWMxedFZzEeu4gXRVfRTXQXL4keorXrKXqJydhb9BHTsK/oJ/qLAWIm1hAf4JycNcXrIlkMEUPFG2IBvimGi7fECDFSjBJvi9HiHTFGjBXjxHiRIiaIieJdMUm8JyaLKWKqmCZSxXQxQ7wvZopZYrb4QMwRH4q5Yp6YLxaINPGRWCgWiXTxsVgsPhEZYolYKpaJ5WKFWClWidVijVgr1on1YoPYKDaJzWKL2Cq2ie1ih9gpPhW7xGdit9gj9orPxT7xhdgvvhQHxFfioPhaZIpvxCHxrTgsvhNHxPfiqPhBHBPHxQnxozgpfhKnxGlxRpwV58TP4rz4RVwQXoBEKaSUSgYyRuaQsTKnzCWvkbllcOndvV7GyRtkXnmjzCfzywKyoIyXhWRhqaWRVpIMZRFZVEblTbKYvFkWlyVkSVlKOllaJshbZBl5qywrb5Pl5O2yvLxDVpAVZSVZWd4pq8i7JEQubqO6rCFrylryXpkE98k68n5ZVz4g68kHZX35kGwgH5YN5SOykXxUNpaPySbycdlUNpPNZQvZUj4hW8knZWvZRraVT8l28mnZXj4jE+WzsoP0lz4iz8vO8gXZRb4ou8pusrv8RV6QXvaUvST0BtlHviL7yn6yvxwgB8pX5SD5mhwsX5fJcogcKt+Qw+Sbcrh8S46QI+Uo+bYcLd+RY+RYOU6Olylygpwo35WT5Htyspwip8ppMlVOl/0vjTRbyn+Y/+4f5A/+deub5Ga5RW6V2+R2uUPulJ/KXXKX3C13y71yr9wn98n9cr88IA/Ig/KgzJSZ8pA8JA/Lw/KIPCKPyqPymDwuz8of5Un5kzwlT8vT8qw8J8/J85feA1CohJJKqUDFqBwqVuVUudQ1Kre6VuVR16mIul7FqRtUXnWjyqfyqwKqoIpXhVRhpZVRVpEKVRFVVEXVTXjpA6NKqlLKqdIqQd3yr+SrYupmVVyV+E3+5fkl/Z35tVQtVSvVSrVWrVVb1Va1U+1Ue9VeJapE1UF1UB1VR9VJdVKdVWfVRXVRXVVX1V11Vz1UD9VT9VRJKkn1Ua+ovqqf6q8GqIHqVTVIDVKD1WCVrJLVUDVUDVPD1HA1XI1QI9QoNUqNVqPVGDVGjVPjVIpKURPVRDVJTVKT1WQ1VU1VqSpVzVAz1Ew1U81Ws9UcNUfNVXPVfDVfpak0tVAtVOkqXS1Wi1WGWqKWqGVqmVqhVqhVapVao9aodWqd2qA2qAy1WW1WW9VWtV1tVzvVTrVL7VK71W61V+1V+9Q+tV/tVwfUAXVQHVSZKlMdUofUYXVYHVFH1FF1VB1Tx9QJdUKdVCfVKXVKnVFn1Dl1Tp1X59UFdSHrsi8QgQhUkHWmjQlig9ggV5AryB3kDvIEeYJIEAnigrggb3BjkC/IHxQICgbxQaGgcKADE9hAXCp6NLgpKBbcHBQPSgQlg1KBC0oHCcEtQZng1qBscFtQLrg9KB/cEVQIKgaVgsrBnUGV4K6ganB3UC24J6ge1AhqBrWCe4PawX1BneD+oG7wQFAveDCoHzwUNAgeDhoGjwSNgkeDxsFjQZPg8aBp0CxoHrQIWv6p43t/Kv+TrqfupZN0b91Hv6L76n66vx6gB+pX9SD9mh6sX9fJeogeqt/Qw/Sberh+S4/QI/Uo/bYerd/RY/RYPU6P1yl6gp6o39WT9Ht6sp6ip+ppOlVP1zP0+3qmnqVn6w/0HP2hnqvn6fl6gU7TH+mFepFO1x/rxfoTnaGX6KV6mV6uV+iVepVerdfotXqdXq836I16k96st+itepvernfonfpTvUt/pnfrPXqv/lzv01/o/fpLfUB/pQ/qr3Wm/kYf0t/qw/o7fUR/r4/qH/QxfVyf0D/qk/onfUqf1mf0WX1O/6zP61/0Be2zLu6zTu9GGWViTIyJNbEml8llcpvcJo/JYyImYuJMnMlr8pp8Jp8pYAqYeBNvCpvCJgsZMkVMERM1UVPMFDPFTXFT0pQ0zjiTYBJMGVPGlDVlTTlTzpQ35U0FU8FUMpXMneZOc5e5y9xt7jb3mHtMDVPD1DK1TG1T29QxdUxdU9fUM/VMfVPfNDANTEPT0DQyjUxj09g0MU1MU9PUNDfNTUvT0rQyrUxr09q0NW1NO9POtDftTaJJNB1MB9PRdDSdTCfT2XQ2XUwX09V0Nd1Nd9PD9DA9TU+TZJJMH9PH9DV9TX/T3ww0A80gM8gMNoNNskk2Q81QM8wMM8PNcDPCjDSjsg4f844ZY8aacWa8STEpZqKZaCaZSWaymWymmqkm1aSaGWaGmWlmmtlmtplj5pi5Zq6Zb+abNJNmFpqFJt2km8VmsckwGWapWWqWm+VmpVlpVpvVZq1Za9bDerPRbDSbzWaz1Ww12812s9PsNLvMLrPb7DZ7zV6zz+wz+81+c8AcMAfNQZNpMs0hc8gcNofNEXPEHDVHzTFzzJwwJ8xJc9KcMqfMGXPGnDP5L50vvYm1OW0ue43Nba+1eex19m/jAragjbeFbGGrbT6b/zexsdYWtyVsSVvKOlvaJthbfhdXsBVtJVvZ3mmr2Lts1d/Fte19to6939a1D9ha9t7fxPXsg7a+fcw2QASwzWwj28I2to/ZJvZx29Q2s81tC9vOPm3b22dson3WdrDP/S5eaBfZ1XaNXWvX2d12jz1jz9rD9jt7zv5se9pedqB91Q6yr9nB9nWbbIf8Lh5l37aj7Tt2jB1rx9nxv4un2mk21U63M+z7dqad9bs4zX5k59h0O9fOs/Ptgl/jrDml24/tYvuJzbABLLXL7HK7wq60q/7/XJfZDXaj3WR32c/sVrvNbrc77M7LF8J2j91rP7f77Bf2kP3WHrBf2YP2iM203/waZ+3fEfu9PWp/sMfscXvC/mhP2p/U5eysff/R/mIvWG+BkIAkKQoohnJQLOWkXHQN5aZrKQ9dRxG6nuLoBspLN1I+yk8FqCDFUyEqTJoMWSIKqQgVpSjdRJenV5JKkaPSlEC3UBm6lcrSbVSObqfydAdVoIpUiSrTnVSF7qKqdDdVo3uoOtWgmlSL7qXadB/VofupLjxA9ehBqk8PUQN6mBrSI9SIHqXG9Bg1ocepKTWj5tSCWtIT1IqepNbUhtrSU9SOnqb29Awl0rPUgZ6jjvQX6kTPU2d6gbrQi9SVulF3eol60MvUk3pREvWmPvQK9aV+1J8G0EB6lQbRazSYXqdkGkJD6Q0aRm/ScHqLRtBIGkVv02h6h8bQWBpH4ymFJtBEepcm0Xs0mabQVJpGqTSdZtD7NJNm0Wz6gObQhzSX5tF8WkBp9BEtpEWUTh/TYvqEMmgJLaVltJxW0EpaRatpDa2ldbSeNtBG2kSbaQttpW20nXbQTvqUdtFntJv20F76nPbRF7SfvqQD9BUdpK8pk76hQ/QtHabv6Ah973vRD3SMjtMJ+pFO0k90ik7TGTpL5+hnOk+/0AXyBCGGIpShCoMwJswRxoY5w1zhNWHu8NowT3hdGAmvD+PCG8K84Y1hvjB/WCAsGMaHhcLCoQ5NaEMKw7BIWDSMhjeFxcKbw+JhibBkWCp0YekwIbwlLBPeGpYNbwvLhbeH5cM7wgphxfCxByqHd4ZVwrvCquHdYbXwnrB6WCOsGdYK7w1rh/eFdcL7w7rhA2HZ8MGwfvhQ2CB8OGwYPhI2Ch8NG4ePhU3Cx8OmYbOwedgibBk+EbYKnwxbh23CtuFTYbvw6bB9+EyYGD4bdgif+7X/wUV/vz8p7B32CV8JXwm9v1/Ojy6IpkU/ii6MLoqmRz+OLo5+Es2ILokujS6LLo+uiK6Mroqujq6Jro2ui66PbohujG6Kel8rBzh0wkmnXOBiXA4X63K6XO4al9td6/K461zEXe/i3A0ur7vR5XP5XQFX0MW7Qq6w084468iFrogr6qLuJlfM3eyKuxKupCvlnCvtElwL19K1dK3ck661a+PauqfcU+5p97R7xj3jnnUd3HOuo/uL6+Sed53dC+4F96Lr6rq57u4l18NNyHPxmExyfVwf19f1df1dfzfQDXSD3CA32A12yS7ZDXVD3TA3zA13w90IN8KNcqPcaDfajXFj3Dg3zqW4FDfRTXST3CQ32U12U91Ul+pS3Qw3w810M12VWRe3MtfNdfPdfJfm0txCl3XNmO4Wu8Uuw2W4pW6pW+6Wu5VupVvtVru1bq1b79a7jW6j2+w2u61uq9vutrudbqfb5Xa53f66i4O6fW6/2+8OuAPuoPvaZbpv3CH3rTvsvnNH3PfuqPvBHXPH3Qn3ozvpfnKn3Gl3xp1159zP7rz7xV1w3qVEJkQmRt6NTIq8F5kcmRKZGpkWSY1Mj8yIvB+ZGZkVmR35IDIn8mFkbmReZH5kQSQt8lFkYWRRJD3ycWRx5JNIRmRJZGlkWWR5ZEXE+0JbQ1/EF/VRf5Mv5m/2xX0JX9KX8s6X9gn+Fl/G3+rL+tt8OX+7L+/v8BV8RV/JP+6b+ma+uW/hW/onfCv/pG/t2/i2/infzj/t2/tnfKJ/1nfwz/mO/i++k3/ed/Yv+C7+Rd/Vd/Pd/Uu+h3/Z9/S9fJLv7fv4V3xf38/39wP8QP+qH+Rf84P96z7ZD/FD/Rt+mH/TD/dv+RF+pB8V87YfffkWGcb7FD/BT/Tv+kn+PbjbT/FT/TSf6qf7Gf59P9PP8rP9B36O/9DP9fP8fL/Ap/mP/EK/yKf7j/1i/4nP8EsuP1T2K/0qv9qv8Wv9Or/eb/Ab/Sa/2W/xW/02v93v8Dv9p36X/8zv9nv8Xv+53+e/8Pv9l/6A/8of9F/7TP+NP+S/9Yf9d/6I/94f9T/4Y/64P+F/9Cf9T/6UP+3P+LP+nP/Zn/e/+Av8O2uMMcYYY/+UCVea4rc9Fx/n9/6DHPFXK/cBgGu3Fcz86/6sK8r1+S62+4n4dhEAeLZXl0cuL9WrJyUlXVo3Q0JQdB7A5f8JyhIDV+Il0BaehkRoA2X+cP79RLdz9A/Gj94OkOuvcmLhSnxl/C8BMOkPxn/iqVELy4dn4v6L8ecBFC96JScnXImXQNtfn6+0gbJ/Z/75W/2D+ef8KgWg9V/l5IYr8ZX5J8CT8Bwk/mZNxhhjjDHGGGPson6iUqfL95+Xf+Lzj+7P49WVnBxwJf5H9+eMMcYYY4wxxhi7+p7v1v2ZJxIT23T61xtV/1tZ/3SjCfxPjcyNP2x4D3D5FQUA/+aAAFkN+Z/ciy3/kW0lXzp0/rZr+VkfwP+OUv4Zjav8xcQYY4wxxhj701256P/t6+pqTYgxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGMuG/hN/Tuxq7yNjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDF2tf2/AAAA//8BsgGO") mount$nfs(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x0, 0x0) chdir(&(0x7f0000004340)='./file0\x00') 40.76881ms ago: executing program 0 (id=11): chdir(&(0x7f0000000240)='./file0\x00') r0 = syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x48c5, &(0x7f0000000540)=ANY=[], 0x0, 0x27e, &(0x7f00000011c0)="$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") open_by_handle_at(r0, 0x0, 0x490100) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$OBJ_PIN_PROG(0x6, 0x0, 0x0) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000580)=@generic={&(0x7f0000000500)='./file0\x00'}, 0x18) 0s ago: executing program 4 (id=5): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000004c0)={r0, 0xffffffffffffffff, 0x1b, 0x0, @val=@netkit={@void, @value=r0}}, 0x1c) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.13' (ED25519) to the list of known hosts. [ 192.258306][ T5775] cgroup: Unknown subsys name 'net' [ 192.451740][ T5775] cgroup: Unknown subsys name 'cpuset' [ 192.467151][ T5775] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 229.600507][ T1287] ieee802154 phy0 wpan0: encryption failed: -22 [ 229.607292][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 244.713814][ T5775] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 249.074984][ T5800] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 249.090478][ T5804] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 249.101703][ T5806] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 249.110720][ T5806] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 249.119092][ T5811] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 249.140526][ T5811] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 249.150522][ T5811] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 249.156324][ T5806] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 249.161644][ T5811] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 249.174626][ T5806] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 249.176911][ T5811] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 249.191355][ T5810] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 249.204457][ T5811] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 249.212857][ T5811] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 249.223683][ T5811] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 249.225983][ T5813] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 249.250695][ T5811] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 249.251948][ T5806] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 249.261923][ T5811] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 249.270340][ T5806] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 249.281450][ T5811] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 249.289108][ T5806] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 249.306797][ T5806] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 249.322242][ T5806] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 249.331440][ T5806] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 250.855198][ T5798] chnl_net:caif_netlink_parms(): no params data found [ 251.032460][ T5812] chnl_net:caif_netlink_parms(): no params data found [ 251.223843][ T5797] chnl_net:caif_netlink_parms(): no params data found [ 251.277648][ T5810] Bluetooth: hci1: command tx timeout [ 251.340575][ T5810] Bluetooth: hci3: command tx timeout [ 251.343518][ T5805] chnl_net:caif_netlink_parms(): no params data found [ 251.430327][ T5810] Bluetooth: hci2: command tx timeout [ 251.436013][ T5810] Bluetooth: hci4: command tx timeout [ 251.443208][ T5806] Bluetooth: hci0: command tx timeout [ 252.039951][ T5803] chnl_net:caif_netlink_parms(): no params data found [ 252.074041][ T5798] bridge0: port 1(bridge_slave_0) entered blocking state [ 252.082642][ T5798] bridge0: port 1(bridge_slave_0) entered disabled state [ 252.090613][ T5798] bridge_slave_0: entered allmulticast mode [ 252.101307][ T5798] bridge_slave_0: entered promiscuous mode [ 252.219300][ T5798] bridge0: port 2(bridge_slave_1) entered blocking state [ 252.227185][ T5798] bridge0: port 2(bridge_slave_1) entered disabled state [ 252.235065][ T5798] bridge_slave_1: entered allmulticast mode [ 252.244820][ T5798] bridge_slave_1: entered promiscuous mode [ 252.372092][ T5812] bridge0: port 1(bridge_slave_0) entered blocking state [ 252.382164][ T5812] bridge0: port 1(bridge_slave_0) entered disabled state [ 252.390024][ T5812] bridge_slave_0: entered allmulticast mode [ 252.399597][ T5812] bridge_slave_0: entered promiscuous mode [ 252.586291][ T5812] bridge0: port 2(bridge_slave_1) entered blocking state [ 252.594145][ T5812] bridge0: port 2(bridge_slave_1) entered disabled state [ 252.602114][ T5812] bridge_slave_1: entered allmulticast mode [ 252.611780][ T5812] bridge_slave_1: entered promiscuous mode [ 252.668247][ T5797] bridge0: port 1(bridge_slave_0) entered blocking state [ 252.676912][ T5797] bridge0: port 1(bridge_slave_0) entered disabled state [ 252.684793][ T5797] bridge_slave_0: entered allmulticast mode [ 252.694313][ T5797] bridge_slave_0: entered promiscuous mode [ 252.754778][ T5805] bridge0: port 1(bridge_slave_0) entered blocking state [ 252.762974][ T5805] bridge0: port 1(bridge_slave_0) entered disabled state [ 252.770867][ T5805] bridge_slave_0: entered allmulticast mode [ 252.780567][ T5805] bridge_slave_0: entered promiscuous mode [ 252.860954][ T5798] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 252.873365][ T5797] bridge0: port 2(bridge_slave_1) entered blocking state [ 252.884239][ T5797] bridge0: port 2(bridge_slave_1) entered disabled state [ 252.894524][ T5797] bridge_slave_1: entered allmulticast mode [ 252.904249][ T5797] bridge_slave_1: entered promiscuous mode [ 252.952849][ T5805] bridge0: port 2(bridge_slave_1) entered blocking state [ 252.960778][ T5805] bridge0: port 2(bridge_slave_1) entered disabled state [ 252.968656][ T5805] bridge_slave_1: entered allmulticast mode [ 252.978567][ T5805] bridge_slave_1: entered promiscuous mode [ 253.046482][ T5798] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 253.157718][ T5812] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 253.265634][ T5797] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 253.286215][ T5812] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 253.343659][ T5800] Bluetooth: hci1: command tx timeout [ 253.346513][ T5805] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 253.402650][ T5797] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 253.420512][ T5798] team0: Port device team_slave_0 added [ 253.450422][ T5800] Bluetooth: hci3: command tx timeout [ 253.499875][ T5800] Bluetooth: hci4: command tx timeout [ 253.503155][ T5810] Bluetooth: hci0: command tx timeout [ 253.505583][ T5806] Bluetooth: hci2: command tx timeout [ 253.599790][ T5805] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 253.617007][ T5798] team0: Port device team_slave_1 added [ 253.713593][ T5812] team0: Port device team_slave_0 added [ 253.731234][ T5797] team0: Port device team_slave_0 added [ 253.741281][ T5803] bridge0: port 1(bridge_slave_0) entered blocking state [ 253.748926][ T5803] bridge0: port 1(bridge_slave_0) entered disabled state [ 253.758591][ T5803] bridge_slave_0: entered allmulticast mode [ 253.768220][ T5803] bridge_slave_0: entered promiscuous mode [ 253.878449][ T5812] team0: Port device team_slave_1 added [ 253.893483][ T5797] team0: Port device team_slave_1 added [ 253.902445][ T5803] bridge0: port 2(bridge_slave_1) entered blocking state [ 253.910697][ T5803] bridge0: port 2(bridge_slave_1) entered disabled state [ 253.918337][ T5803] bridge_slave_1: entered allmulticast mode [ 253.928646][ T5803] bridge_slave_1: entered promiscuous mode [ 253.977636][ T5798] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 253.985018][ T5798] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 254.011635][ T5798] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 254.134243][ T5805] team0: Port device team_slave_0 added [ 254.146163][ T5798] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 254.153651][ T5798] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 254.180030][ T5798] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 254.326394][ T5805] team0: Port device team_slave_1 added [ 254.381139][ T5812] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 254.388379][ T5812] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 254.416340][ T5812] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 254.433353][ T5797] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 254.440993][ T5797] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 254.467746][ T5797] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 254.490431][ T5803] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 254.510778][ T5803] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 254.560123][ T5812] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 254.567342][ T5812] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 254.593938][ T5812] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 254.611292][ T5797] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 254.618537][ T5797] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 254.645345][ T5797] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 254.697031][ T5805] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 254.704399][ T5805] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 254.730922][ T5805] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 254.850666][ T5805] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 254.857885][ T5805] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 254.884973][ T5805] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 254.954257][ T5798] hsr_slave_0: entered promiscuous mode [ 254.964681][ T5798] hsr_slave_1: entered promiscuous mode [ 254.988061][ T5803] team0: Port device team_slave_0 added [ 255.110177][ T5803] team0: Port device team_slave_1 added [ 255.364272][ T5812] hsr_slave_0: entered promiscuous mode [ 255.374280][ T5812] hsr_slave_1: entered promiscuous mode [ 255.383238][ T5812] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 255.391150][ T5812] Cannot create hsr debugfs directory [ 255.420731][ T5810] Bluetooth: hci1: command tx timeout [ 255.446918][ T5805] hsr_slave_0: entered promiscuous mode [ 255.456792][ T5805] hsr_slave_1: entered promiscuous mode [ 255.465674][ T5805] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 255.473545][ T5805] Cannot create hsr debugfs directory [ 255.509919][ T5810] Bluetooth: hci3: command tx timeout [ 255.570183][ T5797] hsr_slave_0: entered promiscuous mode [ 255.580062][ T5810] Bluetooth: hci4: command tx timeout [ 255.580066][ T5797] hsr_slave_1: entered promiscuous mode [ 255.583486][ T5797] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 255.585635][ T5810] Bluetooth: hci2: command tx timeout [ 255.591596][ T5797] Cannot create hsr debugfs directory [ 255.599296][ T5810] Bluetooth: hci0: command tx timeout [ 255.620114][ T5803] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 255.627305][ T5803] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 255.653835][ T5803] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 255.670988][ T5803] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 255.678156][ T5803] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 255.704688][ T5803] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 256.259240][ T5803] hsr_slave_0: entered promiscuous mode [ 256.268308][ T5803] hsr_slave_1: entered promiscuous mode [ 256.277132][ T5803] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 256.284971][ T5803] Cannot create hsr debugfs directory [ 257.200299][ T5798] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 257.306873][ T5798] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 257.345700][ T5798] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 257.418153][ T5798] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 257.500156][ T5810] Bluetooth: hci1: command tx timeout [ 257.579799][ T5810] Bluetooth: hci3: command tx timeout [ 257.597807][ T5812] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 257.678811][ T5810] Bluetooth: hci0: command tx timeout [ 257.680646][ T5806] Bluetooth: hci2: command tx timeout [ 257.685033][ T5810] Bluetooth: hci4: command tx timeout [ 257.697032][ T5805] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 257.721387][ T5812] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 257.743493][ T5812] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 257.771787][ T5805] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 257.845650][ T5812] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 257.869335][ T5805] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 258.009793][ T5797] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 258.038385][ T5805] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 258.146165][ T5797] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 258.219340][ T5797] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 258.280371][ T5803] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 258.308652][ T5803] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 258.336520][ T5803] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 258.363620][ T5797] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 258.424652][ T5803] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 258.887655][ T5798] 8021q: adding VLAN 0 to HW filter on device bond0 [ 259.103086][ T5798] 8021q: adding VLAN 0 to HW filter on device team0 [ 259.325461][ T3656] bridge0: port 1(bridge_slave_0) entered blocking state [ 259.333199][ T3656] bridge0: port 1(bridge_slave_0) entered forwarding state [ 259.378090][ T5812] 8021q: adding VLAN 0 to HW filter on device bond0 [ 259.395888][ T3656] bridge0: port 2(bridge_slave_1) entered blocking state [ 259.403640][ T3656] bridge0: port 2(bridge_slave_1) entered forwarding state [ 259.466707][ T5805] 8021q: adding VLAN 0 to HW filter on device bond0 [ 259.646134][ T5812] 8021q: adding VLAN 0 to HW filter on device team0 [ 259.743141][ T5797] 8021q: adding VLAN 0 to HW filter on device bond0 [ 259.797525][ T5805] 8021q: adding VLAN 0 to HW filter on device team0 [ 259.831970][ T3656] bridge0: port 1(bridge_slave_0) entered blocking state [ 259.839698][ T3656] bridge0: port 1(bridge_slave_0) entered forwarding state [ 259.937985][ T5797] 8021q: adding VLAN 0 to HW filter on device team0 [ 259.967027][ T3656] bridge0: port 1(bridge_slave_0) entered blocking state [ 259.974854][ T3656] bridge0: port 1(bridge_slave_0) entered forwarding state [ 259.991435][ T3656] bridge0: port 2(bridge_slave_1) entered blocking state [ 259.999060][ T3656] bridge0: port 2(bridge_slave_1) entered forwarding state [ 260.107117][ T5803] 8021q: adding VLAN 0 to HW filter on device bond0 [ 260.217279][ T3656] bridge0: port 1(bridge_slave_0) entered blocking state [ 260.225020][ T3656] bridge0: port 1(bridge_slave_0) entered forwarding state [ 260.241626][ T3656] bridge0: port 2(bridge_slave_1) entered blocking state [ 260.249208][ T3656] bridge0: port 2(bridge_slave_1) entered forwarding state [ 260.265879][ T3656] bridge0: port 2(bridge_slave_1) entered blocking state [ 260.273737][ T3656] bridge0: port 2(bridge_slave_1) entered forwarding state [ 260.588949][ T5803] 8021q: adding VLAN 0 to HW filter on device team0 [ 260.656710][ T3930] bridge0: port 1(bridge_slave_0) entered blocking state [ 260.664414][ T3930] bridge0: port 1(bridge_slave_0) entered forwarding state [ 260.826185][ T3930] bridge0: port 2(bridge_slave_1) entered blocking state [ 260.833875][ T3930] bridge0: port 2(bridge_slave_1) entered forwarding state [ 260.926030][ T5805] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 261.166334][ T5803] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 261.177322][ T5803] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 262.045726][ T5798] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 262.612508][ T5798] veth0_vlan: entered promiscuous mode [ 262.753951][ T5798] veth1_vlan: entered promiscuous mode [ 262.854865][ T5812] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 262.878090][ T5797] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 263.058581][ T5805] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 263.139576][ T5798] veth0_macvtap: entered promiscuous mode [ 263.245489][ T5798] veth1_macvtap: entered promiscuous mode [ 263.514318][ T5797] veth0_vlan: entered promiscuous mode [ 263.531986][ T5803] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 263.594845][ T5798] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 263.636789][ T5797] veth1_vlan: entered promiscuous mode [ 263.732787][ T5798] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 263.826076][ T5805] veth0_vlan: entered promiscuous mode [ 263.876982][ T5798] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 263.887329][ T5798] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 263.896728][ T5798] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 263.908048][ T5798] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 263.988949][ T5805] veth1_vlan: entered promiscuous mode [ 264.168762][ T5797] veth0_macvtap: entered promiscuous mode [ 264.274501][ T5797] veth1_macvtap: entered promiscuous mode [ 264.299300][ T5803] veth0_vlan: entered promiscuous mode [ 264.449313][ T5803] veth1_vlan: entered promiscuous mode [ 264.468686][ T5805] veth0_macvtap: entered promiscuous mode [ 264.503883][ T5797] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 264.587548][ T5805] veth1_macvtap: entered promiscuous mode [ 264.626626][ T5797] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 264.741709][ T5797] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 264.753646][ T5797] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 264.762894][ T5797] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 264.772084][ T5797] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 264.837732][ T5805] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 264.888994][ T5805] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 264.935753][ T5803] veth0_macvtap: entered promiscuous mode [ 264.981449][ T5805] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 264.991670][ T5805] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 265.001691][ T5805] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 265.010945][ T5805] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 265.047340][ T5803] veth1_macvtap: entered promiscuous mode [ 265.262740][ T5803] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 265.388276][ T5803] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 265.466299][ T5803] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 265.475583][ T5803] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 265.484822][ T5803] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 265.494141][ T5803] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 266.044968][ T5812] veth0_vlan: entered promiscuous mode [ 266.166328][ T5812] veth1_vlan: entered promiscuous mode [ 266.523336][ T5812] veth0_macvtap: entered promiscuous mode [ 266.616848][ T5812] veth1_macvtap: entered promiscuous mode [ 266.840807][ T5812] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 266.918316][ T5812] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 267.028423][ T5812] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 267.037866][ T5812] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 267.047172][ T5812] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 267.058620][ T5812] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 271.130750][ T1007] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 271.138764][ T1007] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 271.338091][ T4309] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 271.348505][ T4309] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 271.714930][ T5798] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 272.425451][ T3656] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 272.433848][ T3656] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 272.625770][ T1146] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 272.636488][ T1146] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 272.827640][ T1146] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 272.836100][ T1146] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 272.932167][ T1007] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 272.942556][ T1007] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 273.235099][ T1146] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 273.244671][ T1146] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 273.293970][ T5003] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 273.303109][ T5003] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 274.151179][ T5991] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 274.226233][ T3930] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 274.234591][ T3930] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 274.325200][ T5991] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4'. [ 274.537306][ T1146] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 274.546143][ T1146] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 275.370516][ T3608] nci: nci_rf_discover_ntf_packet: unsupported rf_tech_and_mode 0x4d [ 275.378951][ T3608] ===================================================== [ 275.386520][ T3608] BUG: KMSAN: uninit-value in nci_ntf_packet+0x2b0b/0x42b0 [ 275.394753][ T3608] nci_ntf_packet+0x2b0b/0x42b0 [ 275.399968][ T3608] nci_rx_work+0x403/0x750 [ 275.404611][ T3608] process_scheduled_works+0xb8e/0x1d80 [ 275.410647][ T3608] worker_thread+0xedf/0x1590 [ 275.415589][ T3608] kthread+0xd5c/0xf00 [ 275.420035][ T3608] ret_from_fork+0x1e0/0x310 [ 275.425455][ T3608] ret_from_fork_asm+0x1a/0x30 [ 275.431074][ T3608] [ 275.441143][ T3608] Uninit was created at: [ 275.445704][ T3608] kmem_cache_alloc_node_noprof+0x818/0xf00 [ 275.454743][ T3608] kmalloc_reserve+0x13c/0x4b0 [ 275.460009][ T3608] __alloc_skb+0x347/0x7d0 [ 275.464718][ T3608] virtual_ncidev_write+0x6b/0x430 [ 275.471668][ T3608] vfs_write+0x460/0x1580 [ 275.476267][ T3608] __x64_sys_write+0x1fb/0x4d0 [ 275.481433][ T3608] x64_sys_call+0x38c3/0x3db0 [ 275.486920][ T3608] do_syscall_64+0xd9/0x210 [ 275.491749][ T3608] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 275.497869][ T3608] [ 275.500687][ T3608] CPU: 0 UID: 0 PID: 3608 Comm: kworker/u8:14 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(undef) [ 275.511700][ T3608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 275.522906][ T3608] Workqueue: nfc2_nci_rx_wq nci_rx_work [ 275.528737][ T3608] ===================================================== [ 275.543537][ T3608] Disabling lock debugging due to kernel taint [ 275.552636][ T3608] Kernel panic - not syncing: kmsan.panic set ... [ 275.559267][ T3608] CPU: 0 UID: 0 PID: 3608 Comm: kworker/u8:14 Tainted: G B 6.16.0-rc4-syzkaller #0 PREEMPT(undef) [ 275.571697][ T3608] Tainted: [B]=BAD_PAGE [ 275.575980][ T3608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 275.586218][ T3608] Workqueue: nfc2_nci_rx_wq nci_rx_work [ 275.592007][ T3608] Call Trace: [ 275.595414][ T3608] [ 275.598482][ T3608] __dump_stack+0x26/0x30 [ 275.603041][ T3608] dump_stack_lvl+0x53/0x270 [ 275.607860][ T3608] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 275.613931][ T3608] dump_stack+0x1e/0x25 [ 275.618307][ T3608] panic+0x4bd/0xd50 [ 275.622477][ T3608] kmsan_report+0x31c/0x320 [ 275.627222][ T3608] ? __msan_warning+0x1b/0x30 [ 275.632119][ T3608] ? nci_ntf_packet+0x2b0b/0x42b0 [ 275.637372][ T3608] ? nci_rx_work+0x403/0x750 [ 275.642174][ T3608] ? process_scheduled_works+0xb8e/0x1d80 [ 275.648149][ T3608] ? worker_thread+0xedf/0x1590 [ 275.653234][ T3608] ? kthread+0xd5c/0xf00 [ 275.657663][ T3608] ? ret_from_fork+0x1e0/0x310 [ 275.662626][ T3608] ? ret_from_fork_asm+0x1a/0x30 [ 275.667812][ T3608] ? ret_from_fork_asm+0x1a/0x30 [ 275.672999][ T3608] ? vprintk_emit+0xa81/0xcd0 [ 275.677920][ T3608] ? vprintk_default+0x3f/0x50 [ 275.682887][ T3608] ? vprintk+0x36/0x50 [ 275.687210][ T3608] ? _printk+0x17e/0x1b0 [ 275.691735][ T3608] ? kmsan_get_metadata+0xfb/0x160 [ 275.697103][ T3608] __msan_warning+0x1b/0x30 [ 275.701836][ T3608] nci_ntf_packet+0x2b0b/0x42b0 [ 275.706922][ T3608] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 275.713216][ T3608] ? sk_skb_reason_drop+0x13f/0x440 [ 275.718647][ T3608] nci_rx_work+0x403/0x750 [ 275.723282][ T3608] ? __pfx_nci_rx_work+0x10/0x10 [ 275.728422][ T3608] process_scheduled_works+0xb8e/0x1d80 [ 275.734270][ T3608] worker_thread+0xedf/0x1590 [ 275.739241][ T3608] kthread+0xd5c/0xf00 [ 275.743497][ T3608] ? __pfx_worker_thread+0x10/0x10 [ 275.748864][ T3608] ? __pfx_kthread+0x10/0x10 [ 275.753646][ T3608] ret_from_fork+0x1e0/0x310 [ 275.758434][ T3608] ? __pfx_kthread+0x10/0x10 [ 275.763218][ T3608] ret_from_fork_asm+0x1a/0x30 [ 275.768242][ T3608] [ 275.771786][ T3608] Kernel Offset: disabled [ 275.776213][ T3608] Rebooting in 86400 seconds..