last executing test programs: 13.6456273s ago: executing program 3 (id=178): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) fsmount(0xffffffffffffffff, 0x1, 0x8) 12.888904841s ago: executing program 3 (id=186): r0 = socket$inet6_dccp(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000400)={0xa, 0x4e21, 0x0, @empty}, 0x1c) setsockopt$inet6_int(r0, 0x29, 0x42, &(0x7f0000000080)=0xa, 0x4) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @loopback}, 0x62) 12.694636845s ago: executing program 3 (id=187): mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_type(r0, &(0x7f00000000c0), 0x2, 0x0) preadv(r1, &(0x7f0000000200)=[{&(0x7f0000000240)=""/192, 0xc0}], 0x1, 0x1, 0x0) 12.522773257s ago: executing program 3 (id=190): mkdir(&(0x7f00000020c0)='./file0\x00', 0x0) mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x10b091, 0x0) mount$bind(&(0x7f0000000300)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x9101a, 0x0) mount$bind(0x0, &(0x7f0000000480)='./file0/../file0\x00', 0x0, 0x44000, 0x0) 12.379076669s ago: executing program 3 (id=192): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x1000, &(0x7f0000000600)={0xffffffffffffffff}, 0x2, 0x4}}, 0x20) write$RDMA_USER_CM_CMD_LISTEN(r0, &(0x7f00000000c0)={0x7, 0x4, 0xfa00, {r1, 0x2}}, 0x10) write$RDMA_USER_CM_CMD_LISTEN(r0, &(0x7f0000000000)={0x7, 0x8, 0xfa00, {r1, 0x3}}, 0x10) 12.177791639s ago: executing program 3 (id=194): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, r1, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0xffffffffffffffa5}}]}, 0x3c}}, 0x0) syz_usb_connect(0x5, 0x4a, 0x0, 0x0) 11.703417066s ago: executing program 32 (id=194): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, r1, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0xffffffffffffffa5}}]}, 0x3c}}, 0x0) syz_usb_connect(0x5, 0x4a, 0x0, 0x0) 1.869713067s ago: executing program 4 (id=288): r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) connect$inet6(r0, &(0x7f0000000300)={0xa, 0x4001, 0x0, @loopback}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r1, &(0x7f0000000280)=[{&(0x7f0000000040)="580000001400192340834b80040d8c560a067fbc45ff000000000000000458000b480400945f64009400050038925a01000000000000008004000000ffe809000000fff5dd0000000800030006010000418e01400004fcff", 0x58}], 0x1) 1.806798502s ago: executing program 0 (id=289): r0 = socket$tipc(0x1e, 0x5, 0x0) bind$tipc(r0, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10) setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10) sendmsg$tipc(r0, &(0x7f00000005c0)={&(0x7f0000000000), 0x10, &(0x7f0000000480)=[{&(0x7f0000000180)="f7", 0x101d0}], 0x1}, 0x0) 1.6015681s ago: executing program 0 (id=291): r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) ioctl$int_in(r0, 0x40000000af01, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r0, 0x8008f513, &(0x7f00000000c0)) 1.377615918s ago: executing program 5 (id=293): bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xffffffffffffff5e, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_pressure(r0, &(0x7f0000000240)='cpu.pressure\x00', 0x2, 0x0) sendfile(r1, r1, 0x0, 0x40000000000004) 1.364539224s ago: executing program 0 (id=295): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000400)=ANY=[@ANYBLOB="0100000000000000d90100000000000003"]) 1.285065561s ago: executing program 5 (id=296): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x18) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) epoll_pwait2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) 1.213681317s ago: executing program 1 (id=297): munmap(&(0x7f0000002000/0x1000)=nil, 0x1000) r0 = socket$kcm(0x29, 0x5, 0x0) sendmsg$inet(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x2005c080) sendmsg$inet(r0, &(0x7f0000000340)={0x0, 0x7ffcb000, &(0x7f0000000300)=[{&(0x7f00000000c0)='6', 0x18000}], 0x8}, 0x0) 1.077633139s ago: executing program 5 (id=298): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000240)={[{@grpquota}, {@auto_da_alloc}, {@minixdf}]}, 0x1, 0x50c, &(0x7f0000000ac0)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x441, 0x104) truncate(&(0x7f00000000c0)='./file1\x00', 0xefff) fallocate(r0, 0x20, 0x4000, 0x4000) 1.069536205s ago: executing program 2 (id=299): r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000500), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000bc0)={0x2, 0x0, [{0xaa98b96abddf66c, 0x61, &(0x7f0000000840)=""/97}, {0x0, 0x0, 0x0}]}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1) 1.025152591s ago: executing program 1 (id=300): quotactl$Q_SETQUOTA(0xffffffff80000801, &(0x7f0000000040)=@loop={'/dev/loop', 0x0}, 0x0, 0x0) r0 = fsopen(&(0x7f0000000080)='vxfs\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='source', &(0x7f0000000040), 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x8, 0x0, 0x0, 0x0) 961.509203ms ago: executing program 0 (id=301): syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x1008014, &(0x7f00000000c0)=ANY=[], 0x4, 0x7d8, &(0x7f0000000a80)="$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") r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000000)='kfree\x00', r0}, 0x10) openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x12c02, 0x0) 933.495897ms ago: executing program 4 (id=302): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)={0x1c, r1, 0x5, 0x70bd2e, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x44840}, 0x0) 828.251157ms ago: executing program 0 (id=303): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000340)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-avx\x00'}, 0x58) r1 = accept4(r0, 0x0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000000a00)=[{{0x0, 0x0, &(0x7f0000009380)=[{&(0x7f0000006f40)="d529f28981dc56d34e626ec70afef5ac85c4cd3d5b5ad8d0375a3737f4d551faf0a67e16de35a73020042c87332d38b46e9a004c0bb7b645796845f3b133dcb3649407130478d319045927f892f48c69e1ed970cc8922bf91327d8278b58a22dd082bb73ffcf73ec1d9f80b6967a6177effba2f8b19398ddf3138a66bb9d574d8f4bce9c4b7f21a6e4ee47f935c76cf05dbd4fb7e6e0864760baaae864a11ff1e719afd4014155f61987eb", 0xab}, {&(0x7f0000000300)="5824e9e1de71619e3571eed8033a4d7c370f40e706", 0x15}], 0x2}}], 0x1, 0x0) 761.499365ms ago: executing program 2 (id=304): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_IBSS(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000fc0)={0x20, r1, 0x101, 0x70bd26, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SSID={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x200000d0}, 0x0) 733.844537ms ago: executing program 0 (id=305): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @empty, 0xb}], 0x1c) sendto$inet6(r0, &(0x7f0000000040)='l', 0x1, 0x810, &(0x7f0000000100)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) ioctl$sock_SIOCINQ(r0, 0x541b, &(0x7f0000000080)) 709.896991ms ago: executing program 1 (id=306): r0 = syz_open_dev$swradio(&(0x7f0000000080), 0x0, 0x2) r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f00000001c0)='.\x00', &(0x7f0000000180), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r1}}) readv(r0, &(0x7f0000000040)=[{&(0x7f00000001c0)=""/212, 0xd4}], 0x1) 613.649556ms ago: executing program 4 (id=307): r0 = syz_io_uring_setup(0x5c2, &(0x7f0000000300)={0x0, 0x5a87, 0x401, 0x2, 0xfffffffc}, &(0x7f0000000240)=0x0, &(0x7f0000005800)) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4) pselect6(0x40, &(0x7f0000000040)={0xc, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x4}, 0x0, 0x0, 0x0, 0x0) io_uring_enter(r0, 0x6e2, 0x3901, 0x4f, 0x0, 0x0) 609.692737ms ago: executing program 5 (id=308): r0 = socket(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000001c0)=@newqdisc={0x48, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r2, {}, {0xffff, 0xffff}, {0x1, 0xfffe}}, [@qdisc_kind_options=@q_prio={{0x9}, {0x18, 0x2, {0x9, "0007000000000020060200050009ff00"}}}]}, 0x48}}, 0x0) 605.514139ms ago: executing program 2 (id=309): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0xd82756b30e350375, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r1, 0xf, 0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000002c0)={'veth0_to_bond\x00', &(0x7f00000004c0)=@ethtool_channels={0x3d, 0x4, 0x0, 0x0, 0x0, 0x2, 0x2}}) 461.572864ms ago: executing program 1 (id=310): r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f00000000c0)=ANY=[], 0x8) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e24, 0x0, @mcast2, 0x5}, 0x1c) sendto$inet6(r0, &(0x7f00000001c0)="c346", 0x2, 0x0, 0x0, 0x0) 430.201839ms ago: executing program 5 (id=311): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000000)=ANY=[@ANYBLOB="010000000000000052000040"]) 406.793728ms ago: executing program 2 (id=312): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000980)='sys_exit\x00', r0}, 0x10) getrusage(0xffffffffffffffff, &(0x7f0000000000)) 305.628511ms ago: executing program 1 (id=313): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='smaps\x00') r1 = open(&(0x7f0000000080)='./bus\x00', 0x400169042, 0x0) mmap(&(0x7f00000f8000/0x2000)=nil, 0x2000, 0x7800007, 0x12, r1, 0x0) read$FUSE(r0, &(0x7f0000000640)={0x2020}, 0x2020) 305.254502ms ago: executing program 4 (id=314): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000002c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)={0x20, r1, 0x1, 0x70bd24, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FREQUENCIES={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x4014081}, 0x9590f6cc3ea35512) 250.364297ms ago: executing program 2 (id=315): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt(r0, 0x84, 0x80, &(0x7f00000002c0)="1a00000002000000", 0x8) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback, 0xfffff4c8}], 0x1c) sendto$inet6(r0, &(0x7f0000000480)='l', 0x1, 0x0, &(0x7f0000000100)={0xa, 0x4e23, 0x4, @loopback}, 0x1c) 151.25098ms ago: executing program 5 (id=316): syz_mount_image$vfat(&(0x7f0000000340), &(0x7f0000000980)='./file1\x00', 0x280809a, &(0x7f0000000f40)=ANY=[], 0xd, 0x2b2, &(0x7f00000006c0)="$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") syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x202402, &(0x7f0000000000)={[{@noblock_validity}, {@dioread_nolock}, {@jqfmt_vfsv0}, {@orlov}, {@jqfmt_vfsv0}, {@usrjquota, 0x2e}], [], 0x2c}, 0x0, 0x45d, &(0x7f00000009c0)="$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") mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1) mkdir(&(0x7f0000000000)='./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0) 138.409471ms ago: executing program 4 (id=317): r0 = socket(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000340)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000003c0)=@newqdisc={0x50, 0x24, 0xf0f, 0x2, 0x0, {0x60, 0x0, 0x0, r2, {0x0, 0x6}, {0xffff, 0xffff}, {0x5}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x1c, 0x2, [@TCA_FQ_CODEL_FLOWS={0x8, 0x5, 0x9}, @TCA_FQ_CODEL_QUANTUM={0x8}, @TCA_FQ_CODEL_TARGET={0x8, 0x1, 0xfff}]}}]}, 0x50}}, 0x0) 57.639179ms ago: executing program 1 (id=318): r0 = socket$qrtr(0x2a, 0x2, 0x0) r1 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000080), 0x2) write$binfmt_aout(r1, &(0x7f00000002c0)=ANY=[@ANYBLOB="03040d00b5000000ba3b24e10100fefffeefffffa5208942ba73b3b5d2"], 0xc8) sendmsg$sock(r0, &(0x7f0000001540)={&(0x7f0000000500)=@pppoe={0x2a, 0x0, {0x0, @random="b2eb98d0ed79", 'nicvf0\x00'}}, 0x80, 0x0}, 0x0) 57.37415ms ago: executing program 2 (id=319): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f00000002c0), r0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_MGMT_C_ADDDEF(r2, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000240)={0x24, r1, 0x1, 0x0, 0x0, {}, [@NLBL_MGMT_A_FAMILY={0x6, 0xb, 0xa}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}]}, 0x24}}, 0x0) 0s ago: executing program 4 (id=320): r0 = socket$inet6(0xa, 0x1, 0x0) mmap(&(0x7f00009ff000/0x600000)=nil, 0x600000, 0x0, 0x13, r0, 0x0) munmap(&(0x7f0000ffb000/0x1000)=nil, 0x1000) mremap(&(0x7f0000ff8000/0x3000)=nil, 0x3000, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.68' (ED25519) to the list of known hosts. [ 80.164630][ T5826] cgroup: Unknown subsys name 'net' [ 80.280485][ T5826] cgroup: Unknown subsys name 'cpuset' [ 80.290341][ T5826] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 81.925632][ T5826] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 85.980175][ T5839] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 85.996216][ T5839] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 86.006024][ T5839] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 86.046040][ T5839] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 86.063458][ T5839] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 86.121974][ T5150] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 86.130614][ T5150] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 86.139640][ T5150] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 86.148347][ T5150] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 86.156099][ T5150] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 86.163778][ T5150] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 86.171070][ T5150] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 86.180126][ T5150] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 86.188001][ T5150] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 86.197373][ T5855] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 86.207707][ T5839] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 86.215417][ T5854] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 86.215439][ T5839] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 86.241618][ T5839] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 86.248923][ T5854] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 86.253504][ T5839] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 86.267138][ T5854] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 86.281260][ T5854] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 86.289186][ T5852] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 86.299263][ T5852] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 86.885024][ T5842] chnl_net:caif_netlink_parms(): no params data found [ 87.084888][ T5840] chnl_net:caif_netlink_parms(): no params data found [ 87.150043][ T5836] chnl_net:caif_netlink_parms(): no params data found [ 87.321552][ T5842] bridge0: port 1(bridge_slave_0) entered blocking state [ 87.329494][ T5842] bridge0: port 1(bridge_slave_0) entered disabled state [ 87.337962][ T5842] bridge_slave_0: entered allmulticast mode [ 87.346573][ T5842] bridge_slave_0: entered promiscuous mode [ 87.403140][ T5842] bridge0: port 2(bridge_slave_1) entered blocking state [ 87.411124][ T5842] bridge0: port 2(bridge_slave_1) entered disabled state [ 87.420276][ T5842] bridge_slave_1: entered allmulticast mode [ 87.428655][ T5842] bridge_slave_1: entered promiscuous mode [ 87.472007][ T5849] chnl_net:caif_netlink_parms(): no params data found [ 87.506935][ T5842] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 87.571019][ T5841] chnl_net:caif_netlink_parms(): no params data found [ 87.587127][ T5842] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 87.626014][ T5840] bridge0: port 1(bridge_slave_0) entered blocking state [ 87.633241][ T5840] bridge0: port 1(bridge_slave_0) entered disabled state [ 87.640631][ T5840] bridge_slave_0: entered allmulticast mode [ 87.648866][ T5840] bridge_slave_0: entered promiscuous mode [ 87.657262][ T5840] bridge0: port 2(bridge_slave_1) entered blocking state [ 87.664409][ T5840] bridge0: port 2(bridge_slave_1) entered disabled state [ 87.671943][ T5840] bridge_slave_1: entered allmulticast mode [ 87.679751][ T5840] bridge_slave_1: entered promiscuous mode [ 87.731171][ T5836] bridge0: port 1(bridge_slave_0) entered blocking state [ 87.738635][ T5836] bridge0: port 1(bridge_slave_0) entered disabled state [ 87.746067][ T5836] bridge_slave_0: entered allmulticast mode [ 87.753605][ T5836] bridge_slave_0: entered promiscuous mode [ 87.801933][ T5840] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 87.820558][ T5842] team0: Port device team_slave_0 added [ 87.832488][ T5842] team0: Port device team_slave_1 added [ 87.842914][ T5836] bridge0: port 2(bridge_slave_1) entered blocking state [ 87.850136][ T5836] bridge0: port 2(bridge_slave_1) entered disabled state [ 87.857441][ T5836] bridge_slave_1: entered allmulticast mode [ 87.864980][ T5836] bridge_slave_1: entered promiscuous mode [ 87.902781][ T5840] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 88.013614][ T5836] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 88.031592][ T5840] team0: Port device team_slave_0 added [ 88.040773][ T5840] team0: Port device team_slave_1 added [ 88.047297][ T5849] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.054481][ T5849] bridge0: port 1(bridge_slave_0) entered disabled state [ 88.062512][ T5849] bridge_slave_0: entered allmulticast mode [ 88.071397][ T5849] bridge_slave_0: entered promiscuous mode [ 88.080818][ T5849] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.088063][ T5849] bridge0: port 2(bridge_slave_1) entered disabled state [ 88.095315][ T5849] bridge_slave_1: entered allmulticast mode [ 88.103032][ T5849] bridge_slave_1: entered promiscuous mode [ 88.110808][ T5842] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 88.117864][ T5842] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 88.143972][ T5842] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 88.156402][ T5852] Bluetooth: hci0: command tx timeout [ 88.163747][ T5836] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 88.221873][ T5842] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 88.229121][ T5842] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 88.256187][ T5842] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 88.306134][ T5854] Bluetooth: hci1: command tx timeout [ 88.312428][ T5852] Bluetooth: hci4: command tx timeout [ 88.334259][ T5840] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 88.341503][ T5840] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 88.368433][ T5840] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 88.381263][ T5840] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 88.386137][ T5852] Bluetooth: hci3: command tx timeout [ 88.388839][ T5840] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 88.393960][ T5852] Bluetooth: hci2: command tx timeout [ 88.420508][ T5840] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 88.453002][ T5849] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 88.465214][ T5836] team0: Port device team_slave_0 added [ 88.474925][ T5836] team0: Port device team_slave_1 added [ 88.481144][ T5841] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.489124][ T5841] bridge0: port 1(bridge_slave_0) entered disabled state [ 88.496603][ T5841] bridge_slave_0: entered allmulticast mode [ 88.503859][ T5841] bridge_slave_0: entered promiscuous mode [ 88.533743][ T5849] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 88.571254][ T5841] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.578708][ T5841] bridge0: port 2(bridge_slave_1) entered disabled state [ 88.586709][ T5841] bridge_slave_1: entered allmulticast mode [ 88.594085][ T5841] bridge_slave_1: entered promiscuous mode [ 88.679434][ T5842] hsr_slave_0: entered promiscuous mode [ 88.686328][ T5842] hsr_slave_1: entered promiscuous mode [ 88.696070][ T5849] team0: Port device team_slave_0 added [ 88.702801][ T5836] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 88.710261][ T5836] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 88.736303][ T5836] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 88.749198][ T5836] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 88.756219][ T5836] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 88.782299][ T5836] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 88.808998][ T5841] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 88.822984][ T5841] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 88.835138][ T5849] team0: Port device team_slave_1 added [ 88.954437][ T5840] hsr_slave_0: entered promiscuous mode [ 88.962092][ T5840] hsr_slave_1: entered promiscuous mode [ 88.969050][ T5840] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 88.977363][ T5840] Cannot create hsr debugfs directory [ 88.985515][ T5841] team0: Port device team_slave_0 added [ 89.014170][ T5849] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 89.021815][ T5849] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 89.048422][ T5849] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 89.061647][ T5849] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 89.068945][ T5849] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 89.094919][ T5849] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 89.108434][ T5841] team0: Port device team_slave_1 added [ 89.217633][ T5841] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 89.224597][ T5841] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 89.250822][ T5841] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 89.268680][ T5836] hsr_slave_0: entered promiscuous mode [ 89.275092][ T5836] hsr_slave_1: entered promiscuous mode [ 89.281492][ T5836] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 89.289781][ T5836] Cannot create hsr debugfs directory [ 89.322408][ T5841] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 89.329612][ T5841] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 89.356428][ T5841] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 89.443114][ T5849] hsr_slave_0: entered promiscuous mode [ 89.455263][ T5849] hsr_slave_1: entered promiscuous mode [ 89.463441][ T5849] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 89.471082][ T5849] Cannot create hsr debugfs directory [ 89.620590][ T5841] hsr_slave_0: entered promiscuous mode [ 89.627405][ T5841] hsr_slave_1: entered promiscuous mode [ 89.633532][ T5841] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 89.641191][ T5841] Cannot create hsr debugfs directory [ 89.939418][ T5842] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 89.974438][ T5842] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 90.024475][ T5842] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 90.083512][ T5842] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 90.157277][ T5840] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 90.179822][ T5840] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 90.194482][ T5840] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 90.225789][ T5852] Bluetooth: hci0: command tx timeout [ 90.227648][ T5840] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 90.261335][ T5836] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 90.294139][ T5836] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 90.305326][ T5836] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 90.343924][ T5836] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 90.387905][ T5852] Bluetooth: hci4: command tx timeout [ 90.393361][ T5852] Bluetooth: hci1: command tx timeout [ 90.423169][ T5849] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 90.453411][ T5849] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 90.466408][ T5852] Bluetooth: hci2: command tx timeout [ 90.466416][ T5854] Bluetooth: hci3: command tx timeout [ 90.495492][ T5849] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 90.506972][ T5849] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 90.603036][ T5841] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 90.642134][ T5841] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 90.667437][ T5841] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 90.680462][ T5841] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 90.714035][ T5842] 8021q: adding VLAN 0 to HW filter on device bond0 [ 90.760188][ T5840] 8021q: adding VLAN 0 to HW filter on device bond0 [ 90.791253][ T5842] 8021q: adding VLAN 0 to HW filter on device team0 [ 90.825353][ T3018] bridge0: port 1(bridge_slave_0) entered blocking state [ 90.832684][ T3018] bridge0: port 1(bridge_slave_0) entered forwarding state [ 90.862966][ T3018] bridge0: port 2(bridge_slave_1) entered blocking state [ 90.870170][ T3018] bridge0: port 2(bridge_slave_1) entered forwarding state [ 90.901454][ T5836] 8021q: adding VLAN 0 to HW filter on device bond0 [ 90.931132][ T5840] 8021q: adding VLAN 0 to HW filter on device team0 [ 90.972995][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 90.980214][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 91.018633][ T3018] bridge0: port 2(bridge_slave_1) entered blocking state [ 91.025832][ T3018] bridge0: port 2(bridge_slave_1) entered forwarding state [ 91.040361][ T5836] 8021q: adding VLAN 0 to HW filter on device team0 [ 91.055540][ T3001] bridge0: port 1(bridge_slave_0) entered blocking state [ 91.062725][ T3001] bridge0: port 1(bridge_slave_0) entered forwarding state [ 91.080465][ T5849] 8021q: adding VLAN 0 to HW filter on device bond0 [ 91.111554][ T3001] bridge0: port 2(bridge_slave_1) entered blocking state [ 91.118712][ T3001] bridge0: port 2(bridge_slave_1) entered forwarding state [ 91.174711][ T5849] 8021q: adding VLAN 0 to HW filter on device team0 [ 91.228594][ T47] bridge0: port 1(bridge_slave_0) entered blocking state [ 91.235817][ T47] bridge0: port 1(bridge_slave_0) entered forwarding state [ 91.319234][ T3001] bridge0: port 2(bridge_slave_1) entered blocking state [ 91.326572][ T3001] bridge0: port 2(bridge_slave_1) entered forwarding state [ 91.430637][ T5841] 8021q: adding VLAN 0 to HW filter on device bond0 [ 91.499318][ T5841] 8021q: adding VLAN 0 to HW filter on device team0 [ 91.548915][ T47] bridge0: port 1(bridge_slave_0) entered blocking state [ 91.556141][ T47] bridge0: port 1(bridge_slave_0) entered forwarding state [ 91.619675][ T3001] bridge0: port 2(bridge_slave_1) entered blocking state [ 91.626890][ T3001] bridge0: port 2(bridge_slave_1) entered forwarding state [ 91.662456][ T5842] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 91.789249][ T5840] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 91.830472][ T9] cfg80211: failed to load regulatory.db [ 91.910404][ T5842] veth0_vlan: entered promiscuous mode [ 91.952150][ T5836] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 92.000933][ T5842] veth1_vlan: entered promiscuous mode [ 92.015317][ T5849] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 92.034614][ T5840] veth0_vlan: entered promiscuous mode [ 92.100384][ T5840] veth1_vlan: entered promiscuous mode [ 92.178829][ T5842] veth0_macvtap: entered promiscuous mode [ 92.218032][ T5836] veth0_vlan: entered promiscuous mode [ 92.227730][ T5842] veth1_macvtap: entered promiscuous mode [ 92.267834][ T5849] veth0_vlan: entered promiscuous mode [ 92.277618][ T5842] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 92.299986][ T5842] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 92.307997][ T5852] Bluetooth: hci0: command tx timeout [ 92.320369][ T5849] veth1_vlan: entered promiscuous mode [ 92.333325][ T5836] veth1_vlan: entered promiscuous mode [ 92.345358][ T5842] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.355193][ T5842] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.364581][ T5842] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.374055][ T5842] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.385231][ T5840] veth0_macvtap: entered promiscuous mode [ 92.397511][ T5840] veth1_macvtap: entered promiscuous mode [ 92.416777][ T5841] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 92.466145][ T5852] Bluetooth: hci1: command tx timeout [ 92.466557][ T5854] Bluetooth: hci4: command tx timeout [ 92.509728][ T5840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 92.520593][ T5840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 92.539999][ T5840] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 92.551064][ T5854] Bluetooth: hci2: command tx timeout [ 92.551075][ T5852] Bluetooth: hci3: command tx timeout [ 92.562146][ T5836] veth0_macvtap: entered promiscuous mode [ 92.587535][ T5840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 92.603538][ T5840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 92.620013][ T5840] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 92.640908][ T5836] veth1_macvtap: entered promiscuous mode [ 92.663686][ T5840] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.681240][ T5840] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.690271][ T5840] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.699061][ T5840] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.710958][ T5849] veth0_macvtap: entered promiscuous mode [ 92.747618][ T5849] veth1_macvtap: entered promiscuous mode [ 92.790023][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 92.815368][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 92.862667][ T5849] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 92.878339][ T5849] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 92.888398][ T5849] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 92.898883][ T5849] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 92.910268][ T5849] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 92.933621][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 92.944770][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 92.958546][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 92.969132][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 92.979556][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 92.990179][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.002120][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 93.025620][ T5849] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 93.041090][ T5849] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.051518][ T5849] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 93.064884][ T5849] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.081219][ T5849] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 93.093770][ T5849] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.102687][ T5849] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.112318][ T5849] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.121974][ T5849] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.134209][ T47] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 93.148489][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 93.148935][ T47] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 93.158995][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.159019][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 93.159035][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.159049][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 93.208379][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.220912][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 93.251708][ T5836] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.260922][ T5836] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.270224][ T5836] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.279146][ T5836] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.319599][ T2987] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 93.347811][ T2987] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 93.413066][ T5842] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 93.450126][ T5841] veth0_vlan: entered promiscuous mode [ 93.456167][ T2987] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 93.464010][ T2987] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 93.466259][ T5841] veth1_vlan: entered promiscuous mode [ 93.639854][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 93.664455][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 93.779983][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 93.800002][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 93.841699][ T47] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 93.871271][ T47] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 93.895486][ T5841] veth0_macvtap: entered promiscuous mode [ 93.934072][ T5841] veth1_macvtap: entered promiscuous mode [ 94.022137][ T2987] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 94.038404][ T2987] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 94.153576][ T5841] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 94.196606][ T5841] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 94.215829][ T5841] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 94.236768][ T5841] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 94.266816][ T5841] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 94.285773][ T5841] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 94.305738][ T5841] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 94.325858][ T5841] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 94.348154][ T5841] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 94.386784][ T5854] Bluetooth: hci0: command tx timeout [ 94.401386][ T5841] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 94.424257][ T5841] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 94.435887][ T5841] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 94.446478][ T5841] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 94.476328][ T5841] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 94.499428][ T5841] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 94.525969][ T5841] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 94.564575][ T5854] Bluetooth: hci4: command tx timeout [ 94.564588][ T5852] Bluetooth: hci1: command tx timeout [ 94.581345][ T5841] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 94.607881][ T5841] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 94.628335][ T5852] Bluetooth: hci2: command tx timeout [ 94.628351][ T5854] Bluetooth: hci3: command tx timeout [ 94.688217][ T5841] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.719474][ T5841] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.728413][ T5841] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.737516][ T5841] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.953997][ T5944] loop1: detected capacity change from 0 to 128 [ 94.970411][ T5944] EXT4-fs: Ignoring removed nobh option [ 95.038735][ T5944] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 95.093371][ T83] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 95.097366][ T5944] ext4 filesystem being mounted at /1/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 95.154250][ T83] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 95.360171][ T2987] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 95.384088][ T2987] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 95.600149][ T5836] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 95.851006][ T5963] netlink: 'syz.1.13': attribute type 21 has an invalid length. [ 95.867722][ T5963] netlink: 'syz.1.13': attribute type 1 has an invalid length. [ 95.875482][ T5963] netlink: 14374 bytes leftover after parsing attributes in process `syz.1.13'. [ 96.074061][ T1214] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 96.268531][ T1214] usb 3-1: Using ep0 maxpacket: 32 [ 96.309069][ T1214] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 96.335030][ T1214] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11 [ 96.365763][ T1214] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 96.410430][ T1214] usb 3-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 96.432264][ T5985] loop0: detected capacity change from 0 to 256 [ 96.439306][ T1214] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 96.472829][ T5983] syz.3.24 (5983) used greatest stack depth: 18664 bytes left [ 96.473044][ T1214] usb 3-1: config 0 descriptor?? [ 96.490039][ T5985] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 96.522425][ T5961] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 96.535802][ T5845] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 96.562497][ T1214] hub 3-1:0.0: USB hub found [ 96.592143][ T5987] loop1: detected capacity change from 0 to 4096 [ 96.698923][ T5845] usb 5-1: config 0 has no interfaces? [ 96.719712][ T5845] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 96.750451][ T5845] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 96.769961][ T1214] hub 3-1:0.0: config failed, hub has too many ports! (err -19) [ 96.789442][ T5845] usb 5-1: Product: syz [ 96.793655][ T5845] usb 5-1: Manufacturer: syz [ 96.830553][ T5845] usb 5-1: config 0 descriptor?? [ 97.056728][ T5890] usb 5-1: USB disconnect, device number 2 [ 97.200849][ T1214] hid-generic 0003:046D:C314.0001: hidraw0: USB HID v8.00 Device [HID 046d:c314] on usb-dummy_hcd.2-1/input0 [ 97.516109][ T1214] usb 3-1: USB disconnect, device number 2 [ 97.516190][ T6004] loop1: detected capacity change from 0 to 32768 [ 97.540356][ T6004] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.35 (6004) [ 97.570638][ T6004] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 97.581463][ T6004] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 97.719314][ T6004] BTRFS info (device loop1): rebuilding free space tree [ 97.765219][ T6004] BTRFS info (device loop1): disabling free space tree [ 97.772528][ T6004] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 97.795922][ T6004] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 98.074239][ T6037] loop2: detected capacity change from 0 to 1024 [ 98.084818][ T5836] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 98.116564][ T5890] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 98.307128][ T5890] usb 5-1: Using ep0 maxpacket: 16 [ 98.313951][ T6037] hfsplus: xattr searching failed [ 98.324886][ T5890] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83 [ 98.353820][ T6037] hfsplus: catalog searching failed [ 98.359663][ T30] audit: type=1800 audit(1743157804.641:2): pid=6037 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.43" name="bus" dev="loop2" ino=3 res=0 errno=0 [ 98.532966][ T12] hfsplus: bad catalog file entry [ 98.565857][ T5890] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 98.588486][ T12] hfsplus: b-tree write err: -5, ino 3 [ 98.596277][ T5890] usb 5-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1 [ 98.615771][ T5890] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 98.623816][ T5890] usb 5-1: Product: syz [ 98.665730][ T5890] usb 5-1: Manufacturer: syz [ 98.670386][ T5890] usb 5-1: SerialNumber: syz [ 98.707139][ T5890] usb 5-1: config 0 descriptor?? [ 98.726831][ T5890] em28xx 5-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0) [ 98.746203][ T5890] em28xx 5-1:0.0: Audio interface 0 found (Vendor Class) [ 99.281184][ T6051] loop0: detected capacity change from 0 to 512 [ 99.334554][ T6051] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 99.383237][ T5890] em28xx 5-1:0.0: chip ID is em2874 [ 99.473524][ T6045] loop1: detected capacity change from 0 to 32768 [ 99.484093][ T6045] ======================================================= [ 99.484093][ T6045] WARNING: The mand mount option has been deprecated and [ 99.484093][ T6045] and is ignored by this kernel. Remove the mand [ 99.484093][ T6045] option from the mount to silence this warning. [ 99.484093][ T6045] ======================================================= [ 99.547379][ T6044] loop2: detected capacity change from 0 to 32768 [ 99.598596][ T5891] usb 5-1: USB disconnect, device number 3 [ 99.602418][ T6045] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 99.607836][ T5891] em28xx 5-1:0.0: Disconnecting em28xx [ 99.616115][ T5840] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 99.627171][ T5891] em28xx 5-1:0.0: Freeing device [ 99.824405][ T6044] bcachefs (loop2): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,nocow [ 99.837236][ T6045] XFS (loop1): Ending clean mount [ 99.864437][ T6044] bcachefs (loop2): initializing new filesystem [ 99.911650][ T6044] bcachefs (loop2): going read-write [ 99.947041][ T5836] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 99.966420][ T6044] bcachefs (loop2): marking superblocks [ 100.034451][ T6044] bcachefs (loop2): initializing freespace [ 100.052070][ T6044] bcachefs (loop2): done initializing freespace [ 100.069108][ T6044] bcachefs (loop2): reading snapshots table [ 100.075321][ T6044] bcachefs (loop2): reading snapshots done [ 100.110530][ T6044] bcachefs (loop2): done starting filesystem [ 100.215830][ T10] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 100.378447][ T10] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 100.399130][ T10] usb 1-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 100.420161][ T6044] syz.2.44 (6044) used greatest stack depth: 13504 bytes left [ 100.424283][ T10] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 100.451513][ T5849] bcachefs (loop2): shutting down [ 100.461589][ T10] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 100.478866][ T5849] bcachefs (loop2): going read-only [ 100.490466][ T6075] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 100.492320][ T5849] bcachefs (loop2): finished waiting for writes to stop [ 100.514941][ T10] usb 1-1: Quirk or no altset; falling back to MIDI 1.0 [ 100.532209][ T5849] bcachefs (loop2): flushing journal and stopping allocators, journal seq 3 [ 100.569545][ T5849] bcachefs (loop2): flushing journal and stopping allocators complete, journal seq 3 [ 100.593101][ T5849] bcachefs (loop2): clean shutdown complete, journal seq 4 [ 100.636628][ T5849] bcachefs (loop2): marking filesystem clean [ 100.735192][ T5849] bcachefs (loop2): shutdown complete [ 100.785501][ T6087] loop4: detected capacity change from 0 to 512 [ 100.789265][ T10] usb 1-1: USB disconnect, device number 2 [ 100.859238][ T6087] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 100.892602][ T6087] ext4 filesystem being mounted at /6/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 101.028269][ T6083] loop3: detected capacity change from 0 to 32768 [ 101.052609][ T6083] XFS (loop3): Mounting V5 Filesystem bc2378ed-6193-40d5-9d59-7ebcb787b415 [ 101.101684][ T6083] XFS (loop3): Ending clean mount [ 101.128462][ T5841] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 101.233331][ T5842] XFS (loop3): Unmounting Filesystem bc2378ed-6193-40d5-9d59-7ebcb787b415 [ 101.667995][ T6108] loop6: detected capacity change from 0 to 7 [ 101.686399][ T6108] Buffer I/O error on dev loop6, logical block 0, async page read [ 101.706692][ T6108] Buffer I/O error on dev loop6, logical block 0, async page read [ 101.714690][ T6108] Buffer I/O error on dev loop6, logical block 0, async page read [ 101.753379][ T6108] Buffer I/O error on dev loop6, logical block 0, async page read [ 101.779699][ T6108] Buffer I/O error on dev loop6, logical block 0, async page read [ 101.790469][ T6108] Buffer I/O error on dev loop6, logical block 0, async page read [ 101.803979][ T6108] Buffer I/O error on dev loop6, logical block 0, async page read [ 101.828917][ T6108] ldm_validate_partition_table(): Disk read failed. [ 101.832547][ T6112] loop0: detected capacity change from 0 to 1024 [ 101.842111][ T6108] Buffer I/O error on dev loop6, logical block 0, async page read [ 101.864439][ T6108] Buffer I/O error on dev loop6, logical block 0, async page read [ 101.881001][ T6108] Buffer I/O error on dev loop6, logical block 0, async page read [ 101.894255][ T6108] Dev loop6: unable to read RDB block 0 [ 101.902189][ T6108] loop6: unable to read partition table [ 101.912752][ T6108] loop6: partition table beyond EOD, truncated [ 101.922063][ T6108] loop_reread_partitions: partition scan of loop6 (被xڬdƤݡ [ 101.922063][ T6108] ) failed (rc=-5) [ 101.980287][ T47] hfsplus: b-tree write err: -5, ino 4 [ 102.083395][ T6100] loop4: detected capacity change from 0 to 40427 [ 102.107168][ T6100] F2FS-fs (loop4): invalid crc value [ 102.335165][ T6100] F2FS-fs (loop4): Start checkpoint disabled! [ 102.381352][ T6100] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6 [ 102.454751][ T13] kworker/u8:1: attempt to access beyond end of device [ 102.454751][ T13] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 102.487257][ T13] CPU: 1 UID: 0 PID: 13 Comm: kworker/u8:1 Not tainted 6.14.0-next-20250328-syzkaller #0 PREEMPT(full) [ 102.487288][ T13] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 102.487302][ T13] Workqueue: writeback wb_workfn (flush-7:4) [ 102.487339][ T13] Call Trace: [ 102.487348][ T13] [ 102.487357][ T13] dump_stack_lvl+0x241/0x360 [ 102.487395][ T13] ? __pfx_dump_stack_lvl+0x10/0x10 [ 102.487426][ T13] ? _raw_spin_unlock_irqrestore+0xde/0x140 [ 102.487452][ T13] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 102.487480][ T13] ? f2fs_hw_is_readonly+0x3a3/0x470 [ 102.487524][ T13] f2fs_handle_critical_error+0x392/0x5a0 [ 102.487566][ T13] f2fs_write_end_io+0x563/0x790 [ 102.487596][ T13] ? __pfx_f2fs_write_end_io+0x10/0x10 [ 102.487623][ T13] ? bio_endio+0x7e4/0x890 [ 102.487656][ T13] ? bio_endio+0x82a/0x890 [ 102.487690][ T13] __submit_merged_bio+0x2a9/0x710 [ 102.487716][ T13] ? f2fs_submit_merged_write_cond+0x101/0x380 [ 102.487753][ T13] f2fs_submit_merged_write_cond+0x29f/0x380 [ 102.487798][ T13] f2fs_write_data_pages+0x2f99/0x38d0 [ 102.487881][ T13] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 102.487930][ T13] ? __pfx_f2fs_available_free_memory+0x10/0x10 [ 102.488002][ T13] ? __pfx_f2fs_balance_fs_bg+0x10/0x10 [ 102.488058][ T13] ? trace_f2fs_writepages+0x8c/0x220 [ 102.488091][ T13] ? f2fs_write_node_pages+0x4ba/0x730 [ 102.488127][ T13] ? __pfx_f2fs_write_node_pages+0x10/0x10 [ 102.488152][ T13] ? __lock_acquire+0xad5/0xd80 [ 102.488182][ T13] ? has_not_enough_free_secs+0xc26/0x1490 [ 102.488220][ T13] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 102.488256][ T13] do_writepages+0x364/0x890 [ 102.488301][ T13] ? __pfx_do_writepages+0x10/0x10 [ 102.488318][ T13] ? __lock_acquire+0xad5/0xd80 [ 102.488347][ T13] ? __lock_acquire+0xad5/0xd80 [ 102.488380][ T13] ? reacquire_held_locks+0x12a/0x1e0 [ 102.488404][ T13] ? writeback_sb_inodes+0x43f/0x1360 [ 102.488443][ T13] __writeback_single_inode+0x14f/0x10d0 [ 102.488478][ T13] writeback_sb_inodes+0x822/0x1360 [ 102.488570][ T13] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 102.488647][ T13] ? rcu_is_watching+0x15/0xb0 [ 102.488686][ T13] ? queue_io+0x310/0x4d0 [ 102.488722][ T13] wb_writeback+0x415/0xb90 [ 102.488756][ T13] ? queue_io+0x2f1/0x4d0 [ 102.488784][ T13] ? __pfx_wb_writeback+0x10/0x10 [ 102.488829][ T13] wb_workfn+0x412/0x10b0 [ 102.488880][ T13] ? __pfx_wb_workfn+0x10/0x10 [ 102.488898][ T13] ? register_lock_class+0x54/0x330 [ 102.488927][ T13] ? __lock_acquire+0xad5/0xd80 [ 102.488951][ T13] ? lockdep_hardirqs_on+0x9d/0x150 [ 102.488998][ T13] ? process_scheduled_works+0x9cb/0x18e0 [ 102.489038][ T13] process_scheduled_works+0xac3/0x18e0 [ 102.489102][ T13] ? __pfx_process_scheduled_works+0x10/0x10 [ 102.489139][ T13] ? assign_work+0x367/0x3d0 [ 102.489171][ T13] worker_thread+0x870/0xd50 [ 102.489218][ T13] ? __kthread_parkme+0x1a8/0x200 [ 102.489249][ T13] ? __pfx_worker_thread+0x10/0x10 [ 102.489275][ T13] kthread+0x7b7/0x940 [ 102.489307][ T13] ? __pfx_worker_thread+0x10/0x10 [ 102.489334][ T13] ? __pfx_kthread+0x10/0x10 [ 102.489359][ T13] ? __pfx_kthread+0x10/0x10 [ 102.489387][ T13] ? __pfx_kthread+0x10/0x10 [ 102.489415][ T13] ? __pfx_kthread+0x10/0x10 [ 102.489443][ T13] ? _raw_spin_unlock_irq+0x23/0x50 [ 102.489464][ T13] ? lockdep_hardirqs_on+0x9d/0x150 [ 102.489489][ T13] ? __pfx_kthread+0x10/0x10 [ 102.489529][ T13] ret_from_fork+0x4b/0x80 [ 102.489550][ T13] ? __pfx_kthread+0x10/0x10 [ 102.489579][ T13] ret_from_fork_asm+0x1a/0x30 [ 102.489627][ T13] [ 102.514121][ T13] F2FS-fs (loop4): Stopped filesystem due to reason: 3 [ 102.586811][ T5915] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 102.757699][ T5915] usb 1-1: Using ep0 maxpacket: 32 [ 102.875565][ T6131] netlink: 56 bytes leftover after parsing attributes in process `syz.1.73'. [ 103.019165][ T5915] usb 1-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 103.030967][ T5915] usb 1-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 103.047572][ T5915] usb 1-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 103.072705][ T5915] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 103.089273][ T6119] loop3: detected capacity change from 0 to 32768 [ 103.112141][ T5915] hub 1-1:4.0: USB hub found [ 103.126119][ T6133] loop1: detected capacity change from 0 to 2048 [ 103.178083][ T6133] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 103.202333][ T6133] ext4 filesystem being mounted at /18/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 103.283953][ T6133] fs-verity (loop1, inode 13): Unknown hash algorithm number: 0 [ 103.339028][ T5915] hub 1-1:4.0: 8 ports detected [ 103.361233][ T5915] hub 1-1:4.0: insufficient power available to use all downstream ports [ 103.374867][ T6119] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,nocow [ 103.382491][ T5836] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 103.392572][ T6119] bcachefs (loop3): initializing new filesystem [ 103.407309][ T6119] bcachefs (loop3): going read-write [ 103.416047][ T6119] bcachefs (loop3): marking superblocks [ 103.459359][ T6119] bcachefs (loop3): initializing freespace [ 103.487852][ T6119] bcachefs (loop3): done initializing freespace [ 103.510855][ T6119] bcachefs (loop3): reading snapshots table [ 103.525316][ T6119] bcachefs (loop3): reading snapshots done [ 103.540021][ T5915] hub 1-1:4.0: hub_hub_status failed (err = -71) [ 103.549346][ T5915] hub 1-1:4.0: config failed, can't get hub status (err -71) [ 103.612350][ T6119] bcachefs (loop3): done starting filesystem [ 103.629680][ T5915] usb 1-1: USB disconnect, device number 3 [ 103.726492][ T6135] loop2: detected capacity change from 0 to 32768 [ 103.788361][ T5842] bcachefs (loop3): shutting down [ 103.790783][ T6135] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 103.804193][ T5842] bcachefs (loop3): going read-only [ 103.810249][ T5842] bcachefs (loop3): finished waiting for writes to stop [ 103.820208][ T5842] bcachefs (loop3): flushing journal and stopping allocators, journal seq 2 [ 103.877010][ T5842] bcachefs (loop3): flushing journal and stopping allocators complete, journal seq 3 [ 103.906407][ T5842] bcachefs (loop3): clean shutdown complete, journal seq 4 [ 103.916750][ T5842] bcachefs (loop3): marking filesystem clean [ 103.937392][ T6161] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 104.020103][ T6135] XFS (loop2): Ending clean mount [ 104.039767][ T5842] bcachefs (loop3): shutdown complete [ 104.113097][ T5849] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 104.220505][ T6147] loop1: detected capacity change from 0 to 32768 [ 104.246719][ T6147] XFS: ikeep mount option is deprecated. [ 104.303836][ T6147] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 104.428464][ T6147] XFS (loop1): Ending clean mount [ 104.479733][ T6147] XFS (loop1): Quotacheck needed: Please wait. [ 104.563416][ T6147] XFS (loop1): Quotacheck: Done. [ 104.715004][ T5836] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 104.825959][ T5915] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 105.037617][ T5915] usb 5-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08 [ 105.055797][ T5915] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 105.090985][ T5915] usb 5-1: config 0 descriptor?? [ 105.108908][ T5915] gspca_main: cpia1-2.14.0 probing 0813:0001 [ 105.124341][ T6196] Bluetooth: MGMT ver 1.23 [ 105.519070][ T5915] cpia1 5-1:0.0: unexpected state after lo power cmd: 00 [ 105.773108][ T6209] loop1: detected capacity change from 0 to 8 [ 105.789376][ T6209] MTD: Attempt to mount non-MTD device "/dev/loop1" [ 105.893748][ T6209] cramfs: bad data blocksize 503316507 [ 105.923232][ T6209] cramfs: bad data blocksize 503316507 [ 105.933501][ T5915] gspca_cpia1: usb_control_msg 02, error -71 [ 105.955970][ T30] audit: type=1800 audit(1743157812.241:3): pid=6209 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.96" name="file0" dev="overlay" ino=244 res=0 errno=0 [ 105.959005][ T5915] gspca_cpia1: usb_control_msg 05, error -71 [ 106.015505][ T5915] cpia1 5-1:0.0: unexpected systemstate: 00 [ 106.042966][ T5915] usb 5-1: USB disconnect, device number 4 [ 106.094505][ T6190] syz.0.88 (6190): drop_caches: 2 [ 106.136542][ T6211] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 106.240851][ T6213] sp0: Synchronizing with TNC [ 106.832709][ T6217] loop0: detected capacity change from 0 to 32768 [ 107.006615][ T6243] netlink: 'syz.3.112': attribute type 15 has an invalid length. [ 108.116259][ T6248] loop3: detected capacity change from 0 to 32768 [ 108.134842][ T6257] loop4: detected capacity change from 0 to 256 [ 108.148299][ T6248] btrfs: Deprecated parameter 'usebackuproot' [ 108.166776][ T6257] exfat: Deprecated parameter 'utf8' [ 108.172265][ T6257] exfat: Deprecated parameter 'namecase' [ 108.189851][ T6248] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead [ 108.204783][ T6257] exfat: Deprecated parameter 'utf8' [ 108.214370][ T6248] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.115 (6248) [ 108.220086][ T6244] loop1: detected capacity change from 0 to 32768 [ 108.273816][ T6257] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 108.310946][ T6248] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 108.344650][ T6248] BTRFS info (device loop3): using crc32c (crc32c-x86_64) checksum algorithm [ 108.354842][ T6248] BTRFS info (device loop3): using free-space-tree [ 108.370850][ T6244] XFS (loop1): Mounting V5 Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a [ 108.420606][ T6253] loop0: detected capacity change from 0 to 40427 [ 108.433904][ T6244] XFS (loop1): Ending clean mount [ 108.436380][ T6253] F2FS-fs (loop0): invalid crc value [ 108.486993][ T6244] XFS (loop1): Quotacheck needed: Please wait. [ 108.551569][ T6248] BTRFS info (device loop3): rebuilding free space tree [ 108.623942][ T6244] XFS (loop1): Quotacheck: Done. [ 108.681267][ T6253] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e4 [ 108.709338][ T30] audit: type=1800 audit(1743157815.001:4): pid=6248 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.115" name="bus" dev="loop3" ino=263 res=0 errno=0 [ 108.790797][ T5836] XFS (loop1): Unmounting Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a [ 108.814684][ T5842] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 109.285173][ T6277] loop2: detected capacity change from 0 to 40427 [ 109.372915][ T6277] F2FS-fs (loop2): build fault injection attr: rate: 690, type: 0x3fffff [ 109.395614][ T6277] F2FS-fs (loop2): build fault injection attr: rate: 0, type: 0x2 [ 109.425353][ T6277] F2FS-fs (loop2): Image doesn't support compression [ 109.452162][ T6277] F2FS-fs (loop2): Image doesn't support compression [ 109.482004][ T6277] F2FS-fs (loop2): invalid crc value [ 109.715874][ T6277] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 109.737490][ T6289] loop4: detected capacity change from 0 to 40427 [ 109.810663][ T5849] syz-executor: attempt to access beyond end of device [ 109.810663][ T5849] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 109.840960][ T5849] CPU: 1 UID: 0 PID: 5849 Comm: syz-executor Not tainted 6.14.0-next-20250328-syzkaller #0 PREEMPT(full) [ 109.841006][ T5849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 109.841022][ T5849] Call Trace: [ 109.841035][ T5849] [ 109.841049][ T5849] dump_stack_lvl+0x241/0x360 [ 109.841114][ T5849] ? __pfx_dump_stack_lvl+0x10/0x10 [ 109.841167][ T5849] ? _raw_spin_unlock_irqrestore+0xde/0x140 [ 109.841210][ T5849] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 109.841257][ T5849] ? f2fs_hw_is_readonly+0x3a3/0x470 [ 109.841324][ T5849] f2fs_handle_critical_error+0x392/0x5a0 [ 109.841383][ T5849] f2fs_write_end_io+0x563/0x790 [ 109.841414][ T5849] ? __pfx_f2fs_write_end_io+0x10/0x10 [ 109.841441][ T5849] ? bio_endio+0x7e4/0x890 [ 109.841474][ T5849] ? bio_endio+0x82a/0x890 [ 109.841508][ T5849] __submit_merged_bio+0x2a9/0x710 [ 109.841535][ T5849] ? f2fs_submit_merged_write_cond+0x101/0x380 [ 109.841572][ T5849] f2fs_submit_merged_write_cond+0x29f/0x380 [ 109.841617][ T5849] f2fs_write_data_pages+0x2f99/0x38d0 [ 109.841701][ T5849] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 109.841795][ T5849] ? __mod_memcg_lruvec_state+0x301/0x4f0 [ 109.841842][ T5849] ? rcu_is_watching+0x15/0xb0 [ 109.841900][ T5849] ? check_noncircular+0xee/0x160 [ 109.841936][ T5849] ? lockdep_unlock+0x8d/0x120 [ 109.841985][ T5849] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 109.842021][ T5849] do_writepages+0x364/0x890 [ 109.842056][ T5849] ? __pfx_do_writepages+0x10/0x10 [ 109.842076][ T5849] ? __lock_acquire+0xad5/0xd80 [ 109.842105][ T5849] ? do_raw_spin_lock+0x151/0x370 [ 109.842151][ T5849] ? do_raw_spin_unlock+0x13c/0x8b0 [ 109.842193][ T5849] filemap_fdatawrite+0x1f2/0x2a0 [ 109.842221][ T5849] ? __pfx_filemap_fdatawrite+0x10/0x10 [ 109.842304][ T5849] ? do_raw_spin_unlock+0x13c/0x8b0 [ 109.842346][ T5849] f2fs_sync_dirty_inodes+0x34f/0x860 [ 109.842389][ T5849] f2fs_write_checkpoint+0x857/0x1da0 [ 109.842440][ T5849] ? __pfx_f2fs_write_checkpoint+0x10/0x10 [ 109.842527][ T5849] ? kill_f2fs_super+0x290/0x6d0 [ 109.842556][ T5849] kill_f2fs_super+0x2b8/0x6d0 [ 109.842587][ T5849] ? __pfx_kill_f2fs_super+0x10/0x10 [ 109.842621][ T5849] ? shrinker_free+0x2ca/0x3d0 [ 109.842652][ T5849] deactivate_locked_super+0xc4/0x130 [ 109.842680][ T5849] cleanup_mnt+0x422/0x4c0 [ 109.842704][ T5849] ? lockdep_hardirqs_on+0x9d/0x150 [ 109.842735][ T5849] task_work_run+0x251/0x310 [ 109.842777][ T5849] ? __pfx_task_work_run+0x10/0x10 [ 109.842815][ T5849] ? syscall_exit_to_user_mode+0xa3/0x340 [ 109.842853][ T5849] syscall_exit_to_user_mode+0x13f/0x340 [ 109.842886][ T5849] do_syscall_64+0x100/0x230 [ 109.842914][ T5849] ? clear_bhb_loop+0x45/0xa0 [ 109.842939][ T5849] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 109.842970][ T5849] RIP: 0033:0x7f0e2398e497 [ 109.842994][ T5849] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 [ 109.843011][ T5849] RSP: 002b:00007ffe156dfce8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 109.843032][ T5849] RAX: 0000000000000000 RBX: 00007f0e23a0e08c RCX: 00007f0e2398e497 [ 109.843046][ T5849] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe156dfda0 [ 109.843058][ T5849] RBP: 00007ffe156dfda0 R08: 0000000000000000 R09: 0000000000000000 [ 109.843070][ T5849] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe156e0e30 [ 109.843084][ T5849] R13: 00007f0e23a0e08c R14: 000000000001acb0 R15: 00007ffe156e0e70 [ 109.843122][ T5849] [ 109.843130][ T5849] F2FS-fs (loop2): Stopped filesystem due to reason: 3 [ 110.218491][ T6292] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 110.224651][ T6292] Bluetooth: hci0: Error when powering off device on rfkill (-4) [ 110.255861][ T6289] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 110.326589][ T5841] syz-executor: attempt to access beyond end of device [ 110.326589][ T5841] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 110.364430][ T6292] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 110.379131][ T5841] CPU: 0 UID: 0 PID: 5841 Comm: syz-executor Not tainted 6.14.0-next-20250328-syzkaller #0 PREEMPT(full) [ 110.379161][ T5841] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 110.379174][ T5841] Call Trace: [ 110.379182][ T5841] [ 110.379190][ T5841] dump_stack_lvl+0x241/0x360 [ 110.379229][ T5841] ? __pfx_dump_stack_lvl+0x10/0x10 [ 110.379260][ T5841] ? _raw_spin_unlock_irqrestore+0xde/0x140 [ 110.379285][ T5841] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 110.379311][ T5841] ? f2fs_hw_is_readonly+0x3a3/0x470 [ 110.379349][ T5841] f2fs_handle_critical_error+0x392/0x5a0 [ 110.379388][ T5841] f2fs_write_end_io+0x563/0x790 [ 110.379416][ T5841] ? __pfx_f2fs_write_end_io+0x10/0x10 [ 110.379441][ T5841] ? bio_endio+0x7e4/0x890 [ 110.379473][ T5841] ? bio_endio+0x82a/0x890 [ 110.379506][ T5841] __submit_merged_bio+0x2a9/0x710 [ 110.379532][ T5841] ? f2fs_submit_merged_write_cond+0x101/0x380 [ 110.379568][ T5841] f2fs_submit_merged_write_cond+0x29f/0x380 [ 110.379609][ T5841] f2fs_write_data_pages+0x2f99/0x38d0 [ 110.379682][ T5841] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 110.379819][ T5841] ? __lock_acquire+0xad5/0xd80 [ 110.379848][ T5841] ? do_raw_spin_lock+0x151/0x370 [ 110.379887][ T5841] ? do_raw_spin_unlock+0x13c/0x8b0 [ 110.379920][ T5841] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 110.379955][ T5841] do_writepages+0x364/0x890 [ 110.379987][ T5841] ? __pfx_do_writepages+0x10/0x10 [ 110.380006][ T5841] ? __lock_acquire+0xad5/0xd80 [ 110.380032][ T5841] ? do_raw_spin_lock+0x151/0x370 [ 110.380074][ T5841] ? do_raw_spin_unlock+0x13c/0x8b0 [ 110.380114][ T5841] filemap_fdatawrite+0x1f2/0x2a0 [ 110.380140][ T5841] ? __pfx_filemap_fdatawrite+0x10/0x10 [ 110.380160][ T5841] ? mlock_drain_local+0x79/0x490 [ 110.380229][ T5841] ? do_raw_spin_unlock+0x13c/0x8b0 [ 110.380269][ T5841] f2fs_sync_dirty_inodes+0x34f/0x860 [ 110.380307][ T5841] f2fs_write_checkpoint+0x857/0x1da0 [ 110.380352][ T5841] ? __pfx_f2fs_write_checkpoint+0x10/0x10 [ 110.380425][ T5841] ? kill_f2fs_super+0x290/0x6d0 [ 110.380454][ T5841] kill_f2fs_super+0x2b8/0x6d0 [ 110.380482][ T5841] ? __pfx_kill_f2fs_super+0x10/0x10 [ 110.380512][ T5841] ? shrinker_free+0x2ca/0x3d0 [ 110.380542][ T5841] deactivate_locked_super+0xc4/0x130 [ 110.380568][ T5841] cleanup_mnt+0x422/0x4c0 [ 110.380590][ T5841] ? lockdep_hardirqs_on+0x9d/0x150 [ 110.380620][ T5841] task_work_run+0x251/0x310 [ 110.380658][ T5841] ? __pfx_task_work_run+0x10/0x10 [ 110.380695][ T5841] ? syscall_exit_to_user_mode+0xa3/0x340 [ 110.380726][ T5841] syscall_exit_to_user_mode+0x13f/0x340 [ 110.380757][ T5841] do_syscall_64+0x100/0x230 [ 110.380785][ T5841] ? clear_bhb_loop+0x45/0xa0 [ 110.380817][ T5841] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 110.380837][ T5841] RIP: 0033:0x7fafb558e497 [ 110.380856][ T5841] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 [ 110.380873][ T5841] RSP: 002b:00007ffffbf4adc8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 110.380894][ T5841] RAX: 0000000000000000 RBX: 00007fafb560e08c RCX: 00007fafb558e497 [ 110.380909][ T5841] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffffbf4ae80 [ 110.380921][ T5841] RBP: 00007ffffbf4ae80 R08: 0000000000000000 R09: 0000000000000000 [ 110.380934][ T5841] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffffbf4bf10 [ 110.380947][ T5841] R13: 00007fafb560e08c R14: 000000000001aeb4 R15: 00007ffffbf4bf50 [ 110.380981][ T5841] [ 110.380989][ T5841] F2FS-fs (loop4): Stopped filesystem due to reason: 3 [ 110.446916][ T6292] Bluetooth: hci1: Error when powering off device on rfkill (-4) [ 110.492585][ T6316] macsec1: entered promiscuous mode [ 110.707455][ T6312] loop0: detected capacity change from 0 to 32768 [ 110.751747][ T6316] macvlan1: entered promiscuous mode [ 110.771393][ T6292] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 110.776325][ T6316] macsec1: entered allmulticast mode [ 110.779838][ T6292] Bluetooth: hci2: Error when powering off device on rfkill (-4) [ 110.782957][ T6316] macvlan1: entered allmulticast mode [ 110.816944][ T6292] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 110.824026][ T6316] veth1_vlan: entered allmulticast mode [ 110.827755][ T6292] Bluetooth: hci3: Error when powering off device on rfkill (-4) [ 110.869583][ T6316] macvlan1: left allmulticast mode [ 110.870713][ T6292] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 110.886067][ T6316] veth1_vlan: left allmulticast mode [ 110.886136][ T6292] Bluetooth: hci4: Error when powering off device on rfkill (-4) [ 110.891545][ T6316] macvlan1: left promiscuous mode [ 110.977998][ T6312] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,nocow [ 111.036043][ T6312] bcachefs (loop0): initializing new filesystem [ 111.069565][ T6312] bcachefs (loop0): going read-write [ 111.097753][ T6312] bcachefs (loop0): marking superblocks [ 111.132501][ T6312] bcachefs (loop0): initializing freespace [ 111.174394][ T6312] bcachefs (loop0): done initializing freespace [ 111.214827][ T6312] bcachefs (loop0): reading snapshots table [ 111.253201][ T6312] bcachefs (loop0): reading snapshots done [ 111.302610][ T6312] bcachefs (loop0): done starting filesystem [ 111.314071][ T6334] mmap: syz.3.135 (6334) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 111.529149][ T6339] netlink: 8 bytes leftover after parsing attributes in process `syz.1.136'. [ 111.567049][ T6339] netlink: 8 bytes leftover after parsing attributes in process `syz.1.136'. [ 111.612913][ T5840] bcachefs (loop0): shutting down [ 111.628526][ T5840] bcachefs (loop0): going read-only [ 111.633796][ T5840] bcachefs (loop0): finished waiting for writes to stop [ 111.676233][ T5840] bcachefs (loop0): flushing journal and stopping allocators, journal seq 3 [ 111.779008][ T5840] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 3 [ 111.809109][ T5840] bcachefs (loop0): clean shutdown complete, journal seq 4 [ 111.820699][ T6349] loop3: detected capacity change from 0 to 64 [ 111.837253][ T5840] bcachefs (loop0): marking filesystem clean [ 111.886834][ T6352] loop4: detected capacity change from 0 to 8 [ 111.910565][ T5840] bcachefs (loop0): shutdown complete [ 112.205155][ T6363] Zero length message leads to an empty skb [ 112.424157][ T6376] loop1: detected capacity change from 0 to 2048 [ 112.446675][ T6376] EXT4-fs (loop1): can't mount with data_err=abort, fs mounted w/o journal [ 112.628860][ T6383] vxcan1: entered allmulticast mode [ 112.636181][ T6383] vxcan1: left allmulticast mode [ 112.751115][ T6385] warning: `syz.1.157' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 112.842150][ T6367] loop4: detected capacity change from 0 to 32768 [ 112.850651][ T6388] [U]  [ 113.316351][ T6367] bcachefs (loop4): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,nocow [ 113.434452][ T6367] bcachefs (loop4): initializing new filesystem [ 113.455065][ T6367] bcachefs (loop4): going read-write [ 113.558546][ T6367] bcachefs (loop4): marking superblocks [ 113.669257][ T6367] bcachefs (loop4): initializing freespace [ 113.716441][ T6367] bcachefs (loop4): done initializing freespace [ 113.856510][ T6367] bcachefs (loop4): reading snapshots table [ 113.862882][ T6367] bcachefs (loop4): reading snapshots done [ 113.910210][ T6367] bcachefs (loop4): done starting filesystem [ 114.190634][ T5841] bcachefs (loop4): shutting down [ 114.231317][ T5841] bcachefs (loop4): going read-only [ 114.276027][ T5841] bcachefs (loop4): finished waiting for writes to stop [ 114.326386][ T5841] bcachefs (loop4): flushing journal and stopping allocators, journal seq 3 [ 114.416168][ T5841] bcachefs (loop4): flushing journal and stopping allocators complete, journal seq 3 [ 114.451569][ T5841] bcachefs (loop4): clean shutdown complete, journal seq 4 [ 114.477683][ T5841] bcachefs (loop4): marking filesystem clean [ 114.589078][ T5841] bcachefs (loop4): shutdown complete [ 114.632737][ T6433] netlink: 'syz.3.175': attribute type 10 has an invalid length. [ 114.662135][ T6433] syz_tun: entered promiscuous mode [ 114.711026][ T6433] bond0: (slave syz_tun): Enslaving as an active interface with an up link [ 114.750108][ T6435] macvlan0: entered promiscuous mode [ 114.781689][ T6435] netlink: 'syz.2.176': attribute type 2 has an invalid length. [ 114.785006][ T6425] loop0: detected capacity change from 0 to 32768 [ 114.801695][ T6425] XFS: ikeep mount option is deprecated. [ 114.874894][ T6425] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 114.984719][ T6425] XFS (loop0): Ending clean mount [ 115.008861][ T6449] syz_tun: entered allmulticast mode [ 115.018148][ T6448] syz_tun: left allmulticast mode [ 115.028675][ T6425] XFS (loop0): Quotacheck needed: Please wait. [ 115.105452][ T6425] XFS (loop0): Quotacheck: Done. [ 115.234532][ T5840] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 115.546848][ T5892] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 115.706286][ T5892] usb 3-1: Using ep0 maxpacket: 32 [ 115.717373][ T5892] usb 3-1: New USB device found, idVendor=0ac8, idProduct=0321, bcdDevice=6f.be [ 115.735871][ T5892] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 115.759394][ T5892] usb 3-1: config 0 descriptor?? [ 115.770107][ T5892] gspca_main: vc032x-2.14.0 probing 0ac8:0321 [ 116.043698][ T6461] loop1: detected capacity change from 0 to 32768 [ 116.139137][ T6461] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 116.206870][ T5842] bond0: (slave syz_tun): Releasing backup interface [ 116.252080][ T6461] XFS (loop1): Ending clean mount [ 116.511185][ T5836] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 116.542843][ T83] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 116.574570][ T5892] gspca_vc032x: reg_w err -71 [ 116.583077][ T5892] gspca_vc032x: I2c Bus Busy Wait 00 [ 116.615825][ T5892] gspca_vc032x: I2c Bus Busy Wait 00 [ 116.621220][ T5892] gspca_vc032x: I2c Bus Busy Wait 00 [ 116.666671][ T5892] gspca_vc032x: I2c Bus Busy Wait 00 [ 116.672025][ T5892] gspca_vc032x: I2c Bus Busy Wait 00 [ 116.725798][ T5892] gspca_vc032x: I2c Bus Busy Wait 00 [ 116.731151][ T5892] gspca_vc032x: I2c Bus Busy Wait 00 [ 116.776359][ T5892] gspca_vc032x: I2c Bus Busy Wait 00 [ 116.783205][ T83] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 116.835834][ T5892] gspca_vc032x: I2c Bus Busy Wait 00 [ 116.841219][ T5892] gspca_vc032x: I2c Bus Busy Wait 00 [ 116.854231][ T5892] gspca_vc032x: I2c Bus Busy Wait 00 [ 116.865910][ T5892] gspca_vc032x: I2c Bus Busy Wait 00 [ 116.871806][ T5892] gspca_vc032x: I2c Bus Busy Wait 00 [ 116.886730][ T5892] gspca_vc032x: I2c Bus Busy Wait 00 [ 116.902380][ T5892] gspca_vc032x: I2c Bus Busy Wait 00 [ 116.910882][ T83] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 116.917995][ T5892] gspca_vc032x: I2c Bus Busy Wait 00 [ 116.954379][ T5892] gspca_vc032x: I2c Bus Busy Wait 00 [ 116.976810][ T5892] gspca_vc032x: I2c Bus Busy Wait 00 [ 116.982195][ T5892] gspca_vc032x: Unknown sensor... [ 117.006323][ T5892] vc032x 3-1:0.0: probe with driver vc032x failed with error -22 [ 117.017917][ T83] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 117.019015][ T5892] usb 3-1: USB disconnect, device number 3 [ 117.040616][ T6493] netlink: 24 bytes leftover after parsing attributes in process `syz.4.197'. [ 117.268863][ T6496] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 117.329392][ T30] audit: type=1326 audit(1743157823.621:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6500 comm="syz.0.201" exe="/root/syz-executor" sig=31 arch=c000003e syscall=39 compat=0 ip=0x7f9cbbd84127 code=0x0 [ 117.405229][ T83] bridge_slave_1: left allmulticast mode [ 117.422267][ T6497] loop1: detected capacity change from 0 to 4096 [ 117.428116][ T83] bridge_slave_1: left promiscuous mode [ 117.435236][ T83] bridge0: port 2(bridge_slave_1) entered disabled state [ 117.476898][ T6497] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512). [ 117.553792][ T6497] ntfs3(loop1): ino=19, mi_enum_attr [ 117.559675][ T83] bridge_slave_0: left allmulticast mode [ 117.563936][ T6497] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 117.566460][ T5854] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 117.577678][ T83] bridge_slave_0: left promiscuous mode [ 117.586906][ T5854] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 117.593349][ T83] bridge0: port 1(bridge_slave_0) entered disabled state [ 117.607004][ T5854] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 117.615498][ T5854] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 117.624251][ T5854] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 117.640481][ T5852] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 117.650970][ T5852] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 117.658966][ T5852] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 117.667816][ T5852] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 117.679293][ T5852] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 117.705775][ T5892] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 117.826032][ T5890] usb 5-1: new full-speed USB device number 5 using dummy_hcd [ 117.865742][ T5892] usb 3-1: Using ep0 maxpacket: 32 [ 117.876931][ T5892] usb 3-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7 [ 117.886502][ T5892] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 117.899453][ T5892] usb 3-1: config 0 descriptor?? [ 117.910602][ T5892] gspca_main: sunplus-2.14.0 probing 041e:400b [ 118.040761][ T5890] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 118.055771][ T5890] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10 [ 118.095753][ T5890] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 118.105505][ T5890] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 5 [ 118.148153][ T5890] usb 5-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42 [ 118.175787][ T5890] usb 5-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0 [ 118.195791][ T5890] usb 5-1: Manufacturer: syz [ 118.217520][ T5890] usb 5-1: config 0 descriptor?? [ 118.249925][ T6511] loop0: detected capacity change from 0 to 128 [ 118.267862][ T6511] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 118.300452][ T6511] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 118.438081][ T6509] loop1: detected capacity change from 0 to 32768 [ 118.445601][ T6509] XFS: attr2 mount option is deprecated. [ 118.502397][ T83] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 118.517581][ T6509] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 118.538615][ T83] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 118.551031][ T83] bond0 (unregistering): Released all slaves [ 118.576243][ T5890] rc_core: IR keymap rc-hauppauge not found [ 118.582200][ T5890] Registered IR keymap rc-empty [ 118.594414][ T5890] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 118.645933][ T5890] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 118.673966][ T6509] XFS (loop1): Ending clean mount [ 118.679264][ T5890] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/rc/rc0 [ 118.725229][ T5892] gspca_sunplus: reg_w_riv err -71 [ 118.731846][ T5892] sunplus 3-1:0.0: probe with driver sunplus failed with error -71 [ 118.748820][ T6509] XFS (loop1): Quotacheck needed: Please wait. [ 118.752009][ T5892] usb 3-1: USB disconnect, device number 4 [ 118.760749][ T5890] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/rc/rc0/input5 [ 118.804185][ T6525] random: crng reseeded on system resumption [ 118.836612][ T5890] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 118.894976][ T6509] XFS (loop1): Quotacheck: Done. [ 118.920727][ T5890] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 118.956021][ T5890] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 118.982118][ T5890] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 118.998581][ T5836] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 119.015795][ T5890] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 119.042349][ T5890] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 119.068901][ T5890] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 119.107115][ T5890] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 119.140302][ T5890] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 119.168531][ T5890] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 119.197518][ T5890] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 119.248772][ T5890] mceusb 5-1:0.0: Registered 424242424242 with mce emulator interface version 1 [ 119.266146][ T5890] mceusb 5-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active) [ 119.331219][ T5890] usb 5-1: USB disconnect, device number 5 [ 119.440192][ T83] hsr_slave_0: left promiscuous mode [ 119.453748][ T83] hsr_slave_1: left promiscuous mode [ 119.464388][ T83] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 119.472330][ T83] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 119.481794][ T30] audit: type=1326 audit(1743157825.771:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6536 comm="syz.2.211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e2398d169 code=0x7ffc0000 [ 119.510422][ T83] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 119.519663][ T83] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 119.543301][ T30] audit: type=1326 audit(1743157825.801:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6536 comm="syz.2.211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e2398d169 code=0x7ffc0000 [ 119.550684][ T83] veth1_macvtap: left promiscuous mode [ 119.579652][ T83] veth0_macvtap: left promiscuous mode [ 119.585460][ T83] veth1_vlan: left promiscuous mode [ 119.591832][ T30] audit: type=1326 audit(1743157825.801:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6536 comm="syz.2.211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e2398d169 code=0x7ffc0000 [ 119.596950][ T83] veth0_vlan: left promiscuous mode [ 119.635748][ T30] audit: type=1326 audit(1743157825.801:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6536 comm="syz.2.211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e2398d169 code=0x7ffc0000 [ 119.685951][ T5915] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 119.699976][ T6541] capability: warning: `syz.4.213' uses deprecated v2 capabilities in a way that may be insecure [ 119.735916][ T30] audit: type=1326 audit(1743157825.801:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6536 comm="syz.2.211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e2398d169 code=0x7ffc0000 [ 119.765811][ T5852] Bluetooth: hci2: command tx timeout [ 119.774556][ T30] audit: type=1326 audit(1743157825.811:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6536 comm="syz.2.211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e2398d169 code=0x7ffc0000 [ 119.808610][ T30] audit: type=1326 audit(1743157825.811:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6536 comm="syz.2.211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f0e23984127 code=0x7ffc0000 [ 119.831049][ T30] audit: type=1326 audit(1743157825.811:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6536 comm="syz.2.211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f0e23929359 code=0x7ffc0000 [ 119.854305][ T30] audit: type=1326 audit(1743157825.811:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6536 comm="syz.2.211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f0e23984127 code=0x7ffc0000 [ 119.909497][ T5915] usb 2-1: Using ep0 maxpacket: 16 [ 119.942114][ T5915] usb 2-1: config 0 has an invalid interface number: 1 but max is 0 [ 119.969637][ T5915] usb 2-1: config 0 has no interface number 0 [ 119.988635][ T5915] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 120.011957][ T5915] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 120.039638][ T5915] usb 2-1: New USB device found, idVendor=28bd, idProduct=0071, bcdDevice= 0.00 [ 120.076331][ T5915] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 120.104085][ T5915] usb 2-1: config 0 descriptor?? [ 120.209173][ T6545] loop0: detected capacity change from 0 to 4096 [ 120.232590][ T6545] ntfs3(loop0): Different NTFS sector size (2048) and media sector size (512). [ 120.312875][ T6545] ntfs3(loop0): Failed to initialize $Extend/$ObjId. [ 120.568223][ T6548] serio: Serial port ptm0 [ 120.631892][ T83] team0 (unregistering): Port device team_slave_1 removed [ 120.675154][ T83] team0 (unregistering): Port device team_slave_0 removed [ 120.741819][ T5915] uclogic 0003:28BD:0071.0002: pen parameters not found [ 120.753833][ T5915] uclogic 0003:28BD:0071.0002: interface is invalid, ignoring [ 120.765552][ T5915] usb 2-1: USB disconnect, device number 2 [ 121.294474][ T6505] chnl_net:caif_netlink_parms(): no params data found [ 121.689450][ T6579] input: syz0 as /devices/virtual/input/input6 [ 121.708670][ T6505] bridge0: port 1(bridge_slave_0) entered blocking state [ 121.726162][ T6505] bridge0: port 1(bridge_slave_0) entered disabled state [ 121.733635][ T6505] bridge_slave_0: entered allmulticast mode [ 121.750960][ T6505] bridge_slave_0: entered promiscuous mode [ 121.771523][ T6505] bridge0: port 2(bridge_slave_1) entered blocking state [ 121.785915][ T6505] bridge0: port 2(bridge_slave_1) entered disabled state [ 121.803439][ T6505] bridge_slave_1: entered allmulticast mode [ 121.815365][ T6505] bridge_slave_1: entered promiscuous mode [ 121.825916][ T5852] Bluetooth: hci2: command tx timeout [ 121.923971][ T6577] loop2: detected capacity change from 0 to 4096 [ 121.990553][ T6505] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 122.029373][ T6505] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 122.106068][ T6572] loop4: detected capacity change from 0 to 32768 [ 122.175627][ T6572] XFS (loop4): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 122.211683][ T6505] team0: Port device team_slave_0 added [ 122.282404][ T6505] team0: Port device team_slave_1 added [ 122.304565][ T6572] XFS (loop4): Ending clean mount [ 122.447035][ T6505] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 122.464694][ T6505] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 122.502195][ T6505] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 122.541340][ T5841] XFS (loop4): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 122.559538][ T6505] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 122.569763][ T6505] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 122.613810][ T6505] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 122.751866][ T6610] netlink: 8 bytes leftover after parsing attributes in process `syz.2.238'. [ 122.810784][ T6505] hsr_slave_0: entered promiscuous mode [ 122.824640][ T6505] hsr_slave_1: entered promiscuous mode [ 122.840179][ T6614] loop0: detected capacity change from 0 to 256 [ 122.870462][ T6612] loop1: detected capacity change from 0 to 4096 [ 122.949985][ T6612] NILFS (loop1): invalid segment: Checksum error in segment payload [ 122.980309][ T6612] NILFS (loop1): trying rollback from an earlier position [ 123.050310][ T6612] NILFS (loop1): recovery complete [ 123.095890][ T6619] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 123.323205][ T6627] loop2: detected capacity change from 0 to 736 [ 123.369678][ T6629] sch_tbf: burst 25 is lower than device lo mtu (65550) ! [ 123.477056][ T6505] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 123.512648][ T6505] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 123.548164][ T6505] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 123.570556][ T6505] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 123.635811][ T5891] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 123.795478][ T6505] 8021q: adding VLAN 0 to HW filter on device bond0 [ 123.833752][ T5891] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 123.850940][ T6647] loop2: detected capacity change from 0 to 8 [ 123.860884][ T5891] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 123.882085][ T6647] SQUASHFS error: zlib decompression failed, data probably corrupt [ 123.894900][ T6505] 8021q: adding VLAN 0 to HW filter on device team0 [ 123.907967][ T5852] Bluetooth: hci2: command tx timeout [ 123.913554][ T5891] usb 5-1: config 1 interface 0 altsetting 0 has an invalid endpoint descriptor of length 6, skipping [ 123.920062][ T6647] SQUASHFS error: Failed to read block 0x9b: -5 [ 123.933232][ T5891] usb 5-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 123.955145][ T6647] SQUASHFS error: Unable to read metadata cache entry [99] [ 123.965799][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 123.967524][ T5891] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 123.972962][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 123.982198][ T5891] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 124.007318][ T5891] usb 5-1: SerialNumber: syz [ 124.009169][ T6647] SQUASHFS error: Unable to read inode 0x127 [ 124.045575][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 124.052853][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 124.198900][ T6654] loop1: detected capacity change from 0 to 256 [ 124.225462][ T6654] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x72684843, utbl_chksum : 0xe619d30d) [ 124.241463][ T5891] usb 5-1: 0:2 : does not exist [ 124.254022][ T5891] usb 5-1: unit 5 not found! [ 124.276606][ T5892] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 124.298187][ T5891] usb 5-1: USB disconnect, device number 6 [ 124.335113][ T6654] exFAT-fs (loop1): start_clu is invalid cluster(0xffffffff) [ 124.382982][ T6661] loop2: detected capacity change from 0 to 1024 [ 124.435235][ T6661] hfsplus: inconsistency in B*Tree (0,1,255,1,0) [ 124.437166][ T5892] usb 1-1: Using ep0 maxpacket: 16 [ 124.445771][ T6661] hfsplus: xattr searching failed [ 124.468467][ T6661] hfsplus: inconsistency in B*Tree (0,1,255,1,0) [ 124.483856][ T5892] usb 1-1: config 0 has an invalid interface number: 4 but max is 0 [ 124.490179][ T6661] hfsplus: xattr searching failed [ 124.492361][ T5892] usb 1-1: config 0 has no interface number 0 [ 124.508444][ T6505] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 124.516817][ T5892] usb 1-1: config 0 interface 4 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 124.528324][ T5892] usb 1-1: config 0 interface 4 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 124.554731][ T5892] usb 1-1: New USB device found, idVendor=6161, idProduct=4d15, bcdDevice= 0.00 [ 124.573417][ T5892] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 124.585420][ T5892] usb 1-1: config 0 descriptor?? [ 124.969402][ T6679] loop1: detected capacity change from 0 to 256 [ 125.006218][ T6679] exFAT-fs (loop1): failed to load upcase table (idx : 0x0001023f, chksum : 0x0e440cfe, utbl_chksum : 0xe619d30d) [ 125.015521][ T6505] veth0_vlan: entered promiscuous mode [ 125.091361][ T6505] veth1_vlan: entered promiscuous mode [ 125.169709][ T6683] loop2: detected capacity change from 0 to 8 [ 125.203945][ T6505] veth0_macvtap: entered promiscuous mode [ 125.227518][ T6505] veth1_macvtap: entered promiscuous mode [ 125.255168][ T5892] usb 1-1: USB disconnect, device number 4 [ 125.277552][ T6505] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 125.303426][ T6505] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 125.316526][ T6505] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 125.333193][ T6505] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 125.343851][ T6505] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 125.362105][ T6505] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 125.373213][ T6505] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 125.393522][ T6505] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 125.419010][ T6505] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 125.459819][ T6505] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 125.505937][ T6505] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 125.527184][ T6505] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 125.565757][ T6505] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 125.585308][ T6505] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 125.615924][ T6505] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 125.635746][ T6505] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 125.659830][ T6505] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 125.674574][ T6505] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 125.699244][ T6698] netlink: 8 bytes leftover after parsing attributes in process `syz.4.275'. [ 125.742666][ T6505] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 125.795443][ T6505] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 125.812259][ T6505] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 125.821166][ T6505] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 125.986304][ T5852] Bluetooth: hci2: command tx timeout [ 126.037683][ T6708] loop4: detected capacity change from 0 to 1024 [ 126.087641][ T3018] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 126.126539][ T3018] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 126.154751][ T6708] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 126.196457][ T47] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 126.209664][ T6708] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 126.223245][ T30] kauditd_printk_skb: 17 callbacks suppressed [ 126.223263][ T30] audit: type=1800 audit(1743157832.481:32): pid=6708 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.279" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 126.249749][ C0] vkms_vblank_simulate: vblank timer overrun [ 126.269116][ T47] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 126.284676][ T6701] loop2: detected capacity change from 0 to 32768 [ 126.368471][ T5841] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 126.395052][ T6701] JBD2: Ignoring recovery information on journal [ 126.470015][ T6701] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 126.704499][ T6735] loop5: detected capacity change from 0 to 1024 [ 126.824432][ T5849] ocfs2: Unmounting device (7,2) on (node local) [ 126.896831][ T3001] hfsplus: b-tree write err: -5, ino 8 [ 127.274690][ T6751] kvm_intel: kvm [6750]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0x1d9) = 0x3 [ 127.307361][ T30] audit: type=1326 audit(1743157833.601:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6753 comm="syz.5.296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f578c38d169 code=0x7ffc0000 [ 127.354683][ T30] audit: type=1326 audit(1743157833.601:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6753 comm="syz.5.296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f578c38d169 code=0x7ffc0000 [ 127.423311][ T30] audit: type=1326 audit(1743157833.601:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6753 comm="syz.5.296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=441 compat=0 ip=0x7f578c38d169 code=0x7ffc0000 [ 127.482895][ T6758] loop5: detected capacity change from 0 to 512 [ 127.496269][ T30] audit: type=1326 audit(1743157833.601:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6753 comm="syz.5.296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f578c38d169 code=0x7ffc0000 [ 127.518355][ C0] vkms_vblank_simulate: vblank timer overrun [ 127.566148][ T30] audit: type=1326 audit(1743157833.601:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6753 comm="syz.5.296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f578c38d169 code=0x7ffc0000 [ 127.577119][ T6766] syz.1.300: attempt to access beyond end of device [ 127.577119][ T6766] loop1: rw=0, sector=2, nr_sectors = 2 limit=0 [ 127.589867][ T6762] loop0: detected capacity change from 0 to 764 [ 127.619240][ T6762] Symlink component flag not implemented [ 127.626264][ T6762] Symlink component flag not implemented (116) [ 127.651082][ T6758] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 127.660808][ T6766] syz.1.300: attempt to access beyond end of device [ 127.660808][ T6766] loop1: rw=0, sector=16, nr_sectors = 2 limit=0 [ 127.720117][ T6758] ext4 filesystem being mounted at /4/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 127.902663][ T6505] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 127.926344][ T5889] kernel read not supported for file /swradio2 (pid: 5889 comm: kworker/0:4) [ 128.152463][ T6790] kvm: kvm [6789]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0x40000052) = 0x0 [ 128.434669][ T6800] loop5: detected capacity change from 0 to 256 [ 128.519613][ T6808] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000004: 0000 [#1] SMP KASAN PTI [ 128.531561][ T6808] KASAN: null-ptr-deref in range [0x0000000000000020-0x0000000000000027] [ 128.539999][ T6808] CPU: 1 UID: 0 PID: 6808 Comm: syz.4.320 Not tainted 6.14.0-next-20250328-syzkaller #0 PREEMPT(full) [ 128.551035][ T6808] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 128.561097][ T6808] RIP: 0010:__se_sys_mremap+0x25fa/0x2c00 [ 128.566860][ T6808] Code: c0 0f 85 0e 05 00 00 0f b6 9c 24 20 03 00 00 31 ff 89 de e8 78 15 ab ff 85 db 0f 84 7b 01 00 00 e8 6b 12 ab ff e9 9e 00 00 00 <80> 78 04 00 74 0a bf 20 00 00 00 e8 86 2d 15 00 4c 8b 34 25 20 00 [ 128.586490][ T6808] RSP: 0018:ffffc90003467b40 EFLAGS: 00010246 [ 128.592586][ T6808] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: 1ffff9200068cfca [ 128.600560][ T6808] RDX: ffffc9000cf9c000 RSI: 00000000000000bc RDI: 00000000000000bd [ 128.608534][ T6808] RBP: ffffc90003467f00 R08: ffffffff821d11b4 R09: ffffffff8c22f4a7 [ 128.616516][ T6808] R10: 0000000000000004 R11: ffff88802a273c00 R12: 0000200000ff8000 [ 128.624492][ T6808] R13: ffff888028772280 R14: 0000000018000098 R15: ffffc90003467cd0 [ 128.632473][ T6808] FS: 00007fafb33f66c0(0000) GS:ffff8881250b9000(0000) knlGS:0000000000000000 [ 128.641409][ T6808] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 128.647996][ T6808] CR2: 000000110c29bb60 CR3: 00000000258a2000 CR4: 00000000003526f0 [ 128.655973][ T6808] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 128.663954][ T6808] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 128.671958][ T6808] Call Trace: [ 128.675239][ T6808] [ 128.678191][ T6808] ? futex_wait+0x287/0x370 [ 128.682710][ T6808] ? __pfx___se_sys_mremap+0x10/0x10 [ 128.688005][ T6808] ? __pfx_userfaultfd_unmap_complete+0x10/0x10 [ 128.694257][ T6808] ? do_futex+0x37c/0x5a0 [ 128.698600][ T6808] ? __pfx_do_futex+0x10/0x10 [ 128.703285][ T6808] ? __vm_munmap+0x452/0x520 [ 128.707893][ T6808] ? __x64_sys_mremap+0x20/0xc0 [ 128.712752][ T6808] do_syscall_64+0xf3/0x230 [ 128.717350][ T6808] ? clear_bhb_loop+0x45/0xa0 [ 128.722036][ T6808] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 128.727940][ T6808] RIP: 0033:0x7fafb558d169 [ 128.732447][ T6808] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 128.752156][ T6808] RSP: 002b:00007fafb33f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 128.760598][ T6808] RAX: ffffffffffffffda RBX: 00007fafb57a5fa0 RCX: 00007fafb558d169 [ 128.768581][ T6808] RDX: 0000000000004000 RSI: 0000000000003000 RDI: 0000200000ff8000 [ 128.776556][ T6808] RBP: 00007fafb560e2a0 R08: 0000200000ffc000 R09: 0000000000000000 [ 128.784617][ T6808] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 128.792591][ T6808] R13: 0000000000000000 R14: 00007fafb57a5fa0 R15: 00007ffffbf4bb38 [ 128.800576][ T6808] [ 128.803619][ T6808] Modules linked in: [ 128.808559][ T6808] ---[ end trace 0000000000000000 ]--- [ 128.837477][ T6808] RIP: 0010:__se_sys_mremap+0x25fa/0x2c00 [ 128.843451][ T6808] Code: c0 0f 85 0e 05 00 00 0f b6 9c 24 20 03 00 00 31 ff 89 de e8 78 15 ab ff 85 db 0f 84 7b 01 00 00 e8 6b 12 ab ff e9 9e 00 00 00 <80> 78 04 00 74 0a bf 20 00 00 00 e8 86 2d 15 00 4c 8b 34 25 20 00 [ 128.864370][ T6808] RSP: 0018:ffffc90003467b40 EFLAGS: 00010246 [ 128.878016][ T6808] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: 1ffff9200068cfca [ 128.886205][ T6808] RDX: ffffc9000cf9c000 RSI: 00000000000000bc RDI: 00000000000000bd [ 128.894209][ T6808] RBP: ffffc90003467f00 R08: ffffffff821d11b4 R09: ffffffff8c22f4a7 [ 128.903528][ T6808] R10: 0000000000000004 R11: ffff88802a273c00 R12: 0000200000ff8000 [ 128.912194][ T6808] R13: ffff888028772280 R14: 0000000018000098 R15: ffffc90003467cd0 [ 128.920927][ T6808] FS: 00007fafb33f66c0(0000) GS:ffff8881250b9000(0000) knlGS:0000000000000000 [ 128.930080][ T6808] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 128.936740][ T6808] CR2: 00007f578c579178 CR3: 00000000258a2000 CR4: 00000000003526f0 [ 128.944750][ T6808] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 128.953744][ T6808] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 128.961806][ T6808] Kernel panic - not syncing: Fatal exception [ 128.968211][ T6808] Kernel Offset: disabled [ 128.972551][ T6808] Rebooting in 86400 seconds..