last executing test programs: 14.213735235s ago: executing program 2 (id=273): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), r0) syz_genetlink_get_family_id$ieee802154(&(0x7f00000000c0), r0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0xe2981) ioctl$PPPIOCSPASS(0xffffffffffffffff, 0x40107447, 0x0) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x2000001, 0x30, 0xffffffffffffffff, 0x0) r4 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0) writev(r4, &(0x7f00000000c0)=[{&(0x7f0000000140)='2', 0x1}], 0x1) 13.041015073s ago: executing program 2 (id=275): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$inet_smc(0x2b, 0x1, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0) r4 = syz_open_dev$dri(0x0, 0x0, 0x0) r5 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r5, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[0x0], 0x0, 0x0, 0x0, 0x1}) ioctl$DRM_IOCTL_MODE_GETCRTC(r5, 0xc06864a1, &(0x7f0000000380)={0x0, 0xffffffca, r6, 0x0}) ioctl$DRM_IOCTL_MODE_GETFB2(r5, 0xc06864ce, &(0x7f0000000440)={r7, 0x8, 0x7f, 0x10000000, 0x0, [0x0], [0x0, 0x29, 0x2], [], [0x0, 0x0, 0xfffffffffffffffd, 0x8000]}) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r4, 0xc02064b2, &(0x7f0000000340)={0x83ff, 0x2, 0xb5}) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r4, 0xc00c642d, &(0x7f0000000080)={r8, 0x0, 0xffffffffffffffff}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r5, 0xc00c642e, &(0x7f0000000300)={0x0, 0x0, r9}) close_range(r3, 0xffffffffffffffff, 0x0) 11.445152446s ago: executing program 2 (id=280): openat$uinput(0xffffffffffffff9c, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) semctl$IPC_STAT(0x0, 0x0, 0x2, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) recvmmsg(r1, 0x0, 0x0, 0x2, 0x0) syz_open_dev$loop(0x0, 0x47ffffa, 0x1a6c42) bpf$MAP_CREATE(0x0, 0x0, 0xe5ed172c9270fbdc) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x15, 0x4, &(0x7f0000000e00)=ANY=[@ANYBLOB="b4000000000000007910280000000000150000000000000095000000040000009ee3fd3fb812ca5fa206e5f5a663e44259594903aa2c7c73c41069731415510985d32ff27f416867e7e90fef8b13c29962f3c680c829f6c6b88c22f4e37af7bc6d592140df63026c2313725312ba18ea77c834ef80fa17cc0fb3928fc61b45e6c54e1bf618a0c6f50c0ec682e20d7332860eac63b2b1ba0b908004328fac6715959b948cfd82a77524fbe9ef43966d246be6d79564bacd8ab0664449f77e482ae2"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94) r3 = io_uring_setup(0x15e1, &(0x7f0000000440)={0x0, 0x2208, 0x802, 0x40, 0x2e5}) io_uring_register$IORING_UNREGISTER_PBUF_RING(r3, 0x17, &(0x7f0000000380)={0x0, 0x0, 0x1}, 0x1) 11.392183936s ago: executing program 1 (id=281): prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8) r0 = getpid() syz_emit_ethernet(0x7a, &(0x7f0000000300)=ANY=[@ANYBLOB="ffffffffffff00000000000086dd60ff040000442f00fc000000000000000000000000000000fe8000000000000000000000000000aa042022eb0000000000000800000086dd0800b897"], 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[], 0x48) socket$inet6_sctp(0xa, 0x5, 0x84) openat2$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x1c0, 0x3aa7eb897321b049, 0x8}, 0x18) close(0x3) r3 = socket(0x2, 0x80805, 0x0) r4 = socket$inet6_sctp(0xa, 0x5, 0x84) r5 = socket$pptp(0x18, 0x1, 0x2) clock_gettime(0x0, 0x0) recvmmsg(r5, 0x0, 0x0, 0x40000000, 0x0) syz_emit_vhci(&(0x7f00000098c0)=ANY=[@ANYBLOB="02c80051014d0101000d0908000000ab07010009000f0404000500800007e403000e00e679060804000800810004071a0004000900040901000200800900000004090403010600070000800b060101d1b5f7422fcdaf76a23c9b9c0993190700b3df0283025d5d75e7e2f1be24911da445403d998a6555ab88bef83595031936cb03a3369ec2eb02cbdca9e6239dc7eb16e1aa377b54edc0ce818c165a9582c7846e1e7d4571ffda8151583a25f11e55836b768ec1a57b6d48437f1bfadd8a9b6ff3a3a8cbdabc217e9c666dfb0ede9d9575537a4cfb38a738e8c99cdf32e899a89cb5b0761efca2929be8a8111848101b5827373d0de66965f02fd7e70cccf0ad531c494b0db5843f40fe774d4893b4204021e9bd41fe736ac6e87f7f1b7879ca754c00a01fdfb3c3598e50e99028452aab301744b6bbcd20208316eeb197a86e391d9cd7721d02a77174639ba7ada243a06c102452"], 0x156) close(0x3) syz_open_dev$dri(0x0, 0x3, 0x88002) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, 0x0, &(0x7f0000000140)) sendmmsg$inet_sctp(r3, 0x0, 0x0, 0x0) r6 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r6, 0x560a, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x20, 0x132, 0x3}) 9.03859936s ago: executing program 3 (id=283): r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0) ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, 0x0) ioctl$SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f0000000040)=0x1) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000500)={0xa00, 0x18, 0xfa00, {0x100000000000000, 0x0}}, 0xfc36) 8.940021091s ago: executing program 1 (id=284): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), r0) syz_genetlink_get_family_id$ieee802154(&(0x7f00000000c0), r0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0xe2981) r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x800, 0x0) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) dup3(r4, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x2000001, 0x30, 0xffffffffffffffff, 0x0) r5 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0) writev(r5, &(0x7f00000000c0)=[{&(0x7f0000000140)='2', 0x1}], 0x1) 8.615233326s ago: executing program 2 (id=285): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = syz_io_uring_setup(0x10d, &(0x7f0000000380)={0x0, 0x20232c, 0x80, 0x1000, 0x3d6}, &(0x7f0000000340)=0x0, &(0x7f0000000280)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x4, 0x0, @fd_index=0x8, 0x5, 0x0, 0x200}) io_uring_enter(r3, 0x3516, 0x0, 0x0, 0x0, 0x0) 7.990647975s ago: executing program 3 (id=286): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000540)={'wlan0\x00'}) sendmsg$NL80211_CMD_NEW_KEY(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000400)=ANY=[], 0x60}}, 0x0) 7.843663777s ago: executing program 0 (id=287): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000700)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="12000000040000000400000012"], 0x48) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffd000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_PROG_DETACH(0x8, 0x0, 0x10) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000048c0)={r1, &(0x7f00000047c0), &(0x7f0000004880)=@udp=r0}, 0x20) recvmmsg(r0, &(0x7f0000000b80)=[{{0x0, 0xffffffffffffff6c, 0x0, 0x0, 0x0, 0x52}, 0xa}], 0x360, 0x120, 0x0) 7.725875169s ago: executing program 3 (id=288): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x3, &(0x7f0000000000)={[{@errors_remount}, {@noload}, {@user_xattr}, {@bsdgroups}, {@nobarrier}]}, 0x1, 0x625, &(0x7f0000000800)="$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") sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000e40)=@newqdisc={0xf0, 0x24, 0x400, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff2}, {}, {0x0, 0x3}}, [@TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x4, 0x9, 0x3, 0x0, 0x0, 0x7, 0x3}}, {0x4}}]}, @qdisc_kind_options=@q_htb={{0x8}, {0x4}}, @TCA_STAB={0x94, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0xd6, 0xc5, 0xd, 0x401, 0x1, 0x8, 0x4, 0x8}}, {0x14, 0x2, [0x0, 0xb, 0x8001, 0x4, 0x4, 0x7d5a, 0x1ff, 0x1]}}, {{0x1c, 0x1, {0x80, 0x2, 0xb5, 0x1a, 0x0, 0x718, 0xffff, 0x7}}, {0x12, 0x2, [0x8, 0x200, 0x5, 0x2, 0x6, 0x5, 0xfff8]}}, {{0x1c, 0x1, {0xf8, 0x4c, 0xc0, 0x3, 0x0, 0xbb, 0x3, 0x7}}, {0x12, 0x2, [0xd349, 0x5, 0x4, 0x0, 0x9, 0x4, 0x9]}}]}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x1}]}, 0xf0}, 0x1, 0x0, 0x0, 0x20000000}, 0x0) r3 = socket(0x2a, 0x2, 0x0) getsockname$packet(r3, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0) r5 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r5, &(0x7f00000002c0), 0x40000000000009f, 0x0) r6 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0) r7 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r7, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[0x0], 0x0, 0x0, 0x0, 0x1}) ioctl$DRM_IOCTL_MODE_GETCRTC(r7, 0xc06864a1, &(0x7f0000000380)={0x0, 0xffffffca, r8, 0x0}) ioctl$DRM_IOCTL_MODE_GETFB2(r7, 0xc06864ce, &(0x7f0000000440)={r9, 0x8, 0x7f, 0x10000000, 0x0, [0x0], [0x0, 0x29, 0x2], [], [0x0, 0x0, 0xfffffffffffffffd, 0x8000]}) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r6, 0xc02064b2, &(0x7f0000000340)={0x83ff, 0x2, 0xb5}) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r6, 0xc00c642d, &(0x7f0000000080)={r10, 0x0, 0xffffffffffffffff}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r7, 0xc00c642e, &(0x7f0000000300)={0x0, 0x0, r11}) 7.685482979s ago: executing program 1 (id=289): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$inet_smc(0x2b, 0x1, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0) r4 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0) r5 = syz_open_dev$dri(0x0, 0xd21, 0x0) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r5, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[0x0], 0x0, 0x0, 0x0, 0x1}) ioctl$DRM_IOCTL_MODE_GETCRTC(r5, 0xc06864a1, &(0x7f0000000380)={0x0, 0xffffffca, r6, 0x0}) ioctl$DRM_IOCTL_MODE_GETFB2(r5, 0xc06864ce, &(0x7f0000000440)={r7, 0x8, 0x7f, 0x10000000, 0x0, [0x0], [0x0, 0x29, 0x2], [], [0x0, 0x0, 0xfffffffffffffffd, 0x8000]}) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r4, 0xc02064b2, &(0x7f0000000340)={0x83ff, 0x2, 0xb5}) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r4, 0xc00c642d, &(0x7f0000000080)={r8, 0x0, 0xffffffffffffffff}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r5, 0xc00c642e, &(0x7f0000000300)={0x0, 0x0, r9}) close_range(r3, 0xffffffffffffffff, 0x0) 6.508705907s ago: executing program 0 (id=290): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="50000000020605000000000000000000000000000c00078008000640001000000500010006000000050005000200000005000400000000000900020073797a31000000000c000300686173683a6970"], 0x50}}, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_ADD(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=ANY=[@ANYBLOB="40000000090601020000000000000000000000000900020073797a31000000000500010007000000180007800c00018008000140fffffffe0500030008"], 0x40}, 0x1, 0x0, 0x0, 0x10000047}, 0x4000084) 6.2707464s ago: executing program 2 (id=291): socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$l2tp(&(0x7f0000000140), 0xffffffffffffffff) setsockopt$PNPIPE_INITSTATE(0xffffffffffffffff, 0x113, 0x4, &(0x7f0000000000)=0x1, 0x4) openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2) prlimit64(0x0, 0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000100)='./file0\x00', 0x3000000, &(0x7f0000000700)=ANY=[@ANYBLOB="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"], 0xfd, 0x1bf, &(0x7f0000000300)="$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") syz_mount_image$vfat(&(0x7f0000000ac0), &(0x7f0000000080)='./file1\x00', 0x10000, 0x0, 0x0, 0x0, &(0x7f00000000c0)) read$FUSE(0xffffffffffffffff, 0x0, 0x0) r3 = socket$inet(0x2, 0xa, 0x7e0c) ioctl$sock_inet_SIOCSARP(r3, 0x8954, &(0x7f0000000000)={{}, {0x1, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x4, {0x2, 0x0, @multicast2}, 'lo\x00'}) 6.122338792s ago: executing program 0 (id=292): prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8) r0 = getpid() syz_emit_ethernet(0x7a, &(0x7f0000000300)=ANY=[@ANYBLOB="ffffffffffff00000000000086dd60ff040000442f00fc000000000000000000000000000000fe8000000000000000000000000000aa042022eb0000000000000800000086dd0800b897"], 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[], 0x48) socket$inet6_sctp(0xa, 0x5, 0x84) openat2$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x1c0, 0x3aa7eb897321b049, 0x8}, 0x18) close(0x3) r3 = socket(0x2, 0x80805, 0x0) r4 = socket$inet6_sctp(0xa, 0x5, 0x84) r5 = socket$pptp(0x18, 0x1, 0x2) clock_gettime(0x0, 0x0) recvmmsg(r5, 0x0, 0x0, 0x40000000, 0x0) syz_emit_vhci(&(0x7f00000098c0)=ANY=[@ANYBLOB="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"], 0x156) close(0x3) syz_open_dev$dri(0x0, 0x3, 0x88002) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, 0x0, &(0x7f0000000140)) sendmmsg$inet_sctp(r3, 0x0, 0x0, 0x0) r6 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r6, 0x560a, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x20, 0x132, 0x3}) 6.014312394s ago: executing program 1 (id=293): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), r0) syz_genetlink_get_family_id$ieee802154(&(0x7f00000000c0), r0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0xe2981) r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x800, 0x0) dup3(r4, 0xffffffffffffffff, 0x0) openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0) 3.066436996s ago: executing program 1 (id=294): openat$uinput(0xffffffffffffff9c, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) semctl$IPC_STAT(0x0, 0x0, 0x2, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_open_dev$loop(0x0, 0x47ffffa, 0x1a6c42) bpf$MAP_CREATE(0x0, 0x0, 0xe5ed172c9270fbdc) bpf$PROG_LOAD(0x5, 0x0, 0x0) r3 = io_uring_setup(0x15e1, &(0x7f0000000440)={0x0, 0x2208, 0x802, 0x40, 0x2e5}) io_uring_register$IORING_UNREGISTER_PBUF_RING(r3, 0x17, &(0x7f0000000380)={0x0, 0x0, 0x1}, 0x1) 3.065432586s ago: executing program 3 (id=295): r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0) ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000080)) ioctl$SNDCTL_DSP_SPEED(r0, 0xc0045002, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000500)={0xa00, 0x18, 0xfa00, {0x100000000000000, 0x0}}, 0xfc36) 2.907081078s ago: executing program 2 (id=296): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000000480)={[{@resgid}, {}, {@data_err_ignore}, {@nobarrier}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@nombcache}, {@stripe={'stripe', 0x3d, 0x2}}]}, 0x3, 0x572, &(0x7f0000000c40)="$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") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r3 = socket(0x10, 0x3, 0x0) write(r3, &(0x7f0000000000)="240000001a005f0314f9f407000904000200000001000000000000000800040001000000", 0x24) socket$inet6(0xa, 0x2, 0x0) syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0) setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file0/file0\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0) truncate(&(0x7f0000000100)='./file0/file0\x00', 0x5) 2.893778758s ago: executing program 0 (id=297): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000540)={'wlan0\x00'}) sendmsg$NL80211_CMD_NEW_KEY(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000400)=ANY=[], 0x60}}, 0x0) 2.625635182s ago: executing program 0 (id=298): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), r0) syz_genetlink_get_family_id$ieee802154(&(0x7f00000000c0), r0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0xe2981) r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x800, 0x0) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) dup3(r4, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x2000001, 0x30, 0xffffffffffffffff, 0x0) r5 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0) writev(r5, &(0x7f00000000c0)=[{&(0x7f0000000140)='2', 0x1}], 0x1) 1.790376734s ago: executing program 3 (id=299): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000700)=ANY=[@ANYBLOB="b4050000200080006110600000000000c60000000000000095000000000000009f33ef60916e6e893f1eeb0be20000d072f5b89c3043c47c896ce0bc8731fa595b6b4d45ef26dcca5582054d54d53cd2b685b431c70ea948259c4c869b4fc8db714e4b94bdae214fa68a051d4dca7d2647bec1fc89398d2b9000f224891060017c4700de60beac671e8e8f00cb03588aa6007e71f871ab5c2ff88afc6002084e5b52710aeee835cf0d78e45f70983826fb8579c1fb47d2c59005cff414ed55b0d18a9d446935fb332bb593ee341ab59016f81860324b800c00000000000092d9c5fe34ccb80a61ffcb3363073fd8962823ee45f5d7394e9510f4ac6c702cfabe8a9c55c8dafcdb110036e14c1035cafdfef6a358cbfadb3579a285580a3c080d4e0a48d7bdc38a0437c8c1b3aa408a0000000000002248950b000000"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="12000000040000000400000012"], 0x48) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffd000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000ac0)=ANY=[], 0x10) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000048c0)={r1, &(0x7f00000047c0), &(0x7f0000004880)=@udp=r0}, 0x20) recvmmsg(r0, &(0x7f0000000b80)=[{{0x0, 0xffffffffffffff6c, 0x0, 0x0, 0x0, 0x52}, 0xa}], 0x360, 0x120, 0x0) 1.783667454s ago: executing program 1 (id=300): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = syz_io_uring_setup(0x10d, &(0x7f0000000380)={0x0, 0x20232c, 0x80, 0x1000, 0x3d6}, &(0x7f0000000340)=0x0, &(0x7f0000000280)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x4, 0x0, @fd_index=0x8, 0x5, 0x0, 0x200}) io_uring_enter(r3, 0x3516, 0x0, 0x0, 0x0, 0x0) 963.286756ms ago: executing program 0 (id=301): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$inet_smc(0x2b, 0x1, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0) r4 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0) r5 = syz_open_dev$dri(0x0, 0xd21, 0x0) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r5, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[0x0], 0x0, 0x0, 0x0, 0x1}) ioctl$DRM_IOCTL_MODE_GETCRTC(r5, 0xc06864a1, &(0x7f0000000380)={0x0, 0xffffffca, r6, 0x0}) ioctl$DRM_IOCTL_MODE_GETFB2(r5, 0xc06864ce, &(0x7f0000000440)={r7, 0x8, 0x7f, 0x10000000, 0x0, [0x0], [0x0, 0x29, 0x2], [], [0x0, 0x0, 0xfffffffffffffffd, 0x8000]}) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r4, 0xc02064b2, &(0x7f0000000340)={0x83ff, 0x2, 0xb5}) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r4, 0xc00c642d, &(0x7f0000000080)={r8, 0x0, 0xffffffffffffffff}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r5, 0xc00c642e, &(0x7f0000000300)={0x0, 0x0, r9}) close_range(r3, 0xffffffffffffffff, 0x0) 0s ago: executing program 3 (id=302): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), r0) syz_genetlink_get_family_id$ieee802154(&(0x7f00000000c0), r0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0xe2981) r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x800, 0x0) dup3(r4, 0xffffffffffffffff, 0x0) openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.10' (ED25519) to the list of known hosts. [ 65.793711][ T5773] cgroup: Unknown subsys name 'net' [ 65.961244][ T5773] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 67.516526][ T5773] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 69.091457][ T50] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 69.099322][ T50] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 69.107929][ T50] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 69.115449][ T50] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 69.123352][ T50] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 69.129381][ T5793] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 69.130961][ T50] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 69.139040][ T5793] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 69.144989][ T50] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 69.153535][ T5798] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 69.165850][ T50] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 69.171159][ T5798] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 69.173454][ T50] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 69.188187][ T50] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 69.195978][ T5798] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 69.196526][ T50] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 69.212608][ T5798] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 69.243104][ T5793] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 69.250983][ T5798] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 69.259574][ T5798] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 69.269232][ T5789] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 69.276905][ T5789] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 69.285185][ T5790] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 69.292570][ T5790] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 69.571512][ T5783] chnl_net:caif_netlink_parms(): no params data found [ 69.707776][ T5783] bridge0: port 1(bridge_slave_0) entered blocking state [ 69.716098][ T5783] bridge0: port 1(bridge_slave_0) entered disabled state [ 69.723442][ T5783] bridge_slave_0: entered allmulticast mode [ 69.731241][ T5783] bridge_slave_0: entered promiscuous mode [ 69.741869][ T5783] bridge0: port 2(bridge_slave_1) entered blocking state [ 69.749404][ T5783] bridge0: port 2(bridge_slave_1) entered disabled state [ 69.756866][ T5783] bridge_slave_1: entered allmulticast mode [ 69.763633][ T5783] bridge_slave_1: entered promiscuous mode [ 69.810741][ T5784] chnl_net:caif_netlink_parms(): no params data found [ 69.855431][ T5783] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 69.867210][ T5783] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 69.953411][ T5783] team0: Port device team_slave_0 added [ 69.986305][ T5783] team0: Port device team_slave_1 added [ 70.055887][ T5784] bridge0: port 1(bridge_slave_0) entered blocking state [ 70.063005][ T5784] bridge0: port 1(bridge_slave_0) entered disabled state [ 70.070424][ T5784] bridge_slave_0: entered allmulticast mode [ 70.078903][ T5784] bridge_slave_0: entered promiscuous mode [ 70.086059][ T5785] chnl_net:caif_netlink_parms(): no params data found [ 70.096352][ T5784] bridge0: port 2(bridge_slave_1) entered blocking state [ 70.103453][ T5784] bridge0: port 2(bridge_slave_1) entered disabled state [ 70.111103][ T5784] bridge_slave_1: entered allmulticast mode [ 70.118155][ T5784] bridge_slave_1: entered promiscuous mode [ 70.126119][ T5783] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 70.133071][ T5783] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 70.159248][ T5783] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 70.189423][ T5783] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 70.196510][ T5783] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 70.222643][ T5783] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 70.234062][ T5782] chnl_net:caif_netlink_parms(): no params data found [ 70.283567][ T5784] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 70.295760][ T5784] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 70.375370][ T5784] team0: Port device team_slave_0 added [ 70.390663][ T5783] hsr_slave_0: entered promiscuous mode [ 70.398141][ T5783] hsr_slave_1: entered promiscuous mode [ 70.410072][ T5784] team0: Port device team_slave_1 added [ 70.483292][ T5784] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 70.490846][ T5784] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 70.516815][ T5784] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 70.540102][ T5785] bridge0: port 1(bridge_slave_0) entered blocking state [ 70.547680][ T5785] bridge0: port 1(bridge_slave_0) entered disabled state [ 70.555174][ T5785] bridge_slave_0: entered allmulticast mode [ 70.561987][ T5785] bridge_slave_0: entered promiscuous mode [ 70.570741][ T5785] bridge0: port 2(bridge_slave_1) entered blocking state [ 70.577920][ T5785] bridge0: port 2(bridge_slave_1) entered disabled state [ 70.585249][ T5785] bridge_slave_1: entered allmulticast mode [ 70.591989][ T5785] bridge_slave_1: entered promiscuous mode [ 70.610057][ T5784] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 70.617101][ T5784] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 70.643129][ T5784] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 70.700421][ T5782] bridge0: port 1(bridge_slave_0) entered blocking state [ 70.707662][ T5782] bridge0: port 1(bridge_slave_0) entered disabled state [ 70.715659][ T5782] bridge_slave_0: entered allmulticast mode [ 70.722407][ T5782] bridge_slave_0: entered promiscuous mode [ 70.731507][ T5782] bridge0: port 2(bridge_slave_1) entered blocking state [ 70.738700][ T5782] bridge0: port 2(bridge_slave_1) entered disabled state [ 70.747038][ T5782] bridge_slave_1: entered allmulticast mode [ 70.753967][ T5782] bridge_slave_1: entered promiscuous mode [ 70.813574][ T5785] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 70.849137][ T5785] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 70.861562][ T5784] hsr_slave_0: entered promiscuous mode [ 70.868144][ T5784] hsr_slave_1: entered promiscuous mode [ 70.875111][ T5784] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 70.882836][ T5784] Cannot create hsr debugfs directory [ 70.891414][ T5782] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 70.933973][ T5782] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 70.967826][ T5785] team0: Port device team_slave_0 added [ 71.023473][ T5785] team0: Port device team_slave_1 added [ 71.044026][ T5782] team0: Port device team_slave_0 added [ 71.079611][ T5785] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 71.086669][ T5785] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 71.112663][ T5785] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 71.127120][ T5782] team0: Port device team_slave_1 added [ 71.142327][ T5785] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 71.149467][ T5785] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 71.175962][ T5785] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 71.225003][ T5786] Bluetooth: hci0: command tx timeout [ 71.237667][ T5782] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 71.244762][ T5782] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 71.270765][ T5782] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 71.310331][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.317206][ T1285] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.325064][ T5782] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 71.332017][ T5782] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 71.358417][ T5782] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 71.384570][ T5786] Bluetooth: hci3: command tx timeout [ 71.390235][ T5786] Bluetooth: hci2: command tx timeout [ 71.395927][ T5790] Bluetooth: hci1: command tx timeout [ 71.419477][ T5783] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 71.431586][ T5783] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 71.442022][ T5783] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 71.459652][ T5785] hsr_slave_0: entered promiscuous mode [ 71.466671][ T5785] hsr_slave_1: entered promiscuous mode [ 71.472751][ T5785] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 71.480501][ T5785] Cannot create hsr debugfs directory [ 71.518955][ T5783] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 71.618162][ T5782] hsr_slave_0: entered promiscuous mode [ 71.625003][ T5782] hsr_slave_1: entered promiscuous mode [ 71.631189][ T5782] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 71.639281][ T5782] Cannot create hsr debugfs directory [ 71.693368][ T5784] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 71.732614][ T5784] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 71.768647][ T5784] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 71.802183][ T5784] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 71.909819][ T5785] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 71.919534][ T5785] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 71.948442][ T5785] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 71.962983][ T5785] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 72.053431][ T5782] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 72.072307][ T5782] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 72.082795][ T5782] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 72.093948][ T5782] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 72.172462][ T5784] 8021q: adding VLAN 0 to HW filter on device bond0 [ 72.196452][ T5783] 8021q: adding VLAN 0 to HW filter on device bond0 [ 72.219847][ T5783] 8021q: adding VLAN 0 to HW filter on device team0 [ 72.260893][ T3503] bridge0: port 1(bridge_slave_0) entered blocking state [ 72.268161][ T3503] bridge0: port 1(bridge_slave_0) entered forwarding state [ 72.291779][ T5784] 8021q: adding VLAN 0 to HW filter on device team0 [ 72.310397][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 72.317558][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 72.336876][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 72.344104][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 72.362360][ T5785] 8021q: adding VLAN 0 to HW filter on device bond0 [ 72.397387][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 72.404552][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 72.453862][ T5785] 8021q: adding VLAN 0 to HW filter on device team0 [ 72.483337][ T3503] bridge0: port 1(bridge_slave_0) entered blocking state [ 72.490480][ T3503] bridge0: port 1(bridge_slave_0) entered forwarding state [ 72.503631][ T3503] bridge0: port 2(bridge_slave_1) entered blocking state [ 72.510740][ T3503] bridge0: port 2(bridge_slave_1) entered forwarding state [ 72.529738][ T5782] 8021q: adding VLAN 0 to HW filter on device bond0 [ 72.602886][ T5782] 8021q: adding VLAN 0 to HW filter on device team0 [ 72.618256][ T1093] bridge0: port 1(bridge_slave_0) entered blocking state [ 72.625407][ T1093] bridge0: port 1(bridge_slave_0) entered forwarding state [ 72.652909][ T1093] bridge0: port 2(bridge_slave_1) entered blocking state [ 72.660091][ T1093] bridge0: port 2(bridge_slave_1) entered forwarding state [ 73.055489][ T5783] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 73.095696][ T5784] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 73.165896][ T5785] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 73.191601][ T5782] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 73.212902][ T5783] veth0_vlan: entered promiscuous mode [ 73.240478][ T5783] veth1_vlan: entered promiscuous mode [ 73.249540][ T5784] veth0_vlan: entered promiscuous mode [ 73.279979][ T5784] veth1_vlan: entered promiscuous mode [ 73.305127][ T5786] Bluetooth: hci0: command tx timeout [ 73.318522][ T5783] veth0_macvtap: entered promiscuous mode [ 73.332474][ T5783] veth1_macvtap: entered promiscuous mode [ 73.392690][ T5783] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 73.401774][ T5785] veth0_vlan: entered promiscuous mode [ 73.422802][ T5785] veth1_vlan: entered promiscuous mode [ 73.435128][ T5784] veth0_macvtap: entered promiscuous mode [ 73.442915][ T5782] veth0_vlan: entered promiscuous mode [ 73.455276][ T5783] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 73.464625][ T5786] Bluetooth: hci2: command tx timeout [ 73.466855][ T5790] Bluetooth: hci1: command tx timeout [ 73.470039][ T5786] Bluetooth: hci3: command tx timeout [ 73.486476][ T5784] veth1_macvtap: entered promiscuous mode [ 73.496897][ T5782] veth1_vlan: entered promiscuous mode [ 73.518206][ T5783] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.527318][ T5783] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.537015][ T5783] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.546333][ T5783] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.573309][ T5784] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 73.584411][ T5784] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.596468][ T5784] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 73.620129][ T5784] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 73.630829][ T5784] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.645275][ T5784] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 73.690628][ T5782] veth0_macvtap: entered promiscuous mode [ 73.699597][ T5784] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.708948][ T5784] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.718273][ T5784] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.727077][ T5784] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.760508][ T5785] veth0_macvtap: entered promiscuous mode [ 73.773301][ T5782] veth1_macvtap: entered promiscuous mode [ 73.810485][ T5785] veth1_macvtap: entered promiscuous mode [ 73.853538][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 73.862060][ T5785] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 73.875177][ T5785] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.879775][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 73.886118][ T5785] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 73.903129][ T5785] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.914056][ T5785] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 73.939316][ T5782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 73.952390][ T5782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.962623][ T5782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 73.973170][ T5782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.983190][ T5782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 73.994315][ T5782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.007351][ T5782] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 74.025784][ T5785] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 74.036457][ T5785] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.047319][ T5785] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 74.057847][ T5785] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.069398][ T5785] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 74.106661][ T5785] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.116358][ T5785] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.125935][ T5785] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.134990][ T5785] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.146510][ T5782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 74.157620][ T5782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.168540][ T5782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 74.179236][ T5782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.189687][ T5782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 74.200795][ T5782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.212147][ T5782] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 74.230855][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.239560][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.255802][ T5782] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.265925][ T5782] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.276007][ T5782] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.284835][ T5782] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.379121][ T3503] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.397035][ T3503] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.484618][ T3503] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.492466][ T3503] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.603843][ T1138] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.639578][ T1138] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.694810][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.703372][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.767210][ T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.794943][ T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.911400][ T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.965518][ T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 75.045690][ T5875] syz.3.4 (5875): drop_caches: 2 [ 75.384689][ T5786] Bluetooth: hci0: command tx timeout [ 75.552023][ T5798] Bluetooth: hci2: command tx timeout [ 75.558421][ T5798] Bluetooth: hci3: command tx timeout [ 75.565422][ T5786] Bluetooth: hci1: command tx timeout [ 76.124411][ T5886] syz.2.6[5886]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set [ 76.618963][ T5892] Zero length message leads to an empty skb [ 76.969054][ T5886] loop2: detected capacity change from 0 to 32768 [ 77.037470][ T5886] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 scanned by syz.2.6 (5886) [ 77.168240][ T5886] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 77.204576][ T5886] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 77.244358][ T5886] BTRFS info (device loop2): using free space tree [ 77.369072][ T5886] BTRFS info (device loop2): enabling ssd optimizations [ 77.379086][ T5886] BTRFS info (device loop2): auto enabling async discard [ 77.534312][ T5786] Bluetooth: hci0: command tx timeout [ 77.625062][ T5786] Bluetooth: hci1: command tx timeout [ 77.630928][ T5786] Bluetooth: hci3: command tx timeout [ 77.636755][ T5786] Bluetooth: hci2: command tx timeout [ 78.933096][ T5897] loop0: detected capacity change from 0 to 32768 [ 79.129546][ T5782] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 79.202855][ T5897] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 79.407573][ T5775] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 9 /dev/loop2 scanned by udevd (5775) [ 79.556341][ T5897] XFS (loop0): Ending clean mount [ 79.641854][ T5897] XFS (loop0): Quotacheck needed: Please wait. [ 79.767832][ T5897] XFS (loop0): Quotacheck: Done. [ 81.292149][ T5783] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 81.311061][ T5939] syz.2.15 (5939): drop_caches: 2 [ 81.995815][ T5798] Bluetooth: Unknown BR/EDR signaling command 0x0d [ 81.996064][ T5798] Bluetooth: Wrong link type (-22) [ 81.997252][ T5798] Bluetooth: Unknown BR/EDR signaling command 0x0f [ 81.997306][ T5798] Bluetooth: Wrong link type (-22) [ 85.001266][ T5981] loop3: detected capacity change from 0 to 32768 [ 85.009296][ T5981] ======================================================= [ 85.009296][ T5981] WARNING: The mand mount option has been deprecated and [ 85.009296][ T5981] and is ignored by this kernel. Remove the mand [ 85.009296][ T5981] option from the mount to silence this warning. [ 85.009296][ T5981] ======================================================= [ 85.016456][ T5983] loop0: detected capacity change from 0 to 1024 [ 85.145645][ T5981] ocfs2: Mounting device (7,3) on (node local, slot 0) with writeback data mode. [ 85.156720][ T5983] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869) [ 85.191376][ T5983] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 85.227093][ T5983] EXT4-fs error (device loop0): ext4_get_journal_inode:5805: inode #5: comm syz.0.29: unexpected bad inode w/o EXT4_IGET_BAD [ 85.373987][ T5983] EXT4-fs (loop0): no journal found [ 85.397810][ T5983] EXT4-fs (loop0): can't get journal size [ 85.410884][ T5983] EXT4-fs error (device loop0): ext4_protect_reserved_inode:160: inode #5: comm syz.0.29: unexpected bad inode w/o EXT4_IGET_BAD [ 85.425497][ T5983] EXT4-fs (loop0): failed to initialize system zone (-117) [ 85.429131][ T5784] ocfs2: Unmounting device (7,3) on (node local) [ 85.432800][ T5983] EXT4-fs (loop0): mount failed [ 87.212773][ T5798] Bluetooth: Unknown BR/EDR signaling command 0x0d [ 87.212832][ T5798] Bluetooth: Wrong link type (-22) [ 87.213231][ T5798] Bluetooth: Unknown BR/EDR signaling command 0x0f [ 87.213245][ T5798] Bluetooth: Wrong link type (-22) [ 87.378926][ T27] cfg80211: failed to load regulatory.db [ 87.698087][ T6000] loop3: detected capacity change from 0 to 1024 [ 87.717365][ T6000] EXT4-fs: Ignoring removed orlov option [ 87.784608][ T6000] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 87.928323][ T6000] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 89.401616][ T5890] Set syz1 is full, maxelem 65536 reached [ 91.754345][ T6027] loop1: detected capacity change from 0 to 32768 [ 91.809331][ T6027] ocfs2: Mounting device (7,1) on (node local, slot 0) with writeback data mode. [ 91.831346][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 92.112658][ T5785] ocfs2: Unmounting device (7,1) on (node local) [ 92.947551][ T6039] loop3: detected capacity change from 0 to 256 [ 92.960188][ T5798] Bluetooth: Unknown BR/EDR signaling command 0x0d [ 92.966961][ T5798] Bluetooth: Wrong link type (-22) [ 92.972682][ T5798] Bluetooth: Unknown BR/EDR signaling command 0x0f [ 92.987920][ T5798] Bluetooth: Wrong link type (-22) [ 93.191783][ T6039] syz.3.41 uses obsolete (PF_INET,SOCK_PACKET) [ 95.403475][ T6042] loop1: detected capacity change from 0 to 1024 [ 95.476069][ T6042] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869) [ 95.692958][ T6042] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 95.756708][ T6042] EXT4-fs error (device loop1): ext4_get_journal_inode:5805: inode #5: comm syz.1.43: unexpected bad inode w/o EXT4_IGET_BAD [ 95.844285][ T6042] EXT4-fs (loop1): no journal found [ 95.849551][ T6042] EXT4-fs (loop1): can't get journal size [ 96.050118][ T6042] EXT4-fs error (device loop1): ext4_protect_reserved_inode:160: inode #5: comm syz.1.43: unexpected bad inode w/o EXT4_IGET_BAD [ 96.091250][ T6042] EXT4-fs (loop1): failed to initialize system zone (-117) [ 96.101409][ T6042] EXT4-fs (loop1): mount failed [ 99.195690][ T5798] Bluetooth: Unknown BR/EDR signaling command 0x0d [ 99.195750][ T5798] Bluetooth: Wrong link type (-22) [ 99.196054][ T5798] Bluetooth: Unknown BR/EDR signaling command 0x0f [ 99.196089][ T5798] Bluetooth: Wrong link type (-22) [ 100.890636][ T6095] netlink: 'syz.1.58': attribute type 4 has an invalid length. [ 100.898575][ T6095] netlink: 'syz.1.58': attribute type 5 has an invalid length. [ 101.795617][ T6101] loop3: detected capacity change from 0 to 1024 [ 101.841907][ T6101] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869) [ 101.894372][ T6101] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 101.994322][ T6101] EXT4-fs error (device loop3): ext4_get_journal_inode:5805: inode #5: comm syz.3.60: unexpected bad inode w/o EXT4_IGET_BAD [ 102.133656][ T6101] EXT4-fs (loop3): no journal found [ 102.243758][ T6101] EXT4-fs (loop3): can't get journal size [ 102.427317][ T6101] EXT4-fs error (device loop3): ext4_protect_reserved_inode:160: inode #5: comm syz.3.60: unexpected bad inode w/o EXT4_IGET_BAD [ 102.674644][ T6101] EXT4-fs (loop3): failed to initialize system zone (-117) [ 102.697201][ T6101] EXT4-fs (loop3): mount failed [ 102.908345][ T6107] loop2: detected capacity change from 0 to 4096 [ 102.935233][ T6107] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512). [ 104.367231][ T6122] loop2: detected capacity change from 0 to 512 [ 104.387796][ T6122] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 104.502618][ T6122] EXT4-fs (loop2): 1 orphan inode deleted [ 104.516220][ T1093] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 104.555365][ T6122] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 104.594331][ T1093] EXT4-fs error (device loop2): ext4_release_dquot:6974: comm kworker/u4:6: Failed to release dquot type 1 [ 104.616974][ T6122] ext4 filesystem being mounted at /20/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 104.772987][ T5782] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 106.439896][ T6141] loop1: detected capacity change from 0 to 512 [ 106.829916][ T6138] syz.3.68 (6138): drop_caches: 2 [ 106.855427][ T6141] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 107.031136][ T6047] Set syz1 is full, maxelem 65536 reached [ 107.126923][ T5785] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 108.527375][ T6166] loop0: detected capacity change from 0 to 1024 [ 108.605860][ T6166] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869) [ 108.649111][ T6166] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 108.870779][ T6166] EXT4-fs error (device loop0): ext4_get_journal_inode:5805: inode #5: comm syz.0.77: unexpected bad inode w/o EXT4_IGET_BAD [ 109.207960][ T6166] EXT4-fs (loop0): no journal found [ 109.213306][ T6166] EXT4-fs (loop0): can't get journal size [ 109.459970][ T6166] EXT4-fs error (device loop0): ext4_protect_reserved_inode:160: inode #5: comm syz.0.77: unexpected bad inode w/o EXT4_IGET_BAD [ 109.525761][ T6166] EXT4-fs (loop0): failed to initialize system zone (-117) [ 109.533099][ T6166] EXT4-fs (loop0): mount failed [ 110.834465][ T5798] Bluetooth: Unknown BR/EDR signaling command 0x0d [ 110.834486][ T5798] Bluetooth: Wrong link type (-22) [ 110.834609][ T5798] Bluetooth: Unknown BR/EDR signaling command 0x0f [ 110.834621][ T5798] Bluetooth: Wrong link type (-22) [ 113.594210][ T5798] Bluetooth: Unknown BR/EDR signaling command 0x0d [ 113.600919][ T5798] Bluetooth: Wrong link type (-22) [ 113.606291][ T5798] Bluetooth: Unknown BR/EDR signaling command 0x0f [ 113.612951][ T5798] Bluetooth: Wrong link type (-22) [ 113.787818][ T6211] loop0: detected capacity change from 0 to 4096 [ 113.815727][ T6211] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 114.245124][ T6226] Bluetooth: MGMT ver 1.22 [ 116.640132][ T6240] loop0: detected capacity change from 0 to 1024 [ 116.701706][ T6240] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869) [ 116.733146][ T6240] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 116.777454][ T6240] EXT4-fs error (device loop0): ext4_get_journal_inode:5805: inode #5: comm syz.0.96: unexpected bad inode w/o EXT4_IGET_BAD [ 116.922925][ T6240] EXT4-fs (loop0): no journal found [ 116.931820][ T6240] EXT4-fs (loop0): can't get journal size [ 116.943526][ T6240] EXT4-fs error (device loop0): ext4_protect_reserved_inode:160: inode #5: comm syz.0.96: unexpected bad inode w/o EXT4_IGET_BAD [ 117.044701][ T5798] Bluetooth: Unknown BR/EDR signaling command 0x0d [ 117.044820][ T5798] Bluetooth: Wrong link type (-22) [ 117.045916][ T5798] Bluetooth: Unknown BR/EDR signaling command 0x0f [ 117.045952][ T5798] Bluetooth: Wrong link type (-22) [ 117.047558][ T5798] Bluetooth: hci2: link tx timeout [ 117.047995][ T5798] Bluetooth: hci2: killing stalled connection 11:aa:aa:aa:aa:aa [ 117.190189][ T6240] EXT4-fs (loop0): failed to initialize system zone (-117) [ 117.303829][ T6240] EXT4-fs (loop0): mount failed [ 118.365780][ T6263] loop1: detected capacity change from 0 to 256 [ 119.144217][ T5798] Bluetooth: hci2: command 0x0406 tx timeout [ 119.581659][ T6269] loop1: detected capacity change from 0 to 256 [ 121.705109][ T6278] loop1: detected capacity change from 0 to 4096 [ 121.744293][ T6278] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512). [ 121.790450][ T6283] loop3: detected capacity change from 0 to 64 [ 121.874262][ T6283] BFS-fs: bfs_fill_super(): loop3 is unclean, continuing [ 125.117651][ T6318] loop2: detected capacity change from 0 to 1024 [ 125.153070][ T6318] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869) [ 125.194305][ T6318] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 125.219955][ T6318] EXT4-fs error (device loop2): ext4_get_journal_inode:5805: inode #5: comm syz.2.121: unexpected bad inode w/o EXT4_IGET_BAD [ 125.253591][ T6318] EXT4-fs (loop2): no journal found [ 125.259183][ T6318] EXT4-fs (loop2): can't get journal size [ 125.308912][ T6318] EXT4-fs error (device loop2): ext4_protect_reserved_inode:160: inode #5: comm syz.2.121: unexpected bad inode w/o EXT4_IGET_BAD [ 125.360463][ T6318] EXT4-fs (loop2): failed to initialize system zone (-117) [ 125.378152][ T6323] loop1: detected capacity change from 0 to 64 [ 125.384323][ T6318] EXT4-fs (loop2): mount failed [ 125.464564][ T6323] BFS-fs: bfs_fill_super(): loop1 is unclean, continuing [ 126.493852][ T6330] loop3: detected capacity change from 0 to 4096 [ 126.581421][ T6330] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512). [ 126.806188][ T6341] loop1: detected capacity change from 0 to 256 [ 131.440402][ T5798] Bluetooth: Unknown BR/EDR signaling command 0x0d [ 131.440447][ T5798] Bluetooth: Wrong link type (-22) [ 131.440681][ T5798] Bluetooth: Unknown BR/EDR signaling command 0x0f [ 131.440713][ T5798] Bluetooth: Wrong link type (-22) [ 131.441181][ T5798] Bluetooth: hci1: link tx timeout [ 131.442061][ T5798] Bluetooth: hci1: killing stalled connection 10:aa:aa:aa:aa:aa [ 131.450772][ T5798] Bluetooth: hci1: link tx timeout [ 131.450828][ T5798] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa [ 131.813215][ T6378] loop2: detected capacity change from 0 to 256 [ 132.005164][ T6359] loop3: detected capacity change from 0 to 32768 [ 132.052784][ T6359] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 132.112140][ T6359] workqueue: Failed to create a rescuer kthread for wq "xfs-log/loop3": -EINTR [ 132.112868][ T6359] XFS (loop3): log mount failed [ 132.683106][ T5775] I/O error, dev loop3, sector 32640 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 132.760656][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.770995][ T1285] ieee802154 phy1 wpan1: encryption failed: -22 [ 132.980988][ T6397] loop1: detected capacity change from 0 to 4096 [ 133.009690][ T6397] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512). [ 133.340864][ T6401] loop3: detected capacity change from 0 to 1024 [ 133.348321][ T6401] EXT4-fs: Ignoring removed orlov option [ 133.390130][ T6401] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 133.469187][ T5798] Bluetooth: hci1: command 0x0406 tx timeout [ 133.797810][ T6401] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 135.059740][ T5798] Bluetooth: Unknown BR/EDR signaling command 0x0d [ 135.059857][ T5798] Bluetooth: Wrong link type (-22) [ 135.067275][ T5798] Bluetooth: Unknown BR/EDR signaling command 0x0f [ 135.067310][ T5798] Bluetooth: Wrong link type (-22) [ 135.068899][ T5798] Bluetooth: hci0: link tx timeout [ 135.069311][ T5798] Bluetooth: hci0: killing stalled connection 11:aa:aa:aa:aa:aa [ 135.650350][ T5798] Bluetooth: hci1: command 0x0406 tx timeout [ 135.820709][ T6424] loop1: detected capacity change from 0 to 256 [ 137.303924][ T5786] Bluetooth: hci0: command 0x0406 tx timeout [ 137.603401][ T6439] loop0: detected capacity change from 0 to 4096 [ 137.634228][ T6439] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 137.659771][ T6436] loop2: detected capacity change from 0 to 4096 [ 137.702983][ T6436] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512). [ 141.086212][ T5790] Bluetooth: hci1: ACL packet for unknown connection handle 200 [ 141.126885][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 144.282200][ T6490] loop2: detected capacity change from 0 to 4096 [ 144.310989][ T6490] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512). [ 144.558846][ T6494] loop3: detected capacity change from 0 to 256 [ 146.066305][ T6499] loop1: detected capacity change from 0 to 4096 [ 146.136692][ T6499] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512). [ 146.434848][ T5790] Bluetooth: Unknown BR/EDR signaling command 0x0d [ 146.434906][ T5790] Bluetooth: Wrong link type (-22) [ 146.435405][ T5790] Bluetooth: Unknown BR/EDR signaling command 0x0f [ 146.435438][ T5790] Bluetooth: Wrong link type (-22) [ 149.163009][ T6524] loop1: detected capacity change from 0 to 1024 [ 149.173083][ T6524] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869) [ 149.193487][ T6524] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 149.244607][ T6524] EXT4-fs error (device loop1): ext4_get_journal_inode:5805: inode #5: comm syz.1.179: unexpected bad inode w/o EXT4_IGET_BAD [ 149.424256][ T6524] EXT4-fs (loop1): no journal found [ 149.429530][ T6524] EXT4-fs (loop1): can't get journal size [ 149.535242][ T6524] EXT4-fs error (device loop1): ext4_protect_reserved_inode:160: inode #5: comm syz.1.179: unexpected bad inode w/o EXT4_IGET_BAD [ 149.552190][ T6524] EXT4-fs (loop1): failed to initialize system zone (-117) [ 149.560114][ T6524] EXT4-fs (loop1): mount failed [ 150.705514][ T6529] syz.2.175 (6529): drop_caches: 2 [ 152.873947][ T5790] Bluetooth: Unknown BR/EDR signaling command 0x0d [ 152.874004][ T5790] Bluetooth: Wrong link type (-22) [ 152.875575][ T5790] Bluetooth: Unknown BR/EDR signaling command 0x0f [ 152.875633][ T5790] Bluetooth: Wrong link type (-22) [ 157.031598][ T6572] syz.1.192 (6572): drop_caches: 2 [ 157.460568][ T6580] loop3: detected capacity change from 0 to 1024 [ 157.491845][ T6580] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869) [ 157.518713][ T6580] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 157.595833][ T6580] EXT4-fs error (device loop3): ext4_get_journal_inode:5805: inode #5: comm syz.3.197: unexpected bad inode w/o EXT4_IGET_BAD [ 157.855703][ T5790] Bluetooth: Unknown BR/EDR signaling command 0x0d [ 157.855763][ T5790] Bluetooth: Wrong link type (-22) [ 157.859874][ T5790] Bluetooth: Unknown BR/EDR signaling command 0x0f [ 157.859930][ T5790] Bluetooth: Wrong link type (-22) [ 157.861683][ T6580] EXT4-fs (loop3): no journal found [ 157.861727][ T6580] EXT4-fs (loop3): can't get journal size [ 159.101455][ T6580] EXT4-fs error (device loop3): ext4_protect_reserved_inode:160: inode #5: comm syz.3.197: unexpected bad inode w/o EXT4_IGET_BAD [ 159.183965][ T6580] EXT4-fs (loop3): failed to initialize system zone (-117) [ 159.212050][ T6580] EXT4-fs (loop3): mount failed [ 160.345691][ T6603] loop0: detected capacity change from 0 to 512 [ 160.407194][ T6603] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 160.459364][ T6603] ext4 filesystem being mounted at /39/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 160.725025][ T6619] loop2: detected capacity change from 0 to 128 [ 160.992574][ T5783] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 161.094419][ T6627] loop3: detected capacity change from 0 to 1024 [ 161.114054][ T6627] EXT4-fs: Ignoring removed orlov option [ 161.152183][ T6627] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 161.196306][ T6627] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 162.574206][ T6641] loop1: detected capacity change from 0 to 256 [ 163.058941][ T6644] loop0: detected capacity change from 0 to 256 [ 164.535347][ T6639] sched: RT throttling activated [ 165.542353][ T6647] loop1: detected capacity change from 0 to 1024 [ 165.712201][ T6647] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869) [ 165.760814][ T6647] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 165.849950][ T6647] EXT4-fs error (device loop1): ext4_get_journal_inode:5805: inode #5: comm syz.1.217: unexpected bad inode w/o EXT4_IGET_BAD [ 165.877170][ T6647] EXT4-fs (loop1): no journal found [ 165.888772][ T6647] EXT4-fs (loop1): can't get journal size [ 165.903824][ T6647] EXT4-fs error (device loop1): ext4_protect_reserved_inode:160: inode #5: comm syz.1.217: unexpected bad inode w/o EXT4_IGET_BAD [ 165.932452][ T6647] EXT4-fs (loop1): failed to initialize system zone (-117) [ 165.949371][ T6647] EXT4-fs (loop1): mount failed [ 167.539544][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 168.083406][ T6673] syz.1.223 (6673): drop_caches: 2 [ 169.539376][ T5790] Bluetooth: Unknown BR/EDR signaling command 0x0d [ 169.546524][ T5790] Bluetooth: Wrong link type (-22) [ 169.552042][ T5790] Bluetooth: Unknown BR/EDR signaling command 0x0f [ 169.558898][ T5790] Bluetooth: Wrong link type (-22) [ 170.598256][ T6691] loop2: detected capacity change from 0 to 1024 [ 170.617321][ T6691] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869) [ 170.633299][ T6691] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 170.647370][ T6691] EXT4-fs error (device loop2): ext4_get_journal_inode:5805: inode #5: comm syz.2.229: unexpected bad inode w/o EXT4_IGET_BAD [ 170.664535][ T6691] EXT4-fs (loop2): no journal found [ 170.669799][ T6691] EXT4-fs (loop2): can't get journal size [ 170.694657][ T6691] EXT4-fs error (device loop2): ext4_protect_reserved_inode:160: inode #5: comm syz.2.229: unexpected bad inode w/o EXT4_IGET_BAD [ 170.714590][ T6691] EXT4-fs (loop2): failed to initialize system zone (-117) [ 170.734275][ T6691] EXT4-fs (loop2): mount failed [ 171.242383][ T6698] loop3: detected capacity change from 0 to 1024 [ 171.279599][ T6698] EXT4-fs: Ignoring removed orlov option [ 171.331142][ T6698] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 171.912155][ T6698] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 172.686926][ T6720] syz.2.234 (6720): drop_caches: 2 [ 173.361778][ T5790] Bluetooth: Unknown BR/EDR signaling command 0x0d [ 173.368465][ T5790] Bluetooth: Wrong link type (-22) [ 173.384560][ T5790] Bluetooth: Unknown BR/EDR signaling command 0x0f [ 173.391097][ T5790] Bluetooth: Wrong link type (-22) [ 175.251635][ T6743] loop1: detected capacity change from 0 to 1024 [ 175.275839][ T6743] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869) [ 175.301262][ T6743] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 175.364152][ T6743] EXT4-fs error (device loop1): ext4_get_journal_inode:5805: inode #5: comm syz.1.241: unexpected bad inode w/o EXT4_IGET_BAD [ 175.426543][ T6743] EXT4-fs (loop1): no journal found [ 175.438790][ T6743] EXT4-fs (loop1): can't get journal size [ 175.474507][ T6743] EXT4-fs error (device loop1): ext4_protect_reserved_inode:160: inode #5: comm syz.1.241: unexpected bad inode w/o EXT4_IGET_BAD [ 175.508118][ T6743] EXT4-fs (loop1): failed to initialize system zone (-117) [ 175.530640][ T6743] EXT4-fs (loop1): mount failed [ 175.906072][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 176.634287][ T5790] Bluetooth: hci1: ACL packet for unknown connection handle 200 [ 178.508384][ T6767] syz.1.248 (6767): drop_caches: 2 [ 179.872270][ T6785] loop0: detected capacity change from 0 to 1024 [ 179.892142][ T6785] EXT4-fs: Ignoring removed orlov option [ 179.900088][ T6785] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 180.016946][ T6785] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 180.418154][ T6798] loop1: detected capacity change from 0 to 1024 [ 180.454730][ T6798] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869) [ 180.484974][ T6798] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 180.523679][ T6798] EXT4-fs error (device loop1): ext4_get_journal_inode:5805: inode #5: comm syz.1.257: unexpected bad inode w/o EXT4_IGET_BAD [ 180.556341][ T6798] EXT4-fs (loop1): no journal found [ 180.568039][ T6798] EXT4-fs (loop1): can't get journal size [ 180.584703][ T6798] EXT4-fs error (device loop1): ext4_protect_reserved_inode:160: inode #5: comm syz.1.257: unexpected bad inode w/o EXT4_IGET_BAD [ 180.610113][ T6798] EXT4-fs (loop1): failed to initialize system zone (-117) [ 180.628097][ T6798] EXT4-fs (loop1): mount failed [ 181.642327][ T5790] Bluetooth: Unknown BR/EDR signaling command 0x0d [ 181.642386][ T5790] Bluetooth: Wrong link type (-22) [ 181.643454][ T5790] Bluetooth: Unknown BR/EDR signaling command 0x0f [ 181.643491][ T5790] Bluetooth: Wrong link type (-22) [ 181.644516][ T5790] Bluetooth: hci3: link tx timeout [ 181.644914][ T5790] Bluetooth: hci3: killing stalled connection 10:aa:aa:aa:aa:aa [ 181.646990][ T5790] Bluetooth: hci3: link tx timeout [ 181.647045][ T5790] Bluetooth: hci3: killing stalled connection 11:aa:aa:aa:aa:aa [ 182.225165][ T5783] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 183.898111][ T6821] syz.0.260 (6821): drop_caches: 2 [ 183.907080][ T5786] Bluetooth: hci3: command 0x0406 tx timeout [ 185.243725][ T6838] loop3: detected capacity change from 0 to 1024 [ 185.283417][ T6838] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869) [ 185.333048][ T6838] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 185.359156][ T6843] loop2: detected capacity change from 0 to 1024 [ 185.380434][ T6843] EXT4-fs: Ignoring removed orlov option [ 185.444441][ T6838] EXT4-fs error (device loop3): ext4_get_journal_inode:5805: inode #5: comm syz.3.268: unexpected bad inode w/o EXT4_IGET_BAD [ 185.466821][ T6843] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 185.524284][ T6838] EXT4-fs (loop3): no journal found [ 185.529680][ T6838] EXT4-fs (loop3): can't get journal size [ 185.543198][ T6838] EXT4-fs error (device loop3): ext4_protect_reserved_inode:160: inode #5: comm syz.3.268: unexpected bad inode w/o EXT4_IGET_BAD [ 185.587397][ T6838] EXT4-fs (loop3): failed to initialize system zone (-117) [ 185.595923][ T6838] EXT4-fs (loop3): mount failed [ 185.623042][ T6843] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 185.979356][ T5786] Bluetooth: Unknown BR/EDR signaling command 0x0d [ 185.979422][ T5786] Bluetooth: Wrong link type (-22) [ 185.979715][ T5786] Bluetooth: Unknown BR/EDR signaling command 0x0f [ 185.979752][ T5786] Bluetooth: Wrong link type (-22) [ 186.040484][ T5786] Bluetooth: hci3: command 0x0406 tx timeout [ 187.448060][ T5782] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 187.929812][ T6869] syz.2.273 (6869): drop_caches: 2 [ 190.455891][ T6890] loop0: detected capacity change from 0 to 1024 [ 190.480527][ T6890] EXT4-fs: Ignoring removed orlov option [ 190.531725][ T6890] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 191.951762][ T5790] Bluetooth: Unknown BR/EDR signaling command 0x0d [ 191.958912][ T5790] Bluetooth: Wrong link type (-22) [ 191.958989][ T5790] Bluetooth: Unknown BR/EDR signaling command 0x0f [ 191.959003][ T5790] Bluetooth: Wrong link type (-22) [ 192.282214][ T6890] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 193.095398][ T6907] syz.1.284 (6907): drop_caches: 2 [ 193.820857][ T5783] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 194.075882][ T6917] loop3: detected capacity change from 0 to 1024 [ 194.298522][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.304982][ T1285] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.332846][ T6917] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869) [ 195.085539][ T6917] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 195.316681][ T6917] EXT4-fs error (device loop3): ext4_get_journal_inode:5805: inode #5: comm syz.3.288: unexpected bad inode w/o EXT4_IGET_BAD [ 195.381691][ T6917] EXT4-fs (loop3): no journal found [ 195.428713][ T6917] EXT4-fs (loop3): can't get journal size [ 195.469979][ T6917] EXT4-fs error (device loop3): ext4_protect_reserved_inode:160: inode #5: comm syz.3.288: unexpected bad inode w/o EXT4_IGET_BAD [ 195.514284][ T6917] EXT4-fs (loop3): failed to initialize system zone (-117) [ 195.521631][ T6917] EXT4-fs (loop3): mount failed [ 196.001613][ T6935] loop2: detected capacity change from 0 to 256 [ 197.700380][ T5798] Bluetooth: hci2: command 0x0406 tx timeout [ 197.706795][ T5798] Bluetooth: hci0: command 0x0406 tx timeout [ 198.767568][ T5798] Bluetooth: hci0: ACL packet for unknown connection handle 200 [ 199.015453][ T6950] loop2: detected capacity change from 0 to 1024 [ 199.029218][ T6950] EXT4-fs: Ignoring removed orlov option [ 199.217117][ T6950] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 199.716613][ T6950] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 200.137983][ T6960] syz.0.298 (6960): drop_caches: 2 [ 201.777348][ T6971] [ 201.779734][ T6971] ====================================================== [ 201.786762][ T6971] WARNING: possible circular locking dependency detected [ 201.793792][ T6971] 6.6.98-syzkaller #0 Not tainted [ 201.798827][ T6971] ------------------------------------------------------ [ 201.805861][ T6971] syz.2.296/6971 is trying to acquire lock: [ 201.811774][ T6971] ffff88805c810410 (&sb->s_type->i_mutex_key#8/1){+.+.}-{3:3}, at: ext4_xattr_inode_lookup_create+0x1917/0x1d80 [ 201.823684][ T6971] [ 201.823684][ T6971] but task is already holding lock: [ 201.831066][ T6971] ffff88805c811688 (&ei->i_data_sem/3){++++}-{3:3}, at: ext4_setattr+0x15fa/0x1c90 [ 201.840421][ T6971] [ 201.840421][ T6971] which lock already depends on the new lock. [ 201.840421][ T6971] [ 201.850847][ T6971] [ 201.850847][ T6971] the existing dependency chain (in reverse order) is: [ 201.859873][ T6971] [ 201.859873][ T6971] -> #1 (&ei->i_data_sem/3){++++}-{3:3}: [ 201.867762][ T6971] down_write+0x97/0x1f0 [ 201.872571][ T6971] ext4_xattr_inode_lookup_create+0x15fe/0x1d80 [ 201.879377][ T6971] ext4_xattr_ibody_set+0x202/0x6a0 [ 201.885142][ T6971] ext4_xattr_set_handle+0xaad/0x1290 [ 201.891052][ T6971] ext4_xattr_set+0x22d/0x320 [ 201.896267][ T6971] __vfs_setxattr+0x431/0x470 [ 201.901490][ T6971] __vfs_setxattr_noperm+0x12d/0x5e0 [ 201.907327][ T6971] vfs_setxattr+0x16c/0x2f0 [ 201.912389][ T6971] path_setxattr+0x362/0x550 [ 201.917510][ T6971] __x64_sys_setxattr+0xbb/0xd0 [ 201.922905][ T6971] do_syscall_64+0x55/0xb0 [ 201.927870][ T6971] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 201.934311][ T6971] [ 201.934311][ T6971] -> #0 (&sb->s_type->i_mutex_key#8/1){+.+.}-{3:3}: [ 201.943150][ T6971] __lock_acquire+0x2ddb/0x7c80 [ 201.948547][ T6971] lock_acquire+0x197/0x410 [ 201.953594][ T6971] down_write+0x97/0x1f0 [ 201.958388][ T6971] ext4_xattr_inode_lookup_create+0x1917/0x1d80 [ 201.965190][ T6971] ext4_xattr_block_set+0x23e/0x32a0 [ 201.971020][ T6971] ext4_expand_extra_isize_ea+0x10ea/0x19e0 [ 201.977457][ T6971] __ext4_expand_extra_isize+0x306/0x400 [ 201.983637][ T6971] __ext4_mark_inode_dirty+0x45d/0x6e0 [ 201.989665][ T6971] ext4_setattr+0x1673/0x1c90 [ 201.994899][ T6971] notify_change+0xb0d/0xe10 [ 202.000050][ T6971] do_truncate+0x19b/0x220 [ 202.005027][ T6971] vfs_truncate+0x266/0x300 [ 202.010084][ T6971] do_sys_truncate+0xe0/0x1a0 [ 202.015331][ T6971] do_syscall_64+0x55/0xb0 [ 202.020306][ T6971] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 202.026752][ T6971] [ 202.026752][ T6971] other info that might help us debug this: [ 202.026752][ T6971] [ 202.036998][ T6971] Possible unsafe locking scenario: [ 202.036998][ T6971] [ 202.044463][ T6971] CPU0 CPU1 [ 202.049867][ T6971] ---- ---- [ 202.055243][ T6971] lock(&ei->i_data_sem/3); [ 202.059866][ T6971] lock(&sb->s_type->i_mutex_key#8/1); [ 202.067964][ T6971] lock(&ei->i_data_sem/3); [ 202.075100][ T6971] lock(&sb->s_type->i_mutex_key#8/1); [ 202.080686][ T6971] [ 202.080686][ T6971] *** DEADLOCK *** [ 202.080686][ T6971] [ 202.088848][ T6971] 5 locks held by syz.2.296/6971: [ 202.093894][ T6971] #0: ffff88805b6ee418 (sb_writers#4){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90 [ 202.103074][ T6971] #1: ffff88805c811810 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: do_truncate+0x187/0x220 [ 202.113387][ T6971] #2: ffff88805c8119a0 (mapping.invalidate_lock){++++}-{3:3}, at: ext4_setattr+0xef3/0x1c90 [ 202.123605][ T6971] #3: ffff88805c811688 (&ei->i_data_sem/3){++++}-{3:3}, at: ext4_setattr+0x15fa/0x1c90 [ 202.133393][ T6971] #4: ffff88805c8114c8 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x3dc/0x6e0 [ 202.143701][ T6971] [ 202.143701][ T6971] stack backtrace: [ 202.149709][ T6971] CPU: 1 PID: 6971 Comm: syz.2.296 Not tainted 6.6.98-syzkaller #0 [ 202.157653][ T6971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 202.167739][ T6971] Call Trace: [ 202.171034][ T6971] [ 202.173994][ T6971] dump_stack_lvl+0x16c/0x230 [ 202.178714][ T6971] ? load_image+0x3b0/0x3b0 [ 202.183253][ T6971] ? show_regs_print_info+0x20/0x20 [ 202.188485][ T6971] ? print_circular_bug+0x12b/0x1a0 [ 202.193709][ T6971] check_noncircular+0x2bd/0x3c0 [ 202.198696][ T6971] ? print_deadlock_bug+0x5d0/0x5d0 [ 202.203928][ T6971] ? lockdep_lock+0xe0/0x220 [ 202.208545][ T6971] __lock_acquire+0x2ddb/0x7c80 [ 202.213436][ T6971] ? verify_lock_unused+0x140/0x140 [ 202.218688][ T6971] lock_acquire+0x197/0x410 [ 202.223218][ T6971] ? ext4_xattr_inode_lookup_create+0x1917/0x1d80 [ 202.229673][ T6971] ? __might_sleep+0xe0/0xe0 [ 202.234297][ T6971] ? read_lock_is_recursive+0x20/0x20 [ 202.239702][ T6971] ? dquot_free_inode+0x871/0xa00 [ 202.244769][ T6971] ? ext4_reserve_inode_write+0x248/0x2a0 [ 202.250509][ T6971] down_write+0x97/0x1f0 [ 202.254777][ T6971] ? ext4_xattr_inode_lookup_create+0x1917/0x1d80 [ 202.261244][ T6971] ? down_read_killable+0x340/0x340 [ 202.266463][ T6971] ? ext4_get_dquots+0xd/0x20 [ 202.271164][ T6971] ? dquot_drop+0x135/0x160 [ 202.275696][ T6971] ext4_xattr_inode_lookup_create+0x1917/0x1d80 [ 202.281987][ T6971] ? ext4_xattr_ibody_set+0x6a0/0x6a0 [ 202.287412][ T6971] ? __lock_acquire+0x7c80/0x7c80 [ 202.292453][ T6971] ? ext4_getblk+0x299/0x6d0 [ 202.297076][ T6971] ? __getblk_gfp+0x54/0x660 [ 202.301685][ T6971] ? ext4_xattr_block_set+0xd6/0x32a0 [ 202.307076][ T6971] ext4_xattr_block_set+0x23e/0x32a0 [ 202.312394][ T6971] ? ext4_xattr_inode_get+0x1a9/0x310 [ 202.317799][ T6971] ? xattr_find_entry+0x12b/0x2f0 [ 202.322858][ T6971] ? xattr_find_entry+0x2a6/0x2f0 [ 202.327904][ T6971] ? ext4_xattr_block_find+0x350/0x350 [ 202.333371][ T6971] ? ext4_xattr_block_find+0xea/0x350 [ 202.338752][ T6971] ext4_expand_extra_isize_ea+0x10ea/0x19e0 [ 202.344668][ T6971] __ext4_expand_extra_isize+0x306/0x400 [ 202.350308][ T6971] __ext4_mark_inode_dirty+0x45d/0x6e0 [ 202.355796][ T6971] ext4_setattr+0x1673/0x1c90 [ 202.360490][ T6971] ? ext4_write_inode+0x550/0x550 [ 202.365514][ T6971] notify_change+0xb0d/0xe10 [ 202.370112][ T6971] do_truncate+0x19b/0x220 [ 202.374531][ T6971] ? put_page_bootmem+0x2c0/0x2c0 [ 202.379571][ T6971] ? bpf_lsm_path_truncate+0x9/0x10 [ 202.384781][ T6971] vfs_truncate+0x266/0x300 [ 202.389295][ T6971] do_sys_truncate+0xe0/0x1a0 [ 202.393983][ T6971] ? break_lease+0xd0/0xd0 [ 202.398406][ T6971] ? lockdep_hardirqs_on+0x98/0x150 [ 202.403607][ T6971] do_syscall_64+0x55/0xb0 [ 202.408031][ T6971] ? clear_bhb_loop+0x40/0x90 [ 202.412706][ T6971] ? clear_bhb_loop+0x40/0x90 [ 202.417385][ T6971] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 202.423283][ T6971] RIP: 0033:0x7f557718e929 [ 202.427717][ T6971] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 202.447333][ T6971] RSP: 002b:00007f5578077038 EFLAGS: 00000246 ORIG_RAX: 000000000000004c [ 202.455761][ T6971] RAX: ffffffffffffffda RBX: 00007f55773b6160 RCX: 00007f557718e929 [ 202.463735][ T6971] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000200000000100 [ 202.471706][ T6971] RBP: 00007f5577210b39 R08: 0000000000000000 R09: 0000000000000000 [ 202.479683][ T6971] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 202.487659][ T6971] R13: 0000000000000000 R14: 00007f55773b6160 R15: 00007fff7c4840c8 [ 202.495636][ T6971] [ 202.916175][ T5782] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.