last executing test programs: 11.783633551s ago: executing program 1 (id=345): socket$inet6_tcp(0xa, 0x1, 0x0) r0 = socket$rds(0x15, 0x5, 0x0) getsockopt$IP6T_SO_GET_REVISION_TARGET(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000040)={'TPROXY\x00'}, &(0x7f0000000080)=0x1e) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) fallocate(0xffffffffffffffff, 0x700100, 0x0, 0x1000f4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r1, 0x0, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$IPT_SO_SET_REPLACE(r4, 0x0, 0x40, &(0x7f0000001640)=@mangle={'mangle\x00', 0x44, 0x6, 0x510, 0x3a8, 0x210, 0x210, 0x0, 0x138, 0x478, 0x478, 0x478, 0x478, 0x478, 0x6, 0x0, {[{{@ip={@broadcast, @multicast1=0xe0007600, 0x0, 0x0, 'geneve1\x00', 'ip6gre0\x00'}, 0x0, 0x70, 0x98}, @inet=@DSCP={0x28}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @local, 0x0, 0x0, 'batadv_slave_1\x00', 'veth1_virt_wifi\x00', {}, {}, 0x11}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @local}}}, {{@ip={@broadcast, @multicast2, 0x0, 0x0, 'vlan1\x00', 'nr0\x00'}, 0x0, 0xb0, 0xd8, 0x0, {}, [@common=@unspec=@connlimit={{0x40}}]}, @unspec=@CHECKSUM={0x28}}, {{@ip={@loopback, @empty, 0x0, 0x0, 'syzkaller0\x00', 'veth1_to_team\x00'}, 0x0, 0x70, 0x198}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0x0, 'system_u:object_r:dbusd_etc_t:s0\x00'}}}, {{@ip={@broadcast, @multicast2, 0x0, 0x0, 'lo\x00', 'batadv_slave_1\x00'}, 0x0, 0xa0, 0xd0, 0x0, {}, [@common=@unspec=@mac={{0x30}, {@multicast}}]}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @loopback}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x570) sendmsg$rds(r0, &(0x7f0000000180)={&(0x7f0000000080)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x0, &(0x7f0000000540)}, 0x0) socket$inet6_mptcp(0xa, 0x1, 0x106) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./control\x00', 0x200080, &(0x7f0000000200), 0x4, 0x569, &(0x7f0000000580)="$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") sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0) 10.093488157s ago: executing program 1 (id=349): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_COALESCE_SET(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000001c0)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r3, @ANYBLOB, @ANYRES32=r1, @ANYRESOCT=r0], 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x0) 9.145793333s ago: executing program 1 (id=350): socket$igmp6(0xa, 0x3, 0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) request_key(0x0, &(0x7f0000001ffb)={'syz', 0x1, 0xc}, &(0x7f0000001fee)='R\x10suse\x00\x00\x00\x00\x00\x00\x00dn\x00\x00\x00', 0x0) r2 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0) syz_open_dev$usbfs(0x0, 0x3, 0x389001) ioctl$TIOCSTI(r2, 0x5412, 0x0) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$SNDCTL_DSP_SPEED(r3, 0xc0045002, &(0x7f0000000000)=0x40000001) openat$fb0(0xffffffffffffff9c, 0x0, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0x80000000, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0xf}, 0x1c) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000004c0)={&(0x7f0000000440)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, 0x0, 0x1a, 0x0, 0x1, 0x47}, 0x28) 7.20512449s ago: executing program 1 (id=356): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000180)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, 0x0, 0x0, 0x0) syz_open_dev$usbmon(0x0, 0x400, 0x208000) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_emit_ethernet(0x0, 0x0, &(0x7f00000001c0)={0x1, 0x4, [0x36e, 0x5, 0xf6e, 0x37e]}) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) connect$pppoe(0xffffffffffffffff, &(0x7f0000000000)={0x18, 0x0, {0x1, @broadcast, 'lo\x00'}}, 0x1e) r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000001ac0), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_SB_OCC_MAX_CLEAR(r5, &(0x7f0000001f40)={0x0, 0x0, &(0x7f0000001f00)={&(0x7f0000001ec0)={0x3c, r4, 0x1, 0x70bd26, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x3, 0xb, 0xff}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40801}, 0x10) 6.979691628s ago: executing program 3 (id=357): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f0000000380)=@abs, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) process_vm_writev(0x0, 0x0, 0x0, &(0x7f0000121000)=[{0x0}], 0x1, 0x0) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27) 6.527431594s ago: executing program 3 (id=359): socketpair$unix(0x1, 0x3, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x3, @pix={0x434c, 0x8, 0x584e4f53, 0x4, 0x2, 0x7, 0x0, 0x5, 0x1, 0x4, 0x2, 0x7}}) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) setsockopt$MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, &(0x7f00000000c0)={0x0, 0x1, 0x26}, 0xc) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x401c2, 0x0) ftruncate(r1, 0x8800000) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) recvmmsg(r3, &(0x7f00000034c0)=[{{0x0, 0x0, &(0x7f0000001e40)=[{&(0x7f0000000b80)=""/4096, 0x20001b80}, {&(0x7f0000001b80)=""/112, 0x70}], 0x2, 0x0, 0xa0028cb4}}], 0x40000000000013c, 0x700, 0x0) sendfile(r2, r1, 0x0, 0x578410eb) process_vm_readv(0x0, 0x0, 0x0, &(0x7f0000008640), 0x0, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0xf3e, 0x0) fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, 0x0, &(0x7f0000000280), 0x2, 0x3) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) 6.480296198s ago: executing program 0 (id=361): mkdirat(0xffffffffffffff9c, 0x0, 0x1c0) mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f00000005c0)='configfs\x00', 0x200000, 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0xa000, 0x0) getdents64(r0, 0x0, 0x0) 6.286402423s ago: executing program 0 (id=362): socket$inet6_tcp(0xa, 0x1, 0x0) r0 = socket$rds(0x15, 0x5, 0x0) getsockopt$IP6T_SO_GET_REVISION_TARGET(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000040)={'TPROXY\x00'}, &(0x7f0000000080)=0x1e) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) fallocate(0xffffffffffffffff, 0x700100, 0x0, 0x1000f4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r1, 0x0, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$IPT_SO_SET_REPLACE(r4, 0x0, 0x40, &(0x7f0000001640)=@mangle={'mangle\x00', 0x44, 0x6, 0x510, 0x3a8, 0x210, 0x210, 0x0, 0x138, 0x478, 0x478, 0x478, 0x478, 0x478, 0x6, 0x0, {[{{@ip={@broadcast, @multicast1=0xe0007600, 0x0, 0x0, 'geneve1\x00', 'ip6gre0\x00'}, 0x0, 0x70, 0x98}, @inet=@DSCP={0x28}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @local, 0x0, 0x0, 'batadv_slave_1\x00', 'veth1_virt_wifi\x00', {}, {}, 0x11}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @local}}}, {{@ip={@broadcast, @multicast2, 0x0, 0x0, 'vlan1\x00', 'nr0\x00'}, 0x0, 0xb0, 0xd8, 0x0, {}, [@common=@unspec=@connlimit={{0x40}}]}, @unspec=@CHECKSUM={0x28}}, {{@ip={@loopback, @empty, 0x0, 0x0, 'syzkaller0\x00', 'veth1_to_team\x00'}, 0x0, 0x70, 0x198}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0x0, 'system_u:object_r:dbusd_etc_t:s0\x00'}}}, {{@ip={@broadcast, @multicast2, 0x0, 0x0, 'lo\x00', 'batadv_slave_1\x00'}, 0x0, 0xa0, 0xd0, 0x0, {}, [@common=@unspec=@mac={{0x30}, {@multicast}}]}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @loopback}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x570) sendmsg$rds(r0, &(0x7f0000000180)={&(0x7f0000000080)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x0, &(0x7f0000000540)}, 0x0) socket$inet6_mptcp(0xa, 0x1, 0x106) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./control\x00', 0x200080, &(0x7f0000000200), 0x4, 0x569, &(0x7f0000000580)="$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") sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0) 4.936231923s ago: executing program 1 (id=363): socketpair$unix(0x1, 0x3, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x3, @pix={0x434c, 0x8, 0x584e4f53, 0x4, 0x2, 0x7, 0x0, 0x5, 0x1, 0x4, 0x2, 0x7}}) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) r1 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x401c2, 0x0) ftruncate(r1, 0x8800000) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) recvmmsg(r3, &(0x7f00000034c0)=[{{0x0, 0x0, &(0x7f0000001e40)=[{&(0x7f0000000b80)=""/4096, 0x20001b80}, {&(0x7f0000001b80)=""/112, 0x70}], 0x2, 0x0, 0xa0028cb4}}], 0x40000000000013c, 0x700, 0x0) sendfile(r2, r1, 0x0, 0x578410eb) process_vm_readv(0x0, 0x0, 0x0, &(0x7f0000008640), 0x0, 0x0) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0xf3e, 0x0) timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x0, @thr={&(0x7f0000000300), 0x0}}, &(0x7f0000000100)) fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, 0x0, &(0x7f0000000280), 0x2, 0x3) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) 4.374111768s ago: executing program 0 (id=365): socketpair$unix(0x1, 0x3, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x3, @pix={0x434c, 0x8, 0x584e4f53, 0x4, 0x2, 0x7, 0x0, 0x5, 0x1, 0x4, 0x2, 0x7}}) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) setsockopt$MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, &(0x7f00000000c0)={0x0, 0x1, 0x26}, 0xc) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x401c2, 0x0) ftruncate(r1, 0x8800000) socketpair$nbd(0x1, 0x1, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000034c0)=[{{0x0, 0x0, &(0x7f0000001e40)=[{&(0x7f0000000b80)=""/4096, 0x20001b80}, {&(0x7f0000001b80)=""/112, 0x70}], 0x2, 0x0, 0xa0028cb4}}], 0x40000000000013c, 0x700, 0x0) sendfile(0xffffffffffffffff, r1, 0x0, 0x578410eb) process_vm_readv(0x0, 0x0, 0x0, &(0x7f0000008640), 0x0, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0xf3e, 0x0) timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x0, @thr={&(0x7f0000000300), 0x0}}, &(0x7f0000000100)) fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, 0x0, &(0x7f0000000280), 0x2, 0x3) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) 3.801119734s ago: executing program 2 (id=366): socketpair$unix(0x1, 0x3, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x578410eb) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0xf3e, 0x0) timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x0, @thr={&(0x7f0000000300), 0x0}}, &(0x7f0000000100)) fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, 0x0, &(0x7f0000000280), 0x2, 0x3) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) 3.157629486s ago: executing program 3 (id=367): socket$inet_udp(0x2, 0x2, 0x0) socket(0x10, 0x2, 0x0) pipe(&(0x7f0000000080)) socket$netlink(0x10, 0x3, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) socket$l2tp6(0xa, 0x2, 0x73) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) socket$inet6_sctp(0xa, 0x801, 0x84) socket$igmp(0x2, 0x3, 0x2) socket$nl_route(0x10, 0x3, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) pipe(&(0x7f0000000080)) socket$nl_netfilter(0x10, 0x3, 0xc) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)) pipe(&(0x7f0000000040)) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_COALESCE_SET(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000001c0)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000000000001400000008000a00fc00000018000180140002006e657464657673696d300000000000000800050000fcffff08000900fc000000080011000700000008000e00800000000800", @ANYRES32=r1, @ANYRESOCT=r0], 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x0) 3.142895057s ago: executing program 2 (id=368): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f0000000380)=@abs, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) process_vm_writev(0x0, 0x0, 0x0, &(0x7f0000121000)=[{0x0}], 0x1, 0x0) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27) 2.811735644s ago: executing program 0 (id=369): prlimit64(0x0, 0xe, 0x0, 0x0) r0 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000040)=@req={0x3fc, 0x0, 0x0, 0x5}, 0x10) r1 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10) sendmmsg(r1, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000) sendmmsg(r0, &(0x7f00000030c0), 0x0, 0x9200000000000000) recvmmsg$unix(r0, &(0x7f00000043c0)=[{{0x0, 0x0, &(0x7f0000000580)}}], 0x1, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) socket$inet_tcp(0x2, 0x1, 0x0) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) openat$ptmx(0xffffffffffffff9c, 0x0, 0x2, 0x0) 2.810533584s ago: executing program 2 (id=370): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_COALESCE_SET(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000001c0)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000000000001400000008000a00fc00000018000180140002006e657464657673696d30", @ANYRES32=r1, @ANYRESOCT=r0], 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x0) 2.703195152s ago: executing program 3 (id=371): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000180)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, 0x0, 0x0, 0x0) syz_open_dev$usbmon(0x0, 0x400, 0x208000) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_emit_ethernet(0x0, 0x0, &(0x7f00000001c0)={0x1, 0x4, [0x36e, 0x5, 0xf6e, 0x37e]}) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) connect$pppoe(0xffffffffffffffff, &(0x7f0000000000)={0x18, 0x0, {0x1, @broadcast, 'lo\x00'}}, 0x1e) r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000001ac0), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_SB_OCC_MAX_CLEAR(r5, &(0x7f0000001f40)={0x0, 0x0, &(0x7f0000001f00)={&(0x7f0000001ec0)={0x3c, r4, 0x1, 0x70bd26, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x3, 0xb, 0xff}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40801}, 0x10) 2.632715838s ago: executing program 2 (id=372): mkdirat(0xffffffffffffff9c, 0x0, 0x1c0) mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f00000005c0)='configfs\x00', 0x200000, 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0xa000, 0x0) getdents64(r0, 0x0, 0x0) 2.418649425s ago: executing program 2 (id=373): prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0) r0 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000040)=@req={0x3fc, 0x0, 0x0, 0x5}, 0x10) socket(0x1e, 0x4, 0x0) sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000) recvmmsg$unix(r0, &(0x7f00000043c0), 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_buf(r1, 0x0, 0x8008000000010, 0x0, 0x0) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) openat$ptmx(0xffffffffffffff9c, 0x0, 0x2, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0) mq_unlink(0x0) 1.73829495s ago: executing program 3 (id=374): socket$igmp6(0xa, 0x3, 0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) request_key(0x0, &(0x7f0000001ffb)={'syz', 0x1, 0xc}, &(0x7f0000001fee)='R\x10suse\x00\x00\x00\x00\x00\x00\x00dn\x00\x00\x00', 0x0) r3 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0) syz_open_dev$usbfs(0x0, 0x3, 0x389001) ioctl$TIOCSTI(r3, 0x5412, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$SNDCTL_DSP_SPEED(r4, 0xc0045002, &(0x7f0000000000)=0x40000001) openat$fb0(0xffffffffffffff9c, 0x0, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0x80000000, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0xf}, 0x1c) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000004c0)={&(0x7f0000000440)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, 0x0, 0x1a, 0x0, 0x1, 0x47}, 0x28) 1.501516529s ago: executing program 0 (id=375): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) r1 = getpid() sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7) syz_open_dev$dri(&(0x7f0000000740), 0x7, 0x58d083) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_io_uring_setup(0x7b, &(0x7f0000000540)={0x0, 0x3bca, 0x10100, 0x0, 0x313}, &(0x7f00000005c0), &(0x7f0000000100)) socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040)) 1.298289776s ago: executing program 2 (id=376): socketpair$unix(0x1, 0x3, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x3, @pix={0x434c, 0x8, 0x584e4f53, 0x4, 0x2, 0x7, 0x0, 0x5, 0x1, 0x4, 0x2, 0x7}}) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) setsockopt$MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, &(0x7f00000000c0)={0x0, 0x1, 0x26}, 0xc) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x401c2, 0x0) ftruncate(r1, 0x8800000) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) recvmmsg(r3, &(0x7f00000034c0)=[{{0x0, 0x0, &(0x7f0000001e40)=[{&(0x7f0000000b80)=""/4096, 0x20001b80}, {&(0x7f0000001b80)=""/112, 0x70}], 0x2, 0x0, 0xa0028cb4}}], 0x40000000000013c, 0x700, 0x0) sendfile(r2, r1, 0x0, 0x578410eb) process_vm_readv(0x0, 0x0, 0x0, &(0x7f0000008640), 0x0, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0xf3e, 0x0) fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, 0x0, &(0x7f0000000280), 0x2, 0x3) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) 284.479397ms ago: executing program 0 (id=377): socketpair$unix(0x1, 0x3, 0x0, 0x0) ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x3, @pix={0x434c, 0x8, 0x584e4f53, 0x4, 0x2, 0x7, 0x0, 0x5, 0x1, 0x4, 0x2, 0x7}}) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x578410eb) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0xf3e, 0x0) timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x0, @thr={&(0x7f0000000300), 0x0}}, &(0x7f0000000100)) fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, 0x0, &(0x7f0000000280), 0x2, 0x3) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) 267.793709ms ago: executing program 3 (id=378): socket$inet6_tcp(0xa, 0x1, 0x0) r0 = socket$rds(0x15, 0x5, 0x0) getsockopt$IP6T_SO_GET_REVISION_TARGET(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000040)={'TPROXY\x00'}, &(0x7f0000000080)=0x1e) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) fallocate(0xffffffffffffffff, 0x700100, 0x0, 0x1000f4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r1, 0x0, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$IPT_SO_SET_REPLACE(r4, 0x0, 0x40, &(0x7f0000001640)=@mangle={'mangle\x00', 0x44, 0x6, 0x510, 0x3a8, 0x210, 0x210, 0x0, 0x138, 0x478, 0x478, 0x478, 0x478, 0x478, 0x6, 0x0, {[{{@ip={@broadcast, @multicast1=0xe0007600, 0x0, 0x0, 'geneve1\x00', 'ip6gre0\x00'}, 0x0, 0x70, 0x98}, @inet=@DSCP={0x28}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @local, 0x0, 0x0, 'batadv_slave_1\x00', 'veth1_virt_wifi\x00', {}, {}, 0x11}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @local}}}, {{@ip={@broadcast, @multicast2, 0x0, 0x0, 'vlan1\x00', 'nr0\x00'}, 0x0, 0xb0, 0xd8, 0x0, {}, [@common=@unspec=@connlimit={{0x40}}]}, @unspec=@CHECKSUM={0x28}}, {{@ip={@loopback, @empty, 0x0, 0x0, 'syzkaller0\x00', 'veth1_to_team\x00'}, 0x0, 0x70, 0x198}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0x0, 'system_u:object_r:dbusd_etc_t:s0\x00'}}}, {{@ip={@broadcast, @multicast2, 0x0, 0x0, 'lo\x00', 'batadv_slave_1\x00'}, 0x0, 0xa0, 0xd0, 0x0, {}, [@common=@unspec=@mac={{0x30}, {@multicast}}]}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @loopback}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x570) sendmsg$rds(r0, &(0x7f0000000180)={&(0x7f0000000080)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x0, &(0x7f0000000540)}, 0x0) socket$inet6_mptcp(0xa, 0x1, 0x106) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./control\x00', 0x200080, &(0x7f0000000200), 0x4, 0x569, &(0x7f0000000580)="$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") sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0) 0s ago: executing program 1 (id=379): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f0000000380)=@abs, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) process_vm_writev(0x0, 0x0, 0x0, &(0x7f0000121000)=[{0x0}], 0x1, 0x0) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.72' (ED25519) to the list of known hosts. syzkaller login: [ 57.283680][ T5770] cgroup: Unknown subsys name 'net' [ 57.414583][ T5770] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 58.758385][ T5770] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 60.135735][ T5784] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 60.143896][ T5784] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 60.169298][ T5795] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 60.188273][ T5795] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 60.205565][ T5792] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 60.206385][ T5796] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 60.221604][ T5795] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 60.223690][ T5794] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 60.230440][ T5795] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 60.237511][ T5792] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 60.243837][ T5795] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 60.259833][ T5794] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 60.266986][ T5795] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 60.275274][ T5792] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 60.276111][ T5795] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 60.282553][ T5794] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 60.299091][ T5792] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 60.299972][ T5795] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 60.314445][ T5795] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 60.315485][ T5794] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 60.329217][ T5790] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 60.337393][ T5794] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 60.344867][ T5794] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 60.354896][ T5793] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 60.729017][ T5780] chnl_net:caif_netlink_parms(): no params data found [ 60.796696][ T5782] chnl_net:caif_netlink_parms(): no params data found [ 60.892062][ T5781] chnl_net:caif_netlink_parms(): no params data found [ 60.930630][ T5783] chnl_net:caif_netlink_parms(): no params data found [ 60.957311][ T5780] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.965213][ T5780] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.972779][ T5780] bridge_slave_0: entered allmulticast mode [ 60.980955][ T5780] bridge_slave_0: entered promiscuous mode [ 61.007933][ T5780] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.015187][ T5780] bridge0: port 2(bridge_slave_1) entered disabled state [ 61.022471][ T5780] bridge_slave_1: entered allmulticast mode [ 61.030072][ T5780] bridge_slave_1: entered promiscuous mode [ 61.102057][ T5782] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.110680][ T5782] bridge0: port 1(bridge_slave_0) entered disabled state [ 61.117927][ T5782] bridge_slave_0: entered allmulticast mode [ 61.124897][ T5782] bridge_slave_0: entered promiscuous mode [ 61.147733][ T5780] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 61.157797][ T5782] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.165060][ T5782] bridge0: port 2(bridge_slave_1) entered disabled state [ 61.172746][ T5782] bridge_slave_1: entered allmulticast mode [ 61.179746][ T5782] bridge_slave_1: entered promiscuous mode [ 61.206305][ T5780] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 61.236490][ T5781] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.243951][ T5781] bridge0: port 1(bridge_slave_0) entered disabled state [ 61.251832][ T5781] bridge_slave_0: entered allmulticast mode [ 61.258764][ T5781] bridge_slave_0: entered promiscuous mode [ 61.294666][ T5781] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.302014][ T5781] bridge0: port 2(bridge_slave_1) entered disabled state [ 61.309413][ T5781] bridge_slave_1: entered allmulticast mode [ 61.316253][ T5781] bridge_slave_1: entered promiscuous mode [ 61.336029][ T5782] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 61.345754][ T5783] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.353106][ T5783] bridge0: port 1(bridge_slave_0) entered disabled state [ 61.360352][ T5783] bridge_slave_0: entered allmulticast mode [ 61.367062][ T5783] bridge_slave_0: entered promiscuous mode [ 61.386892][ T5780] team0: Port device team_slave_0 added [ 61.395589][ T5782] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 61.415895][ T5783] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.423239][ T5783] bridge0: port 2(bridge_slave_1) entered disabled state [ 61.430873][ T5783] bridge_slave_1: entered allmulticast mode [ 61.437561][ T5783] bridge_slave_1: entered promiscuous mode [ 61.462389][ T5780] team0: Port device team_slave_1 added [ 61.501636][ T5781] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 61.524171][ T5782] team0: Port device team_slave_0 added [ 61.532552][ T5782] team0: Port device team_slave_1 added [ 61.541521][ T5783] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 61.553681][ T5783] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 61.564422][ T5781] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 61.586020][ T5780] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 61.593435][ T5780] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 61.620147][ T5780] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 61.662764][ T5780] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 61.669896][ T5780] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 61.696125][ T5780] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 61.742387][ T5783] team0: Port device team_slave_0 added [ 61.752139][ T5781] team0: Port device team_slave_0 added [ 61.763054][ T5781] team0: Port device team_slave_1 added [ 61.770090][ T5782] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 61.777129][ T5782] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 61.803747][ T5782] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 61.817258][ T5783] team0: Port device team_slave_1 added [ 61.842881][ T5782] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 61.850181][ T5782] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 61.881974][ T5782] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 61.942985][ T5783] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 61.950052][ T5783] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 61.976947][ T5783] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 61.993492][ T5780] hsr_slave_0: entered promiscuous mode [ 62.000030][ T5780] hsr_slave_1: entered promiscuous mode [ 62.007642][ T5781] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 62.014907][ T5781] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 62.041519][ T5781] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 62.054095][ T5781] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 62.061415][ T5781] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 62.087499][ T5781] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 62.099333][ T5783] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 62.106385][ T5783] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 62.132628][ T5783] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 62.177926][ T5782] hsr_slave_0: entered promiscuous mode [ 62.184872][ T5782] hsr_slave_1: entered promiscuous mode [ 62.191320][ T5782] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 62.199609][ T5782] Cannot create hsr debugfs directory [ 62.252707][ T5783] hsr_slave_0: entered promiscuous mode [ 62.259364][ T5783] hsr_slave_1: entered promiscuous mode [ 62.265480][ T5783] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 62.273185][ T5783] Cannot create hsr debugfs directory [ 62.349265][ T5793] Bluetooth: hci2: command tx timeout [ 62.378669][ T5781] hsr_slave_0: entered promiscuous mode [ 62.384913][ T5781] hsr_slave_1: entered promiscuous mode [ 62.391254][ T5781] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 62.399110][ T5781] Cannot create hsr debugfs directory [ 62.428451][ T5793] Bluetooth: hci3: command tx timeout [ 62.431477][ T50] Bluetooth: hci0: command tx timeout [ 62.434015][ T5794] Bluetooth: hci1: command tx timeout [ 62.683359][ T5782] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 62.696352][ T5782] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 62.709033][ T5782] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 62.719253][ T5782] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 62.784702][ T5783] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 62.794262][ T5783] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 62.811366][ T5783] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 62.821689][ T5783] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 62.903681][ T5780] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 62.921614][ T5780] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 62.935327][ T5780] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 62.944931][ T5780] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 63.006923][ T5781] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 63.032611][ T5781] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 63.044013][ T5781] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 63.054934][ T5781] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 63.135711][ T5782] 8021q: adding VLAN 0 to HW filter on device bond0 [ 63.205503][ T5783] 8021q: adding VLAN 0 to HW filter on device bond0 [ 63.237191][ T5783] 8021q: adding VLAN 0 to HW filter on device team0 [ 63.255409][ T5782] 8021q: adding VLAN 0 to HW filter on device team0 [ 63.268489][ T2942] bridge0: port 1(bridge_slave_0) entered blocking state [ 63.275869][ T2942] bridge0: port 1(bridge_slave_0) entered forwarding state [ 63.301676][ T2942] bridge0: port 1(bridge_slave_0) entered blocking state [ 63.308941][ T2942] bridge0: port 1(bridge_slave_0) entered forwarding state [ 63.335685][ T2942] bridge0: port 2(bridge_slave_1) entered blocking state [ 63.342827][ T2942] bridge0: port 2(bridge_slave_1) entered forwarding state [ 63.353300][ T2942] bridge0: port 2(bridge_slave_1) entered blocking state [ 63.360495][ T2942] bridge0: port 2(bridge_slave_1) entered forwarding state [ 63.375336][ T5781] 8021q: adding VLAN 0 to HW filter on device bond0 [ 63.401070][ T5780] 8021q: adding VLAN 0 to HW filter on device bond0 [ 63.447786][ T5781] 8021q: adding VLAN 0 to HW filter on device team0 [ 63.465332][ T5780] 8021q: adding VLAN 0 to HW filter on device team0 [ 63.531317][ T58] bridge0: port 1(bridge_slave_0) entered blocking state [ 63.538992][ T58] bridge0: port 1(bridge_slave_0) entered forwarding state [ 63.556997][ T58] bridge0: port 2(bridge_slave_1) entered blocking state [ 63.564444][ T58] bridge0: port 2(bridge_slave_1) entered forwarding state [ 63.609153][ T2942] bridge0: port 1(bridge_slave_0) entered blocking state [ 63.616334][ T2942] bridge0: port 1(bridge_slave_0) entered forwarding state [ 63.642160][ T2942] bridge0: port 2(bridge_slave_1) entered blocking state [ 63.649617][ T2942] bridge0: port 2(bridge_slave_1) entered forwarding state [ 63.753699][ T5780] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 63.806128][ T5783] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 63.946322][ T5783] veth0_vlan: entered promiscuous mode [ 63.985464][ T5783] veth1_vlan: entered promiscuous mode [ 64.071384][ T5783] veth0_macvtap: entered promiscuous mode [ 64.114023][ T5783] veth1_macvtap: entered promiscuous mode [ 64.135666][ T5782] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 64.166086][ T5781] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 64.191396][ T5783] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 64.204291][ T5783] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 64.225915][ T5783] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.235176][ T5783] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.244655][ T5783] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.254005][ T5783] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.303734][ T5780] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 64.328445][ T5782] veth0_vlan: entered promiscuous mode [ 64.354181][ T5781] veth0_vlan: entered promiscuous mode [ 64.372700][ T5782] veth1_vlan: entered promiscuous mode [ 64.391170][ T5781] veth1_vlan: entered promiscuous mode [ 64.439713][ T5794] Bluetooth: hci2: command tx timeout [ 64.466191][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 64.483203][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 64.508455][ T5794] Bluetooth: hci0: command tx timeout [ 64.518682][ T5793] Bluetooth: hci3: command tx timeout [ 64.524176][ T5794] Bluetooth: hci1: command tx timeout [ 64.546650][ T58] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 64.550318][ T5781] veth0_macvtap: entered promiscuous mode [ 64.564893][ T5782] veth0_macvtap: entered promiscuous mode [ 64.572137][ T58] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 64.582852][ T5780] veth0_vlan: entered promiscuous mode [ 64.597147][ T5780] veth1_vlan: entered promiscuous mode [ 64.609731][ T5781] veth1_macvtap: entered promiscuous mode [ 64.616978][ T5782] veth1_macvtap: entered promiscuous mode [ 64.650691][ T5782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 64.662417][ T5782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 64.677834][ T5782] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 64.693979][ T5780] veth0_macvtap: entered promiscuous mode [ 64.717040][ T5782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 64.732982][ T5782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 64.744439][ T5782] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 64.754343][ T5780] veth1_macvtap: entered promiscuous mode [ 64.782720][ T5781] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 64.799060][ T5781] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 64.812576][ T5781] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 64.826378][ T5781] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 64.852467][ T5781] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 64.867942][ T5781] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 64.883995][ T5781] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 64.896244][ T5781] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 64.916584][ T5781] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 64.931515][ T5781] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 64.946764][ T5782] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.958652][ T5782] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.967577][ T5782] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.982817][ T5782] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.056250][ T5780] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 65.066956][ T5780] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 65.078547][ T5780] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 65.089876][ T5780] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 65.099826][ T5780] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 65.110423][ T5780] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 65.122283][ T5780] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 65.381679][ T5781] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.438568][ T5781] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.475779][ T5781] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.507157][ T5781] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.631599][ T5780] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 65.689229][ T5780] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 65.699142][ T5780] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 65.710043][ T5780] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 65.720411][ T5780] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 65.735209][ T5780] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 65.747336][ T5780] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 65.769934][ T5780] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.778926][ T5780] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.787628][ T5780] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.799472][ T5780] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 66.114271][ T2942] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 66.124922][ T2942] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 66.179794][ T2942] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 66.187825][ T2942] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 66.228585][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 66.237914][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 66.429208][ T5872] netlink: 324 bytes leftover after parsing attributes in process `syz.1.5'. [ 66.456203][ T5872] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5'. [ 66.466516][ T154] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 66.466557][ T154] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 66.488339][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 66.508818][ T5794] Bluetooth: hci2: command tx timeout [ 66.548607][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 66.588513][ T5794] Bluetooth: hci1: command tx timeout [ 66.588553][ T5794] Bluetooth: hci3: command tx timeout [ 66.588598][ T5794] Bluetooth: hci0: command tx timeout [ 66.673674][ T58] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 66.673696][ T58] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 66.829732][ T2942] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 66.829753][ T2942] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 67.022707][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 67.022726][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 68.257371][ T5880] tipc: Started in network mode [ 68.257408][ T5880] tipc: Node identity fe80000000000000000000000000001, cluster identity 4711 [ 68.260628][ T5880] tipc: Enabled bearer , priority 10 [ 68.357546][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 68.358173][ T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!! [ 68.364984][ T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!! [ 68.399806][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 68.638762][ T5886] netlink: 416 bytes leftover after parsing attributes in process `syz.2.3'. [ 68.664818][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 68.665643][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 68.701075][ T5794] Bluetooth: hci0: command tx timeout [ 68.701116][ T5794] Bluetooth: hci3: command tx timeout [ 68.701145][ T5794] Bluetooth: hci1: command tx timeout [ 68.701461][ T5793] Bluetooth: hci2: command tx timeout [ 69.445997][ T5848] tipc: Node number set to 4269801488 [ 71.743741][ T1284] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.758610][ T1284] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.882647][ T5909] netlink: 416 bytes leftover after parsing attributes in process `syz.0.8'. [ 74.448182][ T5921] netlink: 324 bytes leftover after parsing attributes in process `syz.0.12'. [ 74.457094][ T5921] netlink: 8 bytes leftover after parsing attributes in process `syz.0.12'. [ 75.469361][ T5925] netlink: 416 bytes leftover after parsing attributes in process `syz.1.11'. [ 77.951631][ T5943] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 77.966754][ T5942] netlink: 4 bytes leftover after parsing attributes in process `syz.1.16'. [ 77.980558][ T5942] bridge_slave_1: left allmulticast mode [ 77.991353][ T5942] bridge_slave_1: left promiscuous mode [ 78.000954][ T5943] syz.0.14[5943]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set [ 78.011553][ T5942] bridge0: port 2(bridge_slave_1) entered disabled state [ 78.169331][ T5942] bridge_slave_0: left allmulticast mode [ 78.183690][ T5942] bridge_slave_0: left promiscuous mode [ 78.197211][ T5943] loop0: detected capacity change from 0 to 512 [ 78.235043][ T5942] bridge0: port 1(bridge_slave_0) entered disabled state [ 78.469063][ T5949] usb usb8: usbfs: process 5949 (syz.2.17) did not claim interface 0 before use [ 78.602171][ T5943] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 78.684024][ T5943] ext4 filesystem being mounted at /4/control supports timestamps until 2038-01-19 (0x7fffffff) [ 78.751601][ T5949] Zero length message leads to an empty skb [ 79.072680][ T5957] loop3: detected capacity change from 0 to 128 [ 79.838179][ T5949] netlink: 92 bytes leftover after parsing attributes in process `syz.2.17'. [ 81.131938][ T5782] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 81.980389][ T28] cfg80211: failed to load regulatory.db [ 82.926734][ T5976] netlink: 416 bytes leftover after parsing attributes in process `syz.0.21'. [ 84.905694][ T5985] netlink: 416 bytes leftover after parsing attributes in process `syz.0.25'. [ 88.935372][ T6013] netlink: 324 bytes leftover after parsing attributes in process `syz.2.31'. [ 88.945001][ T6013] netlink: 8 bytes leftover after parsing attributes in process `syz.2.31'. [ 90.600910][ T6022] loop1: detected capacity change from 0 to 128 [ 92.169481][ T6029] loop3: detected capacity change from 0 to 128 [ 93.143315][ T6035] netlink: 416 bytes leftover after parsing attributes in process `syz.2.36'. [ 95.321261][ T6050] netlink: 416 bytes leftover after parsing attributes in process `syz.2.39'. [ 96.609168][ T6055] capability: warning: `syz.2.41' uses deprecated v2 capabilities in a way that may be insecure [ 96.625628][ T6055] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 97.487416][ T6061] netlink: 416 bytes leftover after parsing attributes in process `syz.1.42'. [ 97.852991][ T6057] sched: RT throttling activated [ 98.271569][ T6064] loop2: detected capacity change from 0 to 512 [ 99.125618][ T6070] netlink: 324 bytes leftover after parsing attributes in process `syz.1.45'. [ 99.134721][ T6070] netlink: 8 bytes leftover after parsing attributes in process `syz.1.45'. [ 99.779158][ T6073] netlink: 416 bytes leftover after parsing attributes in process `syz.0.43'. [ 101.102153][ T6064] EXT4-fs: error -4 creating inode table initialization thread [ 101.112761][ T6064] EXT4-fs (loop2): mount failed [ 102.119236][ T6089] netlink: 416 bytes leftover after parsing attributes in process `syz.0.46'. [ 105.033044][ T6108] loop0: detected capacity change from 0 to 512 [ 105.633454][ T6108] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 105.646330][ T6108] ext4 filesystem being mounted at /11/control supports timestamps until 2038-01-19 (0x7fffffff) [ 106.033004][ T6117] netlink: 416 bytes leftover after parsing attributes in process `syz.1.53'. [ 106.894707][ T5782] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 111.810253][ T6149] netlink: 324 bytes leftover after parsing attributes in process `syz.2.61'. [ 111.819432][ T6149] netlink: 8 bytes leftover after parsing attributes in process `syz.2.61'. [ 115.207731][ T6162] loop1: detected capacity change from 0 to 512 [ 116.299302][ T6162] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 116.312010][ T6162] ext4 filesystem being mounted at /19/control supports timestamps until 2038-01-19 (0x7fffffff) [ 116.387711][ T6167] usb usb8: usbfs: process 6167 (syz.3.62) did not claim interface 0 before use [ 116.425868][ T6167] netlink: 92 bytes leftover after parsing attributes in process `syz.3.62'. [ 116.565398][ T5783] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 117.999845][ T6176] netlink: 416 bytes leftover after parsing attributes in process `syz.1.65'. [ 119.229507][ T6181] netlink: 324 bytes leftover after parsing attributes in process `syz.1.68'. [ 119.238915][ T6181] netlink: 8 bytes leftover after parsing attributes in process `syz.1.68'. [ 122.246479][ T6199] netlink: 416 bytes leftover after parsing attributes in process `syz.2.72'. [ 123.159559][ T6188] netlink: 4 bytes leftover after parsing attributes in process `syz.1.69'. [ 124.418401][ T6204] usb usb8: usbfs: process 6204 (syz.0.71) did not claim interface 0 before use [ 125.056718][ T6215] netlink: 92 bytes leftover after parsing attributes in process `syz.0.71'. [ 125.121393][ T6217] netlink: 4 bytes leftover after parsing attributes in process `syz.3.74'. [ 125.130268][ T6217] bridge_slave_1: left allmulticast mode [ 125.164444][ T6217] bridge_slave_1: left promiscuous mode [ 125.256270][ T6217] bridge0: port 2(bridge_slave_1) entered disabled state [ 126.122027][ T6217] bridge_slave_0: left allmulticast mode [ 126.168583][ T6217] bridge_slave_0: left promiscuous mode [ 126.205270][ T6217] bridge0: port 1(bridge_slave_0) entered disabled state [ 127.716040][ T6222] netlink: 324 bytes leftover after parsing attributes in process `syz.1.76'. [ 127.725041][ T6222] netlink: 8 bytes leftover after parsing attributes in process `syz.1.76'. [ 127.915558][ T6227] netlink: 416 bytes leftover after parsing attributes in process `syz.0.77'. [ 129.099486][ T6233] netlink: 324 bytes leftover after parsing attributes in process `syz.2.78'. [ 129.111369][ T6233] netlink: 8 bytes leftover after parsing attributes in process `syz.2.78'. [ 131.565511][ T6247] netlink: 416 bytes leftover after parsing attributes in process `syz.2.82'. [ 134.021600][ T6256] loop0: detected capacity change from 0 to 512 [ 134.134947][ T1284] ieee802154 phy0 wpan0: encryption failed: -22 [ 134.158108][ T1284] ieee802154 phy1 wpan1: encryption failed: -22 [ 134.289009][ T6256] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 134.301835][ T6256] ext4 filesystem being mounted at /18/control supports timestamps until 2038-01-19 (0x7fffffff) [ 134.560005][ T5782] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 136.434165][ T6279] netlink: 324 bytes leftover after parsing attributes in process `syz.3.87'. [ 136.443592][ T6279] netlink: 8 bytes leftover after parsing attributes in process `syz.3.87'. [ 137.318282][ T6278] loop0: detected capacity change from 0 to 512 [ 138.155301][ T6278] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 138.170649][ T6278] ext4 filesystem being mounted at /19/control supports timestamps until 2038-01-19 (0x7fffffff) [ 138.497218][ T5782] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 138.663205][ T6286] loop2: detected capacity change from 0 to 128 [ 138.876866][ T6288] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 138.906404][ T6288] netlink: 'syz.0.90': attribute type 24 has an invalid length. [ 139.239618][ T6295] netlink: 4 bytes leftover after parsing attributes in process `syz.0.92'. [ 139.336708][ T6295] bridge_slave_1: left allmulticast mode [ 139.424084][ T6295] bridge_slave_1: left promiscuous mode [ 139.528396][ T6295] bridge0: port 2(bridge_slave_1) entered disabled state [ 139.785378][ T6295] bridge_slave_0: left allmulticast mode [ 141.528646][ T6295] bridge_slave_0: left promiscuous mode [ 141.543187][ T6295] bridge0: port 1(bridge_slave_0) entered disabled state [ 141.891902][ T6310] loop1: detected capacity change from 0 to 512 [ 142.627305][ T6310] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 142.639951][ T6310] ext4 filesystem being mounted at /28/control supports timestamps until 2038-01-19 (0x7fffffff) [ 142.733353][ T6297] netlink: 4 bytes leftover after parsing attributes in process `syz.3.91'. [ 142.874830][ T5783] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 143.233429][ T6318] netlink: 324 bytes leftover after parsing attributes in process `syz.2.96'. [ 143.243261][ T6318] netlink: 8 bytes leftover after parsing attributes in process `syz.2.96'. [ 144.403316][ T6323] netlink: 416 bytes leftover after parsing attributes in process `syz.1.97'. [ 145.183275][ T6321] netlink: 4 bytes leftover after parsing attributes in process `syz.2.98'. [ 145.193050][ T6321] bridge_slave_1: left allmulticast mode [ 145.199099][ T6321] bridge_slave_1: left promiscuous mode [ 145.205094][ T6321] bridge0: port 2(bridge_slave_1) entered disabled state [ 147.277542][ T6321] bridge_slave_0: left allmulticast mode [ 147.283545][ T6321] bridge_slave_0: left promiscuous mode [ 147.508405][ T6321] bridge0: port 1(bridge_slave_0) entered disabled state [ 148.393302][ T6329] netlink: 324 bytes leftover after parsing attributes in process `syz.1.99'. [ 148.402493][ T6329] netlink: 8 bytes leftover after parsing attributes in process `syz.1.99'. [ 148.424853][ T6339] tipc: Started in network mode [ 148.430134][ T6339] tipc: Node identity fe80000000000000000000000000001, cluster identity 4711 [ 148.440840][ T6339] tipc: Enabled bearer , priority 10 [ 149.652161][ T5789] tipc: Node number set to 4269801488 [ 149.757714][ T6355] netlink: 324 bytes leftover after parsing attributes in process `syz.0.105'. [ 149.767902][ T6355] netlink: 8 bytes leftover after parsing attributes in process `syz.0.105'. [ 151.312042][ T6364] netlink: 324 bytes leftover after parsing attributes in process `syz.0.106'. [ 151.321578][ T6364] netlink: 8 bytes leftover after parsing attributes in process `syz.0.106'. [ 152.059587][ T6373] netlink: 324 bytes leftover after parsing attributes in process `syz.1.109'. [ 152.068811][ T6373] netlink: 8 bytes leftover after parsing attributes in process `syz.1.109'. [ 152.204714][ T6374] loop2: detected capacity change from 0 to 128 [ 153.006998][ T6375] netlink: 4 bytes leftover after parsing attributes in process `syz.3.108'. [ 153.489171][ T6383] netlink: 416 bytes leftover after parsing attributes in process `syz.2.112'. [ 154.405501][ T6384] usb usb8: usbfs: process 6384 (syz.1.111) did not claim interface 0 before use [ 155.205527][ T6384] netlink: 92 bytes leftover after parsing attributes in process `syz.1.111'. [ 158.187780][ T6404] netlink: 324 bytes leftover after parsing attributes in process `syz.2.117'. [ 158.197395][ T6404] netlink: 8 bytes leftover after parsing attributes in process `syz.2.117'. [ 159.452666][ T6410] netlink: 324 bytes leftover after parsing attributes in process `syz.0.118'. [ 159.462055][ T6410] netlink: 8 bytes leftover after parsing attributes in process `syz.0.118'. [ 160.606257][ T6417] netlink: 324 bytes leftover after parsing attributes in process `syz.3.119'. [ 161.128660][ T6417] netlink: 8 bytes leftover after parsing attributes in process `syz.3.119'. [ 163.891464][ T6434] netlink: 4 bytes leftover after parsing attributes in process `syz.1.123'. [ 165.120290][ T6446] loop0: detected capacity change from 0 to 128 [ 165.746273][ T6450] tipc: Enabling of bearer rejected, already enabled [ 166.683144][ T6458] netlink: 344 bytes leftover after parsing attributes in process `syz.0.129'. [ 166.692373][ T6458] netlink: 8 bytes leftover after parsing attributes in process `syz.0.129'. [ 167.891985][ T6466] netlink: 324 bytes leftover after parsing attributes in process `syz.2.131'. [ 167.901708][ T6466] netlink: 8 bytes leftover after parsing attributes in process `syz.2.131'. [ 170.321677][ T6482] loop1: detected capacity change from 0 to 128 [ 171.471119][ T6478] netlink: 4 bytes leftover after parsing attributes in process `syz.2.133'. [ 172.599119][ T6501] netlink: 4 bytes leftover after parsing attributes in process `syz.1.139'. [ 173.537668][ T6505] netlink: 344 bytes leftover after parsing attributes in process `syz.2.141'. [ 173.546787][ T6505] netlink: 8 bytes leftover after parsing attributes in process `syz.2.141'. [ 174.253473][ T6514] netlink: 4 bytes leftover after parsing attributes in process `syz.3.137'. [ 175.384656][ T6520] netlink: 4 bytes leftover after parsing attributes in process `syz.2.143'. [ 175.993677][ T6524] netlink: 324 bytes leftover after parsing attributes in process `syz.1.144'. [ 176.002863][ T6524] netlink: 8 bytes leftover after parsing attributes in process `syz.1.144'. [ 177.340648][ T6530] tipc: Enabling of bearer rejected, already enabled [ 179.523494][ T6539] netlink: 'syz.0.148': attribute type 25 has an invalid length. [ 180.030905][ T6547] loop3: detected capacity change from 0 to 128 [ 180.079984][ T6550] usb usb8: usbfs: process 6550 (syz.0.149) did not claim interface 0 before use [ 180.124005][ T6550] netlink: 92 bytes leftover after parsing attributes in process `syz.0.149'. [ 182.395377][ T6560] loop3: detected capacity change from 0 to 512 [ 182.557449][ T6560] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 182.571569][ T6560] ext4 filesystem being mounted at /25/control supports timestamps until 2038-01-19 (0x7fffffff) [ 182.948417][ T6567] netlink: 324 bytes leftover after parsing attributes in process `syz.2.154'. [ 182.957477][ T6567] netlink: 8 bytes leftover after parsing attributes in process `syz.2.154'. [ 183.816215][ T5780] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 186.227277][ T6582] netlink: 344 bytes leftover after parsing attributes in process `syz.2.157'. [ 186.237102][ T6582] netlink: 8 bytes leftover after parsing attributes in process `syz.2.157'. [ 186.749155][ T5795] Bluetooth: hci1: command 0x0406 tx timeout [ 186.755290][ T5795] Bluetooth: hci0: command 0x0406 tx timeout [ 186.761726][ T5102] Bluetooth: hci2: command 0x0406 tx timeout [ 186.767760][ T5102] Bluetooth: hci3: command 0x0406 tx timeout [ 189.767727][ T6596] netlink: 4 bytes leftover after parsing attributes in process `syz.1.160'. [ 191.081311][ T6612] netlink: 344 bytes leftover after parsing attributes in process `syz.3.164'. [ 191.090851][ T6612] netlink: 8 bytes leftover after parsing attributes in process `syz.3.164'. [ 192.066314][ T6605] netlink: 4 bytes leftover after parsing attributes in process `syz.0.163'. [ 194.524630][ T1284] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.533078][ T1284] ieee802154 phy1 wpan1: encryption failed: -22 [ 195.750848][ T6633] loop2: detected capacity change from 0 to 512 [ 196.263663][ T6633] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 196.277176][ T6633] ext4 filesystem being mounted at /49/control supports timestamps until 2038-01-19 (0x7fffffff) [ 196.649407][ T5781] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 196.747277][ T6640] netlink: 344 bytes leftover after parsing attributes in process `syz.3.170'. [ 196.756971][ T6640] netlink: 8 bytes leftover after parsing attributes in process `syz.3.170'. [ 199.407332][ T6655] loop3: detected capacity change from 0 to 512 [ 200.933553][ T6659] netlink: 344 bytes leftover after parsing attributes in process `syz.2.175'. [ 200.942901][ T6659] netlink: 8 bytes leftover after parsing attributes in process `syz.2.175'. [ 201.534054][ T6655] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 201.546842][ T6655] ext4 filesystem being mounted at /34/control supports timestamps until 2038-01-19 (0x7fffffff) [ 202.289939][ T5780] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 204.057095][ T6680] tipc: Enabling of bearer rejected, already enabled [ 205.003179][ T6690] loop1: detected capacity change from 0 to 512 [ 205.313595][ T6690] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 205.326748][ T6690] ext4 filesystem being mounted at /44/control supports timestamps until 2038-01-19 (0x7fffffff) [ 205.670716][ T5783] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 205.885312][ T6687] netlink: 4 bytes leftover after parsing attributes in process `syz.2.181'. [ 206.064894][ T6703] netlink: 4 bytes leftover after parsing attributes in process `syz.3.183'. [ 206.196682][ T6705] netlink: 4 bytes leftover after parsing attributes in process `syz.1.184'. [ 207.015926][ T6709] netlink: 416 bytes leftover after parsing attributes in process `syz.0.185'. [ 208.129356][ T6713] netlink: 344 bytes leftover after parsing attributes in process `syz.0.186'. [ 208.139428][ T6713] netlink: 12 bytes leftover after parsing attributes in process `syz.0.186'. [ 208.149154][ T6713] netlink: 8 bytes leftover after parsing attributes in process `syz.0.186'. [ 209.362450][ T6717] loop0: detected capacity change from 0 to 512 [ 210.494079][ T6717] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 210.506772][ T6717] ext4 filesystem being mounted at /49/control supports timestamps until 2038-01-19 (0x7fffffff) [ 210.739824][ T5782] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 212.590683][ T6742] netlink: 4 bytes leftover after parsing attributes in process `syz.1.192'. [ 214.741017][ T6754] netlink: 416 bytes leftover after parsing attributes in process `syz.3.195'. [ 216.480264][ T6773] netlink: 344 bytes leftover after parsing attributes in process `syz.1.199'. [ 216.489527][ T6773] netlink: 12 bytes leftover after parsing attributes in process `syz.1.199'. [ 216.498861][ T6773] netlink: 8 bytes leftover after parsing attributes in process `syz.1.199'. [ 217.355642][ T6769] netlink: 4 bytes leftover after parsing attributes in process `syz.2.197'. [ 217.418140][ T6763] netlink: 4 bytes leftover after parsing attributes in process `syz.3.196'. [ 217.555398][ T6776] tipc: Enabling of bearer rejected, already enabled [ 217.782314][ T6779] netlink: 4 bytes leftover after parsing attributes in process `syz.1.200'. [ 218.858302][ T6784] loop2: detected capacity change from 0 to 512 [ 218.982502][ T6784] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 218.995799][ T6784] ext4 filesystem being mounted at /56/control supports timestamps until 2038-01-19 (0x7fffffff) [ 219.291393][ T6789] loop3: detected capacity change from 0 to 512 [ 219.327484][ T5781] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 219.924209][ T6789] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 219.936999][ T6789] ext4 filesystem being mounted at /42/control supports timestamps until 2038-01-19 (0x7fffffff) [ 220.239394][ T5780] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 220.385182][ T6793] netlink: 4 bytes leftover after parsing attributes in process `syz.2.203'. [ 220.822834][ T6803] netlink: 416 bytes leftover after parsing attributes in process `syz.0.205'. [ 222.707686][ T6809] netlink: 4 bytes leftover after parsing attributes in process `syz.3.204'. [ 222.806553][ T6813] loop2: detected capacity change from 0 to 128 [ 222.992535][ T6815] netlink: 416 bytes leftover after parsing attributes in process `syz.0.208'. [ 225.687285][ T6834] netlink: 416 bytes leftover after parsing attributes in process `syz.2.213'. [ 227.017582][ T6840] loop2: detected capacity change from 0 to 128 [ 230.260535][ T6857] netlink: 416 bytes leftover after parsing attributes in process `syz.2.219'. [ 230.678452][ T6856] loop1: detected capacity change from 0 to 128 [ 231.689094][ T6871] netlink: 416 bytes leftover after parsing attributes in process `syz.2.222'. [ 232.870757][ T6869] netlink: 4 bytes leftover after parsing attributes in process `syz.3.220'. [ 232.976920][ T6880] loop1: detected capacity change from 0 to 512 [ 233.675349][ T6880] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 233.688320][ T6880] ext4 filesystem being mounted at /54/control supports timestamps until 2038-01-19 (0x7fffffff) [ 234.016852][ T6885] netlink: 416 bytes leftover after parsing attributes in process `syz.2.223'. [ 234.652593][ T5783] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 236.351633][ T6894] tipc: Started in network mode [ 236.356613][ T6894] tipc: Node identity fe80000000000000000000000000001, cluster identity 4711 [ 236.376982][ T6894] tipc: Enabled bearer , priority 10 [ 236.429133][ T6898] netlink: 344 bytes leftover after parsing attributes in process `syz.2.227'. [ 236.438628][ T6898] netlink: 8 bytes leftover after parsing attributes in process `syz.2.227'. [ 237.512216][ T5772] tipc: Node number set to 4269801488 [ 237.664068][ T6906] netlink: 344 bytes leftover after parsing attributes in process `syz.2.229'. [ 237.673408][ T6906] netlink: 12 bytes leftover after parsing attributes in process `syz.2.229'. [ 237.682749][ T6906] netlink: 8 bytes leftover after parsing attributes in process `syz.2.229'. [ 238.552403][ T6903] netlink: 'syz.1.228': attribute type 25 has an invalid length. [ 238.641706][ T6908] netlink: 416 bytes leftover after parsing attributes in process `syz.0.226'. [ 240.777493][ T6924] loop3: detected capacity change from 0 to 128 [ 244.582447][ T6938] loop3: detected capacity change from 0 to 128 [ 245.508497][ T6945] netlink: 416 bytes leftover after parsing attributes in process `syz.1.239'. [ 246.674910][ T6955] netlink: 344 bytes leftover after parsing attributes in process `syz.2.240'. [ 246.684629][ T6955] netlink: 8 bytes leftover after parsing attributes in process `syz.2.240'. [ 247.208629][ T6956] netlink: 324 bytes leftover after parsing attributes in process `syz.3.241'. [ 247.248125][ T6956] netlink: 8 bytes leftover after parsing attributes in process `syz.3.241'. [ 249.159241][ T6979] netlink: 8 bytes leftover after parsing attributes in process `syz.2.247'. [ 253.883575][ T7034] netlink: 8 bytes leftover after parsing attributes in process `syz.3.263'. [ 254.139307][ T7038] loop1: detected capacity change from 0 to 512 [ 254.224590][ T7038] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 254.266873][ T7038] ext4 filesystem being mounted at /68/control supports timestamps until 2038-01-19 (0x7fffffff) [ 254.404256][ T5783] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 255.966838][ T1284] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.988687][ T1284] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.962190][ T7074] loop0: detected capacity change from 0 to 512 [ 257.074048][ T7074] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 257.112477][ T7074] ext4 filesystem being mounted at /68/control supports timestamps until 2038-01-19 (0x7fffffff) [ 257.273860][ T5782] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 257.980731][ T7093] netlink: 8 bytes leftover after parsing attributes in process `syz.2.282'. [ 259.502865][ T7118] loop3: detected capacity change from 0 to 512 [ 259.575667][ T7118] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 259.590746][ T7118] ext4 filesystem being mounted at /55/control supports timestamps until 2038-01-19 (0x7fffffff) [ 260.025692][ T5780] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 260.382847][ T7126] netlink: 8 bytes leftover after parsing attributes in process `syz.3.292'. [ 263.700838][ T7166] netlink: 8 bytes leftover after parsing attributes in process `syz.2.303'. [ 265.624124][ T7187] loop3: detected capacity change from 0 to 512 [ 266.756517][ T7187] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 266.769636][ T7187] ext4 filesystem being mounted at /60/control supports timestamps until 2038-01-19 (0x7fffffff) [ 267.011370][ T5780] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 267.952151][ T7205] netlink: 8 bytes leftover after parsing attributes in process `syz.1.314'. [ 270.378356][ T7232] loop2: detected capacity change from 0 to 512 [ 271.419512][ T7232] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 271.432335][ T7232] ext4 filesystem being mounted at /96/control supports timestamps until 2038-01-19 (0x7fffffff) [ 271.779258][ T5781] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 272.144254][ T7244] netlink: 8 bytes leftover after parsing attributes in process `syz.2.324'. [ 274.874963][ T7272] loop3: detected capacity change from 0 to 512 [ 275.542935][ T7272] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 275.555853][ T7272] ext4 filesystem being mounted at /64/control supports timestamps until 2038-01-19 (0x7fffffff) [ 276.129000][ T5780] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 276.634107][ T7287] netlink: 8 bytes leftover after parsing attributes in process `syz.0.335'. [ 279.584224][ T7320] netlink: 8 bytes leftover after parsing attributes in process `syz.0.346'. [ 279.774345][ T7323] loop1: detected capacity change from 0 to 512 [ 280.781223][ T7323] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 280.794167][ T7323] ext4 filesystem being mounted at /90/control supports timestamps until 2038-01-19 (0x7fffffff) [ 281.034525][ T5783] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 284.508101][ T7363] netlink: 8 bytes leftover after parsing attributes in process `syz.1.356'. [ 285.107471][ T7377] loop0: detected capacity change from 0 to 512 [ 286.496309][ T7377] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 286.509591][ T7377] ext4 filesystem being mounted at /90/control supports timestamps until 2038-01-19 (0x7fffffff) [ 286.779528][ T5782] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 288.369864][ T7404] netlink: 40 bytes leftover after parsing attributes in process `syz.2.370'. [ 288.705894][ T7413] netlink: 8 bytes leftover after parsing attributes in process `syz.3.371'. [ 291.196061][ T7434] loop3: detected capacity change from 0 to 512 [ 396.157840][ C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 396.164816][ C1] rcu: Tasks blocked on level-0 rcu_node (CPUs 0-1): P5783/1:b..l [ 396.173055][ C1] rcu: (detected by 1, t=10502 jiffies, g=17305, q=330 ncpus=2) [ 396.181028][ C1] task:syz-executor state:R running task stack:21640 pid:5783 ppid:5777 flags:0x00004000 [ 396.192462][ C1] Call Trace: [ 396.195757][ C1] [ 396.198698][ C1] __schedule+0x14d2/0x44d0 [ 396.203231][ C1] ? mark_lock+0x94/0x320 [ 396.207588][ C1] ? asan.module_dtor+0x20/0x20 [ 396.212461][ C1] ? preempt_schedule+0xab/0xc0 [ 396.217325][ C1] preempt_schedule_common+0x82/0xc0 [ 396.222804][ C1] preempt_schedule+0xab/0xc0 [ 396.227488][ C1] ? schedule_preempt_disabled+0x20/0x20 [ 396.233113][ C1] ? __lock_acquire+0x7c80/0x7c80 [ 396.238151][ C1] preempt_schedule_thunk+0x1a/0x30 [ 396.243394][ C1] _raw_spin_unlock+0x3a/0x40 [ 396.248070][ C1] ? copy_page_range+0x2b4b/0x3600 [ 396.253192][ C1] copy_page_range+0x2b7c/0x3600 [ 396.258264][ C1] ? pfn_valid+0x450/0x450 [ 396.262948][ C1] ? mas_wr_store_entry+0x151/0x340 [ 396.268321][ C1] ? mas_store+0x34d/0x500 [ 396.272733][ C1] ? mas_empty_area_rev+0x1880/0x1880 [ 396.278092][ C1] ? up_write+0x1c3/0x410 [ 396.282405][ C1] ? anon_vma_interval_tree_verify+0x150/0x150 [ 396.288582][ C1] copy_mm+0x1124/0x1c20 [ 396.292854][ C1] ? copy_signal+0x680/0x680 [ 396.297440][ C1] ? lockdep_init_map_type+0xa1/0x880 [ 396.302823][ C1] ? __init_rwsem+0x122/0x160 [ 396.307494][ C1] ? copy_signal+0x556/0x680 [ 396.312169][ C1] copy_process+0x16d3/0x3d70 [ 396.316835][ C1] ? copy_process+0x945/0x3d70 [ 396.321606][ C1] ? __pidfd_prepare+0x140/0x140 [ 396.326811][ C1] ? vma_end_read+0x18/0x170 [ 396.331398][ C1] kernel_clone+0x21b/0x840 [ 396.335888][ C1] ? create_io_thread+0x140/0x140 [ 396.340914][ C1] __x64_sys_clone+0x18c/0x1e0 [ 396.345678][ C1] ? __ia32_sys_vfork+0x100/0x100 [ 396.350694][ C1] ? lock_chain_count+0x20/0x20 [ 396.355544][ C1] ? lock_chain_count+0x20/0x20 [ 396.360404][ C1] ? lockdep_hardirqs_on+0x98/0x150 [ 396.365601][ C1] do_syscall_64+0x55/0xb0 [ 396.370079][ C1] ? clear_bhb_loop+0x40/0x90 [ 396.374790][ C1] ? clear_bhb_loop+0x40/0x90 [ 396.379471][ C1] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 396.385380][ C1] RIP: 0033:0x7f74bf385453 [ 396.389816][ C1] RSP: 002b:00007ffe14de77c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 396.398226][ C1] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f74bf385453 [ 396.406350][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011 [ 396.414325][ C1] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000001 [ 396.422304][ C1] R10: 000055557fc1a7d0 R11: 0000000000000246 R12: 0000000000000000 [ 396.430379][ C1] R13: 00000000000927c0 R14: 0000000000046e6a R15: 00007ffe14de7960 [ 396.438562][ C1] [ 396.441582][ C1] rcu: rcu_preempt kthread starved for 10521 jiffies! g17305 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0 [ 396.452782][ C1] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 396.462960][ C1] rcu: RCU grace-period kthread stack dump: [ 396.468845][ C1] task:rcu_preempt state:R running task stack:26728 pid:17 ppid:2 flags:0x00004000 [ 396.479953][ C1] Call Trace: [ 396.483249][ C1] [ 396.486241][ C1] __schedule+0x14d2/0x44d0 [ 396.490974][ C1] ? _raw_spin_unlock+0x11/0x40 [ 396.495947][ C1] ? _raw_spin_unlock_irqrestore+0xae/0x110 [ 396.502131][ C1] ? asan.module_dtor+0x20/0x20 [ 396.506998][ C1] ? enqueue_timer+0x225/0x530 [ 396.511771][ C1] ? __mod_timer+0x984/0xdb0 [ 396.516478][ C1] schedule+0xbd/0x170 [ 396.521676][ C1] schedule_timeout+0x160/0x280 [ 396.526645][ C1] ? console_conditional_schedule+0x40/0x40 [ 396.533160][ C1] ? _raw_spin_unlock_irqrestore+0x86/0x110 [ 396.539253][ C1] ? update_process_times+0x1b0/0x1b0 [ 396.545012][ C1] ? prepare_to_swait_event+0x339/0x360 [ 396.550590][ C1] rcu_gp_fqs_loop+0x302/0x1560 [ 396.555543][ C1] ? rcu_gp_init+0x110e/0x1510 [ 396.560605][ C1] ? dyntick_save_progress_counter+0x2b0/0x2b0 [ 396.567329][ C1] ? rcu_gp_init+0x1510/0x1510 [ 396.572152][ C1] ? rcu_gp_cleanup+0xb4c/0xca0 [ 396.577056][ C1] ? _raw_spin_unlock_irq+0x23/0x50 [ 396.582271][ C1] ? lockdep_hardirqs_on+0x98/0x150 [ 396.587480][ C1] rcu_gp_kthread+0x99/0x380 [ 396.592293][ C1] ? rcu_report_qs_rsp+0x1a0/0x1a0 [ 396.597534][ C1] ? __kthread_parkme+0x7a/0x1c0 [ 396.602938][ C1] ? __kthread_parkme+0x162/0x1c0 [ 396.608161][ C1] kthread+0x2fa/0x390 [ 396.612393][ C1] ? rcu_report_qs_rsp+0x1a0/0x1a0 [ 396.617667][ C1] ? kthread_blkcg+0xd0/0xd0 [ 396.622357][ C1] ret_from_fork+0x48/0x80 [ 396.626859][ C1] ? kthread_blkcg+0xd0/0xd0 [ 396.631454][ C1] ret_from_fork_asm+0x11/0x20 [ 396.636392][ C1] [ 396.639397][ C1] rcu: Stack dump where RCU GP kthread last ran: [ 396.645717][ C1] Sending NMI from CPU 1 to CPUs 0: [ 396.651036][ C0] NMI backtrace for cpu 0 [ 396.651061][ C0] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 6.6.101-syzkaller #0 [ 396.651082][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 396.651089][ C0] RIP: 0010:ktime_get_with_offset+0xec/0x330 [ 396.651111][ C0] Code: 4a 8b 0f 00 eb ec e8 43 8b 0f 00 48 8b 05 cc 91 5e 0b 48 89 44 24 10 48 b8 00 00 00 00 00 fc ff df 48 8b 4c 24 18 80 3c 01 00 <74> 08 4c 89 f7 e8 1a d1 66 00 49 8b 06 48 89 44 24 08 e8 dd f9 ff [ 396.651122][ C0] RSP: 0018:ffffc90000007ad8 EFLAGS: 00000246 [ 396.651134][ C0] RAX: dffffc0000000000 RBX: 0000000000013110 RCX: 1ffffffff19a9391 [ 396.651144][ C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000 [ 396.651151][ C0] RBP: 0000000000000000 R08: ffffffff8e4a84ef R09: 1ffffffff1c9509d [ 396.651160][ C0] R10: dffffc0000000000 R11: fffffbfff1c9509e R12: ffff88805cd4b320 [ 396.651170][ C0] R13: ffff8880587a6750 R14: ffffffff8cd49c88 R15: 000000000000000a [ 396.651179][ C0] FS: 0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 396.651189][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 396.651198][ C0] CR2: 0000001b2d31cff8 CR3: 000000001a34f000 CR4: 00000000003506f0 [ 396.651210][ C0] Call Trace: [ 396.651215][ C0] [ 396.651223][ C0] __mac80211_hwsim_beacon_tx+0x1f9/0x550 [ 396.651244][ C0] mac80211_hwsim_beacon_tx+0x3e9/0x780 [ 396.651263][ C0] __iterate_interfaces+0x243/0x500 [ 396.651279][ C0] ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0 [ 396.651295][ C0] ? ieee80211_iterate_active_interfaces_atomic+0x2a/0x180 [ 396.651311][ C0] ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0 [ 396.651327][ C0] ieee80211_iterate_active_interfaces_atomic+0xdb/0x180 [ 396.651345][ C0] mac80211_hwsim_beacon+0xbb/0x1b0 [ 396.651361][ C0] __hrtimer_run_queues+0x51e/0xc40 [ 396.651378][ C0] ? hw_scan_work+0xf40/0xf40 [ 396.651395][ C0] ? hrtimer_interrupt+0x9c0/0x9c0 [ 396.651408][ C0] ? ktime_get_update_offsets_now+0x3d2/0x3f0 [ 396.651428][ C0] hrtimer_run_softirq+0x187/0x2b0 [ 396.651444][ C0] handle_softirqs+0x280/0x820 [ 396.651459][ C0] ? __irq_exit_rcu+0xc7/0x190 [ 396.651473][ C0] ? do_softirq+0x180/0x180 [ 396.651487][ C0] ? irqtime_account_irq+0xb6/0x1c0 [ 396.651505][ C0] __irq_exit_rcu+0xc7/0x190 [ 396.651518][ C0] ? irq_exit_rcu+0x20/0x20 [ 396.651533][ C0] irq_exit_rcu+0x9/0x20 [ 396.651544][ C0] sysvec_apic_timer_interrupt+0xa4/0xc0 [ 396.651564][ C0] [ 396.651567][ C0] [ 396.651572][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 396.651593][ C0] RIP: 0010:pv_native_safe_halt+0x13/0x20 [ 396.651611][ C0] Code: cc cc cc cc cc cc cc f3 0f 1e fa 0f 0b 66 2e 0f 1f 84 00 00 00 00 00 f3 0f 1e fa 66 90 0f 00 2d 83 16 3b 00 f3 0f 1e fa fb f4 cc cc cc cc cc cc cc cc cc cc cc cc 66 0f 1f 00 55 41 57 41 56 [ 396.651620][ C0] RSP: 0018:ffffffff8ca07d80 EFLAGS: 000002c2 [ 396.651631][ C0] RAX: 35ca1f5cf31e5500 RBX: ffffffff81619a6b RCX: 35ca1f5cf31e5500 [ 396.651640][ C0] RDX: 0000000000000001 RSI: ffffffff8aaaba40 RDI: ffffffff8afc6780 [ 396.651649][ C0] RBP: ffffffff8ca07eb8 R08: ffff8880b8e36d4b R09: 1ffff110171c6da9 [ 396.651658][ C0] R10: dffffc0000000000 R11: ffffed10171c6daa R12: ffffffff8e4a84e8 [ 396.651667][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 1ffffffff1952670 [ 396.651677][ C0] ? do_idle+0x1eb/0x510 [ 396.651695][ C0] default_idle+0x13/0x20 [ 396.651714][ C0] default_idle_call+0x6c/0xa0 [ 396.651732][ C0] do_idle+0x1eb/0x510 [ 396.651749][ C0] ? idle_inject_timer_fn+0x60/0x60 [ 396.651769][ C0] ? do_idle+0x5/0x510 [ 396.651784][ C0] cpu_startup_entry+0x43/0x60 [ 396.651799][ C0] rest_init+0x2e2/0x300 [ 396.651810][ C0] ? time_init+0x40/0x40 [ 396.651828][ C0] arch_call_rest_init+0xe/0x10 [ 396.651846][ C0] start_kernel+0x459/0x4e0 [ 396.651866][ C0] x86_64_start_reservations+0x2a/0x30 [ 396.651883][ C0] x86_64_start_kernel+0x60/0x60 [ 396.651899][ C0] secondary_startup_64_no_verify+0x179/0x17b [ 396.651923][ C0]