last executing test programs: 3.771379725s ago: executing program 0 (id=1): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$RTC_WKALM_SET(r1, 0x4028700f, &(0x7f0000000080)={0x1, 0x0, {0x3, 0x0, 0x0, 0xa, 0x0, 0x64}}) sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000005c0)={{0x14}, [@NFT_MSG_NEWRULE={0x60, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x34, 0x4, 0x0, 0x1, [{0x30, 0x1, 0x0, 0x1, @dynset={{0xb}, @val={0x20, 0x2, 0x0, 0x1, [@NFTA_DYNSET_SREG_KEY={0x8, 0x4, 0x1, 0x0, 0x3}, @NFTA_DYNSET_OP={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_DYNSET_SET_NAME={0x9, 0x1, 'syz1\x00'}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x88}}, 0x0) syz_mount_image$cramfs(&(0x7f0000000000), &(0x7f0000000180)='./file0\x00', 0x10880, &(0x7f0000000480)=ANY=[], 0x1, 0x15b, &(0x7f0000000580)="$eJzskD1rWlEch5/Te32h1WrBgi20FDr00mJ9w24dtFTq0AotLp2EeqWCVlEobm0C2TLkAzgkCJnEIWTMYMxkohDMp8ggZBAyhJBw7r1BDH6E82zn+f/+L/d+/jgxCIKGzad6rdE0Wy2z9Op7/mv2x97+wWPpPYDXStQaTRkuWY/rQRp+AwMdZmu2PvK7KVeq5vtf9ap8z9JgAJlHUK64OMfOPpQuhJWNO854DcOntkuscEnHPdchE7CcPI2bHXgj5z1ZzJsD7c67fu/423iUi7zdfaGxkXM+lIV/aW4mss+6vrBGwRQChOw7i44ip9F+bzoZe52WxIdkLB6Lpab5k3Eu9X8L/YvvL/wUy3vcbqAA6wI6AnpWfXYl/MBw+zJfC3hCwMWfIIh259/hXUV3FlkV+XuKYVe3GAo+QDPkVcvMcd1XCoVCoVAoFAqFQqFQrOQ2AAD//80bY1k=") execve(&(0x7f0000000080)='./file2\x00', 0x0, 0x0) 2.566306065s ago: executing program 0 (id=6): openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0) sendmmsg$sock(0xffffffffffffffff, &(0x7f0000001500)=[{{0x0, 0x0, &(0x7f0000000300)=[{0x0}, {&(0x7f00000005c0)="f2", 0x1}], 0x2}}, {{&(0x7f0000000600)=@can, 0x80, &(0x7f0000000680)=[{&(0x7f0000000980)="d542f6300b61ca7913e7cd7b4036afcfddb3c77fc63db30ef223f1cc4fcdcbb56655be4873ea15e1a9d348fadc935180e702560acae65d42d95f6ddcae59879a1ce7e78eb197a0c8231a504b2614ac6dfd9a5760fe75ba4204694d382eb51806597cde99cedde3f0edd8bd3fce154f83e47f422d0e5bf427c23771a122bd", 0x7e}, {&(0x7f0000000780)="92bdcafd7ac9e21583ea71b9eb5feeb69b7eeb919260393d59069611e6d460fd38481da64e5ad543477ed7b768b1a06c0a5d60edf6c5610c123e3572a7c3bd74b7bd876c6f1c54709ef06cb9187fa5ddecc04cdc8fd3e74782c0aa0579531662e6d5fcdddc53becdd0b8a59c3a97fe428e75e7707525647bd822", 0x7a}, {&(0x7f0000000580)}], 0x3, &(0x7f0000000b40)=[@timestamping={{0x14, 0x1, 0x25, 0x2d}}, @timestamping={{0x14, 0x1, 0x25, 0x101}}, @timestamping={{0x14, 0x1, 0x25, 0x7}}, @timestamping={{0x14, 0x1, 0x25, 0xc}}], 0x60}}, {{0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000000bc0)="e7bc2f4799fe560c31cf5a20a1b22fb77ce7f19e605b6a8d2645af02e63f9a9d7ba31907ccc0f4aa71ec0762b3a8e3332fe3603b4624ac6a578ccd9a27b381a8dad12b3e3de940a99238945935184cd93dd174b70ecb9c3c99d2df9dd0cbef6a9e230f7dd8367384f034a7a011388990e94cd43e9f80ec3358dc596926960604b9f051", 0x83}, {&(0x7f0000000c80)="6c3e28dcd5c7eb9bc39a4bbc398357f3ad842b38a95863911bbd6e6afd9641d356", 0x21}, {&(0x7f0000000d00)}, {&(0x7f0000000fc0)="c6eae69212ba50dd664af774c32d34273a3baad9692140de74d9294c555a8c2e0d53acea79b788b5eb1a12ada1", 0x2d}, {&(0x7f00000010c0)="978d1129fddf5e2f1be8be48f935ef4f71893a57f79be3e44522d3987ccee23f4e717d8c8e14573937040fb658a24f1c9e0c7f98a24fa1209a6ea754e1244234c715713d120b6929614443fd6b4223bc04c3a8c9241ccbb6a8b0bb19fe4eedae48642a74e97588dc36bf06a4c1fb17b47b39240a6a8e9b5daa97e63d777e665841a349c52022252eafc1c129e154ab390624dd7fb8ac1e44c203140d6aab524f61cd8642ee0f380ebb21dc9267a8fbefa6eec89ff97e7800f44f89b17d43206217941c34067892c05465382550a1da2519", 0xd1}, {&(0x7f00000011c0)}], 0x6, &(0x7f00000014c0)}}], 0x3, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$alg(0x26, 0x5, 0x0) bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58) ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000001c0)={{0xeeee8000, 0x4, 0x3, 0xf1, 0x5, 0xfa, 0xd4, 0x6, 0x0, 0x4, 0x7, 0x4f}, {0x5000, 0x2, 0xd, 0x9, 0x8, 0x3, 0xb, 0xb, 0x5, 0xf, 0x3, 0xc0}, {0xffff1000, 0x9000, 0xb, 0x1, 0x2, 0x7, 0x4, 0x4, 0x81, 0x0, 0x6, 0x5}, {0xeeee8000, 0x2000, 0x8, 0xf8, 0x3, 0x46, 0x2, 0xd, 0x6, 0xf3, 0x8, 0x1}, {0x100000, 0x4000, 0x9, 0x9, 0x3, 0x9, 0xd, 0x6, 0x5, 0x9, 0xc, 0x4b}, {0x6000, 0x0, 0x4, 0x4, 0x3, 0x7d, 0x1, 0xff, 0x4, 0x90, 0x1, 0xfc}, {0x8000000, 0x4000, 0x0, 0x9d, 0x3, 0x0, 0x0, 0xb, 0x5, 0x7, 0x9, 0xf8}, {0xf7f63004, 0x8000000, 0xf, 0x5, 0x7, 0x3, 0xa, 0x9, 0x54, 0x1, 0x2, 0x7}, {0xdddd1000, 0x5}, {0x4, 0x9}, 0x40030000, 0x0, 0x80a0000, 0x300, 0x1, 0xa901, 0xe6e70c00, [0x3, 0x401, 0x7, 0xc5]}) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6) r3 = accept4(r2, 0x0, 0x0, 0x800) sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800) recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil}) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0) pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="ea7c5828b87d70214008724bcae1ce6577c01031b19698ecb8a7f5183947918ce2cc9dc778dbfff9e28e1a6df7d8f95c3e45768a6786d6325bc0fe4ed394c8ed0edcbb9f917074251a7f5b6b24c52516a68f181592262dfd12b5af7386658c5fb6c36d86d5084624a302a155c0463b6c36e9fc88338b0f66e2713728a21d19d9a33da93d419df63d8a87fa100381ec74de8b7409f4977d3cd7a9f2fb03cec91c4277b39b2c9f227a9b74926a11960d085e2aaf98673d2a67fa95b8d9dcc72ca6181f6b9b2d1c402267e6cfef5599e1520077d9bc472fb5a5db42b1befd498ec7b8d519b12f065323b15280a2540bc7a4ffe508fc12f93707064caf4111e893142f9867b432b1e6258caa2ae081b8b646c25de7f5366a21f9dd257b84546cd316e17b79d22c4bcaf70e8a96d1e502b53c581c75482d1d63f0d5f3fb5bdbb714583f0798e0c4d6c9d99513e91a68a26612053290f15f5a2e06acfa229356e37b4d57697224e9561c0430a67fcb5dea72acc91e60751a5b07eb603548a646f082ce213347b4ee908bd95cc56775330aa09d4f19f48a8cb5d7f6346d82bab8ff019309684bd01eb4d90febe2269cd2a1100130c242a2995ce38638a3bbc9008ac0e820a1e0b9a9511af47aa7f3e30a69589985423f3b4ea98152433bf1aa53a0981f783f11c4cc50f70fe63b2043b74b9cb7da59caedadc1fa1f662831a353969893d4f93b919cda52a1ce2200a0a7895abb293c29d6d197cce98a4df8fc90c582014742a00b4bd09f1fcc5ff5753320d2b5593e657c0fb87a4cfa323ce59111eea806a6e020fb0c4fdd601087811e33e793975b5e9e936c16d243bdea757e0ee4508f5d5b496ed07b6f0f1f46ed752448f30d679b23ba8142d4ab25beb913ee77547866e5d9501a55e9797ba3407f3f4cc11398bdaf3ac4c2e79a5b133a09fcf8ae790bb985fa01daf2758fd8a77fde15a822227dddf64bb2ebc49a56ad025e01c6c59e4818abdf808789d9f87c103cf7f7d21d2a1345b9b7fd66b1cf96002343fbd62f8080d945e70bd93d4bf42b401477abed49065b4a8ccfb9d93724118168de2e8df4f78ccf3b9593f993423a619ef6bd8392a2cfc6424d3687fcdc67d33073db95d856f312b934d05a3c4e967217837920fee73b00757b617d1ef3bfc2e88a8a72f0948263db2c9e7bd491f059b6ee8d0ea3f2193314562910529869b248172bfe0f914f7a91a27c6e9e6c2e3455a7ae765392b48fc959958aa39a5a483b2a6e873ac76f8579515e42f7a3bbc82bcf71edaf12f7b40a2adc74d67ef793988cc8ac788185049e57fb84757bdc700ffde10afc19df290787ed98222f8afb2b6d11944666331350e2914466b398750acae526146373b2cbe1bdd1803e6c920a182a1ad118a3d09313c2ce2703a0a1c09215cab90c35b03b1c795cf704f42dd31ddff6be67bb355977b2e07609c5228299a170308e54705674384fc294cdfa4abf989d3c3bf3eabbbcf52a6a0646bf6db5b61ad027007464fd6fc10490ee2e9190c28ae5cb3733105cb782c0d53e5c79c3e455609d557d824154d01e282788ec8ae7c8a03fcd6cd4e37829b0f921c46d715454d5e1281c641cf0756a2f31b0369ce94e819e6254af95b88bffd7bb2cfe9469d303497fead174839b2789b5aa703176510eab1f46916b3b63f6f5b2df262fe7274a0cee9bd6e115e5f9f48ac1c09e5b3c546ae95b9916a633869854d3ee39d4acb800e876e7fc084ffd79a20fca8331caff657ec89b445c6012ff7eb9531eb1e8c90cdc66b82d6fd608310099503a9dcf50b40d10a3b1ab520477e20ad5f6405cd4b5b36d201e12088d7868c6e94737ea88db6ed5f7df4d31cbd2d0c4f21cdcc3b181f5aae7216dc4c06b2989bb44e5369ba96ce87f3e3abbb530d103a53d7e0b914115c302c935eea7d256a73aa851d84dec6d9112163be8135889c67fa90e796a6f050fba0a6a740618cd513748072daac9f3e25034772cc400a14834afbde835bc9fd7cf1113d67ebe99a3b78907596886ad5a1670ef572c18e26c98fe40194428de339cba7b8efc5fa7faf7512ef6b89a877f3e534fb4512729df686e14aece08fab3b42ea14acde0e18ffe5dc00e74288661c7463e00f3b942cddf3b71e1dcf71989f378b933df099316451cca296a4e117bbeb3b1e552e5a10f9731449ae830de14989049ce818f720e77e78a86c307c80450b26278bc25ee7390ce6d4c4dfc8d39b6b4b1ce6f3865dbdd1d37aedb555288bea9ef95c8600dea1cd10e9e42d15aa804f99a31bfaa5ea52185333d734c766e3bb4a9abf86cf4d840dc188167a25cc3054b65fd7ce053d38518474ab55e59c1ccaf34d57b4cd73b07ed63d754ab3d57dfc0f67bbdb22e33d9f63aa2b36cf0af338794d4acbd1b13669bde67f7bd032f9c6b400e8054a0cff77fc6e0591195b21715e42c881e23156b4ba504d7e1b6eb9c2ec9b9e382d85f7c52bd964d305da9496dbaa022880ddf236730c458f31258d64ae2668aa863b3fe558c7f8cfb3dabf42edcaf2891e9b9462c44153658eae85cd499abd9dca762adf26d9904d28b772b3fc3d066d56261474c944387ac7eb00059025ff25e34b8f7c2986db1ccc4297e1315c3ceeef1b8f98e0500bbb8bb0ab52d80f8c6c8fa5d24b9a05f5350e2fd59af4b9fa9a2b4339b61e208f227ba968d4dbd36246133de2078c6a15dd57754a3537c31d04da545f062dbf9cbaa0840e23974f441a4d5937fec23ff81c193bd951a7bacac8eb6d4705702cbe3c930f27869753ba6026455bbb7742c53644f1646d7545467091a207905f831505f214fbd818aea4455705b5e727850cdcac40620135b8dba85cb0c0f393af252ec082cba5c43385fbc2cc5682bc1994b064e29c8c5a20e7e6d15fbb13e6fd1a86b2fda666fbcd80fd08be00a7423fcafbdd8283bac88ead203bc10d1c1a13ca2fe853fa6cc8991b0476561be085b086b0d0e45f73e59f519342c13f368a37464cb55b8a13846f4cd610536d5c4b8704fcd347abe6712d3de67d7918e6954898f31647a8ea37ecc2e1bb02b1b26e7a60fbb2b0a48efc5795c12d5c4ac8dc4149dea0f2e085422ec69352882622711b74e1e32c7ead2cf3c554e8ff1648e8b66d0dc6997b6304b3b560a33d75aa49476175a386ca721156ea79bdba432d439dbceb0285561abd5d134badd9f38c04fae8fa920edfff15705371c907848c14acdfb0b22a4c7168e1840e8b8a50349dcee5f429b3cb34e30f0f67acf93604792b8574f36ea9409d422621f3c0c7b781fc8e23d1d46f04a9b44f633e5f72cb079fbde66a9745705666c6dab6238628e57ee6cffa8cfad616dac1abe2789c9efccb4fc7e65e490d9a4e49e7ce72a6980e72f70a17649e67de86f86b61a4b6219daefc939b5904e5712ecaf85c98484fc02585b1aa990b95173e4a2907cf877af696e528e6b2b634a4fb7d791cacc8644fa76e062148d411e18f0da5aed22116828cd700a28e8f46bca950550acb4ab05eddeb6b2dac24702cff4de0a3ece393cac879ed2f0c5b9645839cfdb79fb1df87596b14504cba9dddda51edaffcd0214b91b5898ea022774e699aa0caf0f646cc0cb8e8fc8b8be43c23aa7f6bd29fd0615c0b78f3514a52989d7f35ad08a4bd473e61da6657cc2e85d3b2b7d3fb51174a96f27038ddbc87a35e09a668e436aa40146c6a26dca87b39220f139b772719d80aadb752c622bf09acd6846838fb48a8817ba4aa72eaa32e82251b3789969d8518f9aa07cdcb9a355f73f119725c086168aaca262f13cd742e5f06c969a462638a557e15a4f5d43e3242c08f23b00d2b8d57c60d3636abd4068ec03a4be3429b95e41351ab5c58812e552df90c3e6c9d8779aa484e74f073ea9fcdce13b1dff8e7c101b2c6865c5cefe108e3559f520e2bc42c9dc39b57fddb44ca49f2689e10c1381c0740d20cbca46da475c62f513cb08398a5fd5d4f6b13ce839fe149df0d291a8f7267fe90a7e1845dace17cd927c2d1aeffbdc36bb983172ceff025e84b0419645fcc72897b992f5081c78756122391947f08ccd20806cfc2bded705b472fc52e84734e016cbd309aadebbbb4e8bdfed77b1e0b15ce0904838d9e4d64643df66f0353c377e554b428dc0f31189a134cdb8e66d2755e84c2b2409c3d63a81f5f05616baf6a243b09153a4f8289e15a5a4ffb007b0cbeffde25391bb2acd86b453e245643c0fa1dfe5d42e0e3f1c592a00b77f0133adf7989c6c2bf3ddc0b8a2b14f35d33f62f4ee2fc56166372058e997b9abe6bad8aa718f8d87ad095e8f354aaef540840437b5451771266a8358ed75954db52b38bca4a1c8696dca1de03b12627254409f8bb68c94eeaa1a8bcf894482b96e81b9ff5c2383a907537a191aff0bb5b5418ef5670cecca1cfbd41b61879b11a5a5053cd86cf5d61f8c2f7d7ad2034a1801b3b92a79ac3b4343c680008b1ba10577a35173cac6d4dbc1d00e436f238b57093b34d4ea19c225b84a2d6086cc6cf72595b980c88142d268bbf9c8375a93afe75c3583b3b9687368d78147985d209e6d89c335e948c51696a948f01ad062dcf84a99584466e24646b2e441fefb10ef962432f2925d6d98e790acf4ca7d9339a589a537aa3392ec79f34a6544144072ab8248e45ac560a78c70c5afcbf10909299dfcd67981c88780c1340c951e115ffec56d23b9ead6a55024e199238f4b133e3e1e0e84318b5037a3947ae09749c25c7e4887936ecf0ba9a807dfa471ea1f3350b70feb58dc9e2836365ce4db456a341e43410cac1253fe08e79c21fca932716f4c171fc957cb325737b70532d81f0eb2f0a16478c0d934165728f7b29a8a0ff6bc964e99dea26d3efd28336b00c112a26da7a2ea1c21a9688cc3a68293958edf27ae89e5f9b8348af4121028e760cf68c931af92906d27dad4d330df9201b5395ccce0c803806422883667ccb11438d9dbe1901d4ab98d89914b313338486deb6f748053517e2188c479adb1eabb8e8ed5d05bb3f66826fae83bbc5bce3615ee32d937ffbe8846a1156aaf7bf9b9d4189bdf290b3df254077688eeda824d6ea0a452f7e7f915c1a94ee250a3907ec035d7ba7bb0256811f04646ca156b8925506c774df4d4072c02929e985057a5f7ddc1469c7306e6fdb86b810ada1cc96f6bd389597dd27dd656f55c316fb2d56b2d13eddf893722e813934a19778719be99697c365222db64039f9caab1201c430e53df1af8a0321c8759fc33e8204150080979936d0717f6c4c9145fb828389acbb894a4600485e8b105c7165a40e814889343deead6d434a8da60eed1e50aa507ac2793b4a4c5517265f859f223bb4f6cadc6fb53430304baea18189e2b5ddd266c38f5c325ba391a50fcd34060d217c4118889c4275e40a8428099ddfa3cc0d8241c22fc1554318e922f3b1257f2046d70df460c5283a539487583ffca1972a19237b06480e0a56d9e185fe4dc3607666d81ed0d9d9f5c5c568a5a0a87160b6d35c73dae9c6177f2b25d90a2598042f4b43bc765fa86a831c401a01c391a8fdc8f8c742f2322a1b8ef18ec7d82f013893c981f6bd96ec57d8e73e1633ae3970721fcea055ecc836ce3", 0xf91}], 0x1, 0x1, 0x2) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 891.280614ms ago: executing program 0 (id=7): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x80041, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x1) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fff000/0x1000)=nil}) ioctl$KVM_SET_MEMORY_ATTRIBUTES(r1, 0x4020aed2, &(0x7f00000000c0)={0xf000, 0x10000, 0x8}) 830.528857ms ago: executing program 3 (id=4): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) r2 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0x1}, {0xffff, 0xffff}, {0x0, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x1, 0x8}}}]}, 0x38}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfe, {0x0, 0x0, 0x0, r3, {0xfff2}, {}, {0xb, 0x2}}, [@filter_kind_options=@f_flow={{0x9}, {0x10, 0x2, [@TCA_FLOW_EMATCHES={0xc, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x405}}]}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0x4000040}, 0x2008c010) 129.600863ms ago: executing program 0 (id=8): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x2ca}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x18000000000002a0, 0xf, 0x0, &(0x7f0000000680)="b90103600040f000009e0ff008001f", 0x0, 0x104, 0x6000000000000000, 0x0, 0x0, 0x0, 0x0}, 0x50) 0s ago: executing program 1 (id=2): r0 = socket$inet6(0xa, 0x2, 0x0) r1 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), r1) getsockname$packet(r1, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14) sendmsg$nl_route(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="380000001000370400"/20, @ANYRES32=r2, @ANYBLOB="8304000000000000180012800b000100697036677265000008000280040012"], 0x38}, 0x1, 0x0, 0x0, 0x20009054}, 0x0) sendmmsg$inet(r0, &(0x7f0000000880)=[{{&(0x7f0000000580)={0x2, 0x4e1c, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r2, @empty, @multicast1}}}], 0x20}}], 0x1, 0x4880) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.155' (ED25519) to the list of known hosts. [ 158.232587][ T5758] cgroup: Unknown subsys name 'net' [ 158.356916][ T5758] cgroup: Unknown subsys name 'cpuset' [ 158.376476][ T5758] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 163.907833][ T5758] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 168.006856][ T5778] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 168.016028][ T5778] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 168.025861][ T5778] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 168.051966][ T5778] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 168.062800][ T5778] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 168.118559][ T5072] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 168.126877][ T5072] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 168.135791][ T5072] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 168.146267][ T5789] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 168.162178][ T5792] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 168.170834][ T5792] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 168.183375][ T5792] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 168.186942][ T5790] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 168.196434][ T5792] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 168.199280][ T5790] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 168.207666][ T5792] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 168.223120][ T5792] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 168.236793][ T5792] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 168.253093][ T5778] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 168.271244][ T5778] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 168.286696][ T5792] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 168.287797][ T5778] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 168.302641][ T5778] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 168.346724][ T5792] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 168.366990][ T5792] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 169.511865][ T5776] chnl_net:caif_netlink_parms(): no params data found [ 169.831874][ T5779] chnl_net:caif_netlink_parms(): no params data found [ 169.860751][ T5781] chnl_net:caif_netlink_parms(): no params data found [ 169.899974][ T5783] chnl_net:caif_netlink_parms(): no params data found [ 170.158585][ T5792] Bluetooth: hci0: command tx timeout [ 170.317647][ T5792] Bluetooth: hci1: command tx timeout [ 170.317696][ T5072] Bluetooth: hci2: command tx timeout [ 170.341049][ T5782] chnl_net:caif_netlink_parms(): no params data found [ 170.397595][ T5792] Bluetooth: hci3: command tx timeout [ 170.397643][ T5072] Bluetooth: hci4: command tx timeout [ 170.449443][ T5776] bridge0: port 1(bridge_slave_0) entered blocking state [ 170.457466][ T5776] bridge0: port 1(bridge_slave_0) entered disabled state [ 170.465024][ T5776] bridge_slave_0: entered allmulticast mode [ 170.489047][ T5776] bridge_slave_0: entered promiscuous mode [ 170.527886][ T5776] bridge0: port 2(bridge_slave_1) entered blocking state [ 170.535648][ T5776] bridge0: port 2(bridge_slave_1) entered disabled state [ 170.544613][ T5776] bridge_slave_1: entered allmulticast mode [ 170.552899][ T5776] bridge_slave_1: entered promiscuous mode [ 170.806437][ T5776] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 170.916114][ T5776] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 170.994399][ T5779] bridge0: port 1(bridge_slave_0) entered blocking state [ 171.002226][ T5779] bridge0: port 1(bridge_slave_0) entered disabled state [ 171.010296][ T5779] bridge_slave_0: entered allmulticast mode [ 171.019062][ T5779] bridge_slave_0: entered promiscuous mode [ 171.053462][ T5783] bridge0: port 1(bridge_slave_0) entered blocking state [ 171.061051][ T5783] bridge0: port 1(bridge_slave_0) entered disabled state [ 171.069045][ T5783] bridge_slave_0: entered allmulticast mode [ 171.077202][ T5783] bridge_slave_0: entered promiscuous mode [ 171.124656][ T5779] bridge0: port 2(bridge_slave_1) entered blocking state [ 171.132596][ T5779] bridge0: port 2(bridge_slave_1) entered disabled state [ 171.140504][ T5779] bridge_slave_1: entered allmulticast mode [ 171.150156][ T5779] bridge_slave_1: entered promiscuous mode [ 171.190705][ T5783] bridge0: port 2(bridge_slave_1) entered blocking state [ 171.201332][ T5783] bridge0: port 2(bridge_slave_1) entered disabled state [ 171.209804][ T5783] bridge_slave_1: entered allmulticast mode [ 171.218624][ T5783] bridge_slave_1: entered promiscuous mode [ 171.229650][ T5781] bridge0: port 1(bridge_slave_0) entered blocking state [ 171.237994][ T5781] bridge0: port 1(bridge_slave_0) entered disabled state [ 171.245446][ T5781] bridge_slave_0: entered allmulticast mode [ 171.254106][ T5781] bridge_slave_0: entered promiscuous mode [ 171.292239][ T5776] team0: Port device team_slave_0 added [ 171.322437][ T5781] bridge0: port 2(bridge_slave_1) entered blocking state [ 171.330146][ T5781] bridge0: port 2(bridge_slave_1) entered disabled state [ 171.337960][ T5781] bridge_slave_1: entered allmulticast mode [ 171.346034][ T5781] bridge_slave_1: entered promiscuous mode [ 171.409077][ T5776] team0: Port device team_slave_1 added [ 171.468626][ T5779] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 171.538106][ T5783] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 171.579027][ T5779] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 171.588935][ T5782] bridge0: port 1(bridge_slave_0) entered blocking state [ 171.596356][ T5782] bridge0: port 1(bridge_slave_0) entered disabled state [ 171.604393][ T5782] bridge_slave_0: entered allmulticast mode [ 171.613006][ T5782] bridge_slave_0: entered promiscuous mode [ 171.651415][ T5783] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 171.668623][ T5781] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 171.703734][ T5782] bridge0: port 2(bridge_slave_1) entered blocking state [ 171.728658][ T5782] bridge0: port 2(bridge_slave_1) entered disabled state [ 171.736257][ T5782] bridge_slave_1: entered allmulticast mode [ 171.769061][ T5782] bridge_slave_1: entered promiscuous mode [ 171.781037][ T5776] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 171.788235][ T5776] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 171.814605][ T5776] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 171.859317][ T5781] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 171.916597][ T5776] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 171.924025][ T5776] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 171.950471][ T5776] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 172.015576][ T5779] team0: Port device team_slave_0 added [ 172.069518][ T5783] team0: Port device team_slave_0 added [ 172.104600][ T5779] team0: Port device team_slave_1 added [ 172.118189][ T5782] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 172.139579][ T5782] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 172.154927][ T5783] team0: Port device team_slave_1 added [ 172.192134][ T5781] team0: Port device team_slave_0 added [ 172.237559][ T5792] Bluetooth: hci0: command tx timeout [ 172.296765][ T5781] team0: Port device team_slave_1 added [ 172.371974][ T5783] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 172.379369][ T5783] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 172.398353][ T5792] Bluetooth: hci2: command tx timeout [ 172.406824][ T5783] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 172.411232][ T5072] Bluetooth: hci1: command tx timeout [ 172.428885][ T5783] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 172.435909][ T5783] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 172.462402][ T5783] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 172.477656][ T5072] Bluetooth: hci3: command tx timeout [ 172.483561][ T5792] Bluetooth: hci4: command tx timeout [ 172.502653][ T5779] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 172.509975][ T5779] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 172.536388][ T5779] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 172.561890][ T5776] hsr_slave_0: entered promiscuous mode [ 172.570408][ T5776] hsr_slave_1: entered promiscuous mode [ 172.585917][ T5782] team0: Port device team_slave_0 added [ 172.633772][ T5779] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 172.641812][ T5779] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 172.668818][ T5779] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 172.704117][ T5782] team0: Port device team_slave_1 added [ 172.737135][ T5781] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 172.744479][ T5781] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 172.770913][ T5781] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 172.848129][ T5781] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 172.855237][ T5781] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 172.882629][ T5781] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 172.937111][ T5782] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 172.944356][ T5782] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 172.971017][ T5782] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 173.048442][ T5782] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 173.055577][ T5782] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 173.082641][ T5782] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 173.137023][ T5783] hsr_slave_0: entered promiscuous mode [ 173.145455][ T5783] hsr_slave_1: entered promiscuous mode [ 173.153411][ T5783] debugfs: 'hsr0' already exists in 'hsr' [ 173.159374][ T5783] Cannot create hsr debugfs directory [ 173.308400][ T5779] hsr_slave_0: entered promiscuous mode [ 173.316824][ T5779] hsr_slave_1: entered promiscuous mode [ 173.324886][ T5779] debugfs: 'hsr0' already exists in 'hsr' [ 173.330874][ T5779] Cannot create hsr debugfs directory [ 173.371908][ T5781] hsr_slave_0: entered promiscuous mode [ 173.380618][ T5781] hsr_slave_1: entered promiscuous mode [ 173.388467][ T5781] debugfs: 'hsr0' already exists in 'hsr' [ 173.394322][ T5781] Cannot create hsr debugfs directory [ 173.551869][ T5782] hsr_slave_0: entered promiscuous mode [ 173.561363][ T5782] hsr_slave_1: entered promiscuous mode [ 173.569937][ T5782] debugfs: 'hsr0' already exists in 'hsr' [ 173.575872][ T5782] Cannot create hsr debugfs directory [ 174.325593][ T5792] Bluetooth: hci0: command tx timeout [ 174.477537][ T5792] Bluetooth: hci2: command tx timeout [ 174.477577][ T5072] Bluetooth: hci1: command tx timeout [ 174.557751][ T5792] Bluetooth: hci4: command tx timeout [ 174.559015][ T5072] Bluetooth: hci3: command tx timeout [ 174.580156][ T5776] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 174.622104][ T5776] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 174.653324][ T5776] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 174.687746][ T5776] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 174.799643][ T5783] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 174.831386][ T5783] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 174.851199][ T5783] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 174.883598][ T5783] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 175.020402][ T5779] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 175.057072][ T5779] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 175.075490][ T5779] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 175.106811][ T5779] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 175.384186][ T5781] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 175.415052][ T5781] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 175.432394][ T5781] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 175.459126][ T5781] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 175.739011][ T5782] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 175.794222][ T5782] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 175.813491][ T5782] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 175.856423][ T5782] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 175.955805][ T5776] 8021q: adding VLAN 0 to HW filter on device bond0 [ 176.129663][ T5776] 8021q: adding VLAN 0 to HW filter on device team0 [ 176.205106][ T57] bridge0: port 1(bridge_slave_0) entered blocking state [ 176.212554][ T57] bridge0: port 1(bridge_slave_0) entered forwarding state [ 176.258653][ T5783] 8021q: adding VLAN 0 to HW filter on device bond0 [ 176.282567][ T57] bridge0: port 2(bridge_slave_1) entered blocking state [ 176.289961][ T57] bridge0: port 2(bridge_slave_1) entered forwarding state [ 176.397881][ T5072] Bluetooth: hci0: command tx timeout [ 176.459318][ T5779] 8021q: adding VLAN 0 to HW filter on device bond0 [ 176.495076][ T5783] 8021q: adding VLAN 0 to HW filter on device team0 [ 176.561776][ T5072] Bluetooth: hci2: command tx timeout [ 176.562165][ T5792] Bluetooth: hci1: command tx timeout [ 176.586668][ T57] bridge0: port 1(bridge_slave_0) entered blocking state [ 176.594108][ T57] bridge0: port 1(bridge_slave_0) entered forwarding state [ 176.638379][ T5792] Bluetooth: hci3: command tx timeout [ 176.643877][ T5072] Bluetooth: hci4: command tx timeout [ 176.662779][ T5781] 8021q: adding VLAN 0 to HW filter on device bond0 [ 176.703048][ T57] bridge0: port 2(bridge_slave_1) entered blocking state [ 176.710425][ T57] bridge0: port 2(bridge_slave_1) entered forwarding state [ 176.805463][ T5779] 8021q: adding VLAN 0 to HW filter on device team0 [ 176.885780][ T129] bridge0: port 1(bridge_slave_0) entered blocking state [ 176.893320][ T129] bridge0: port 1(bridge_slave_0) entered forwarding state [ 176.925750][ T5781] 8021q: adding VLAN 0 to HW filter on device team0 [ 176.957220][ T129] bridge0: port 2(bridge_slave_1) entered blocking state [ 176.964761][ T129] bridge0: port 2(bridge_slave_1) entered forwarding state [ 177.105503][ T129] bridge0: port 1(bridge_slave_0) entered blocking state [ 177.113060][ T129] bridge0: port 1(bridge_slave_0) entered forwarding state [ 177.210057][ T129] bridge0: port 2(bridge_slave_1) entered blocking state [ 177.217594][ T129] bridge0: port 2(bridge_slave_1) entered forwarding state [ 177.256935][ T5782] 8021q: adding VLAN 0 to HW filter on device bond0 [ 177.490244][ T5782] 8021q: adding VLAN 0 to HW filter on device team0 [ 177.600347][ T1123] bridge0: port 1(bridge_slave_0) entered blocking state [ 177.607851][ T1123] bridge0: port 1(bridge_slave_0) entered forwarding state [ 177.711955][ T5776] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 177.735188][ T129] bridge0: port 2(bridge_slave_1) entered blocking state [ 177.742820][ T129] bridge0: port 2(bridge_slave_1) entered forwarding state [ 178.504174][ T5776] veth0_vlan: entered promiscuous mode [ 178.573215][ T5783] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 178.717753][ T5776] veth1_vlan: entered promiscuous mode [ 179.094306][ T5779] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 179.161214][ T5776] veth0_macvtap: entered promiscuous mode [ 179.265590][ T5776] veth1_macvtap: entered promiscuous mode [ 179.495869][ T5781] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 179.566566][ T5776] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 179.665952][ T5776] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 179.765474][ T1123] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 179.804060][ T1123] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 179.813613][ T1123] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 179.861318][ T1123] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 179.873435][ T5779] veth0_vlan: entered promiscuous mode [ 179.915048][ T5782] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 180.116843][ T5779] veth1_vlan: entered promiscuous mode [ 180.348639][ T5783] veth0_vlan: entered promiscuous mode [ 180.369835][ T5781] veth0_vlan: entered promiscuous mode [ 180.495865][ T5781] veth1_vlan: entered promiscuous mode [ 180.546958][ T5783] veth1_vlan: entered promiscuous mode [ 180.692158][ T5779] veth0_macvtap: entered promiscuous mode [ 180.745028][ T5779] veth1_macvtap: entered promiscuous mode [ 180.806136][ T5782] veth0_vlan: entered promiscuous mode [ 180.955085][ T5782] veth1_vlan: entered promiscuous mode [ 180.993858][ T5779] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 181.021767][ T5781] veth0_macvtap: entered promiscuous mode [ 181.103463][ T5779] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 181.143434][ T5781] veth1_macvtap: entered promiscuous mode [ 181.212535][ T2995] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 181.223962][ T2995] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 181.250750][ T5783] veth0_macvtap: entered promiscuous mode [ 181.289208][ T2995] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 181.299634][ T2995] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 181.335932][ T5783] veth1_macvtap: entered promiscuous mode [ 181.472556][ T5781] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 181.531566][ T5782] veth0_macvtap: entered promiscuous mode [ 181.600409][ T5781] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 181.634543][ T5783] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 181.652693][ T5782] veth1_macvtap: entered promiscuous mode [ 181.696674][ T5783] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 181.737572][ T14] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 181.780671][ T14] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 181.796445][ T14] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 181.921428][ T14] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 181.950324][ T14] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 182.007114][ T5782] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 182.026328][ T14] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 182.067769][ T14] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 182.131223][ T14] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 182.174699][ T5782] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 182.285617][ T2968] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 182.331418][ T34] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 182.421341][ T34] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 182.432795][ T34] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.715145][ T57] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 183.753194][ T57] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 184.063692][ T129] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 184.095623][ T129] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 184.755385][ T5776] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 185.594955][ T5937] loop0: detected capacity change from 0 to 8 [ 185.661521][ T5937] process 'syz.0.1' launched './file2' with NULL argv: empty string added [ 185.686533][ T5910] udevd[5910]: incorrect cramfs checksum on /dev/loop0 [ 185.692366][ T5937] cramfs: Error -3 while decompressing! [ 185.709021][ T5937] cramfs: ffffffff959db238(26)->ffff888029dbe000(4096) [ 185.716112][ T5937] cramfs: Error -3 while decompressing! [ 185.737631][ T5937] cramfs: ffffffff959db252(26)->ffff888026078000(4096) [ 185.806202][ T5937] cramfs: Error -3 while decompressing! [ 185.817714][ T5937] cramfs: ffffffff959db26c(16)->ffff88802600d000(4096) [ 185.862553][ T5937] cramfs: Error -3 while decompressing! [ 185.872758][ T5937] cramfs: ffffffff959db238(26)->ffff888029dbe000(4096) [ 185.894817][ T5910] udevd[5910]: incorrect cramfs checksum on /dev/loop0 [ 186.734951][ T5954] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 187.194927][ T14] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 187.236358][ T14] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 187.413194][ T57] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 187.439625][ T57] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 187.821158][ T56] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 187.871636][ T56] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 188.083623][ T56] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 188.099441][ T56] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 188.416575][ T1123] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 188.436399][ T1123] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 188.562915][ T2968] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 188.594968][ T2968] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 188.959598][ T2968] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 189.007116][ T2968] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 189.167680][ T14] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 189.181785][ T5980] ===================================================== [ 189.187225][ T14] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 189.196537][ T5980] BUG: KMSAN: uninit-value in batadv_get_vid+0x2ce/0x3b0 [ 189.203950][ T5980] batadv_get_vid+0x2ce/0x3b0 [ 189.208920][ T5980] batadv_interface_tx+0x2e8/0x1dd0 [ 189.214290][ T5980] dev_hard_start_xmit+0x24e/0xad0 [ 189.219794][ T5980] __dev_queue_xmit+0x3412/0x5980 [ 189.224978][ T5980] __bpf_redirect+0x162e/0x1760 [ 189.230135][ T5980] bpf_clone_redirect+0x4a6/0x6c0 [ 189.235344][ T5980] ___bpf_prog_run+0x13e8/0xea90 [ 189.240592][ T5980] __bpf_prog_run512+0xc5/0x100 [ 189.245638][ T5980] bpf_test_run+0x493/0xdf0 [ 189.250456][ T5980] bpf_prog_test_run_skb+0x22a5/0x3050 [ 189.256089][ T5980] bpf_prog_test_run+0x5bb/0x9f0 [ 189.261334][ T5980] __sys_bpf+0x925/0xee0 [ 189.265729][ T5980] __ia32_sys_bpf+0xa4/0xf0 [ 189.270542][ T5980] ia32_sys_call+0x33e7/0x4360 [ 189.275622][ T5980] __do_fast_syscall_32+0x17f/0x3f0 [ 189.281255][ T5980] do_fast_syscall_32+0x37/0x80 [ 189.286318][ T5980] do_SYSENTER_32+0x1f/0x30 [ 189.291150][ T5980] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 189.297850][ T5980] [ 189.300217][ T5980] Uninit was created at: [ 189.304677][ T5980] kmem_cache_alloc_node_noprof+0x3cd/0x12d0 [ 189.310947][ T5980] pskb_expand_head+0x2ef/0x1fb0 [ 189.316320][ T5980] skb_ensure_writable+0x44e/0x510 [ 189.321785][ T5980] bpf_clone_redirect+0x301/0x6c0 [ 189.326915][ T5980] ___bpf_prog_run+0x13e8/0xea90 [ 189.332140][ T5980] __bpf_prog_run512+0xc5/0x100 [ 189.337178][ T5980] bpf_test_run+0x493/0xdf0 [ 189.342183][ T5980] bpf_prog_test_run_skb+0x22a5/0x3050 [ 189.347921][ T5980] bpf_prog_test_run+0x5bb/0x9f0 [ 189.353112][ T5980] __sys_bpf+0x925/0xee0 [ 189.357636][ T5980] __ia32_sys_bpf+0xa4/0xf0 [ 189.362274][ T5980] ia32_sys_call+0x33e7/0x4360 [ 189.367115][ T5980] __do_fast_syscall_32+0x17f/0x3f0 [ 189.372604][ T5980] do_fast_syscall_32+0x37/0x80 [ 189.377727][ T5980] do_SYSENTER_32+0x1f/0x30 [ 189.382397][ T5980] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 189.389020][ T5980] [ 189.391465][ T5980] CPU: 0 UID: 0 PID: 5980 Comm: syz.0.8 Not tainted syzkaller #0 PREEMPT(full) [ 189.400746][ T5980] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 189.411079][ T5980] ===================================================== [ 189.418262][ T5980] Disabling lock debugging due to kernel taint [ 189.424503][ T5980] Kernel panic - not syncing: kmsan.panic set ... [ 189.431019][ T5980] CPU: 0 UID: 0 PID: 5980 Comm: syz.0.8 Tainted: G B syzkaller #0 PREEMPT(full) [ 189.441800][ T5980] Tainted: [B]=BAD_PAGE [ 189.445995][ T5980] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 189.456124][ T5980] Call Trace: [ 189.459485][ T5980] [ 189.462464][ T5980] __dump_stack+0x26/0x30 [ 189.466904][ T5980] dump_stack_lvl+0x50/0x1c0 [ 189.471663][ T5980] ? dump_stack+0x12/0x25 [ 189.476103][ T5980] dump_stack+0x1e/0x25 [ 189.480363][ T5980] vpanic+0x7b4/0x1430 [ 189.484674][ T5980] panic+0x15d/0x160 [ 189.488778][ T5980] kmsan_report+0x31a/0x320 [ 189.493483][ T5980] ? __msan_warning+0x1b/0x30 [ 189.498331][ T5980] ? batadv_get_vid+0x2ce/0x3b0 [ 189.503288][ T5980] ? batadv_interface_tx+0x2e8/0x1dd0 [ 189.508817][ T5980] ? dev_hard_start_xmit+0x24e/0xad0 [ 189.514227][ T5980] ? __dev_queue_xmit+0x3412/0x5980 [ 189.519527][ T5980] ? __bpf_redirect+0x162e/0x1760 [ 189.524710][ T5980] ? bpf_clone_redirect+0x4a6/0x6c0 [ 189.530081][ T5980] ? ___bpf_prog_run+0x13e8/0xea90 [ 189.535442][ T5980] ? __bpf_prog_run512+0xc5/0x100 [ 189.540619][ T5980] ? bpf_test_run+0x493/0xdf0 [ 189.545423][ T5980] ? bpf_prog_test_run_skb+0x22a5/0x3050 [ 189.551175][ T5980] ? bpf_prog_test_run+0x5bb/0x9f0 [ 189.556455][ T5980] ? __sys_bpf+0x925/0xee0 [ 189.561029][ T5980] ? __ia32_sys_bpf+0xa4/0xf0 [ 189.565835][ T5980] ? ia32_sys_call+0x33e7/0x4360 [ 189.570853][ T5980] ? __do_fast_syscall_32+0x17f/0x3f0 [ 189.576404][ T5980] ? do_fast_syscall_32+0x37/0x80 [ 189.581620][ T5980] ? do_SYSENTER_32+0x1f/0x30 [ 189.586447][ T5980] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 189.593090][ T5980] ? kmsan_get_metadata+0xf1/0x160 [ 189.598514][ T5980] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 189.604421][ T5980] ? kmsan_get_metadata+0xf1/0x160 [ 189.609642][ T5980] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 189.615622][ T5980] ? batadv_interface_tx+0x31/0x1dd0 [ 189.621031][ T5980] ? filter_irq_stacks+0x49/0x190 [ 189.626218][ T5980] ? kmsan_get_metadata+0xf1/0x160 [ 189.631471][ T5980] __msan_warning+0x1b/0x30 [ 189.636170][ T5980] batadv_get_vid+0x2ce/0x3b0 [ 189.641013][ T5980] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 189.646971][ T5980] batadv_interface_tx+0x2e8/0x1dd0 [ 189.652285][ T5980] ? __pfx_kmsan_get_shadow_origin_ptr+0x10/0x10 [ 189.658787][ T5980] ? kmsan_internal_set_shadow_origin+0x7a/0x110 [ 189.665343][ T5980] ? __pfx_batadv_interface_tx+0x10/0x10 [ 189.671099][ T5980] dev_hard_start_xmit+0x24e/0xad0 [ 189.676379][ T5980] __dev_queue_xmit+0x3412/0x5980 [ 189.681531][ T5980] ? skb_release_data+0x107c/0x11b0 [ 189.686900][ T5980] ? kmsan_internal_memmove_metadata+0x91/0x230 [ 189.693289][ T5980] ? kmsan_get_metadata+0xf1/0x160 [ 189.698498][ T5980] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 189.704404][ T5980] ? __dev_queue_xmit+0x27a/0x5980 [ 189.709632][ T5980] ? pskb_expand_head+0x1c0e/0x1fb0 [ 189.714954][ T5980] ? kmsan_get_metadata+0xf1/0x160 [ 189.720197][ T5980] __bpf_redirect+0x162e/0x1760 [ 189.725183][ T5980] ? kmsan_get_metadata+0xf1/0x160 [ 189.730429][ T5980] bpf_clone_redirect+0x4a6/0x6c0 [ 189.735645][ T5980] ___bpf_prog_run+0x13e8/0xea90 [ 189.740708][ T5980] __bpf_prog_run512+0xc5/0x100 [ 189.745690][ T5980] ? kmsan_internal_poison_memory+0x78/0x90 [ 189.751773][ T5980] ? kmsan_internal_poison_memory+0x4a/0x90 [ 189.757802][ T5980] ? kmsan_slab_alloc+0xdc/0x160 [ 189.762922][ T5980] ? kmem_cache_alloc_noprof+0x37b/0x1270 [ 189.768767][ T5980] ? slab_build_skb+0x5c/0x5b0 [ 189.773617][ T5980] ? bpf_prog_test_run_skb+0x74d/0x3050 [ 189.779280][ T5980] ? kmsan_get_metadata+0xf1/0x160 [ 189.784546][ T5980] ? kmsan_internal_set_shadow_origin+0x7a/0x110 [ 189.791062][ T5980] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 189.797274][ T5980] ? _raw_spin_unlock_irqrestore+0x3f/0x60 [ 189.803290][ T5980] ? kmsan_get_metadata+0xf1/0x160 [ 189.808506][ T5980] ? kmsan_get_metadata+0xf1/0x160 [ 189.813776][ T5980] ? kmsan_get_metadata+0xf1/0x160 [ 189.818973][ T5980] ? kmsan_internal_set_shadow_origin+0x7a/0x110 [ 189.825417][ T5980] ? kmsan_get_metadata+0x146/0x160 [ 189.830758][ T5980] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 189.836731][ T5980] ? __pfx___bpf_prog_run512+0x10/0x10 [ 189.842404][ T5980] ? __pfx___bpf_prog_run512+0x10/0x10 [ 189.848021][ T5980] bpf_test_run+0x493/0xdf0 [ 189.852688][ T5980] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 189.858639][ T5980] ? kmsan_get_metadata+0xf1/0x160 [ 189.863903][ T5980] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 189.869891][ T5980] ? bpf_test_run+0x2f4/0xdf0 [ 189.874729][ T5980] ? kmsan_get_metadata+0xf1/0x160 [ 189.879976][ T5980] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 189.885977][ T5980] bpf_prog_test_run_skb+0x22a5/0x3050 [ 189.891590][ T5980] ? kmsan_get_metadata+0xf1/0x160 [ 189.896876][ T5980] ? __pfx_bpf_prog_test_run_skb+0x10/0x10 [ 189.902873][ T5980] bpf_prog_test_run+0x5bb/0x9f0 [ 189.907921][ T5980] __sys_bpf+0x925/0xee0 [ 189.912310][ T5980] __ia32_sys_bpf+0xa4/0xf0 [ 189.916943][ T5980] ia32_sys_call+0x33e7/0x4360 [ 189.921815][ T5980] __do_fast_syscall_32+0x17f/0x3f0 [ 189.927158][ T5980] do_fast_syscall_32+0x37/0x80 [ 189.932215][ T5980] do_SYSENTER_32+0x1f/0x30 [ 189.936908][ T5980] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 189.943423][ T5980] RIP: 0023:0xf7f64f6c [ 189.947580][ T5980] Code: 90 85 d2 74 0a 89 ce 81 e6 ff 0f 00 00 89 32 85 c0 74 05 c1 e9 0c 89 08 31 c0 5e 5d c3 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 58 b8 [ 189.967429][ T5980] RSP: 002b:00000000f542650c EFLAGS: 00000206 ORIG_RAX: 0000000000000165 [ 189.976042][ T5980] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00000000800002c0 [ 189.984096][ T5980] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000 [ 189.992630][ T5980] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 190.000682][ T5980] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 190.008772][ T5980] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 190.016855][ T5980] [ 190.020363][ T5980] Kernel Offset: disabled [ 190.024748][ T5980] Rebooting in 86400 seconds..